PageRenderTime 55ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/htdocs/user/class/user.class.php

https://bitbucket.org/speedealing/speedealing
PHP | 1603 lines | 1049 code | 226 blank | 328 comment | 271 complexity | 376f7ede3cd7bedd7ca618a0d3ce334e MD5 | raw file
Possible License(s): LGPL-3.0, LGPL-2.1, GPL-3.0, MIT 
    

  1. <?php
    2. 

  2. 

  3. /* Copyright (c) 2002-2007 Rodolphe Quiedeville <rodolphe@quiedeville.org>
    4. 

  4.  * Copyright (c) 2002-2003 Jean-Louis Bergamo   <jlb@j1b.org>
    5. 

  5.  * Copyright (c) 2004-2012 Laurent Destailleur  <eldy@users.sourceforge.net>
    6. 

  6.  * Copyright (C) 2004      Sebastien Di Cintio  <sdicintio@ressource-toi.org>
    7. 

  7.  * Copyright (C) 2004      Benoit Mortier       <benoit.mortier@opensides.be>
    8. 

  8.  * Copyright (C) 2005-2012 Regis Houssin        <regis.houssin@capnetworks.com>
    9. 

  9.  * Copyright (C) 2005      Lionel Cousteix      <etm_ltd@tiscali.co.uk>
    10. 

  10.  * Copyright (C) 2011-2012 Herve Prot           <herve.prot@symeos.com>
    11. 

  11.  *
    12. 

  12.  * This program is free software; you can redistribute it and/or modify
    13. 

  13.  * it under the terms of the GNU General Public License as published by
    14. 

  14.  * the Free Software Foundation; either version 3 of the License, or
    15. 

  15.  * (at your option) any later version.
    16. 

  16.  *
    17. 

  17.  * This program is distributed in the hope that it will be useful,
    18. 

  18.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    19. 

  19.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    20. 

  20.  * GNU General Public License for more details.
    21. 

  21.  *
    22. 

  22.  * You should have received a copy of the GNU General Public License
    23. 

  23.  * along with this program. If not, see <http://www.gnu.org/licenses/>.
    24. 

  24.  */
    25. 

  25. 

  26. require_once DOL_DOCUMENT_ROOT . '/core/class/nosqlDocument.class.php';
    27. 

  27. require_once DOL_DOCUMENT_ROOT . '/core/class/extrafields.class.php';
    28. 

  28. require_once DOL_DOCUMENT_ROOT . '/core/db/couchdb/lib/couchAdmin.php';
    29. 

  29. require_once DOL_DOCUMENT_ROOT . '/user/class/userdatabase.class.php';
    30. 

  30. require_once DOL_DOCUMENT_ROOT . '/core/modules/DolibarrModules.class.php';
    31. 

  31. 

  32. /**
    33. 

  33.  * 	Class to manage Dolibarr users
    34. 

  34.  */
    35. 

  35. class User extends nosqlDocument {
    36. 

  36. 

  37. 	public $element = 'user';
    38. 

  38. 	public $table_element = 'user';
    39. 

  39. 	protected $ismultientitymanaged = 1; // 0=No test on entity, 1=Test with field entity, 2=Test with link by societe
    40. 

  40. 	protected $couchAdmin;
    41. 

  41. 	var $id;
    42. 

  42. 	var $Lastname;
    43. 

  43. 	var $Firstname;
    44. 

  44. 	var $note;
    45. 

  45. 	var $email;
    46. 

  46. 	var $Signature;
    47. 

  47. 	var $office_phone;
    48. 

  48. 	var $office_fax;
    49. 

  49. 	var $user_mobile;
    50. 

  50. 	var $admin;
    51. 

  51. 	var $login;
    52. 

  52. 	//! Clear password in memory
    53. 

  53. 	var $pass;
    54. 

  54. 	//! Clear password in database (defined if DATABASE_PWD_ENCRYPTED=0)
    55. 

