2019-12-04 07:15:47 +01:00
< ? php
/*
FusionPBX
Version : MPL 1.1
The contents of this file are subject to the Mozilla Public License Version
1.1 ( the " License " ); you may not use this file except in compliance with
the License . You may obtain a copy of the License at
http :// www . mozilla . org / MPL /
Software distributed under the License is distributed on an " AS IS " basis ,
WITHOUT WARRANTY OF ANY KIND , either express or implied . See the License
for the specific language governing rights and limitations under the
License .
The Original Code is FusionPBX
The Initial Developer of the Original Code is
Mark J Crane < markjcrane @ fusionpbx . com >
2020-02-18 02:38:15 +01:00
Portions created by the Initial Developer are Copyright ( C ) 2019 - 2020
2019-12-04 07:15:47 +01:00
the Initial Developer . All Rights Reserved .
Contributor ( s ) :
Mark J Crane < markjcrane @ fusionpbx . com >
*/
/**
* users class
*/
class users {
/**
* declare the variables
*/
private $app_name ;
private $app_uuid ;
private $name ;
private $table ;
private $toggle_field ;
private $toggle_values ;
private $location ;
/**
* called when the object is created
*/
public function __construct () {
//assign the variables
$this -> app_name = 'users' ;
$this -> app_uuid = '112124b3-95c2-5352-7e9d-d14c0b88f207' ;
$this -> name = 'user' ;
$this -> table = 'users' ;
$this -> toggle_field = 'user_enabled' ;
$this -> toggle_values = [ 'true' , 'false' ];
$this -> location = 'users.php' ;
}
/**
* delete rows from the database
*/
public function delete ( $records ) {
if ( permission_exists ( $this -> name . '_delete' )) {
//add multi-lingual support
$language = new text ;
$text = $language -> get ();
//validate the token
$token = new token ;
if ( ! $token -> validate ( $_SERVER [ 'PHP_SELF' ])) {
message :: add ( $text [ 'message-invalid_token' ], 'negative' );
header ( 'Location: ' . $this -> location );
exit ;
}
//delete multiple records
if ( is_array ( $records ) && @ sizeof ( $records ) != 0 ) {
//build the delete array
$x = 0 ;
foreach ( $records as $record ) {
//add to the array
2023-05-17 06:51:41 +02:00
if ( ! empty ( $record [ 'checked' ]) && $record [ 'checked' ] == 'true' && is_uuid ( $record [ 'uuid' ])) {
2019-12-05 08:03:20 +01:00
//get the user_uuid
$user_uuid = $record [ 'uuid' ];
//get the user's domain from v_users
if ( permission_exists ( 'user_domain' )) {
$sql = " select domain_uuid from v_users " ;
$sql .= " where user_uuid = :user_uuid " ;
$parameters [ 'user_uuid' ] = $user_uuid ;
$database = new database ;
$domain_uuid = $database -> select ( $sql , $parameters , 'column' );
unset ( $sql , $parameters );
}
else {
$domain_uuid = $_SESSION [ 'domain_uuid' ];
}
//required to be a superadmin to delete a member of the superadmin group
$superadmin_list = superadmin_list ();
if ( if_superadmin ( $superadmin_list , $user_uuid )) {
if ( ! if_group ( " superadmin " )) {
//access denied - do not delete the user
header ( " Location: index.php " );
return ;
}
}
//delete the user settings
$array [ 'user_settings' ][ $x ][ 'user_uuid' ] = $user_uuid ;
$array [ 'user_settings' ][ $x ][ 'domain_uuid' ] = $domain_uuid ;
//delete the groups the user is assigned to
$array [ 'user_groups' ][ $x ][ 'user_uuid' ] = $user_uuid ;
$array [ 'user_groups' ][ $x ][ 'domain_uuid' ] = $domain_uuid ;
//delete the user
$array [ 'users' ][ $x ][ 'user_uuid' ] = $user_uuid ;
$array [ 'users' ][ $x ][ 'domain_uuid' ] = $domain_uuid ;
