2019-12-08 08:52:32 +01:00
|
|
|
<?php
|
|
|
|
|
/*
|
|
|
|
|
FusionPBX
|
|
|
|
|
Version: MPL 1.1
|
|
|
|
|
|
|
|
|
|
The contents of this file are subject to the Mozilla Public License Version
|
|
|
|
|
1.1 (the "License"); you may not use this file except in compliance with
|
|
|
|
|
the License. You may obtain a copy of the License at
|
|
|
|
|
http://www.mozilla.org/MPL/
|
|
|
|
|
|
|
|
|
|
Software distributed under the License is distributed on an "AS IS" basis,
|
|
|
|
|
WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
|
|
|
|
|
for the specific language governing rights and limitations under the
|
|
|
|
|
License.
|
|
|
|
|
|
|
|
|
|
The Original Code is FusionPBX
|
|
|
|
|
|
|
|
|
|
The Initial Developer of the Original Code is
|
|
|
|
|
Mark J Crane <markjcrane@fusionpbx.com>
|
2023-06-07 00:12:42 +02:00
|
|
|
Portions created by the Initial Developer are Copyright (C) 2018-2023
|
2019-12-08 08:52:32 +01:00
|
|
|
the Initial Developer. All Rights Reserved.
|
|
|
|
|
|
|
|
|
|
Contributor(s):
|
|
|
|
|
Mark J Crane <markjcrane@fusionpbx.com>
|
|
|
|
|
*/
|
|
|
|
|
|
2022-10-11 00:35:14 +02:00
|
|
|
//includes files
|
2023-06-15 19:28:23 +02:00
|
|
|
require_once dirname(__DIR__, 2) . "/resources/require.php";
|
2020-01-06 20:23:32 +01:00
|
|
|
require_once "resources/check_auth.php";
|
2019-12-08 08:52:32 +01:00
|
|
|
|
|
|
|
|
//check permissions
|
|
|
|
|
if (permission_exists('group_add') || permission_exists('group_edit')) {
|
|
|
|
|
//access granted
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
echo "access denied";
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
2024-08-06 21:19:45 +02:00
|
|
|
//connect to database
|
|
|
|
|
$database = database::new();
|
|
|
|
|
|
2019-12-08 08:52:32 +01:00
|
|
|
//add multi-lingual support
|
|
|
|
|
$language = new text;
|
|
|
|
|
$text = $language->get();
|
|
|
|
|
|
|
|
|
|
//action add or update
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($_REQUEST["id"]) && is_uuid($_REQUEST["id"])) {
|
2019-12-08 08:52:32 +01:00
|
|
|
$action = "update";
|
|
|
|
|
$group_uuid = $_REQUEST["id"];
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
$action = "add";
|
2023-05-16 06:38:46 +02:00
|
|
|
$group_uuid = '';
|
2019-12-08 08:52:32 +01:00
|
|
|
}
|
|
|
|
|
|
2023-05-16 06:38:46 +02:00
|
|
|
//set default values
|
|
|
|
|
$group_name = '';
|
|
|
|
|
$group_level = '10';
|
|
|
|
|
$group_description = '';
|
|
|
|
|
|
2019-12-08 08:52:32 +01:00
|
|
|
//get http post variables and set them to php variables
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($_POST)) {
|
|
|
|
|
$group_uuid = $_POST["group_uuid"] ?? '';
|
|
|
|
|
$group_name = $_POST["group_name"] ?? '';
|
2020-09-30 00:33:44 +02:00
|
|
|
$group_name_previous = $_POST["group_name_previous"];
|
2019-12-08 08:52:32 +01:00
|
|
|
$domain_uuid = $_POST["domain_uuid"];
|
2023-05-16 06:38:46 +02:00
|
|
|
$group_level = $_POST["group_level"] ?? '10';
|
|
|
|
|
$group_protected = $_POST["group_protected"] ?? '';
|
|
|
|
|
$group_description = $_POST["group_description"] ?? '';
|
2019-12-08 08:52:32 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//process the user data and save it to the database
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($_POST) && empty($_POST["persistformvar"])) {
|
2019-12-08 08:52:32 +01:00
|
|
|
|
2020-02-10 18:32:31 +01:00
|
|
|
//process the http post data by submitted action
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($_POST['action']) && is_uuid($group_uuid)) {
|
2020-02-10 18:32:31 +01:00
|
|
|
$array[0]['checked'] = 'true';
|
|
