PageRenderTime 44ms CodeModel.GetById 15ms RepoModel.GetById 0ms app.codeStats 0ms

/adminstrator/tabs/AdminEmployees.php

http://marocmall.googlecode.com/
PHP | 229 lines | 185 code | 17 blank | 27 comment | 21 complexity | 2317ce0475928a65be68790009435694 MD5 | raw file
Possible License(s): LGPL-2.1 
    

  1. <?php
    2. 

  2. /*
    3. 

  3. * 2007-2011 PrestaShop
    4. 

  4. *
    5. 

  5. * NOTICE OF LICENSE
    6. 

  6. *
    7. 

  7. * This source file is subject to the Open Software License (OSL 3.0)
    8. 

  8. * that is bundled with this package in the file LICENSE.txt.
    9. 

  9. * It is also available through the world-wide-web at this URL:
    10. 

  10. * http://opensource.org/licenses/osl-3.0.php
    11. 

  11. * If you did not receive a copy of the license and are unable to
    12. 

  12. * obtain it through the world-wide-web, please send an email
    13. 

  13. * to license@prestashop.com so we can send you a copy immediately.
    14. 

  14. *
    15. 

  15. * DISCLAIMER
    16. 

  16. *
    17. 

  17. * Do not edit or add to this file if you wish to upgrade PrestaShop to newer
    18. 

  18. * versions in the future. If you wish to customize PrestaShop for your
    19. 

  19. * needs please refer to http://www.prestashop.com for more information.
    20. 

  20. *
    21. 

  21. *  @author PrestaShop SA <contact@prestashop.com>
    22. 

  22. *  @copyright  2007-2011 PrestaShop SA
    23. 

  23. *  @version  Release: $Revision: 8943 $
    24. 

  24. *  @license    http://opensource.org/licenses/osl-3.0.php  Open Software License (OSL 3.0)
    25. 

  25. *  International Registered Trademark & Property of PrestaShop SA
    26. 

  26. */
    27. 

  27. 

  28. class AdminEmployees extends AdminTab
    29. 

  29. {
    30. 

  30.  	/** @var array profiles list */
    31. 

  31. 	private $profilesArray = array();
    32. 

  32. 

  33. 	public function __construct()
    34. 

  34. 	{
    35. 

  35. 	 	global $cookie;
    36. 

  36. 

  37. 	 	$this->table = 'employee';
    38. 

  38. 	 	$this->className = 'Employee';
    39. 

  39. 	 	$this->lang = false;
    40. 

  40. 	 	$this->edit = true;
    41. 

  41. 	 	$this->delete = true;
    42. 

  42.  		$this->_select = 'pl.`name` AS profile';
    43. 

  43. 		$this->_join = 'LEFT JOIN `'._DB_PREFIX_.'profile` p ON a.`id_profile` = p.`id_profile`
    44. 

  44. 		LEFT JOIN `'._DB_PREFIX_.'profile_lang` pl ON (pl.`id_profile` = p.`id_profile` AND pl.`id_lang` = '.(int)($cookie->id_lang).')';
    45. 

    46. 

  46. 		$profiles = Profile::getProfiles((int)($cookie->id_lang));
    47. 

  47. 		if (!$profiles)
    48. 

  48. 			$this->_errors[] = Tools::displayError('No profile');
    49. 

  49. 		else
    50. 

  50. 			foreach ($profiles AS $profile)
    51. 

  51. 				$this->profilesArray[$profile['name']] = $profile['name'];
    52. 

  52. 

  53. 		$this->fieldsDisplay = array(
    54. 

  54. 		'id_employee' => array('title' => $this->l('ID'), 'align' => 'center', 'width' => 25),
    55. 

  55. 		'lastname' => array('title' => $this->l('Last name'), 'width' => 130),
    56. 

  56. 		'firstname' => array('title' => $this->l('First name'), 'width' => 130),
    57. 

  57. 		'email' => array('title' => $this->l('E-mail address'), 'width' => 180),
    58. 

  58. 		'profile' => array('title' => $this->l('Profile'), 'width' => 90, 'type' => 'select', 'select' => $this->profilesArray, 'filter_key' => 'pl!name'),
    59. 

  59. 		'active' => array('title' => $this->l('Can log in'), 'align' => 'center', 'active' => 'status', 'type' => 'bool'));
    60. 

  60. 

  61. 		$this->optionTitle = $this->l('Employees options');
    62. 

  62. 		$this->_fieldsOptions = array(
    63. 

