2 /************************************************************************
3 * MXChange v0.2.1 Start: 06/30/2004 *
4 * ================ Last change: 07/02/2004 *
6 * -------------------------------------------------------------------- *
7 * File: what-config_admins.php *
8 * -------------------------------------------------------------------- *
9 * Short description : Configure admin ACLs *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Admin-ACLs einstellen *
12 * -------------------------------------------------------------------- *
14 * $Date:: 2009-03-06 20:24:32 +0100 (Fr, 06. Mär 2009) $ *
15 * $Tag:: 0.2.1-FINAL $ *
16 * $Author:: stelzi $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2008 by Roland Haeder *
21 * For more information visit: http://www.mxchange.org *
23 * This program is free software; you can redistribute it and/or modify *
24 * it under the terms of the GNU General Public License as published by *
25 * the Free Software Foundation; either version 2 of the License, or *
26 * (at your option) any later version. *
28 * This program is distributed in the hope that it will be useful, *
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
31 * GNU General Public License for more details. *
33 * You should have received a copy of the GNU General Public License *
34 * along with this program; if not, write to the Free Software *
35 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
37 ************************************************************************/
39 // Some security stuff...
40 if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
41 $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
45 // Add description as navigation point
46 ADD_DESCR("admin", __FILE__);
49 if (REQUEST_ISSET_POST('sel')) $SEL = SELECTION_COUNT(REQUEST_POST('sel'));
51 if ((REQUEST_ISSET_POST('edit')) && ($SEL > 0)) {
54 foreach (REQUEST_POST('sel') as $id => $selected) {
55 // Load data for the ID
56 $result = SQL_QUERY_ESC("SELECT admin_id, action_menu, what_menu, access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1",
57 array(bigintval($id)), __FILE__, __LINE__);
58 list($aid, $act, $wht, $mode) = SQL_FETCHROW($result);
59 SQL_FREERESULT($result);
61 // Prepare data for the row template
65 'admins_selection' => ADD_OPTION_LINES("admins", "id", "login", $aid, "default_acl"),
66 'action_selection' => ADMIN_MENU_SELECTION("action", $act, $id),
67 'what_selection' => ADMIN_MENU_SELECTION("what", $wht, $id),
68 'mode_options' => ADD_OPTION_LINES(
70 array("allow", "deny"),
71 array(constant('ADMINS_ALLOW_MODE'), constant('ADMINS_DENY_MODE')),
77 $OUT .= LOAD_TEMPLATE("admin_config_admins_edit_row", true, $content);
80 define('__ACL_ROWS', $OUT);
83 LOAD_TEMPLATE("admin_config_admins_edit");
84 } elseif ((REQUEST_ISSET_POST(('change'))) && ($SEL > 0)) {
86 foreach (REQUEST_POST('sel') as $id => $selected) {
91 SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_admins_acls` SET admin_id=%s, action_menu='%s', what_menu='%s', access_mode='%s' WHERE id=%s LIMIT 1",
93 REQUEST_POST('admin', $id),
94 REQUEST_POST('action_menu', $id),
95 REQUEST_POST('what_menu', $id),
96 REQUEST_POST('mode', $id),
98 ),__FILE__, __LINE__);
101 // Update cache when installed
102 if (EXT_IS_ACTIVE("cache")) {
103 if ($GLOBALS['cache_instance']->loadCacheFile("admins_acls")) $GLOBALS['cache_instance']->destroyCacheFile();
106 CACHE_PURGE_ADMIN_MENU(REQUEST_POST('admin', $id));
110 LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_ADMINS_ENTRIES_CHANGED'));
111 } elseif ((REQUEST_ISSET_POST('del')) && ($SEL > 0)) {
114 foreach (REQUEST_POST('sel') as $id => $selected) {
115 // Load data for the ID
116 $result = SQL_QUERY_ESC("SELECT admin_id, action_menu, what_menu, access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1",
117 array(bigintval($id)), __FILE__, __LINE__);
118 list($admin, $act, $wht, $mode) = SQL_FETCHROW($result);
119 SQL_FREERESULT($result);
122 if (empty($act)) $act = "---";
123 if (empty($wht)) $wht = "---";
126 $mode = constant('ADMINS_'.strtoupper($mode).'_MODE');
129 $admin = GENERATE_AID_LINK($admin);
131 // Prepare data for the row template
141 // Load row template and switch colors
142 $OUT .= LOAD_TEMPLATE("admin_config_admins_del_row", true, $content);
145 define('__ACL_ROWS', $OUT);
147 // Load main template
148 LOAD_TEMPLATE("admin_config_admins_del");
149 } elseif ((REQUEST_ISSET_POST(('remove'))) && ($SEL > 0)) {
151 foreach (REQUEST_POST('sel') as $id => $selected) {
152 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1",
153 array(bigintval($id)),__FILE__, __LINE__);
156 // Update cache when installed
157 if (EXT_IS_ACTIVE("cache")) {
158 if ($GLOBALS['cache_instance']->loadCacheFile("admins_acls")) $GLOBALS['cache_instance']->destroyCacheFile();
160 // @TODO This causes the whole (!) menu cache being rebuild
161 CACHE_PURGE_ADMIN_MENU();
165 LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_ADMINS_ENTRIES_DELETED'));
166 } elseif (REQUEST_ISSET_POST(('add'))) {
167 // Check if everything is fine...
