2014-01-07 20:24:48 +01:00
|
|
|
<?php
|
2014-01-07 23:32:57 +01:00
|
|
|
/**
|
|
|
|
* PHP Server Monitor
|
|
|
|
* Monitor your servers and websites.
|
2014-01-07 20:24:48 +01:00
|
|
|
*
|
|
|
|
* This file is part of PHP Server Monitor.
|
|
|
|
* PHP Server Monitor is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* PHP Server Monitor is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
* along with PHP Server Monitor. If not, see <http://www.gnu.org/licenses/>.
|
2014-01-07 23:32:57 +01:00
|
|
|
*
|
|
|
|
* @package phpservermon
|
|
|
|
* @author Pepijn Over <pep@neanderthal-technology.com>
|
|
|
|
* @copyright Copyright (c) 2008-2014 Pepijn Over <pep@neanderthal-technology.com>
|
|
|
|
* @license http://www.gnu.org/licenses/gpl.txt GNU GPL v3
|
|
|
|
* @version Release: @package_version@
|
2014-02-10 23:48:43 +01:00
|
|
|
* @link http://www.phpservermonitor.org/
|
2014-01-07 23:32:57 +01:00
|
|
|
**/
|
2014-01-07 20:24:48 +01:00
|
|
|
|
2014-03-15 00:35:35 +01:00
|
|
|
namespace psm\Module\User\Controller;
|
|
|
|
use psm\Module\AbstractController;
|
2014-01-29 00:57:36 +01:00
|
|
|
use psm\Service\Database;
|
|
|
|
use psm\Service\Template;
|
2014-01-10 18:31:57 +01:00
|
|
|
|
2014-01-07 20:27:21 +01:00
|
|
|
/**
|
|
|
|
* User module. Add, edit and delete users, or assign
|
|
|
|
* servers to users.
|
|
|
|
*/
|
2014-03-15 00:35:35 +01:00
|
|
|
class UserController extends AbstractController {
|
2014-01-07 20:24:48 +01:00
|
|
|
public $servers;
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
/**
|
|
|
|
* User data validator
|
|
|
|
* @var \psm\Util\User\UserValidator $user_validator
|
|
|
|
*/
|
|
|
|
protected $user_validator;
|
|
|
|
|
2014-01-29 00:57:36 +01:00
|
|
|
function __construct(Database $db, Template $tpl) {
|
|
|
|
parent::__construct($db, $tpl);
|
2014-01-07 20:24:48 +01:00
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
$this->setMinUserLevelRequired(PSM_USER_ADMIN);
|
|
|
|
|
2014-01-29 00:57:36 +01:00
|
|
|
$this->setActions(array(
|
|
|
|
'index', 'edit', 'delete', 'save',
|
|
|
|
), 'index');
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
public function initialize() {
|
|
|
|
$this->user_validator = new \psm\Util\User\UserValidator($this->user);
|
2014-03-16 02:04:49 +01:00
|
|
|
$servers = $this->db->select(PSM_DB_PREFIX.'servers', null, array('server_id', 'label'));
|
|
|
|
// change the indexes to reflect their server ids
|
|
|
|
foreach($servers as $server) {
|
|
|
|
$this->servers[$server['server_id']] = $server;
|
|
|
|
}
|
2014-01-07 20:24:48 +01:00
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
return parent::initialize();
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
|
|
|
|
2014-01-07 20:27:21 +01:00
|
|
|
/**
|
|
|
|
* Prepare the template to show a list of all users
|
|
|
|
*/
|
2014-01-29 00:57:36 +01:00
|
|
|
protected function executeIndex() {
|
2014-01-07 20:27:21 +01:00
|
|
|
$this->setTemplateId('users_list', 'users.tpl.html');
|
2014-01-07 20:24:48 +01:00
|
|
|
|
|
|
|
// build label array for the next loop
|
|
|
|
$servers_labels = array();
|
|
|
|
foreach ($this->servers as $server) {
|
|
|
|
$servers_labels[$server['server_id']] = $server['label'];
|
|
|
|
}
|
|
|
|
|
|
|
|
$users = $this->db->select(
|
2014-01-10 18:31:57 +01:00
|
|
|
PSM_DB_PREFIX.'users',
|
2014-01-07 20:24:48 +01:00
|
|
|
null,
|
2014-03-16 02:04:49 +01:00
|
|
|
array('user_id', 'user_name', 'level', 'name', 'mobile', 'email'),
|
2014-01-07 20:24:48 +01:00
