diff options
| author | Meik Sievertsen <acydburn@phpbb.com> | 2008-12-24 14:08:15 +0000 |
|---|---|---|
| committer | Meik Sievertsen <acydburn@phpbb.com> | 2008-12-24 14:08:15 +0000 |
| commit | 68aa6bd29a0ea8c3e5b981677ace1ac188469bb8 (patch) | |
| tree | bad33f1f9cd6d3efde039b2d11d250ad2dc9a960 /phpBB/includes/acp/acp_permission_roles.php | |
| parent | 799ee3caae5de9f044ffad3e4d34010365a0005d (diff) | |
| download | forums-68aa6bd29a0ea8c3e5b981677ace1ac188469bb8.tar forums-68aa6bd29a0ea8c3e5b981677ace1ac188469bb8.tar.gz forums-68aa6bd29a0ea8c3e5b981677ace1ac188469bb8.tar.bz2 forums-68aa6bd29a0ea8c3e5b981677ace1ac188469bb8.tar.xz forums-68aa6bd29a0ea8c3e5b981677ace1ac188469bb8.zip | |
put acp, mcp and ucp into modules/ directory
git-svn-id: file:///svn/phpbb/trunk@9223 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/includes/acp/acp_permission_roles.php')
| -rw-r--r-- | phpBB/includes/acp/acp_permission_roles.php | 570 |
1 files changed, 0 insertions, 570 deletions
diff --git a/phpBB/includes/acp/acp_permission_roles.php b/phpBB/includes/acp/acp_permission_roles.php deleted file mode 100644 index 0ca445338b..0000000000 --- a/phpBB/includes/acp/acp_permission_roles.php +++ /dev/null @@ -1,570 +0,0 @@ -<?php -/** -* -* @package acp -* @version $Id$ -* @copyright (c) 2005 phpBB Group -* @license http://opensource.org/licenses/gpl-license.php GNU Public License -* -*/ - -/** -* @ignore -*/ -if (!defined('IN_PHPBB')) -{ - exit; -} - -/** -* @package acp -*/ -class acp_permission_roles -{ - var $u_action; - - function main($id, $mode) - { - global $db, $user, $auth, $template, $cache, $config; - - include_once(PHPBB_ROOT_PATH . 'includes/functions_user.' . PHP_EXT); - include_once(PHPBB_ROOT_PATH . 'includes/acp/auth.' . PHP_EXT); - - $auth_admin = new auth_admin(); - - $user->add_lang('acp/permissions'); - add_permission_language(); - - $this->tpl_name = 'acp_permission_roles'; - - $submit = request::is_set_post('submit'); - $role_id = request_var('role_id', 0); - $action = request_var('action', ''); - $action = (request::is_set_post('add')) ? 'add' : $action; - - $form_name = 'acp_permissions'; - add_form_key($form_name); - - switch ($mode) - { - case 'admin_roles': - $permission_type = 'a_'; - $this->page_title = 'ACP_ADMIN_ROLES'; - break; - - case 'user_roles': - $permission_type = 'u_'; - $this->page_title = 'ACP_USER_ROLES'; - break; - - case 'mod_roles': - $permission_type = 'm_'; - $this->page_title = 'ACP_MOD_ROLES'; - break; - - case 'forum_roles': - $permission_type = 'f_'; - $this->page_title = 'ACP_FORUM_ROLES'; - break; - - default: - trigger_error('NO_MODE', E_USER_ERROR); - break; - } - - $template->assign_vars(array( - 'L_TITLE' => $user->lang[$this->page_title], - 'L_EXPLAIN' => $user->lang[$this->page_title . '_EXPLAIN']) - ); - - // Take action... admin submitted something - if ($submit || $action == 'remove') - { - switch ($action) - { - case 'remove': - - if (!$role_id) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - $sql = 'SELECT * - FROM ' . ACL_ROLES_TABLE . ' - WHERE role_id = ' . $role_id; - $result = $db->sql_query($sql); - $role_row = $db->sql_fetchrow($result); - $db->sql_freeresult($result); - - if (!$role_row) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - if (confirm_box(true)) - { - $this->remove_role($role_id, $permission_type); - - $role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name']; - add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_REMOVED', $role_name); - trigger_error($user->lang['ROLE_DELETED'] . adm_back_link($this->u_action)); - } - else - { - confirm_box(false, 'DELETE_ROLE', build_hidden_fields(array( - 'i' => $id, - 'mode' => $mode, - 'role_id' => $role_id, - 'action' => $action, - ))); - } - - break; - - case 'edit': - if (!$role_id) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - // Get role we edit - $sql = 'SELECT * - FROM ' . ACL_ROLES_TABLE . ' - WHERE role_id = ' . $role_id; - $result = $db->sql_query($sql); - $role_row = $db->sql_fetchrow($result); - $db->sql_freeresult($result); - - if (!