  55. 	var $pass_indatabase;
    56. 

  56. 	//! Encrypted password in database (always defined)
    57. 

  57. 	var $pass_indatabase_crypted;
    58. 

  58. 	var $datec;
    59. 

  59. 	var $datem;
    60. 

  60. 	//! If this is defined, it is an external user
    61. 

  61. 	var $societe_id;
    62. 

  62. 	var $contact_id;
    63. 

  63. 	var $fk_member;
    64. 

  64. 	var $datelastlogin;
    65. 

  65. 	var $datepreviouslogin;
    66. 

  66. 	var $Status;
    67. 

  67. 	var $Photo;
    68. 

  68. 	var $Lang;
    69. 

  69. 	//! Liste des entrepots auquel a acces l'utilisateur
    70. 

  70. 	var $entrepots;
    71. 

  71. 	var $rights;   // Array of permissions user->rights->permx
    72. 

  72. 	var $all_permissions_are_loaded; /*	 * < \private all_permissions_are_loaded */
    73. 

  73. 	private $_tab_loaded = array();  // Array of cache of already loaded permissions
    74. 

  74. 	var $conf;  // To store personal config
    75. 

  75. 

  76. 	/**
    77. 

  77. 	 *    Constructor de la classe
    78. 

  78. 	 *
    79. 

  79. 	 *    @param   DoliDb  $db     Database handler
    80. 

  80. 	 */
    81. 

  81. 

  82. 	function __construct($db = null) {
    83. 

  83. 		$this->db = $db;
    84. 

  84. 

  85. 		parent::__construct($db);
    86. 

  86. 

  87. 		$this->useDatabase("system");
    88. 

  88. 

  89. 		$this->fk_extrafields = new ExtraFields($db);
    90. 

  90. 		$this->fk_extrafields->fetch(get_class($this));
    91. 

  91. 

  92. 		$this->couchAdmin = new couchAdmin($this->couchdb);
    93. 

  93. 

  94. 		// Preference utilisateur
    95. 

  95. 		$this->liste_limit = 0;
    96. 

  96. 		$this->clicktodial_loaded = 0;
    97. 

  97. 

  98. 		$this->all_permissions_are_loaded = 0;
    99. 

  99. 		$this->admin = 0;
    100. 

  100. 

  101. 		$this->conf = new stdClass();
    102. 

  102. 		$this->rights = new stdClass();
    103. 

  103. 		$this->rights->user = new stdClass();
    104. 

  104. 		$this->rights->user->user = new stdClass();
    105. 

  105. 		$this->rights->user->self = new stdClass();
    106. 

  106. 	}
    107. 

  107. 

  108. 	/**
    109. 

  109. 	 * 	Load a user from database with its id or ref (login)
    110. 

  110. 	 *
    111. 

  111. 	 * 	@param	string	$id		       		Si defini, id a utiliser pour recherche
    112. 

  112. 	 * 	@param  string	$login       		Si defini, login a utiliser pour recherche
    113. 

  113. 	 * 	@param  strinf	$sid				Si defini, sid a utiliser pour recherche
    114. 

  114. 	 * 	@param	int		$loadpersonalconf	Also load personal conf of user (in $user->conf->xxx)
    115. 

  115. 	 * 	@return	int							<0 if KO, 0 not found, >0 if OK
    116. 

  116. 	 */
    117. 

  117. 	function fetch($login = "", $cache = false) {
    118. 

  118. 		global $conf, $couch;
    119. 

  119. 

  120. 		// Clean parametersadmin
    121. 

  121. 		$login = trim($login);
    122. 

  122. 

  123. 		if (empty($login)) {
    124. 

  124. 			try {
    125. 

  125. 				$login = $this->couchAdmin->getLoginSession();
    126. 

  126. 			} catch (Exception $e) {
    127. 

  127. 				$login = null;
    128. 

