Главная Обзор Помощь
Вход
fusionpbx
/
fusionpbx-framework
зеркало из https://github.com/fusionpbx/fusionpbx-framework.git
2
0
Ответвить 0
Файлы Задачи 0 Вики
Ветка: patch-1
Ветки Метки
fusionpbx-frame...
/
core
/
users
/
resources
/
classes
/
users.php

users.php 8.6 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303 
  1. <?php
    2. 

  2. /*
    3. 

  3. 	FusionPBX
    4. 

  4. 	Version: MPL 1.1
    5. 

  5. 

  6. 	The contents of this file are subject to the Mozilla Public License Version
    7. 

  7. 	1.1 (the "License"); you may not use this file except in compliance with
    8. 

  8. 	the License. You may obtain a copy of the License at
    9. 

  9. 	http://www.mozilla.org/MPL/
    10. 

  10. 

  11. 	Software distributed under the License is distributed on an "AS IS" basis,
    12. 

  12. 	WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
    13. 

  13. 	for the specific language governing rights and limitations under the
    14. 

  14. 	License.
    15. 

  15. 

  16. 	The Original Code is FusionPBX
    17. 

  17. 

  18. 	The Initial Developer of the Original Code is
    19. 

  19. 	Mark J Crane <[email protected]>
    20. 

  20. 	Portions created by the Initial Developer are Copyright (C) 2019-2020
    21. 

  21. 	the Initial Developer. All Rights Reserved.
    22. 

  22. 

  23. 	Contributor(s):
    24. 

  24. 	Mark J Crane <[email protected]>
    25. 

  25. */
    26. 

  26. 

  27. /**
    28. 

  28.  * users class
    29. 

  29.  *
    30. 

  30.  * @method null delete
    31. 

  31.  * @method null toggle
    32. 

  32.  * @method null copy
    33. 

  33.  */
    34. 

  34. if (!class_exists('users')) {
    35. 

  35. 	class users {
    36. 

  36. 

  37. 		/**
    38. 

  38. 		* declare the variables
    39. 

  39. 		*/
    40. 

  40. 		private $app_name;
    41. 

  41. 		private $app_uuid;
    42. 

  42. 		private $name;
    43. 

  43. 		private $table;
    44. 

  44. 		private $toggle_field;
    45. 

  45. 		private $toggle_values;
    46. 

  46. 		private $location;
    47. 

  47. 

  48. 		/**
    49. 

  49. 		 * called when the object is created
    50. 

  50. 		 */
    51. 

  51. 		public function __construct() {
    52. 

  52. 			//assign the variables
    53. 

  53. 				$this->app_name = 'users';
    54. 

  54. 				$this->app_uuid = '112124b3-95c2-5352-7e9d-d14c0b88f207';
    55. 

  55. 				$this->name = 'user';
    56. 

  56. 				$this->table = 'users';
    57. 

  57. 				$this->toggle_field = 'user_enabled';
    58. 

  58. 				$this->toggle_values = ['true','false'];
    59. 

  59. 				$this->location = 'users.php';
    60. 

  60. 		}
    61. 

  61. 

  62. 		/**
    63. 

  63. 		 * called when there are no references to a particular object
    64. 

  64. 		 * unset the variables used in the class
    65. 

  65. 		 */
    66. 

  66. 		public function __destruct() {
    67. 

  67. 			foreach ($this as $key => $value) {
    68. 

  68. 				unset($this->$key);
    69. 

  69. 			}
    70. 

  70. 		}
    71. 

  71. 

  72. 		/**
    73. 

  73. 		 * delete rows from the database
    74. 

  74. 		 */
    75. 

  75. 		public function delete($records) {
    76. 

  76. 			if (permission_exists($this->name.'_delete')) {
    77. 

  77. 

  78. 				//add multi-lingual support
    79. 

  79. 					$language = new text;
    80. 

  80. 					$text = $language->get();
    81. 

  81. 

  82. 				//validate the token
    83. 

  83. 					$token = new token;
    84. 

  84. 					if (!$token->validate($_SERVER['PHP_SELF'])) {
    85. 

  85. 						message::add($text['message-invalid_token'],'negative');
    86. 

  86. 						header('Location: '.$this->location);
    87. 

  87. 						exit;
    88. 

  88. 					}
    89. 

  89. 

  90. 				//delete multiple records
    91. 

  91. 					if (is_array($records) && @sizeof($records) != 0) {
    92. 

  92. 						//build the delete array
    93. 

  93. 							$x = 0;
    94. 

  94. 							foreach ($records as $record) {
    95. 

  95. 								//add to the array
    96. 

  96. 									if ($record['checked'] == 'true' && is_uuid($record['uuid'])) {
    97. 

  97. 										//get the user_uuid
    98. 

  98. 											$user_uuid = $record['uuid'];
    99. 

  99. 

  100. 										//get the user's domain from v_users
    101. 

  101. 											if (permission_exists('user_domain')) {
    102. 