168 $mode = GET_ADMIN_DEFAULT_ACL(bigintval(REQUEST_POST('admin_id')));
170 // Default ACL is false
172 if (REQUEST_ISSET_POST(('what_menu'))) {
174 $ACL = ADMINS_CHECK_ACL(GET_ACTION("admin", REQUEST_POST('what_menu')), "");
177 if ($mode != REQUEST_POST('mode') || ($ACL)) {
179 $BOTH = ((REQUEST_ISSET_POST(('action_menu'))) && (REQUEST_ISSET_POST(('what_menu'))));
180 if (((REQUEST_ISSET_POST(('action_menu'))) || (REQUEST_ISSET_POST(('what_menu')))) && (!$BOTH)) {
181 // Main or sub menu selected
182 $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE admin_id=%s AND action_menu='%s' AND what_menu='%s' LIMIT 1",
183 array(bigintval(REQUEST_POST('admin_id')), REQUEST_POST('action_menu'), REQUEST_POST('what_menu')), __FILE__, __LINE__);
184 if (SQL_NUMROWS($result) == 0) {
185 // Finally add the new ACL
186 SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_admins_acls` (admin_id, action_menu, what_menu, access_mode)
187 VALUES ('%s','%s','%s','%s')",
189 bigintval(REQUEST_POST('admin_id')),
190 REQUEST_POST('action_menu'),
191 REQUEST_POST('what_menu'),
193 ), __FILE__, __LINE__);
194 $content = getMessage('ADMIN_ADMINS_ACL_SAVED');
196 // Update cache when installed
197 if (EXT_IS_ACTIVE("cache")) {
198 if ($GLOBALS['cache_instance']->loadCacheFile("admins_acls")) $GLOBALS['cache_instance']->destroyCacheFile();
201 CACHE_PURGE_ADMIN_MENU(REQUEST_POST('admin_id'), REQUEST_POST('action_menu'), REQUEST_POST('what_menu'));
204 // ACL does already exist!
205 $content = getMessage('ADMIN_ADMINS_ACL_ALREADY_ADDED');
209 SQL_FREERESULT($result);
211 // No menu selected makes also no sence...
212 $content = getMessage('ADMIN_ADMINS_SELECT_ACTION_WHAT');
215 // Same mode makes no sence...
216 $content = getMessage('ADMIN_ADMINS_SAME_MODE_SELECTED');
220 LOAD_TEMPLATE("admin_settings_saved", false, $content);
223 $result_acls = SQL_QUERY("SELECT id, admin_id, action_menu, what_menu, access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` ORDER BY admin_id, id", __FILE__, __LINE__);
224 if (SQL_NUMROWS($result_acls) > 0) {
227 while ($content = SQL_FETCHARRAY($result_acls)) {
229 if (empty($content['action_menu'])) $content['action_menu'] = "---";
230 if (empty($content['what_menu'])) $content['what_menu'] = "---";
233 $content['access_mode'] = constant('ADMINS_'.strtoupper($content['access_mode']).'_MODE');
235 // Prepare data for the row template
238 'id' => $content['id'],
239 'admin' => GENERATE_AID_LINK($content['admin_id']),
240 'action' => $content['action_menu'],
241 'what' => $content['what_menu'],
242 'mode' => $content['access_mode'],
245 // Load row template and switch colors
246 $OUT .= LOAD_TEMPLATE("admin_config_admins_row", true, $content);
251 SQL_FREERESULT($result);
252 define('__ACL_ROWS', $OUT);
254 // Load main template
255 LOAD_TEMPLATE("admin_config_admins");
258 // Prepare some constants for the template
259 define('_ADMINS_SELECTION', ADD_OPTION_LINES("admins", "id", "login", "", "default_acl"));
260 define('_ACTION_SELECTION', ADMIN_MENU_SELECTION("action"));
261 define('_WHAT_SELECTION' , ADMIN_MENU_SELECTION("what"));
262 define('_MODE_OPTIONS' ,
265 array("allow", "deny"),
267 getMessage('ADMINS_ALLOW_MODE'),
268 getMessage('ADMINS_DENY_MODE')
273 // Load template for adding new ACL
274 LOAD_TEMPLATE("admin_admins_add_acl");