  128. 			}
    129. 

  129. 			if (empty($login))
    130. 

  130. 				return 0;
    131. 

  131. 		}
    132. 

  132. 

  133. 		/* if ($conf->Couchdb->name == '_users') { // Login phase
    134. 

  134. 		  require_once(DOL_DOCUMENT_ROOT . "/useradmin/class/useradmin.class.php");
    135. 

    136. 

  136. 		  $user_config = new UserAdmin($this->db);
    137. 

  137. 		  $user_config->fetch("org.couchdb.user:" . $login); // Load for default entity
    138. 

  138. 		  $user_config->LastConnection = $user_config->NewConnection;
    139. 

  139. 		  $user_config->NewConnection = dol_now();
    140. 

  140. 		  //$user_config->record(); // FIXME no record method in fetch method
    141. 

  141. 		  //print_r($login);
    142. 

  142. 		  //exit;
    143. 

  143. 		  $couch->useDatabase($user_config->entity);
    144. 

  144. 		  $conf->Couchdb->name = $user_config->entity;
    145. 

  145. 		  dol_setcache("dol_entity", $user_config->entity);
    146. 

  146. 		  //$this->useDatabase($user_config->entity);
    147. 

  147. 		  unset($user_config);
    148. 

    149. 

  149. 		  if (!$conf->urlrewrite) {
    150. 

  150. 		  $this->LastConnection = $this->NewConnection;
    151. 

  151. 		  $this->NewConnection = dol_now();
    152. 

  152. 		  //$this->record(true); // FIXME no record method in fetch method
    153. 

  153. 		  }
    154. 

  154. 		  } */
    155. 

  155. 

  156. 		try {
    157. 

  157. 			/* if (isValidEmail($login)) {
    158. 

  158. 			  $result = $this->getView("login", array("key" => $login));
    159. 

  159. 			  $login = $result->rows[0]->value;
    160. 

  160. 			  } */
    161. 

  161. 

  162. 			//$result = $this->couchAdmin->getUser($login);
    163. 

  163. 			//print_r($result);exit;
    164. 

  164. 			$login = str_replace('user:', '', $login); // For avoid error
    165. 

  165. 			$this->load("user:" . $login, $cache);
    166. 

  166. 		} catch (Exception $e) {
    167. 

  167. 			error_log("Login error : " . $login . " " . $e->getMessage());
    168. 

  168. 			return 0;
    169. 

  169. 		}
    170. 

  170. 

  171. 		// Test if User is a global administrator
    172. 

  172. 		try {
    173. 

  173. 			$admins = $this->couchAdmin->getUserAdmins();
    174. 

  174. 			$name = $this->couchAdmin->getLoginSession();
    175. 

  175. 			$user = $this->couchAdmin->getUser($name);
    176. 

  176. 

  177. 			if ((isset($admins->$name) || in_array("_admin", $user->roles, true)) && $this->name == $name)
    178. 

  178. 				$this->superadmin = true;
    179. 

  179. 			else
    180. 

  180. 				$this->superadmin = false;
    181. 

  181. 		} catch (Exception $e) {
    182. 

  182. 			$this->superadmin = false;
    183. 

  183. 		}
    184. 

  184. 

  185. 		// Test if User is a local administrator for a specific databses
    186. 

  186. 		if ($this->superadmin) {
    187. 

  187. 			$this->admin = true;
    188. 

  188. 		} else {
    189. 

  189. 			$membersAdmin = $this->couchAdmin->getDatabaseAdminUsers();
    190. 

  190. 			if (in_array($this->name, $membersAdmin))
    191. 

  191. 				$this->admin = true;
    192. 

  192. 			else
    193. 

  193. 				$this->admin = false;
    194. 

  194. 		}
    195. 

  195. 

  196. 		try {
    197. 

  197. 			$database = new UserDatabase($this->db);
    198. 