|
|
|
$array[0]['uuid'] = $group_uuid;
|
|
|
|
|
|
|
|
|
|
switch ($_POST['action']) {
|
|
|
|
|
case 'copy':
|
|
|
|
|
if (permission_exists('group_add')) {
|
|
|
|
|
$obj = new groups;
|
|
|
|
|
$obj->copy($array);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case 'delete':
|
|
|
|
|
if (permission_exists('group_delete')) {
|
|
|
|
|
$obj = new groups;
|
|
|
|
|
$obj->delete($array);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
header('Location: groups.php');
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-08 08:52:32 +01:00
|
|
|
//validate the token
|
|
|
|
|
$token = new token;
|
|
|
|
|
if (!$token->validate($_SERVER['PHP_SELF'])) {
|
|
|
|
|
message::add($text['message-invalid_token'],'negative');
|
|
|
|
|
header('Location: groups.php');
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//check for all required data
|
|
|
|
|
$msg = '';
|
2023-05-05 18:46:37 +02:00
|
|
|
if (empty($group_name)) { $msg .= $text['message-required']." ".$text['label-group_name']."<br>\n"; }
|
|
|
|
|
//if (empty($domain_uuid)) { $msg .= $text['message-required']." ".$text['label-domain_uuid']."<br>\n"; }
|
|
|
|
|
if (empty($group_level)) { $msg .= $text['message-required']." ".$text['label-group_level']."<br>\n"; }
|
|
|
|
|
//if (empty($group_protected)) { $msg .= $text['message-required']." ".$text['label-group_protected']."<br>\n"; }
|
|
|
|
|
//if (empty($group_description)) { $msg .= $text['message-required']." ".$text['label-group_description']."<br>\n"; }
|
|
|
|
|
if (!empty($msg) && empty($_POST["persistformvar"])) {
|
2019-12-08 08:52:32 +01:00
|
|
|
require_once "resources/header.php";
|
|
|
|
|
require_once "resources/persist_form_var.php";
|
|
|
|
|
echo "<div align='center'>\n";
|
|
|
|
|
echo "<table><tr><td>\n";
|
|
|
|
|
echo $msg."<br />";
|
|
|
|
|
echo "</td></tr></table>\n";
|
|
|
|
|
persistformvar($_POST);
|
|
|
|
|
echo "</div>\n";
|
|
|
|
|
require_once "resources/footer.php";
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//add the group_uuid
|
2023-05-16 06:38:46 +02:00
|
|
|
if (empty($_POST["group_uuid"])) {
|
2019-12-08 08:52:32 +01:00
|
|
|
$group_uuid = uuid();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//prepare the array
|
|
|
|
|
$array['groups'][0]['group_uuid'] = $group_uuid;
|
|
|
|
|
$array['groups'][0]['group_name'] = $group_name;
|
|
|
|
|
$array['groups'][0]['domain_uuid'] = $domain_uuid;
|
|
|
|
|
$array['groups'][0]['group_level'] = $group_level;
|
|
|
|
|
$array['groups'][0]['group_protected'] = $group_protected;
|
|
|
|
|
$array['groups'][0]['group_description'] = $group_description;
|
|
|
|
|
|
|
|
|
|
//save the data
|
|
|
|
|
$database->app_name = 'Group Manager';
|
|
|
|
|
$database->app_uuid = '2caf27b0-540a-43d5-bb9b-c9871a1e4f84';
|
|
|
|
|
$database->save($array);
|
|
|
|
|
|
2020-09-30 00:33:44 +02:00
|
|
|
//update group name in group permissions if group name changed
|
|
|
|
|
if ($group_name != $group_name_previous) {
|
|
|
|
|
$sql = "update v_group_permissions ";
|
|
|
|
|
$sql .= "set group_name = :group_name ";
|
|
|
|
|
$sql .= "where group_name = :group_name_previous ";
|
|
|
|
|
$sql .= "and group_uuid = :group_uuid ";
|
|
|
|
|
$parameters['group_name'] = $group_name;
|
|
|
|
|
$parameters['group_name_previous'] = $group_name_previous;
|
|
|
|
|
$parameters['group_uuid'] = $group_uuid;
|
|
|
|
|
$database->app_name = 'Group Manager';
|
|
|
|
|
$database->app_uuid = '2caf27b0-540a-43d5-bb9b-c9871a1e4f84';
|
|
|
|
|
$database->execute($sql, $parameters);
|
2024-08-06 21:19:45 +02:00
|
|
|
unset($sql, $parameters);
|