  63. 			'PS_PASSWD_TIME_BACK' => array('title' => $this->l('Password regenerate:'), 'desc' => $this->l('Security minimum time to wait to regenerate a new password'), 'cast' => 'intval', 'size' => 5, 'type' => 'text', 'suffix' => ' '.$this->l('minutes')),
    64. 

  64. 			'PS_BO_ALLOW_EMPLOYEE_FORM_LANG' => array('title' => $this->l('Memorize form language:'), 'desc' => $this->l('Allow employees to save their own default form language'), 'cast' => 'intval', 'type' => 'select', 'identifier' => 'value', 'list' => array(
    65. 

  65. 				'0' => array('value' => 0, 'name' => $this->l('No')),
    66. 

  66. 				'1' => array('value' => 1, 'name' => $this->l('Yes'))
    67. 

  67. 			))
    68. 

  68. 		);
    69. 

  69. 

  70. 		parent::__construct();
    71. 

  71. 	}
    72. 

  72. 

  73. 	protected function _childValidation()
    74. 

  74. 	{
    75. 

  75. 		if (!($obj = $this->loadObject(true)))
    76. 

  76. 			return false;
    77. 

  77. 		$email = $this->getFieldValue($obj, 'email');
    78. 

  78. 		if (!Validate::isEmail($email))
    79. 

  79. 	 		$this->_errors[] = Tools::displayError('Invalid e-mail');
    80. 

  80. 		elseif (Employee::employeeExists($email) AND !Tools::getValue('id_employee'))
    81. 

  81. 			$this->_errors[] = Tools::displayError('An account already exists for this e-mail address:').' '.$email;
    82. 

  82. 	}
    83. 

  83. 

  84. 	public function displayForm($isMainTab = true)
    85. 

  85. 	{
    86. 

  86. 		global $currentIndex, $cookie;
    87. 

  87. 		parent::displayForm();
    88. 

  88. 

  89. 		if (!($obj = $this->loadObject(true)))
    90. 

  90. 			return;
    91. 

  91. 		$profiles = Profile::getProfiles((int)($cookie->id_lang));
    92. 

  92. 

  93. 		echo '<script type="text/javascript" src="'._PS_JS_DIR_.'/jquery/jquery-colorpicker.js"></script>
    94. 

  94. 		 	 <script type="text/javascript">
    95. 

  95. 				var employeePage = true;
    96. 

  96. 		 	 </script>
    97. 

  97. 

  98. 

  99. 		<form action="'.$currentIndex.'&submitAdd'.$this->table.'=1&token='.$this->token.((int)$this->tabAccess['view'] ? '' : '&updateemployee&id_employee='.(int)$obj->id).'" method="post" enctype="multipart/form-data" autocomplete="off">
    100. 

  100. 		'.($obj->id ? '<input type="hidden" name="id_'.$this->table.'" value="'.$obj->id.'" />' : '').'
    101. 

  101. 		'.((int)$this->tabAccess['view'] ? '' : '<input type="hidden" name="back" value="'.$currentIndex.'&token='.$this->token.'&updateemployee&id_employee='.(int)$obj->id.'" />').'
    102. 

  102. 			<fieldset class="width3"><legend><img src="../img/admin/nav-user.gif" />'.$this->l('Employees').'</legend>
    103. 

  103. 				<label>'.$this->l('Last name:').' </label>
    104. 

  104. 				<div class="margin-form">
    105. 

  105. 					<input type="text" size="33" name="lastname" value="'.htmlentities($this->getFieldValue($obj, 'lastname'), ENT_COMPAT, 'UTF-8').'" /> <sup>*</sup>
    106. 

  106. 				</div>
    107. 

  107. 				<label>'.$this->l('First name:').' </label>
    108. 

  108. 				<div class="margin-form">
    109. 

  109. 					<input type="text" size="33" name="firstname" value="'.htmlentities($this->getFieldValue($obj, 'firstname'), ENT_COMPAT, 'UTF-8').'" /> <sup>*</sup>
    110. 

  110. 				</div>
    111. 

  111. 				<label>'.$this->l('Password:').' </label>
    112. 

  112. 				<div class="margin-form">
    113. 

  113. 					<input type="password" size="33" name="passwd" value="" /> <sup>*</sup>
    114. 

  114. 					<p>'.($obj->id ? $this->l('Leave blank if you do not want to change your password') : $this->l('Min. 8 characters; use only letters, numbers or').' -_').'</p>
    115. 

  115. 				</div>
    116. 

  116. 				<label>'.$this->l('E-mail address:').' </label>
    117. 

  117. 				<div class="margin-form">
    118. 