  102. 												$sql = "select domain_uuid from v_users ";
    103. 

  103. 												$sql .= "where user_uuid = :user_uuid ";
    104. 

  104. 												$parameters['user_uuid'] = $user_uuid;
    105. 

  105. 												$database = new database;
    106. 

  106. 												$domain_uuid = $database->select($sql, $parameters, 'column');
    107. 

  107. 												unset($sql, $parameters);
    108. 

  108. 											}
    109. 

  109. 											else {
    110. 

  110. 												$domain_uuid = $_SESSION['domain_uuid'];
    111. 

  111. 											}
    112. 

  112. 

  113. 										//required to be a superadmin to delete a member of the superadmin group
    114. 

  114. 											$superadmin_list = superadmin_list();
    115. 

  115. 											if (if_superadmin($superadmin_list, $user_uuid)) {
    116. 

  116. 												if (!if_group("superadmin")) {
    117. 

  117. 													//access denied - do not delete the user
    118. 

  118. 													header("Location: index.php");
    119. 

  119. 													return;
    120. 

  120. 												}
    121. 

  121. 											}
    122. 

  122. 

  123. 										//delete the user settings
    124. 

  124. 											$array['user_settings'][$x]['user_uuid'] = $user_uuid;
    125. 

  125. 											$array['user_settings'][$x]['domain_uuid'] = $domain_uuid;
    126. 

  126. 

  127. 										//delete the groups the user is assigned to
    128. 

  128. 											$array['user_groups'][$x]['user_uuid'] = $user_uuid;
    129. 

  129. 											$array['user_groups'][$x]['domain_uuid'] = $domain_uuid;
    130. 

  130. 

  131. 										//delete the user
    132. 

  132. 											$array['users'][$x]['user_uuid'] = $user_uuid;
    133. 

  133. 											$array['users'][$x]['domain_uuid'] = $domain_uuid;
    134. 

  134. 

  135. 										//increment the id
    136. 

  136. 											$x++;
    137. 

  137. 									}
    138. 

  138. 							}
    139. 

  139. 

  140. 						//delete the checked rows
    141. 

  141. 							if (is_array($array) && @sizeof($array) != 0) {
    142. 

  142. 								//execute
    143. 

  143. 									$p = new permissions;
    144. 

  144. 									$p->add('user_setting_delete', 'temp');
    145. 

  145. 									$p->add('user_group_delete', 'temp');
    146. 

  146. 

  147. 								//execute delete
    148. 

  148. 									$database = new database;
    149. 

  149. 									$database->app_name = $this->app_name;
    150. 

  150. 									$database->app_uuid = $this->app_uuid;
    151. 

  151. 									$database->delete($array);
    152. 

  152. 									unset($array);
    153. 

  153. 

  154. 									$p->delete('user_setting_delete', 'temp');
    155. 

  155. 									$p->delete('user_group_delete', 'temp');
    156. 

  156. 

  157. 								//set message
    158. 

  158. 									message::add($text['message-delete']);
    159. 

  159. 							}
    160. 

  160. 							unset($records);
    161. 

  161. 					}
    162. 

  162. 			}
    163. 

  163. 		}
    164. 

  164. 

  165. 		/**
    166. 

  166. 		 * toggle a field between two values
    167. 

  167. 		 */
    168. 

  168. 		public function toggle($records) {
    169. 

  169. 			if (permission_exists($this->name.'_edit')) {
    170. 

  170. 

  171. 				//add multi-lingual support
    172. 

  172. 					$language = new text;
    173. 

  173. 					$text = $language->get();
    174. 

  174. 

  175. 				//validate the token
    176. 

  176. 					$token = new token;
    177. 

  177. 					if (!$token->validate($_SERVER['PHP_SELF'])) {
    178. 

  178. 						message::add($text['message-invalid_token'],'negative');
    179. 

  179. 						header('Location: '.$this->location);
    180. 

  180. 						exit;
    181. 

  181. 					}
    182. 

  182. 

  183. 				//toggle the checked records
    184. 

  184. 					if (is_array($records) && @sizeof($records) != 0) {
    185. 

  185. 						//get current toggle state
    186. 

  186. 							foreach($records as $record) {
    187. 

  187. 								if ($record['checked'] == 'true' && is_uuid($record['uuid'])) {
    188. 

  188. 									$uuids[] = "'".$record['uuid']."'";
    189. 

  189. 								}
    190. 

  190. 							}
    191. 

  191. 							if (is_array($uuids) && @sizeof($uuids) != 0) {
    192. 

  192. 								$sql = "select ".$this->name."_uuid as uuid, ".$this->toggle_field." as toggle from v_".$this->table." ";
    193. 

  193. 								$sql .= "where ".$this->name."_uuid in (".implode(', ', $uuids).") ";
    194. 

  194. 								$database = new database;
    195. 

  195. 								$rows = $database->select($sql, $parameters, 'all');
    196. 

  196. 								if (is_array($rows) && @sizeof($rows) != 0) {
    197. 

