2 /************************************************************************
3 * Mailer v0.2.1-FINAL Start: 06/30/2004 *
4 * =================== Last change: 07/02/2004 *
6 * -------------------------------------------------------------------- *
7 * File: what-config_admins.php *
8 * -------------------------------------------------------------------- *
9 * Short description : Configure admin ACLs *
10 * -------------------------------------------------------------------- *
11 * Kurzbeschreibung : Admin-ACLs einstellen *
12 * -------------------------------------------------------------------- *
15 * $Tag:: 0.2.1-FINAL $ *
17 * Needs to be in all Files and every File needs "svn propset *
18 * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
19 * -------------------------------------------------------------------- *
20 * Copyright (c) 2003 - 2009 by Roland Haeder *
21 * Copyright (c) 2009, 2010 by Mailer Developer Team *
22 * For more information visit: http://www.mxchange.org *
24 * This program is free software; you can redistribute it and/or modify *
25 * it under the terms of the GNU General Public License as published by *
26 * the Free Software Foundation; either version 2 of the License, or *
27 * (at your option) any later version. *
29 * This program is distributed in the hope that it will be useful, *
30 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
31 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
32 * GNU General Public License for more details. *
34 * You should have received a copy of the GNU General Public License *
35 * along with this program; if not, write to the Free Software *
36 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, *
38 ************************************************************************/
40 // Some security stuff...
41 if ((!defined('__SECURITY')) || (!isAdmin())) {
45 // Add description as navigation point
46 addMenuDescription('admin', __FILE__);
48 if ((isFormSent('edit')) && (countPostSelection() > 0)) {
51 foreach (postRequestParameter('sel') as $id => $selected) {
52 // Load data for the id
53 $result = SQL_QUERY_ESC("SELECT admin_id, action_menu, what_menu, access_mode FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE `id`=%s LIMIT 1",
54 array(bigintval($id)), __FILE__, __LINE__);
55 list($adminId, $action, $what, $mode) = SQL_FETCHROW($result);
56 SQL_FREERESULT($result);
58 // Prepare data for the row template
62 'admins_selection' => generateOptionList('admins', 'id', 'login', $adminId, 'default_acl'),
63 'action_selection' => adminMenuSelectionBox_DEPRECATED('action', $action, $id),
64 'what_selection' => adminMenuSelectionBox_DEPRECATED('what', $what, $id),
65 'mode_options' => generateOptionList(
67 array('allow', 'deny'),
69 getMessage('ADMINS_ALLOW_MODE'),
70 getMessage('ADMINS_DENY_MODE')
77 $OUT .= loadTemplate('admin_config_admins_edit_row', true, $content);
82 loadTemplate('admin_config_admins_edit', false, $OUT);
83 } elseif ((isFormSent('change')) && (countPostSelection() > 0)) {
85 foreach (postRequestParameter('sel') as $id => $selected) {
90 SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_admins_acls` SET admin_id=%s, action_menu='%s', what_menu='%s', access_mode='%s' WHERE `id`=%s LIMIT 1",
92 postRequestParameter('admin', $id),
93 postRequestParameter('action_menu', $id),
94 postRequestParameter('what_menu', $id),
95 postRequestParameter('mode', $id),
97 ),__FILE__, __LINE__);
100 // Update cache when installed
101 if (isExtensionActive('cache')) {
102 if ($GLOBALS['cache_instance']->loadCacheFile('admin_acls')) $GLOBALS['cache_instance']->removeCacheFile();
106 loadTemplate('admin_settings_saved', false, '{--ADMIN_ADMINS_ENTRIES_CHANGED--}');
107 } elseif ((isFormSent('del')) && (countPostSelection() > 0)) {
110 foreach (postRequestParameter('sel') as $id => $selected) {
111 // Load data for the id
112 $result = SQL_QUERY_ESC("SELECT `id`, `admin_id`, `action_menu`, `what_menu`, `access_mode` FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE `id`=%s LIMIT 1",
113 array(bigintval($id)), __FILE__, __LINE__);
114 $content = SQL_FETCHARRAY($result);
115 SQL_FREERESULT($result);
118 $content['access_mode'] = '{--ADMINS_' . strtoupper($content['access_mode']) . '_MODE--}';
121 $content['sw'] = $SW;
123 // Load row template and switch colors
124 $OUT .= loadTemplate('admin_config_admins_del_row', true, $content);
128 // Load main template
129 loadTemplate('admin_config_admins_del', false, $OUT);
130 } elseif ((isFormSent('remove')) && (countPostSelection() > 0)) {
132 // @TODO Rewrite this to filter 'run_sqls'
133 foreach (postRequestParameter('sel') as $id => $selected) {
134 SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE `id`=%s LIMIT 1",
135 array(bigintval($id)),__FILE__, __LINE__);
138 // Update cache when installed
139 if (isExtensionActive('cache')) {
140 if ($GLOBALS['cache_instance']->loadCacheFile('admin_acls')) $GLOBALS['cache_instance']->removeCacheFile();
144 loadTemplate('admin_settings_saved', false, '{--ADMIN_ADMINS_ENTRIES_DELETED--}');
145 } elseif (isFormSent('add')) {
146 // Check if everything is fine...