$role_row) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - // no break; - - case 'add': - - if (!check_form_key($form_name)) - { - trigger_error($user->lang['FORM_INVALID']. adm_back_link($this->u_action), E_USER_WARNING); - } - - $role_name = utf8_normalize_nfc(request_var('role_name', '', true)); - $role_description = utf8_normalize_nfc(request_var('role_description', '', true)); - $auth_settings = request_var('setting', array('' => 0)); - - if (!$role_name) - { - trigger_error($user->lang['NO_ROLE_NAME_SPECIFIED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - if (utf8_strlen($role_description) > 4000) - { - trigger_error($user->lang['ROLE_DESCRIPTION_LONG'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - // if we add/edit a role we check the name to be unique among the settings... - $sql = 'SELECT role_id - FROM ' . ACL_ROLES_TABLE . " - WHERE role_type = '" . $db->sql_escape($permission_type) . "' - AND role_name = '" . $db->sql_escape($role_name) . "'"; - $result = $db->sql_query($sql); - $row = $db->sql_fetchrow($result); - $db->sql_freeresult($result); - - // Make sure we only print out the error if we add the role or change it's name - if ($row && ($mode == 'add' || ($mode == 'edit' && $role_row['role_name'] != $role_name))) - { - trigger_error(sprintf($user->lang['ROLE_NAME_ALREADY_EXIST'], $role_name) . adm_back_link($this->u_action), E_USER_WARNING); - } - - $sql_ary = array( - 'role_name' => (string) $role_name, - 'role_description' => (string) $role_description, - 'role_type' => (string) $permission_type, - ); - - if ($action == 'edit') - { - $sql = 'UPDATE ' . ACL_ROLES_TABLE . ' - SET ' . $db->sql_build_array('UPDATE', $sql_ary) . ' - WHERE role_id = ' . $role_id; - $db->sql_query($sql); - } - else - { - // Get maximum role order for inserting a new role... - $sql = 'SELECT MAX(role_order) as max_order - FROM ' . ACL_ROLES_TABLE . " - WHERE role_type = '" . $db->sql_escape($permission_type) . "'"; - $result = $db->sql_query($sql); - $max_order = (int) $db->sql_fetchfield('max_order'); - $db->sql_freeresult($result); - - $sql_ary['role_order'] = $max_order + 1; - - $sql = 'INSERT INTO ' . ACL_ROLES_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary); - $db->sql_query($sql); - - $role_id = $db->sql_nextid(); - } - - // Now add the auth settings - $auth_admin->acl_set_role($role_id, $auth_settings); - - $role_name = (!empty($user->lang[$role_name])) ? $user->lang[$role_name] : $role_name; - add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_' . strtoupper($action), $role_name); - - trigger_error($user->lang['ROLE_' . strtoupper($action) . '_SUCCESS'] . adm_back_link($this->u_action)); - - break; - } - } - - // Display screens - switch ($action) - { - case 'add': - - $options_from = request_var('options_from', 0); - - $role_row = array( - 'role_name' => utf8_normalize_nfc(request_var('role_name', '', true)), - 'role_description' => utf8_normalize_nfc(request_var('role_description', '', true)), - 'role_type' => $permission_type, - ); - - if ($options_from) - { - $sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option - FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o - WHERE o.auth_option_id = p.auth_option_id - AND p.role_id = ' . $options_from . ' - ORDER BY p.auth_option_id'; - $result = $db->sql_query($sql); - - $auth_options = array(); - while ($row = $db->sql_fetchrow($result)) - { - $auth_options[$row['auth_option']] = $row['auth_setting']; - } - $db->sql_freeresult($result); - } - else - { - $sql = 'SELECT auth_option_id, auth_option - FROM ' . ACL_OPTIONS_TABLE . " - WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . " - AND auth_option <> '{$permission_type}' - ORDER BY auth_option_id"; - $result = $db->sql_query($sql); - - $auth_options = array(); - while ($row = $db->sql_fetchrow($result)) - { - $auth_options[$row['auth_option']] = ACL_NO; - } - $db->sql_freeresult($result); - } - - // no break; - - case 'edit': - - if ($action == 'edit') - { - if (!