  198. 			$database->fetch($conf->Couchdb->name);
    199. 

  199. 			$result = $database->couchAdmin->getDatabaseAdminUsers(); // Administrateur local de la bd
    200. 

  200. 

  201. 			if (in_array($this->name, $result)) {
    202. 

  202. 				$this->admin = true;
    203. 

  203. 			}
    204. 

  204. 		} catch (Exception $e) {
    205. 

  205. 			
    206. 

  206. 		}
    207. 

  207. 

  208. 		$this->id = $this->_id;
    209. 

  209. 

  210. 		return 1;
    211. 

  211. 	}
    212. 

  212. 

  213. 	/**
    214. 

  214. 	 *  Ajoute un droit a l'utilisateur
    215. 

  215. 	 *
    216. 

  216. 	 * 	@param	int		$rid         id du droit a ajouter
    217. 

  217. 	 *  @param  string	$allmodule   Ajouter tous les droits du module allmodule
    218. 

  218. 	 *  @param  string	$allperms    Ajouter tous les droits du module allmodule, perms allperms
    219. 

  219. 	 *  @return int   			     > 0 if OK, < 0 if KO
    220. 

  220. 	 */
    221. 

  221. 	function addrights($rid, $allmodule = '', $allperms = '') {
    222. 

  222. 		global $conf;
    223. 

  223. 

  224. 		dol_syslog(get_class($this) . "::addrights $rid, $allmodule, $allperms");
    225. 

  225. 		$err = 0;
    226. 

  226. 		$whereforadd = '';
    227. 

  227. 

  228. 		$this->db->begin();
    229. 

  229. 

  230. 		if ($rid) {
    231. 

  231. 			// Si on a demande ajout d'un droit en particulier, on recupere
    232. 

  232. 			// les caracteristiques (module, perms et subperms) de ce droit.
    233. 

  233. 			$sql = "SELECT module, perms, subperms";
    234. 

  234. 			$sql.= " FROM " . MAIN_DB_PREFIX . "rights_def";
    235. 

  235. 			$sql.= " WHERE id = '" . $rid . "'";
    236. 

  236. 			$sql.= " AND entity = " . $conf->entity;
    237. 

  237. 

  238. 			$result = $this->db->query($sql);
    239. 

  239. 			if ($result) {
    240. 

  240. 				$obj = $this->db->fetch_object($result);
    241. 

  241. 				$module = $obj->module;
    242. 

  242. 				$perms = $obj->perms;
    243. 

  243. 				$subperms = $obj->subperms;
    244. 

  244. 			} else {
    245. 

  245. 				$err++;
    246. 

  246. 				dol_print_error($this->db);
    247. 

  247. 			}
    248. 

  248. 

  249. 			// Where pour la liste des droits a ajouter
    250. 

  250. 			$whereforadd = "id=" . $rid;
    251. 

  251. 			// Ajout des droits induits
    252. 

  252. 			if ($subperms)
    253. 

  253. 				$whereforadd.=" OR (module='$module' AND perms='$perms' AND (subperms='lire' OR subperms='read'))";
    254. 

  254. 			else if ($perms)
    255. 

  255. 				$whereforadd.=" OR (module='$module' AND (perms='lire' OR perms='read') AND subperms IS NULL)";
    256. 

  256. 		}
    257. 

  257. 		else {
    258. 

  258. 			// On a pas demande un droit en particulier mais une liste de droits
    259. 

  259. 			// sur la base d'un nom de module de de perms
    260. 

  260. 			// Where pour la liste des droits a ajouter
    261. 

  261. 			if ($allmodule)
    262. 

  262. 				$whereforadd = "module='$allmodule'";
    263. 

  263. 			if ($allperms)
    264. 

  264. 				$whereforadd = " AND perms='$allperms'";
    265. 

  265. 		}
    266. 

  266. 

  267. 		// Ajout des droits trouves grace au critere whereforadd
    268. 