2019-12-04 07:15:47 +01:00
2020-02-18 02:38:15 +01:00
//increment the id
$x ++ ;
}
2019-12-04 07:15:47 +01:00
}
//delete the checked rows
if ( is_array ( $array ) && @ sizeof ( $array ) != 0 ) {
2019-12-05 08:03:20 +01:00
//execute
2024-11-29 21:57:01 +01:00
$p = permissions :: new ();
2019-12-05 08:03:20 +01:00
$p -> add ( 'user_setting_delete' , 'temp' );
$p -> add ( 'user_group_delete' , 'temp' );
2019-12-04 07:15:47 +01:00
//execute delete
$database = new database ;
$database -> app_name = $this -> app_name ;
$database -> app_uuid = $this -> app_uuid ;
$database -> delete ( $array );
unset ( $array );
2019-12-05 08:03:20 +01:00
$p -> delete ( 'user_setting_delete' , 'temp' );
$p -> delete ( 'user_group_delete' , 'temp' );
2019-12-04 07:15:47 +01:00
//set message
message :: add ( $text [ 'message-delete' ]);
}
unset ( $records );
}
}
}
/**
* toggle a field between two values
*/
public function toggle ( $records ) {
if ( permission_exists ( $this -> name . '_edit' )) {
//add multi-lingual support
$language = new text ;
$text = $language -> get ();
//validate the token
$token = new token ;
if ( ! $token -> validate ( $_SERVER [ 'PHP_SELF' ])) {
message :: add ( $text [ 'message-invalid_token' ], 'negative' );
header ( 'Location: ' . $this -> location );
exit ;
}
//toggle the checked records
if ( is_array ( $records ) && @ sizeof ( $records ) != 0 ) {
//get current toggle state
foreach ( $records as $record ) {
2023-05-17 06:51:41 +02:00
if ( ! empty ( $record [ 'checked' ]) && $record [ 'checked' ] == 'true' && is_uuid ( $record [ 'uuid' ])) {
2019-12-04 07:15:47 +01:00
$uuids [] = " ' " . $record [ 'uuid' ] . " ' " ;
}
}
if ( is_array ( $uuids ) && @ sizeof ( $uuids ) != 0 ) {
$sql = " select " . $this -> name . " _uuid as uuid, " . $this -> toggle_field . " as toggle from v_ " . $this -> table . " " ;
2019-12-05 08:03:20 +01:00
$sql .= " where " . $this -> name . " _uuid in ( " . implode ( ', ' , $uuids ) . " ) " ;
2019-12-04 07:15:47 +01:00
$database = new database ;
2023-05-17 06:51:41 +02:00
$rows = $database -> select ( $sql , $parameters ? ? null , 'all' );
2019-12-04 07:15:47 +01:00
if ( is_array ( $rows ) && @ sizeof ( $rows ) != 0 ) {
foreach ( $rows as $row ) {
$states [ $row [ 'uuid' ]] = $row [ 'toggle' ];
}
}
unset ( $sql , $parameters , $rows , $row );
}
//build update array
$x = 0 ;
foreach ( $states as $uuid => $state ) {
//create the array
$array [ $this -> table ][ $x ][ $this -> name . '_uuid' ] = $uuid ;
$array [ $this -> table ][ $x ][ $this -> toggle_field ] = $state == $this -> toggle_values [ 0 ] ? $this -> toggle_values [ 1 ] : $this -> toggle_values [ 0 ];
//increment the id
$x ++ ;
}
//save the changes
if ( is_array ( $array ) && @ sizeof ( $array ) != 0 ) {
//save the array
$database = new database ;
$database -> app_name = $this -> app_name ;
$database -> app_uuid = $this -> app_uuid ;
$database -> save ( $array );
unset ( $array );
//set message
message :: add ( $text [ 'message-toggle' ]);
}
unset ( $records , $states );
}
}
}
/**
* copy rows from the database
*/
public function copy ( $records ) {
if ( permission_exists ( $this -> name . '_add' )) {
//add multi-lingual support
$language = new text ;
$text = $language -> get ();
//validate the token
$token = new token ;
if ( ! $token -> validate ( $_SERVER [ 'PHP_SELF' ])) {
message :: add ( $text [ 'message-invalid_token' ], 'negative' );