$role_id) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - $sql = 'SELECT * - FROM ' . ACL_ROLES_TABLE . ' - WHERE role_id = ' . $role_id; - $result = $db->sql_query($sql); - $role_row = $db->sql_fetchrow($result); - $db->sql_freeresult($result); - - $sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option - FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o - WHERE o.auth_option_id = p.auth_option_id - AND p.role_id = ' . $role_id . ' - ORDER BY p.auth_option_id'; - $result = $db->sql_query($sql); - - $auth_options = array(); - while ($row = $db->sql_fetchrow($result)) - { - $auth_options[$row['auth_option']] = $row['auth_setting']; - } - $db->sql_freeresult($result); - } - - if (!$role_row) - { - trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING); - } - - $template->assign_vars(array( - 'S_EDIT' => true, - - 'U_ACTION' => $this->u_action . "&action={$action}&role_id={$role_id}", - 'U_BACK' => $this->u_action, - - 'ROLE_NAME' => $role_row['role_name'], - 'ROLE_DESCRIPTION' => $role_row['role_description'], - 'L_ACL_TYPE' => $user->lang['ACL_TYPE_' . strtoupper($permission_type)], - ) - ); - - // We need to fill the auth options array with ACL_NO options ;) - $sql = 'SELECT auth_option_id, auth_option - FROM ' . ACL_OPTIONS_TABLE . " - WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . " - AND auth_option <> '{$permission_type}' - ORDER BY auth_option_id"; - $result = $db->sql_query($sql); - - while ($row = $db->sql_fetchrow($result)) - { - if (!isset($auth_options[$row['auth_option']])) - { - $auth_options[$row['auth_option']] = ACL_NO; - } - } - $db->sql_freeresult($result); - - // Unset global permission option - unset($auth_options[$permission_type]); - - // Display auth options - $this->display_auth_options($auth_options); - - // Get users/groups/forums using this preset... - if ($action == 'edit') - { - $hold_ary = $auth_admin->get_role_mask($role_id); - - if (sizeof($hold_ary)) - { - $role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name']; - - $template->assign_vars(array( - 'S_DISPLAY_ROLE_MASK' => true, - 'L_ROLE_ASSIGNED_TO' => sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name)) - ); - - $auth_admin->display_role_mask($hold_ary); - } - } - - return; - break; - - case 'move_up': - case 'move_down': - - $order = request_var('order', 0); - $order_total = $order * 2 + (($action == 'move_up') ? -1 : 1); - - $sql = 'UPDATE ' . ACL_ROLES_TABLE . ' - SET role_order = ' . $order_total . " - role_order - WHERE role_type = '" . $db->sql_escape($permission_type) . "' - AND role_order IN ($order, " . (($action == 'move_up') ? $order - 1 : $order + 1) . ')'; - $db->sql_query($sql); - - break; - } - - // By default, check that role_order is valid and fix it if necessary - $sql = 'SELECT role_id, role_order - FROM ' . ACL_ROLES_TABLE . " - WHERE role_type = '" . $db->sql_escape($permission_type) . "' - ORDER BY role_order ASC"; - $result = $db->sql_query($sql); - - if ($row = $db->sql_fetchrow($result)) - { - $order = 0; - do - { - $order++; - if ($row['role_order'] != $order) - { - $db->sql_query('UPDATE ' . ACL_ROLES_TABLE . " SET role_order = $order WHERE role_id = {$row['role_id']}"); - } - } - while ($row = $db->sql_fetchrow($result)); - } - $db->sql_freeresult($result); - - // Display assigned items? - $display_item = request_var('display_item', 0); - - // Select existing roles - $sql = 'SELECT * - FROM ' . ACL_ROLES_TABLE . " - WHERE role_type = '" . $db->sql_escape($permission_type) . "' - ORDER BY role_order ASC"; - $result = $db->sql_query($sql); - - $s_role_options = ''; - while ($row = $db->sql_fetchrow($result)) - { - $role_name = (!empty($user->lang[$row['role_name']])) ? $user->lang[$row['role_name']] : $row['role_name']; - - $template->assign_block_vars('roles', array( - 'ROLE_NAME' => $role_name, - 'ROLE_DESCRIPTION' => (!empty($user->lang[$row['role_description']])) ? $user->lang[$row['role_description']] : nl2br($row['role_description']), - - 'U_EDIT' => $this->u_action . '&action=edit&role_id=' . $row['role_id'], - 'U_REMOVE' => $this->u_action . '&action=remove&role_id=' . $row['role_id'], - 'U_MOVE_UP' => $this->u_action . '&action=move_up&order=' . $row['role_order'], - 'U_MOVE_DOWN' => $this->u_action . '&action=move_down&order=' . $row['role_order'], - 'U_DISPLAY_ITEMS' => ($row['role_id'] == $display_item) ? '' : $this->u_action . '&display_item=' . $row['role_id'] . '#assigned_to') - ); - - $s_role_options .