  118. 					<input type="text" size="33" name="email" value="'.htmlentities($this->getFieldValue($obj, 'email'), ENT_COMPAT, 'UTF-8').'" /> <sup>*</sup>
    119. 

  119. 				</div><div class="clear">&nbsp;</div>
    120. 

  120. 				<label>'.$this->l('Back office color:').' </label>
    121. 

  121. 				<div class="margin-form">';
    122. 

  122. 				// Note : width= fix Firefox 4 display bug related to colorpicker librarie
    123. 

  123. 				echo '<input type="color" width="50px" data-hex="true" class="color mColorPickerInput" name="bo_color" value="'.htmlentities($this->getFieldValue($obj, 'bo_color'), ENT_COMPAT, 'UTF-8').'" />
    124. 

  124. 					<p>'.$this->l('Back office background will be displayed in this color. HTML colors only (e.g.,').' "lightblue", "#CC6600")</p>
    125. 

  125. 				</div><div class="clear">&nbsp;</div>
    126. 

  126. 				<label>'.$this->l('Language:').' </label>
    127. 

  127. 				<div class="margin-form">
    128. 

  128. 					<select name="id_lang">';
    129. 

  129. 		foreach (Language::getLanguages() as $lang)
    130. 

  130. 			echo '		<option value="'.(int)$lang['id_lang'].'" '.($this->getFieldValue($obj, 'id_lang') == $lang['id_lang'] ? 'selected="selected"' : '').'>'.Tools::htmlentitiesUTF8($lang['name']).'</option>';
    131. 

  131. 		echo '		</select> <sup>*</sup>
    132. 

  132. 				</div><div class="clear">&nbsp;</div>
    133. 

  133. 				<label>'.$this->l('Theme:').' </label>
    134. 

  134. 				<div class="margin-form">
    135. 

  135. 					<select name="bo_theme">';
    136. 

  136. 		$path = dirname(__FILE__).'/../themes/';
    137. 

  137. 		foreach (scandir($path) as $theme)
    138. 

  138. 			if ($theme[0] != '.' AND file_exists($path.$theme.'/admin.css'))
    139. 

  139. 				echo '	<option value="'.Tools::htmlentitiesUTF8($theme).'" '.($this->getFieldValue($obj, 'bo_theme') == $theme ? 'selected="selected"' : '').'>'.Tools::htmlentitiesUTF8($theme).'</option>';
    140. 

  140. 		echo '		</select> <sup>*</sup>
    141. 

  141. 				</div>';
    142. 

  142. 		if ((int)$this->tabAccess['edit'])
    143. 

  143. 		{
    144. 

  144. 			echo '<div class="clear">&nbsp;</div>
    145. 

  145. 				<label>'.$this->l('UI mode:').' </label>
    146. 

  146. 				<div class="margin-form">
    147. 

  147. 					<input type="radio" name="bo_uimode" id="uimode_on" value="hover" '.($this->getFieldValue($obj, 'bo_uimode') == 'hover' ? 'checked="checked" ' : '').'/>
    148. 

  148. 					<label class="t" for="uimode_on">'.$this->l('Hover on tabs').'</label>
    149. 

  149. 					<input type="radio" name="bo_uimode" id="uimode_off" value="click" '.($this->getFieldValue($obj, 'bo_uimode') == 'click' ? 'checked="checked" ' : '').'/>
    150. 

  150. 					<label class="t" for="uimode_off">'.$this->l('Click on tabs').'</label>
    151. 

  151. 				</div><div class="clear">&nbsp;</div>
    152. 

  152. 				<label>'.$this->l('Show screencast:').' </label>
    153. 

  153. 				<div class="margin-form">
    154. 

  154. 					<input type="radio" name="bo_show_screencast" id="bo_show_screencast_on" value="1" '.($this->getFieldValue($obj, 'bo_show_screencast') ? 'checked="checked" ' : '').'/>
    155. 

  155. 					<label class="t" for="active_on"> <img src="../img/admin/enabled.gif" alt="'.$this->l('Enabled').'" title="'.$this->l('Enabled').'" /></label>
    156. 

  156. 					<input type="radio" name="bo_show_screencast" id="bo_show_screencast_off" value="0" '.(!$this->getFieldValue($obj, 'bo_show_screencast') ? 'checked="checked" ' : '').'/>
    157. 

  157. 					<label class="t" for="active_off"> <img src="../img/admin/disabled.gif" alt="'.$this->l('Disabled').'" title="'.$this->l('Disabled').'" /></label>
    158. 

  158. 					<p>'.$this->l('Show the welcome video on the dashbord of the back office').'</p>
    159. 

  159. 				</div>
    160. 