  268. 		if ($whereforadd) {
    269. 

  269. 			//print "$module-$perms-$subperms";
    270. 

  270. 			$sql = "SELECT id";
    271. 

  271. 			$sql.= " FROM " . MAIN_DB_PREFIX . "rights_def";
    272. 

  272. 			$sql.= " WHERE " . $whereforadd;
    273. 

  273. 			$sql.= " AND entity = " . $conf->entity;
    274. 

  274. 

  275. 			$result = $this->db->query($sql);
    276. 

  276. 			if ($result) {
    277. 

  277. 				$num = $this->db->num_rows($result);
    278. 

  278. 				$i = 0;
    279. 

  279. 				while ($i < $num) {
    280. 

  280. 					$obj = $this->db->fetch_object($result);
    281. 

  281. 					$nid = $obj->id;
    282. 

  282. 

  283. 					$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user_rights WHERE fk_user = " . $this->id . " AND fk_id=" . $nid;
    284. 

  284. 					if (!$this->db->query($sql))
    285. 

  285. 						$err++;
    286. 

  286. 					$sql = "INSERT INTO " . MAIN_DB_PREFIX . "user_rights (fk_user, fk_id) VALUES (" . $this->id . ", " . $nid . ")";
    287. 

  287. 					if (!$this->db->query($sql))
    288. 

  288. 						$err++;
    289. 

  289. 

  290. 					$i++;
    291. 

  291. 				}
    292. 

  292. 			}
    293. 

  293. 			else {
    294. 

  294. 				$err++;
    295. 

  295. 				dol_print_error($this->db);
    296. 

  296. 			}
    297. 

  297. 		}
    298. 

  298. 

  299. 		if ($err) {
    300. 

  300. 			$this->db->rollback();
    301. 

  301. 			return -$err;
    302. 

  302. 		} else {
    303. 

  303. 			$this->db->commit();
    304. 

  304. 			return 1;
    305. 

  305. 		}
    306. 

  306. 	}
    307. 

  307. 

  308. 	/**
    309. 

  309. 	 *  Retire un droit a l'utilisateur
    310. 

  310. 	 *
    311. 

  311. 	 *  @param	int		$rid        Id du droit a retirer
    312. 

  312. 	 *  @param  string	$allmodule  Retirer tous les droits du module allmodule
    313. 

  313. 	 *  @param  string	$allperms   Retirer tous les droits du module allmodule, perms allperms
    314. 

  314. 	 *  @return int         		> 0 if OK, < 0 if OK
    315. 

  315. 	 */
    316. 

  316. 	function delrights($rid, $allmodule = '', $allperms = '') {
    317. 

  317. 		global $conf;
    318. 

  318. 

  319. 		$err = 0;
    320. 

  320. 		$wherefordel = '';
    321. 

  321. 

  322. 		$this->db->begin();
    323. 

  323. 

  324. 		if ($rid) {
    325. 

  325. 			// Si on a demande supression d'un droit en particulier, on recupere
    326. 

  326. 			// les caracteristiques module, perms et subperms de ce droit.
    327. 

  327. 			$sql = "SELECT module, perms, subperms";
    328. 

  328. 			$sql.= " FROM " . MAIN_DB_PREFIX . "rights_def";
    329. 

  329. 			$sql.= " WHERE id = '" . $rid . "'";
    330. 

  330. 			$sql.= " AND entity = " . $conf->entity;
    331. 

  331. 

  332. 			$result = $this->db->query($sql);
    333. 

  333. 			if ($result) {
    334. 

  334. 				$obj = $this->db->fetch_object($result);
    335. 

  335. 				$module = $obj->module;
    336. 

  336. 				$perms = $obj->perms;
    337. 

  337. 				$subperms = $obj->subperms;
    338. 

  338. 			} else {
    339. 

  339. 				$err++;
    340. 

  340. 				dol_print_error($this->db);
    341. 