|
|
|
null,
|
|
|
|
array('name')
|
|
|
|
);
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
foreach($users as $x => &$user) {
|
2014-03-16 02:04:49 +01:00
|
|
|
$user_servers = $this->getUserServers($user['user_id']);
|
2014-03-14 15:24:03 +01:00
|
|
|
$user['class'] = ($x & 1) ? 'odd' : 'even';
|
2014-01-07 20:24:48 +01:00
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
$user['emp_servers'] = '';
|
2014-01-07 20:24:48 +01:00
|
|
|
|
|
|
|
// fix server list
|
2014-03-16 02:04:49 +01:00
|
|
|
foreach($user_servers as $server_id) {
|
|
|
|
if (!isset($servers_labels[$server_id])) continue;
|
|
|
|
$user['emp_servers'] .= $servers_labels[$server_id] . '<br/>';
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
2014-03-14 15:24:03 +01:00
|
|
|
$user['emp_servers'] = substr($user['emp_servers'], 0, -5);
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
2014-01-07 20:27:21 +01:00
|
|
|
$this->tpl->addTemplateDataRepeat($this->getTemplateId(), 'users', $users);
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
/**
|
|
|
|
* Prepare the template to show the update screen for a user
|
|
|
|
*/
|
|
|
|
protected function executeEdit() {
|
|
|
|
$this->setTemplateId('users_update', 'users.tpl.html');
|
|
|
|
|
|
|
|
$user_id = isset($_GET['id']) ? intval($_GET['id']) : 0;
|
|
|
|
$fields_prefill = array('name', 'user_name', 'mobile', 'email');
|
|
|
|
|
|
|
|
if($user_id == 0) {
|
|
|
|
// insert mode
|
|
|
|
$title = psm_get_lang('system', 'insert');
|
|
|
|
$placeholder_password = '';
|
|
|
|
$lvl_selected = PSM_USER_USER; // default level is regular user
|
|
|
|
|
|
|
|
// attempt to prefill previously posted fields
|
|
|
|
$edit_user = new \stdClass();
|
|
|
|
foreach($fields_prefill as $field) {
|
|
|
|
$edit_user->$field = (isset($_POST[$field])) ? $_POST[$field] : '';
|
|
|
|
}
|
|
|
|
|
|
|
|
// add inactive class to all servers
|
|
|
|
foreach($this->servers as &$server) {
|
|
|
|
$server['class'] = 'inactive';
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
// edit mode
|
|
|
|
try {
|
|
|
|
$this->user_validator->userId($user_id);
|
|
|
|
} catch(\InvalidArgumentException $e) {
|
|
|
|
$this->addMessage(psm_get_lang('users', 'error_' . $e->getMessage()), 'error');
|
|
|
|
return $this->executeIndex();
|
|
|
|
}
|
|
|
|
$edit_user = $this->user->getUser($user_id);
|
|
|
|
$title = psm_get_lang('system', 'edit') . ' ' . $edit_user->name;
|
|
|
|
$placeholder_password = psm_get_lang('users', 'password_leave_blank');
|
|
|
|
$lvl_selected = $edit_user->level;
|
|
|
|
|
|
|
|
// select servers for this user
|
2014-03-16 02:04:49 +01:00
|
|
|
$user_servers = $this->getUserServers($user_id);
|
2014-03-14 15:24:03 +01:00
|
|
|
|
|
|
|
foreach($this->servers as &$server) {
|
|
|
|
if(in_array($server['server_id'], $user_servers)) {
|
|
|
|
$server['edit_checked'] = 'checked="checked"';
|
|
|
|
$server['class'] = 'active';
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
$tpl_data = array(
|
|
|
|
'titlemode' => $title,
|
|
|
|
'placeholder_password' => $placeholder_password,
|
|
|
|
'edit_user_id' => $user_id,
|
|
|
|
);
|
|
|
|
foreach($fields_prefill as $field) {
|
|
|
|
if(isset($edit_user->$field)) {
|
|
|
|
$tpl_data['edit_value_' . $field] = $edit_user->$field;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
$ulvls_tpl = array();
|
|
|
|
foreach($this->user_validator->getUserLevels() as $lvl) {
|
|
|
|
$ulvls_tpl[] = array(
|
|
|
|
'value' => $lvl,
|
|
|
|