header ( 'Location: ' . $this -> location );
exit ;
}
//copy the checked records
2023-07-14 01:22:52 +02:00
if ( ! empty ( $records ) && is_array ( $records ) && @ sizeof ( $records ) != 0 ) {
2019-12-04 07:15:47 +01:00
//get checked records
foreach ( $records as $record ) {
2023-05-17 06:51:41 +02:00
if ( ! empty ( $record [ 'checked' ]) && $record [ 'checked' ] == 'true' && is_uuid ( $record [ 'uuid' ])) {
2019-12-04 07:15:47 +01:00
$uuids [] = " ' " . $record [ 'uuid' ] . " ' " ;
}
}
//create the array from existing data
2023-07-14 01:22:52 +02:00
if ( ! empty ( $uuids ) && is_array ( $uuids ) && @ sizeof ( $uuids ) != 0 ) {
2019-12-04 07:15:47 +01:00
$sql = " select * from v_ " . $this -> table . " " ;
2019-12-05 08:03:20 +01:00
$sql .= " where " . $this -> name . " _uuid in ( " . implode ( ', ' , $uuids ) . " ) " ;
2019-12-04 07:15:47 +01:00
$database = new database ;
2023-05-17 06:51:41 +02:00
$rows = $database -> select ( $sql , $parameters ? ? null , 'all' );
2019-12-04 07:15:47 +01:00
if ( is_array ( $rows ) && @ sizeof ( $rows ) != 0 ) {
$x = 0 ;
foreach ( $rows as $row ) {
//copy data
$array [ $this -> table ][ $x ] = $row ;
//add copy to the description
$array [ $this -> table ][ $x ][ $this -> name . '_uuid' ] = uuid ();
2019-12-05 08:03:20 +01:00
$array [ $this -> table ][ $x ][ 'username' ] = $row [ 'username' ] . '-' . $text [ 'label-copy' ];
2019-12-04 07:15:47 +01:00
//increment the id
$x ++ ;
}
}
unset ( $sql , $parameters , $rows , $row );
}
//save the changes and set the message
2023-07-14 01:22:52 +02:00
if ( ! empty ( $array ) && is_array ( $array ) && @ sizeof ( $array ) != 0 ) {
2019-12-04 07:15:47 +01:00
//save the array
$database = new database ;
$database -> app_name = $this -> app_name ;
$database -> app_uuid = $this -> app_uuid ;
$database -> save ( $array );
unset ( $array );
//set message
message :: add ( $text [ 'message-copy' ]);
}
unset ( $records );
}
}
}
2024-07-09 20:50:34 +02:00
/**
* Remove old user log entries . Called the maintenance service application .
* @ param settings $settings
* @ return void
*/
public static function database_maintenance ( settings $settings ) : void {
$database = $settings -> database ();
$domains = maintenance_service :: get_domains ( $database );
foreach ( $domains as $domain_uuid => $domain_name ) {
$domain_settings = new settings ([ 'database' => $database , 'domain_uuid' => $domain_uuid ]);
$retention_days = $domain_settings -> get ( 'users' , 'database_retention_days' , '' );
if ( ! empty ( $retention_days ) && is_numeric ( $retention_days )) {
$sql = " delete from v_user_logs where timestamp < NOW() - INTERVAL ' $retention_days days' " ;
$sql .= " and domain_uuid = ' $domain_uuid ' " ;
$database -> execute ( $sql );
$code = $database -> message [ 'code' ] ? ? 0 ;
if ( $code == 200 ) {
2024-07-24 03:58:13 +02:00
maintenance_service :: log_write ( self :: class , " Successfully removed entries older than $retention_days " , $domain_uuid );
2024-07-09 20:50:34 +02:00
} else {
$message = $database -> message [ 'message' ] ? ? " An unknown error has occurred " ;
maintenance_service :: log_write ( self :: class , " Unable to remove old database records. Error message: $message ( $code ) " , $domain_uuid , maintenance_service :: LOG_ERROR );
}
} else {
maintenance_service :: log_write ( self :: class , " Database retention days not set or not numeric " , $domain_uuid );
}
}
}
2019-12-04 07:15:47 +01:00
}