147 $mode = getAdminDefaultAcl(bigintval(postRequestParameter('admin_id')));
149 // Default ACL is false
151 if (isPostRequestParameterSet('what_menu')) {
153 $ACL = adminsCheckAdminAcl(getActionFromModuleWhat('admin', postRequestParameter('what_menu')), '');
156 if (($mode != postRequestParameter('mode')) || ($ACL)) {
158 $BOTH = ((isPostRequestParameterSet('action_menu')) && (isPostRequestParameterSet('what_menu')));
159 if (((isPostRequestParameterSet('action_menu')) || (isPostRequestParameterSet('what_menu'))) && ($BOTH === false)) {
160 // Main or sub menu selected
161 $result = SQL_QUERY_ESC("SELECT `id` FROM `{?_MYSQL_PREFIX?}_admins_acls` WHERE admin_id=%s AND action_menu='%s' AND what_menu='%s' LIMIT 1",
162 array(bigintval(postRequestParameter('admin_id')), postRequestParameter('action_menu'), postRequestParameter('what_menu')), __FILE__, __LINE__);
163 if (SQL_HASZERONUMS($result)) {
164 // Finally add the new ACL
165 SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_admins_acls` (admin_id, action_menu, what_menu, access_mode)
166 VALUES ('%s','%s','%s','%s')",
168 bigintval(postRequestParameter('admin_id')),
169 postRequestParameter('action_menu'),
170 postRequestParameter('what_menu'),
171 postRequestParameter('mode')
172 ), __FILE__, __LINE__);
173 $content = '{--ADMIN_ADMINS_ACL_SAVED--}';
175 // Update cache when installed
176 if (isExtensionActive('cache')) {
177 if ($GLOBALS['cache_instance']->loadCacheFile('admin_acls')) $GLOBALS['cache_instance']->removeCacheFile();
180 // ACL does already exist!
181 $content = '{--ADMIN_ADMINS_ACL_ALREADY_ADDED--}';
185 SQL_FREERESULT($result);
187 // No menu selected makes also no sence...
188 $content = '{--ADMIN_ADMINS_SELECT_ACTION_WHAT--}';
191 // Same mode makes no sence...
192 $content = '{--ADMIN_ADMINS_SAME_MODE_SELECTED--}';
196 loadTemplate('admin_settings_saved', false, $content);
199 $result_acls = SQL_QUERY('SELECT `id`, `admin_id`, `action_menu`, `what_menu`, `access_mode` FROM `{?_MYSQL_PREFIX?}_admins_acls` ORDER BY `admin_id` ASC, `id` ASC', __FILE__, __LINE__);
202 if (SQL_NUMROWS($result_acls) > 0) {
205 while ($content = SQL_FETCHARRAY($result_acls)) {
206 // Generate mode string
207 $content['access_mode'] = '{--ADMINS_' . strtoupper($content['access_mode']) . '_MODE--}';
210 $content['sw'] = $SW;
212 // Load row template and switch colors
213 $OUT .= loadTemplate('admin_config_admins_row', true, $content);
218 SQL_FREERESULT($result);
220 // Load main template
221 loadTemplate('admin_config_admins', false, $OUT);
224 // Prepare some constants for the template
225 $content['admins_selection'] = generateOptionList('admins', 'id', 'login', '', 'default_acl');
226 $content['action_selection'] = adminMenuSelectionBox_DEPRECATED('action');
227 $content['what_selection'] = adminMenuSelectionBox_DEPRECATED('what');
228 $content['mode_options'] = generateOptionList(
230 array('allow', 'deny'),
232 getMessage('ADMINS_ALLOW_MODE'),
233 getMessage('ADMINS_DENY_MODE')
237 // Load template for adding new ACL
238 loadTemplate('admin_admins_add_acl', false, $content);