  160. 				<label>'.$this->l('Status:').' </label>
    161. 

  161. 				<div class="margin-form">
    162. 

  162. 					<input type="radio" name="active" id="active_on" value="1" '.($this->getFieldValue($obj, 'active') ? 'checked="checked" ' : '').'/>
    163. 

  163. 					<label class="t" for="active_on"> <img src="../img/admin/enabled.gif" alt="'.$this->l('Enabled').'" title="'.$this->l('Enabled').'" /></label>
    164. 

  164. 					<input type="radio" name="active" id="active_off" value="0" '.(!$this->getFieldValue($obj, 'active') ? 'checked="checked" ' : '').'/>
    165. 

  165. 					<label class="t" for="active_off"> <img src="../img/admin/disabled.gif" alt="'.$this->l('Disabled').'" title="'.$this->l('Disabled').'" /></label>
    166. 

  166. 					<p>'.$this->l('Allow or disallow this employee to log into this Back Office').'</p>
    167. 

  167. 				</div>
    168. 

  168. 				<label>'.$this->l('Profile:').' </label>
    169. 

  169. 				<div class="margin-form">
    170. 

  170. 					<select name="id_profile">
    171. 

  171. 						<option value="">'.$this->l('-- Choose --').'</option>';
    172. 

  172. 						foreach ($profiles AS $profile)
    173. 

  173. 						 	echo '<option value="'.$profile['id_profile'].'"'.($profile['id_profile'] === $this->getFieldValue($obj, 'id_profile') ? ' selected="selected"' : '').'>'.$profile['name'].'</option>';
    174. 

  174. 				echo '</select> <sup>*</sup>
    175. 

  175. 				</div>';
    176. 

  176. 		}
    177. 

  177. 		echo '<div class="clear">&nbsp;</div>
    178. 

  178. 				<center>
    179. 

  179. 					<input type="submit" value="'.$this->l('   Save   ').'" name="submitAdd'.$this->table.'" class="button" />
    180. 

  180. 				</center><div class="clear">&nbsp;</div>
    181. 

  181. 				<div class="small"><sup>*</sup> '.$this->l('Required field').'</div>
    182. 

  182. 			</fieldset>
    183. 

  183. 		</form>';
    184. 

  184. 	}
    185. 

  185. 

  186. 	public function postProcess()
    187. 

  187. 	{
    188. 

  188. 		global $cookie;
    189. 

  189. 

  190. 		if (Tools::isSubmit('deleteemployee') OR Tools::isSubmit('status') OR Tools::isSubmit('statusemployee'))
    191. 

  191. 		{
    192. 

  192. 			if ($cookie->id_employee == Tools::getValue('id_employee'))
    193. 

  193. 			{
    194. 

  194. 				$this->_errors[] = Tools::displayError('You cannot disable or delete your own account.');
    195. 

  195. 				return false;
    196. 

  196. 			}
    197. 

  197. 

  198. 			$employee = new Employee(Tools::getValue('id_employee'));
    199. 

  199. 			if ($employee->isLastAdmin())
    200. 

  200. 			{
    201. 

  201. 					$this->_errors[] = Tools::displayError('You cannot disable or delete the last administrator account.');
    202. 

  202. 					return false;
    203. 

  203. 			}
    204. 

  204. 		}
    205. 

  205. 		elseif (Tools::isSubmit('submitAddemployee'))
    206. 

  206. 		{
    207. 

  207. 			$employee = new Employee((int)Tools::getValue('id_employee'));
    208. 

  208. 			if (!(int)$this->tabAccess['edit'])
    209. 

  209. 				$_POST['id_profile'] = $_GET['id_profile'] = $employee->id_profile;
    210. 

  210. 

  211. 			if ($employee->isLastAdmin())
    212. 

  212. 			{
    213. 

  213. 				if  (Tools::getValue('id_profile') != (int)_PS_ADMIN_PROFILE_)
    214. 

  214. 				{
    215. 

  215. 					$this->_errors[] = Tools::displayError('You should have at least one employee in the administrator group.');
    216. 

  216. 					return false;
    217. 

  217. 				}
    218. 

  218. 

  219. 				if (Tools::getvalue('active') == 0)
    220. 

  220. 				{
    221. 

  221. 					$this->_errors[] = Tools::displayError('You cannot disable or delete the last administrator account.');
    222. 

  222. 					return false;
    223. 

  223. 				}
    224. 

  224. 			}
    225. 

  225. 		}
    226. 

  226. 

  227. 		return parent::postProcess();
    228. 

  228. 	}
    229. 

  229. }
    230.