2020-09-30 00:33:44 +02:00
|
|
|
}
|
|
|
|
|
|
2019-12-08 08:52:32 +01:00
|
|
|
//redirect the user
|
|
|
|
|
if (isset($action)) {
|
|
|
|
|
if ($action == "add") {
|
|
|
|
|
$_SESSION["message"] = $text['message-add'];
|
|
|
|
|
}
|
|
|
|
|
if ($action == "update") {
|
|
|
|
|
$_SESSION["message"] = $text['message-update'];
|
|
|
|
|
}
|
|
|
|
|
header('Location: group_edit.php?id='.urlencode($group_uuid));
|
|
|
|
|
return;
|
|
|
|
|
}
|
2020-09-30 00:33:44 +02:00
|
|
|
}
|
2019-12-08 08:52:32 +01:00
|
|
|
|
|
|
|
|
//pre-populate the form
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($group_uuid) && empty($_POST["persistformvar"])) {
|
2019-12-08 08:52:32 +01:00
|
|
|
$sql = "select * from v_groups ";
|
|
|
|
|
$sql .= "where group_uuid = :group_uuid ";
|
|
|
|
|
//$sql .= "and domain_uuid = :domain_uuid ";
|
|
|
|
|
//$parameters['domain_uuid'] = $_SESSION['domain_uuid'];
|
|
|
|
|
$parameters['group_uuid'] = $group_uuid;
|
|
|
|
|
$row = $database->select($sql, $parameters, 'row');
|
2023-05-16 06:38:46 +02:00
|
|
|
if (!empty($row)) {
|
2019-12-08 08:52:32 +01:00
|
|
|
$group_name = $row["group_name"];
|
|
|
|
|
$domain_uuid = $row["domain_uuid"];
|
2023-05-16 06:38:46 +02:00
|
|
|
$group_permissions = $row["group_permissions"] ?? '';
|
|
|
|
|
$group_members = $row["group_members"] ?? '';
|
2019-12-08 08:52:32 +01:00
|
|
|
$group_level = $row["group_level"];
|
|
|
|
|
$group_protected = $row["group_protected"];
|
|
|
|
|
$group_description = $row["group_description"];
|
|
|
|
|
}
|
|
|
|
|
unset ($sql, $parameters, $row);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//create token
|
|
|
|
|
$object = new token;
|
|
|
|
|
$token = $object->create($_SERVER['PHP_SELF']);
|
|
|
|
|
|
|
|
|
|
//show the header
|
2020-01-06 20:23:32 +01:00
|
|
|
$document['title'] = $text['title-group'];
|
2019-12-08 08:52:32 +01:00
|
|
|
require_once "resources/header.php";
|
|
|
|
|
|
|
|
|
|
//show the content
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<form name='frm' id='frm' method='post'>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<div class='action_bar' id='action_bar'>\n";
|
|
|
|
|
echo " <div class='heading'><b>".$text['title-group']."</b></div>\n";
|
|
|
|
|
echo " <div class='actions'>\n";
|
2020-03-05 18:01:09 +01:00
|
|
|
echo button::create(['type'=>'button','label'=>$text['button-back'],'icon'=>$_SESSION['theme']['button_icon_back'],'id'=>'btn_back','link'=>'groups.php']);
|
2023-05-27 20:26:48 +02:00
|
|
|
if ($action == 'update' && permission_exists('group_permission_view')) {
|
2023-05-16 06:38:46 +02:00
|
|
|
$button_margin = 'margin-left: 15px;';
|
2023-05-27 20:26:48 +02:00
|
|
|
echo button::create(['type'=>'button','label'=>$text['button-permissions'],'icon'=>'key','style'=>$button_margin,'link'=>'group_permissions.php?group_uuid='.urlencode($group_uuid)]);
|
2020-03-06 23:25:08 +01:00
|
|
|
}
|
2023-05-27 20:26:48 +02:00
|
|
|
if ($action == 'update' && permission_exists('group_member_view')) {
|
2023-05-16 06:38:46 +02:00
|
|
|
$button_margin = 'margin-left: 0px;';
|
2023-05-27 20:26:48 +02:00
|
|
|
echo button::create(['type'=>'button','label'=>$text['button-members'],'icon'=>'users','style'=>$button_margin,'link'=>'group_members.php?group_uuid='.urlencode($group_uuid)]);
|
2020-03-06 23:25:08 +01:00
|
|
|
}
|
2020-02-10 18:32:31 +01:00
|
|
|
if ($action == 'update' && permission_exists('group_add')) {
|
2023-05-16 06:38:46 +02:00
|
|
|
$button_margin = 'margin-left: 15px;';
|
2020-03-25 23:48:12 +01:00
|
|
|
