-
Verified12a45403
<?php/* This code is part of FusionDirectory (http://www.fusiondirectory.org/) Copyright (C) 2003 Cajus Pollmeier Copyright (C) 2011-2020 FusionDirectory This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.*/class aclAssignmentCreationDialog extends simplePlugin{ protected $post_finish = 'add_finish'; protected $post_cancel = 'add_cancel'; protected $management; protected $closed = FALSE; static function plInfo (): array { return [ 'plShortName' => _('ACL assignment creation'), 'plTitle' => _('ACL assignment creation'), 'plDescription' => _('Create an ACL assignment on an arbitrary dn'), 'plCategory' => ['acl'], 'plProvidedAcls' => [] ]; } static function getAttributesInfo (): array { global $config; return [ 'main' => [ 'name' => _('ACL assignment creation'), 'class' => ['fullwidth'], 'attrs' => [ new StringAttribute( _('Dn'), _('DN you wish to add assignments for'), 'baseDn', TRUE, $config->current['BASE'], 'aclMode', '/^([^=,]+=[^=,]+,)+'.preg_quote($config->current['BASE'], '/').'$/', 'ou=people,'.$config->current['BASE'] ), ] ], ]; } function __construct ($parent) { global $config; $this->management = $parent; parent::__construct($config->current['BASE']); $this->attributesAccess['baseDn']->setInLdap(FALSE);7172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
}
public function readPost ()
{
parent::readPost();
if (isset($_POST[$this->post_cancel])) {
$this->handleCancel();
} elseif (isset($_POST[$this->post_finish])) {
$this->handleFinish();
}
}
public function update (): bool
{
parent::update();
return !$this->closed;
}
public function render (): string
{
$smarty = get_smarty();
$smarty->assign($this->attributesAccess['baseDn']->getAcl().'ACL', 'rwcdm');
return parent::render()."\n".
'<p class="plugbottom">'."\n".
' <input type="submit" name="'.$this->post_finish.'" value="'.msgPool::addButton().'"/> '."\n".
' <input type="submit" formnovalidate="formnovalidate" name="'.$this->post_cancel.'" value="'.msgPool::cancelButton().'"/>'."\n".
'</p>';
}
public function handleFinish ()
{
$msgs = $this->check();
if (count($msgs)) {
msg_dialog::displayChecks($msgs);
return;
}
try {
$this->management->newEntryConfirmed($this->baseDn);
} catch (NonExistingLdapNodeException $e) {
$error = new FusionDirectoryError(htmlescape(_('The dn you entered could not be found in LDAP')), 0, $e);
$error->display();
return;
}
$this->closed = TRUE;
}
function handleCancel ()
{
$this->management->closeDialogs();
}
function save (): array
{
return [];
}
}
class aclManagement extends management
{
protected $skipCpHandler = TRUE;
public static $skipSnapshots = TRUE;
public static $skipTemplates = TRUE;
/* We cannot show anything more than DN as there are no ACLs for other fields on aclAssignment object */
public static $columns = [
['ObjectTypeColumn', []],
['LinkColumn', ['attributes' => 'dn', 'label' => 'DN']],
['ActionsColumn', ['label' => 'Actions']],
141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210
];
static function plInfo (): array
{
return [
'plShortName' => _('ACL assignments'),
'plTitle' => _('ACL assignments management'),
'plDescription' => _('Manage ACL roles assignments to users'),
'plIcon' => 'geticon.php?context=categories&icon=acl&size=48',
'plSection' => 'accessControl',
'plPriority' => 2,
'plManages' => ['aclAssignment'],
'plProvidedAcls' => []
];
}
protected function setUpListing ()
{
/* Set baseMode to FALSE */
$this->listing = new managementListing($this, FALSE);
}
protected function setUpFilter (array $filterElementDefinitions)
{
parent::setUpFilter($filterElementDefinitions);
/* Set scope to sub */
$this->filter->setScope('sub');
}
/*!
* \brief Opens aclAssignmentCreationDialog to enter an arbitrary DN
*/
function newEntry (array $action)
{
$this->dialogObject = new aclAssignmentCreationDialog($this);
}
/*!
* \brief Called by aclAssignmentCreationDialog
*/
function newEntryConfirmed ($dn)
{
$type = 'aclAssignment';
/* This might throw an exception which is catched in aclAssignmentCreationDialog */
$tabObject = objects::open($dn, $type);
/* This will happen only if the exception is not thrown */
$this->closeDialogs();
$this->currentDn = $dn;
$this->openTabObject($tabObject);
logging::debug(DEBUG_TRACE, __LINE__, __FUNCTION__, __FILE__, $this->currentDn, 'Creating new ACL assignment');
}
/*! \brief Display confirmation dialog
*/
protected function removeConfirmationDialog (array $objects)
{
$smarty = get_smarty();
$smarty->assign('objects', $objects);
$smarty->assign('multiple', TRUE);
return $smarty->fetch(get_template_path('remove.tpl', TRUE, dirname(__FILE__)));
}
protected function renderFilter (): string
{
211212213214215
/* Hide filter box */
return '';
}
}