= '<option value="' . $row['role_id'] . '">' . $role_name . '</option>'; - - if ($display_item == $row['role_id']) - { - $template->assign_vars(array( - 'L_ROLE_ASSIGNED_TO' => sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name)) - ); - } - } - $db->sql_freeresult($result); - - $template->assign_vars(array( - 'S_ROLE_OPTIONS' => $s_role_options) - ); - - if ($display_item) - { - $template->assign_vars(array( - 'S_DISPLAY_ROLE_MASK' => true) - ); - - $hold_ary = $auth_admin->get_role_mask($display_item); - $auth_admin->display_role_mask($hold_ary); - } - } - - /** - * Display permission settings able to be set - */ - function display_auth_options($auth_options) - { - global $template, $user; - - $content_array = $categories = array(); - $key_sort_array = array(0); - $auth_options = array(0 => $auth_options); - - // Making use of auth_admin method here (we do not really want to change two similar code fragments) - auth_admin::build_permission_array($auth_options, $content_array, $categories, $key_sort_array); - - $content_array = $content_array[0]; - - $template->assign_var('S_NUM_PERM_COLS', sizeof($categories)); - - // Assign to template - foreach ($content_array as $cat => $cat_array) - { - $template->assign_block_vars('auth', array( - 'CAT_NAME' => $user->lang['permission_cat'][$cat], - - 'S_YES' => ($cat_array['S_YES'] && !$cat_array['S_NEVER'] && !$cat_array['S_NO']) ? true : false, - 'S_NEVER' => ($cat_array['S_NEVER'] && !$cat_array['S_YES'] && !$cat_array['S_NO']) ? true : false, - 'S_NO' => ($cat_array['S_NO'] && !$cat_array['S_NEVER'] && !$cat_array['S_YES']) ? true : false) - ); - - foreach ($cat_array['permissions'] as $permission => $allowed) - { - $template->assign_block_vars('auth.mask', array( - 'S_YES' => ($allowed == ACL_YES) ? true : false, - 'S_NEVER' => ($allowed == ACL_NEVER) ? true : false, - 'S_NO' => ($allowed == ACL_NO) ? true : false, - - 'FIELD_NAME' => $permission, - 'PERMISSION' => $user->lang['acl_' . $permission]['lang']) - ); - } - } - } - - /** - * Remove role - */ - function remove_role($role_id, $permission_type) - { - global $db; - - $auth_admin = new auth_admin(); - - // Get complete auth array - $sql = 'SELECT auth_option, auth_option_id - FROM ' . ACL_OPTIONS_TABLE . " - WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char); - $result = $db->sql_query($sql); - - $auth_settings = array(); - while ($row = $db->sql_fetchrow($result)) - { - $auth_settings[$row['auth_option']] = ACL_NO; - } - $db->sql_freeresult($result); - - // Get the role auth settings we need to re-set... - $sql = 'SELECT o.auth_option, r.auth_setting - FROM ' . ACL_ROLES_DATA_TABLE . ' r, ' . ACL_OPTIONS_TABLE . ' o - WHERE o.auth_option_id = r.auth_option_id - AND r.role_id = ' . $role_id; - $result = $db->sql_query($sql); - - while ($row = $db->sql_fetchrow($result)) - { - $auth_settings[$row['auth_option']] = $row['auth_setting']; - } - $db->sql_freeresult($result); - - // Get role assignments - $hold_ary = $auth_admin->get_role_mask($role_id); - - // Re-assign permissions - foreach ($hold_ary as $forum_id => $forum_ary) - { - if (isset($forum_ary['users'])) - { - $auth_admin->acl_set('user', $forum_id, $forum_ary['users'], $auth_settings, 0, false); - } - - if (isset($forum_ary['groups'])) - { - $auth_admin->acl_set('group', $forum_id, $forum_ary['groups'], $auth_settings, 0, false); - } - } - - // Remove role from users and groups just to be sure (happens through acl_set) - $sql = 'DELETE FROM ' . ACL_USERS_TABLE . ' - WHERE auth_role_id = ' . $role_id; - $db->sql_query($sql); - - $sql = 'DELETE FROM ' . ACL_GROUPS_TABLE . ' - WHERE auth_role_id = ' . $role_id; - $db->sql_query($sql); - - // Remove role data and role - $sql = 'DELETE FROM ' . ACL_ROLES_DATA_TABLE . ' - WHERE role_id = ' . $role_id; - $db->sql_query($sql); - - $sql = 'DELETE FROM ' . ACL_ROLES_TABLE . ' - WHERE role_id = ' . $role_id; - $db->sql_query($sql); - - $auth_admin->acl_clear_prefetch(); - } -} - -?>
\ No newline at end of file |