echo button::create(['type'=>'button','label'=>$text['button-copy'],'icon'=>$_SESSION['theme']['button_icon_copy'],'name'=>'btn_copy','style'=>$button_margin,'onclick'=>"modal_open('modal-copy','btn_copy');"]);
|
2020-02-10 18:32:31 +01:00
|
|
|
}
|
|
|
|
|
if ($action == 'update' && permission_exists('group_delete')) {
|
2023-05-16 06:38:46 +02:00
|
|
|
$button_margin = 'margin-left: 0px;';
|
2020-03-25 23:48:12 +01:00
|
|
|
echo button::create(['type'=>'button','label'=>$text['button-delete'],'icon'=>$_SESSION['theme']['button_icon_delete'],'name'=>'btn_delete','style'=>$button_margin,'onclick'=>"modal_open('modal-delete','btn_delete');"]);
|
2020-02-10 18:32:31 +01:00
|
|
|
}
|
2020-03-05 18:01:09 +01:00
|
|
|
echo button::create(['type'=>'submit','label'=>$text['button-save'],'icon'=>$_SESSION['theme']['button_icon_save'],'id'=>'btn_save','style'=>'margin-left: 15px;']);
|
2020-02-10 18:32:31 +01:00
|
|
|
echo " </div>\n";
|
|
|
|
|
echo " <div style='clear: both;'></div>\n";
|
|
|
|
|
echo "</div>\n";
|
|
|
|
|
|
2020-03-25 23:48:12 +01:00
|
|
|
if ($action == 'update' && permission_exists('group_add')) {
|
|
|
|
|
echo modal::create(['id'=>'modal-copy','type'=>'copy','actions'=>button::create(['type'=>'submit','label'=>$text['button-continue'],'icon'=>'check','id'=>'btn_copy','style'=>'float: right; margin-left: 15px;','collapse'=>'never','name'=>'action','value'=>'copy','onclick'=>"modal_close();"])]);
|
|
|
|
|
}
|
|
|
|
|
if ($action == 'update' && permission_exists('group_delete')) {
|
|
|
|
|
echo modal::create(['id'=>'modal-delete','type'=>'delete','actions'=>button::create(['type'=>'submit','label'=>$text['button-continue'],'icon'=>'check','id'=>'btn_delete','style'=>'float: right; margin-left: 15px;','collapse'=>'never','name'=>'action','value'=>'delete','onclick'=>"modal_close();"])]);
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-10 18:32:31 +01:00
|
|
|
echo $text['description-groups']."\n";
|
|
|
|
|
echo "<br /><br />\n";
|
|
|
|
|
|
2024-09-05 01:51:23 +02:00
|
|
|
echo "<div class='card'>\n";
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<table width='100%' border='0' cellpadding='0' cellspacing='0'>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
|
|
|
|
|
echo "<tr>\n";
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<td width='30%' class='vncellreq' valign='top' align='left' nowrap='nowrap'>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo " ".$text['label-group_name']."\n";
|
|
|
|
|
echo "</td>\n";
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<td width='70%' class='vtable' style='position: relative;' align='left'>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo " <input class='formfld' type='text' name='group_name' maxlength='255' value='".escape($group_name)."'>\n";
|
2020-09-30 00:33:44 +02:00
|
|
|
echo " <input type='hidden' name='group_name_previous' value='".escape($group_name)."'>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "<br />\n";
|
2023-05-16 06:38:46 +02:00
|
|
|
//echo $text['description-group_name']."\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
|
|
|
|
|
echo "<tr>\n";
|
|
|
|
|
echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
|
|
|
|
|
echo " ".$text['label-domain_uuid']."\n";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td class='vtable' style='position: relative;' align='left'>\n";
|
|
|
|
|
echo " <select class='formfld' name='domain_uuid'>\n";
|
2023-05-05 18:46:37 +02:00
|
|
|
if (empty($domain_uuid)) {
|
2020-02-03 17:29:51 +01:00
|
|
|
echo " <option value='' selected='selected'>".$text['label-global']."</option>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