  197. 									foreach ($rows as $row) {
    198. 

  198. 										$states[$row['uuid']] = $row['toggle'];
    199. 

  199. 									}
    200. 

  200. 								}
    201. 

  201. 								unset($sql, $parameters, $rows, $row);
    202. 

  202. 							}
    203. 

  203. 

  204. 						//build update array
    205. 

  205. 							$x = 0;
    206. 

  206. 							foreach($states as $uuid => $state) {
    207. 

  207. 								//create the array
    208. 

  208. 									$array[$this->table][$x][$this->name.'_uuid'] = $uuid;
    209. 

  209. 									$array[$this->table][$x][$this->toggle_field] = $state == $this->toggle_values[0] ? $this->toggle_values[1] : $this->toggle_values[0];
    210. 

  210. 

  211. 								//increment the id
    212. 

  212. 									$x++;
    213. 

  213. 							}
    214. 

  214. 

  215. 						//save the changes
    216. 

  216. 							if (is_array($array) && @sizeof($array) != 0) {
    217. 

  217. 								//save the array
    218. 

  218. 									$database = new database;
    219. 

  219. 									$database->app_name = $this->app_name;
    220. 

  220. 									$database->app_uuid = $this->app_uuid;
    221. 

  221. 									$database->save($array);
    222. 

  222. 									unset($array);
    223. 

  223. 

  224. 								//set message
    225. 

  225. 									message::add($text['message-toggle']);
    226. 

  226. 							}
    227. 

  227. 							unset($records, $states);
    228. 

  228. 					}
    229. 

  229. 			}
    230. 

  230. 		}
    231. 

  231. 

  232. 		/**
    233. 

  233. 		 * copy rows from the database
    234. 

  234. 		 */
    235. 

  235. 		public function copy($records) {
    236. 

  236. 			if (permission_exists($this->name.'_add')) {
    237. 

  237. 

  238. 				//add multi-lingual support
    239. 

  239. 					$language = new text;
    240. 

  240. 					$text = $language->get();
    241. 

  241. 

  242. 				//validate the token
    243. 

  243. 					$token = new token;
    244. 

  244. 					if (!$token->validate($_SERVER['PHP_SELF'])) {
    245. 

  245. 						message::add($text['message-invalid_token'],'negative');
    246. 

  246. 						header('Location: '.$this->location);
    247. 

  247. 						exit;
    248. 

  248. 					}
    249. 

  249. 

  250. 				//copy the checked records
    251. 

  251. 					if (is_array($records) && @sizeof($records) != 0) {
    252. 

  252. 

  253. 						//get checked records
    254. 

  254. 							foreach($records as $record) {
    255. 

  255. 								if ($record['checked'] == 'true' && is_uuid($record['uuid'])) {
    256. 

  256. 									$uuids[] = "'".$record['uuid']."'";
    257. 

  257. 								}
    258. 

  258. 							}
    259. 

  259. 

  260. 						//create the array from existing data
    261. 

  261. 							if (is_array($uuids) && @sizeof($uuids) != 0) {
    262. 

  262. 								$sql = "select * from v_".$this->table." ";
    263. 

  263. 								$sql .= "where ".$this->name."_uuid in (".implode(', ', $uuids).") ";
    264. 

  264. 								$database = new database;
    265. 

  265. 								$rows = $database->select($sql, $parameters, 'all');
    266. 

  266. 								if (is_array($rows) && @sizeof($rows) != 0) {
    267. 

  267. 									$x = 0;
    268. 

  268. 									foreach ($rows as $row) {
    269. 

  269. 										//copy data
    270. 

  270. 											$array[$this->table][$x] = $row;
    271. 

  271. 

  272. 										//add copy to the description
    273. 

  273. 											$array[$this->table][$x][$this->name.'_uuid'] = uuid();
    274. 

  274. 											$array[$this->table][$x]['username'] = $row['username'].'-'.$text['label-copy'];
    275. 

  275. 

  276. 										//increment the id
    277. 

  277. 											$x++;
    278. 

  278. 									}
    279. 

  279. 								}
    280. 

  280. 								unset($sql, $parameters, $rows, $row);
    281. 

  281. 							}
    282. 

  282. 

  283. 						//save the changes and set the message
    284. 

  284. 							if (is_array($array) && @sizeof($array) != 0) {
    285. 

  285. 								//save the array
    286. 

  286. 									$database = new database;
    287. 

  287. 									$database->app_name = $this->app_name;
    288. 

  288. 									$database->app_uuid = $this->app_uuid;
    289. 

  289. 									$database->save($array);
    290. 

  290. 									unset($array);
    291. 

  291. 

  292. 								//set message
    293. 

  293. 									message::add($text['message-copy']);
    294. 

  294. 							}
    295. 

  295. 							unset($records);
    296. 

  296. 					}
    297. 

  297. 			}
    298. 

  298. 		}
    299. 

  299. 

  300. 	}
    301. 

  301. }
    302. 

  302. 

  303. ?>
    304.