  341. 			}
    342. 

  342. 

  343. 			// Where pour la liste des droits a supprimer
    344. 

  344. 			$wherefordel = "id=" . $rid;
    345. 

  345. 			// Suppression des droits induits
    346. 

  346. 			if ($subperms == 'lire' || $subperms == 'read')
    347. 

  347. 				$wherefordel.=" OR (module='$module' AND perms='$perms' AND subperms IS NOT NULL)";
    348. 

  348. 			if ($perms == 'lire' || $perms == 'read')
    349. 

  349. 				$wherefordel.=" OR (module='$module')";
    350. 

  350. 		}
    351. 

  351. 		else {
    352. 

  352. 			// On a demande suppression d'un droit sur la base d'un nom de module ou perms
    353. 

  353. 			// Where pour la liste des droits a supprimer
    354. 

  354. 			if ($allmodule)
    355. 

  355. 				$wherefordel = "module='$allmodule'";
    356. 

  356. 			if ($allperms)
    357. 

  357. 				$wherefordel = " AND perms='$allperms'";
    358. 

  358. 		}
    359. 

  359. 

  360. 		// Suppression des droits selon critere defini dans wherefordel
    361. 

  361. 		if ($wherefordel) {
    362. 

  362. 			//print "$module-$perms-$subperms";
    363. 

  363. 			$sql = "SELECT id";
    364. 

  364. 			$sql.= " FROM " . MAIN_DB_PREFIX . "rights_def";
    365. 

  365. 			$sql.= " WHERE $wherefordel";
    366. 

  366. 			$sql.= " AND entity = " . $conf->entity;
    367. 

  367. 

  368. 			$result = $this->db->query($sql);
    369. 

  369. 			if ($result) {
    370. 

  370. 				$num = $this->db->num_rows($result);
    371. 

  371. 				$i = 0;
    372. 

  372. 				while ($i < $num) {
    373. 

  373. 					$obj = $this->db->fetch_object($result);
    374. 

  374. 					$nid = $obj->id;
    375. 

  375. 

  376. 					$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user_rights";
    377. 

  377. 					$sql.= " WHERE fk_user = " . $this->id . " AND fk_id=" . $nid;
    378. 

  378. 					if (!$this->db->query($sql))
    379. 

  379. 						$err++;
    380. 

  380. 

  381. 					$i++;
    382. 

  382. 				}
    383. 

  383. 			}
    384. 

  384. 			else {
    385. 

  385. 				$err++;
    386. 

  386. 				dol_print_error($this->db);
    387. 

  387. 			}
    388. 

  388. 		}
    389. 

  389. 

  390. 		if ($err) {
    391. 

  391. 			$this->db->rollback();
    392. 

  392. 			return -$err;
    393. 

  393. 		} else {
    394. 

  394. 			$this->db->commit();
    395. 

  395. 			return 1;
    396. 

  396. 		}
    397. 

  397. 	}
    398. 

  398. 

  399. 	/**
    400. 

  400. 	 *  Clear all permissions array of user
    401. 

  401. 	 *
    402. 

  402. 	 *  @return	void
    403. 

  403. 	 */
    404. 

  404. 	function clearrights() {
    405. 

  405. 		dol_syslog(get_class($this) . "::clearrights reset user->rights");
    406. 

  406. 		$this->rights = '';
    407. 

  407. 		$this->all_permissions_are_loaded = false;
    408. 

  408. 		$this->_tab_loaded = array();
    409. 

  409. 	}
    410. 

  410. 

  411. 	/**
    412. 

  412. 	 * 	Load permissions granted to user into object user
    413. 

  413. 	 *
    414. 

  414. 	 * 	@param  string	$moduletag    Limit permission for a particular module ('' by default means load all permissions)
    415. 

  415. 	 * 	@return	void
    416. 

  416. 	 */
    417. 