'label' => psm_get_lang('users', 'level_' . $lvl),
|
|
|
|
'selected' => ($lvl == $lvl_selected) ? 'selected="selected"' : '',
|
|
|
|
);
|
|
|
|
}
|
|
|
|
$this->tpl->addTemplateDataRepeat($this->getTemplateId(), 'levels', $ulvls_tpl);
|
|
|
|
$this->tpl->addTemplateDataRepeat($this->getTemplateId(), 'servers', $this->servers);
|
|
|
|
$this->tpl->addTemplateData($this->getTemplateId(), $tpl_data);
|
|
|
|
}
|
|
|
|
|
2014-01-07 20:27:21 +01:00
|
|
|
/**
|
|
|
|
* Executes the saving of a user
|
|
|
|
*/
|
|
|
|
protected function executeSave() {
|
2014-03-14 15:24:03 +01:00
|
|
|
if(empty($_POST)) {
|
|
|
|
// dont process anything if no data has been posted
|
|
|
|
return $this->executeIndex();
|
|
|
|
}
|
|
|
|
$user_id = (isset($_GET['id'])) ? intval($_GET['id']) : 0;
|
|
|
|
|
2014-03-16 02:04:49 +01:00
|
|
|
$fields = array('name', 'user_name', 'password', 'password_repeat', 'level', 'mobile', 'email');
|
2014-03-14 15:24:03 +01:00
|
|
|
$clean = array();
|
|
|
|
foreach($fields as $field) {
|
|
|
|
if(isset($_POST[$field])) {
|
|
|
|
$clean[$field] = trim(strip_tags($_POST[$field]));
|
2014-01-07 20:24:48 +01:00
|
|
|
} else {
|
2014-03-14 15:24:03 +01:00
|
|
|
$clean[$field] = '';
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
|
|
|
}
|
2014-03-14 15:24:03 +01:00
|
|
|
|
|
|
|
// validate the lot
|
|
|
|
try {
|
|
|
|
$this->user_validator->username($clean['user_name'], $user_id);
|
|
|
|
$this->user_validator->email($clean['email']);
|
|
|
|
$this->user_validator->level($clean['level']);
|
|
|
|
|
|
|
|
// always validate password for new users,
|
|
|
|
// but only validate it for existing users when they change it.
|
|
|
|
if($user_id == 0 || ($user_id > 0 && $clean['password'] != '')) {
|
|
|
|
$this->user_validator->password($clean['password'], $clean['password_repeat']);
|
|
|
|
}
|
|
|
|
if($user_id > 0) {
|
|
|
|
$this->user_validator->userId($user_id);
|
|
|
|
}
|
|
|
|
} catch(\InvalidArgumentException $e) {
|
|
|
|
$this->addMessage(psm_get_lang('users', 'error_' . $e->getMessage()), 'error');
|
|
|
|
return $this->executeEdit();
|
|
|
|
}
|
|
|
|
if(!empty($clean['password'])) {
|
|
|
|
$password = $clean['password'];
|
|
|
|
}
|
2014-03-15 13:02:47 +01:00
|
|
|
unset($clean['password']);
|
2014-03-14 15:24:03 +01:00
|
|
|
unset($clean['password_repeat']);
|
|
|
|
|
|
|
|
if($user_id > 0) {
|
|
|
|
// edit user
|
|
|
|
$this->db->save(PSM_DB_PREFIX.'users', $clean, array('user_id' => $user_id));
|
|
|
|
$this->addMessage(psm_get_lang('users', 'updated'), 'success');
|
|
|
|
} else {
|
|
|
|
// add user
|
|
|
|
$user_id = $this->db->save(PSM_DB_PREFIX.'users', $clean);
|
|
|
|
$this->addMessage(psm_get_lang('users', 'inserted'), 'success');
|
|
|
|
}
|
|
|
|
if(isset($password)) {
|
|
|
|
$this->user->changePassword($user_id, $password);
|
|
|
|
}
|
2014-03-16 02:04:49 +01:00
|
|
|
|
|
|
|
// update servers
|
|
|
|
$server_idc = psm_POST('server_id', array());
|
|
|
|
$server_idc_save = array();
|
|
|
|
|
|
|
|
foreach($server_idc as $server_id) {
|
|
|
|
$server_idc_save[] = array(
|
|
|
|
'user_id' => $user_id,
|
|
|
|
'server_id' => intval($server_id),
|
|
|
|
);
|
|
|
|
}
|
|
|
|
// delete all existing records
|
|
|
|
$this->db->delete(PSM_DB_PREFIX.'users_servers', array('user_id' => $user_id));
|
|
|
|
if(!empty($server_idc_save)) {
|
|
|
|
// add all new servers
|
|
|
|
$this->db->insertMultiple(PSM_DB_PREFIX.'users_servers', $server_idc_save);
|
|
|
|
}
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
