16 |
rodolico |
1 |
<?php
|
|
|
2 |
|
|
|
3 |
/*
|
|
|
4 |
Copyright (c) 2021, Daily Data, Inc. Redistribution and use in
|
|
|
5 |
source and binary forms, with or without modification, are permitted
|
|
|
6 |
provided that the following conditions are met:
|
|
|
7 |
|
|
|
8 |
* Redistributions of source code must retain the above copyright
|
|
|
9 |
notice, this list of conditions and the following disclaimer.
|
|
|
10 |
* Redistributions in binary form must reproduce the above copyright
|
|
|
11 |
notice, this list of conditions and the following disclaimer in the
|
|
|
12 |
documentation and/or other materials provided with the distribution.
|
|
|
13 |
|
|
|
14 |
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
|
15 |
"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
|
16 |
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
|
17 |
A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
|
18 |
OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
19 |
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
|
20 |
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
21 |
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
22 |
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
23 |
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
24 |
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
25 |
|
|
|
26 |
*/
|
|
|
27 |
|
|
|
28 |
|
|
|
29 |
// Let's make sure we have the Users class loaded.
|
|
|
30 |
require_once( 'Users.class.php' );
|
|
|
31 |
|
|
|
32 |
|
|
|
33 |
/**
|
|
|
34 |
* User Permissions Login class
|
|
|
35 |
*
|
|
|
36 |
* IMPORTANT: Requires a data source. See UsersDataSourceMySQLi.class.php
|
|
|
37 |
* for code which provides this for MySQLi
|
|
|
38 |
*
|
|
|
39 |
* UsersPermissions extends the Users class to include boolean
|
|
|
40 |
* permissions.
|
|
|
41 |
*
|
|
|
42 |
* @author R. W. Rodolico <rodo@unixservertech.com>
|
|
|
43 |
*
|
|
|
44 |
* @version 0.9.0 (beta)
|
|
|
45 |
* @copyright 2021 Daily Data, Inc.
|
|
|
46 |
*
|
|
|
47 |
*/
|
|
|
48 |
|
|
|
49 |
class UsersPermissions extends Users {
|
|
|
50 |
|
|
|
51 |
public function __construct( $customFields = array() ) {
|
|
|
52 |
parent::__construct( $customFields );
|
|
|
53 |
} // constructor
|
17 |
rodolico |
54 |
|
|
|
55 |
|
|
|
56 |
protected function validate( $username, $password, $connection ) {
|
|
|
57 |
if ( parent::validate( $username, $password, $connection ) ) {
|
|
|
58 |
$this->data['permissions'] = $connection->getPermissions( $this->data['id'] );
|
|
|
59 |
}
|
|
|
60 |
}
|
|
|
61 |
|
|
|
62 |
public function editScreen( $connection ) {
|
|
|
63 |
$divDef = "<div class='category'>\n";
|
|
|
64 |
$return = array();
|
|
|
65 |
$return[] = parent::editScreen( $connection );
|
|
|
66 |
if ( $this->isAdmin() ) {
|
|
|
67 |
$values = $connection->getFullPermissions( $this->workingOn['id'] );
|
|
|
68 |
$category = array();
|
|
|
69 |
foreach ( $values as $thisEntry ) {
|
|
|
70 |
$field = $thisEntry['permission'];
|
|
|
71 |
$temp = sprintf( $this->configuration['html input fields']['boolean'],
|
|
|
72 |
$thisEntry['description'],
|
|
|
73 |
$this->configuration['input prefix'] . $field,
|
|
|
74 |
'Place a check here to give the user permission',
|
|
|
75 |
'',
|
|
|
76 |
$field
|
|
|
77 |
);
|
|
|
78 |
|
|
|
79 |
$category[$thisEntry['category']][] = preg_replace( "/~~$field~~/", $thisEntry['value'] ? 'checked' : '', $temp );
|
|
|
80 |
}
|
|
|
81 |
|
|
|
82 |
foreach ( $category as $name => $entries ) {
|
|
|
83 |
$return[] = $divDef . "<h3>$name</h3>" . implode( "\n", $entries ) . "</div>";
|
|
|
84 |
}
|
|
|
85 |
}
|
|
|
86 |
return implode( "\n", $return );
|
|
|
87 |
}
|
|
|
88 |
|
|
|
89 |
protected function addEdit( $connection ) {
|
|
|
90 |
$return = parent::addEdit( $connection );
|
|
|
91 |
|
|
|
92 |
return $return;
|
|
|
93 |
|
|
|
94 |
$data = array();
|
|
|
95 |
// now we process all of the permissions
|
|
|
96 |
if ( $return != 'Error' ) {
|
|
|
97 |
foreach ( $this->workingOn['permissions'] as $name => $value ) {
|
|
|
98 |
$htmlFieldName = $this->configuration['input prefix'] . $name;
|
|
|
99 |
if ( $this->workingOn['id'] == -1 || ( isset( $_REQUEST[$htmlFieldName] ) != $this->workingOn[$name] ) ) {
|
|
|
100 |
$data[$name] = isset( $_REQUEST[$htmlFieldName] ) ? 1 : 0;
|
|
|
101 |
}
|
|
|
102 |
} // foreach
|
|
|
103 |
$connection->updatePermissions( $this->workingOn['id'],$data );
|
|
|
104 |
} // if not an error
|
|
|
105 |
return $return;
|
|
|
106 |
} // addEdit
|
16 |
rodolico |
107 |
|
|
|
108 |
}
|
|
|
109 |
|
|
|
110 |
?>
|