echo " <option value=''>".$text['label-global']."</option>\n";
|
|
|
|
|
}
|
|
|
|
|
foreach ($_SESSION['domains'] as $row) {
|
|
|
|
|
if ($row['domain_uuid'] == $domain_uuid) {
|
|
|
|
|
echo " <option value='".$row['domain_uuid']."' selected='selected'>".escape($row['domain_name'])."</option>\n";
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
echo " <option value='".$row['domain_uuid']."'>".$row['domain_name']."</option>\n";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
echo " </select>\n";
|
|
|
|
|
echo "<br />\n";
|
2023-05-16 06:38:46 +02:00
|
|
|
//echo $text['description-domain_uuid']."\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
|
|
|
|
|
echo "<tr>\n";
|
|
|
|
|
echo "<td class='vncellreq' valign='top' align='left' nowrap='nowrap'>\n";
|
|
|
|
|
echo " ".$text['label-group_level']."\n";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td class='vtable' style='position: relative;' align='left'>\n";
|
|
|
|
|
echo " <select class='formfld' name='group_level'>\n";
|
|
|
|
|
echo " <option value=''></option>\n";
|
2020-02-10 18:32:31 +01:00
|
|
|
for ($l = 10; $l <=90; $l += 10) {
|
|
|
|
|
$selected = $group_level == $l ? "selected='selected'" : null;
|
|
|
|
|
echo " <option value='".$l."' ".$selected.">".$l."</option>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
}
|
|
|
|
|
echo " </select>\n";
|
|
|
|
|
echo "<br />\n";
|
2023-05-16 06:38:46 +02:00
|
|
|
//echo $text['description-group_level']."\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
|
|
|
|
|
echo "<tr>\n";
|
|
|
|
|
echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
|
|
|
|
|
echo " ".$text['label-group_protected']."\n";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td class='vtable' style='position: relative;' align='left'>\n";
|
|
|
|
|
echo " <select class='formfld' name='group_protected'>\n";
|
2020-02-03 17:29:51 +01:00
|
|
|
echo " <option value='false'>".$text['label-false']."</option>\n";
|
2023-06-07 00:12:42 +02:00
|
|
|
echo " <option value='true' ".(!empty($group_protected) && $group_protected == "true" ? "selected='selected'" : null).">".$text['label-true']."</option>\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo " </select>\n";
|
|
|
|
|
echo "<br />\n";
|
2023-05-16 06:38:46 +02:00
|
|
|
//echo $text['description-group_protected']."\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
|
|
|
|
|
echo "<tr>\n";
|
|
|
|
|
echo "<td class='vncell' valign='top' align='left' nowrap='nowrap'>\n";
|
|
|
|
|
echo " ".$text['label-group_description']."\n";
|
|
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "<td class='vtable' style='position: relative;' align='left'>\n";
|
|
|
|
|
echo " <input class='formfld' type='text' name='group_description' maxlength='255' value='".escape($group_description)."'>\n";
|
|
|
|
|
echo "<br />\n";
|
2023-05-16 06:38:46 +02:00
|
|
|
//echo $text['description-group_description']."\n";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "</td>\n";
|
|
|
|
|
echo "</tr>\n";
|
|
|
|
|
|
|
|
|
|
echo "</table>";
|
2024-09-05 01:51:23 +02:00
|
|
|
echo "</div>";
|
2019-12-08 08:52:32 +01:00
|
|
|
echo "<br /><br />";
|
|
|
|
|
|
2020-02-10 18:32:31 +01:00
|
|
|
echo "<input type='hidden' name='group_uuid' value='".escape($group_uuid)."'>\n";
|
|
|
|
|
echo "<input type='hidden' name='".$token['name']."' value='".$token['hash']."'>\n";
|
|
|
|
|
|
|
|
|
|
echo "</form>";
|
|
|
|
|
|
2019-12-08 08:52:32 +01:00
|
|
|
//include the footer
|
|
|
|
|
require_once "resources/footer.php";
|
|
|
|
|
|
2023-06-07 00:12:42 +02:00
|
|
|
?>
|