return $this->executeIndex();
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
|
|
|
|
2014-01-07 20:27:21 +01:00
|
|
|
/**
|
|
|
|
* Executes the deletion of a user
|
|
|
|
*/
|
|
|
|
protected function executeDelete() {
|
2014-01-29 00:57:36 +01:00
|
|
|
$id = (isset($_GET['id'])) ? intval($_GET['id']) : 0;
|
|
|
|
|
2014-03-14 15:24:03 +01:00
|
|
|
try {
|
|
|
|
$this->user_validator->userId($id);
|
|
|
|
|
2014-03-16 02:04:49 +01:00
|
|
|
$this->db->delete(PSM_DB_PREFIX . 'users', array('user_id' => $id,));
|
|
|
|
$this->db->delete(PSM_DB_PREFIX.'users_servers', array('user_id' => $id));
|
2014-03-14 15:24:03 +01:00
|
|
|
$this->addMessage(psm_get_lang('system', 'deleted'), 'success');
|
|
|
|
} catch(\InvalidArgumentException $e) {
|
|
|
|
$this->addMessage(psm_get_lang('users', 'error_' . $e->getMessage()), 'error');
|
2014-01-29 00:57:36 +01:00
|
|
|
}
|
2014-03-14 15:24:03 +01:00
|
|
|
|
|
|
|
return $this->executeIndex();
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|
2014-01-07 20:27:21 +01:00
|
|
|
|
|
|
|
// override parent::createHTMLLabels()
|
|
|
|
protected function createHTMLLabels() {
|
|
|
|
$this->tpl->addTemplateData(
|
|
|
|
$this->getTemplateId(),
|
|
|
|
array(
|
2014-03-15 22:41:40 +01:00
|
|
|
'subtitle' => psm_get_lang('menu', 'user'),
|
2014-03-15 00:35:35 +01:00
|
|
|
'label_users' => psm_get_lang('menu', 'users'),
|
2014-01-10 18:31:57 +01:00
|
|
|
'label_name' => psm_get_lang('users', 'name'),
|
2014-03-14 15:24:03 +01:00
|
|
|
'label_user_name' => psm_get_lang('users', 'user_name'),
|
|
|
|
'label_password' => psm_get_lang('users', 'password'),
|
|
|
|
'label_password_repeat' => psm_get_lang('users', 'password_repeat'),
|
|
|
|
'label_level' => psm_get_lang('users', 'level'),
|
|
|
|
'label_level_10' => psm_get_lang('users', 'level_10'),
|
|
|
|
'label_level_20' => psm_get_lang('users', 'level_20'),
|
|
|
|
'label_level_30' => psm_get_lang('users', 'level_30'),
|
2014-01-10 18:31:57 +01:00
|
|
|
'label_mobile' => psm_get_lang('users', 'mobile'),
|
|
|
|
'label_email' => psm_get_lang('users', 'email'),
|
2014-03-15 00:35:35 +01:00
|
|
|
'label_servers' => psm_get_lang('menu', 'server'),
|
2014-01-10 18:31:57 +01:00
|
|
|
'label_action' => psm_get_lang('system', 'action'),
|
|
|
|
'label_save' => psm_get_lang('system', 'save'),
|
2014-03-14 15:24:03 +01:00
|
|
|
'label_go_back' => psm_get_lang('system', 'go_back'),
|
2014-01-10 18:31:57 +01:00
|
|
|
'label_edit' => psm_get_lang('system', 'edit') . ' ' . psm_get_lang('users', 'user'),
|
|
|
|
'label_delete' => psm_get_lang('system', 'delete') . ' ' . psm_get_lang('users', 'user'),
|
|
|
|
'label_add_new' => psm_get_lang('system', 'add_new'),
|
2014-01-07 20:27:21 +01:00
|
|
|
)
|
|
|
|
);
|
|
|
|
|
|
|
|
return parent::createHTMLLabels();
|
|
|
|
}
|
2014-03-16 02:04:49 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Get all server ids for a user
|
|
|
|
* @param int $user_id
|
|
|
|
* @return array with ids only
|
|
|
|
* @todo we should probably find a central place for this kind of stuff
|
|
|
|
*/
|
|
|
|
protected function getUserServers($user_id) {
|
|
|
|
$servers = $this->db->select(
|
|
|
|
PSM_DB_PREFIX.'users_servers',
|
|
|
|
array('user_id' => $user_id),
|
|
|
|
array('server_id')
|
|
|
|
);
|
|
|
|
$result = array();
|
|
|
|
foreach($servers as $server) {
|
|
|
|
$result[] = $server['server_id'];
|
|
|
|
}
|
|
|
|
return $result;
|
|
|
|
}
|
2014-01-07 20:24:48 +01:00
|
|
|
}
|