  417. 	function getrights($moduletag = '') {
    418. 

  418. 		global $conf;
    419. 

  419. 

  420. 		if ($moduletag && isset($this->_tab_loaded[$moduletag]) && $this->_tab_loaded[$moduletag]) {
    421. 

  421. 			// Le fichier de ce module est deja charge
    422. 

  422. 			return;
    423. 

  423. 		}
    424. 

  424. 

  425. 		if ($this->all_permissions_are_loaded) {
    426. 

  426. 			// Si les permissions ont deja ete charge pour ce user, on quitte
    427. 

  427. 			return;
    428. 

  428. 		}
    429. 

  429. 

  430. 		$object = new DolibarrModules($this->db);
    431. 

  431. 

  432. 		try {
    433. 

  433. 			$result = $object->getView("default_right", '', true);
    434. 

  434. 			if (count($this->roles) > 0)
    435. 

  435. 				foreach ($this->roles as $aRow) // load groups
    436. 

  436. 					$groups[] = $object->load("group:" . $aRow, true);
    437. 

  437. 		} catch (Exception $exc) {
    438. 

  438. 			print $exc->getMessage();
    439. 

  439. 		}
    440. 

  440. 

  441. 		if (count($result->rows)) {
    442. 

  442. 			foreach ($result->rows as $aRow) {
    443. 

  443. 				//$object->name = $aRow->value->name;
    444. 

  444. 				//$object->numero = $aRow->value->numero;
    445. 

  445. 				$rights_class = $aRow->value->rights_class;
    446. 

  446. 				//$object->id = $aRow->value->id;
    447. 

  447. 				$perm = $aRow->value->perm;
    448. 

  448. 

  449. 				// Add default rights
    450. 

  450. 				if (!is_object($this->rights->$rights_class))
    451. 

  451. 					$this->rights->$rights_class = new stdClass();
    452. 

  452. 				if (count($perm) == 1)
    453. 

  453. 					$this->rights->$rights_class->$perm[0] = $aRow->value->Status;
    454. 

  454. 				elseif (count($perm) == 2) {
    455. 

  455. 					if (!is_object($this->rights->$rights_class->$perm[0]))
    456. 

  456. 						$this->rights->$rights_class->$perm[0] = new stdClass();
    457. 

  457. 					if (isset($this->rights->$rights_class->$perm[0]))
    458. 

  458. 						$this->rights->$rights_class->$perm[0]->$perm[1] = $aRow->value->Status;
    459. 

  459. 					else
    460. 

  460. 						$this->rights->$rights_class->$perm[0]->$perm[1] = $aRow->value->Status;
    461. 

  461. 				}
    462. 

  462. 

  463. 				// Add user rights
    464. 

  464. 

  465. 				if ((is_array($this->rights) && isset($this->rights->$key)) || (is_array($this->own_rights) && isset($this->own_rights->$key)) || $this->admin) {
    466. 

  466. 					if (count($perm) == 1)
    467. 

  467. 						$this->rights->$rights_class->$perm[0] = true;
    468. 

  468. 					elseif (count($perm) == 2)
    469. 

  469. 						$this->rights->$rights_class->$perm[0]->$perm[1] = true;
    470. 

  470. 				}
    471. 

  471. 

  472. 				// Add groups rights
    473. 

  473. 				for ($i = 0; $i < count($groups); $i++) {
    474. 

  474. 					$key = $aRow->value->id;
    475. 

  475. 					if (isset($groups[$i]->rights->$key)) {
    476. 

  476. 						if (count($perm) == 1)
    477. 

  477. 							$this->rights->$rights_class->$perm[0] = true;
    478. 

  478. 						elseif (count($perm) == 2)
    479. 

  479. 							$this->rights->$rights_class->$perm[0]->$perm[1] = true;
    480. 

  480. 					}
    481. 

  481. 				}
    482. 

  482. 			}
    483. 

  483. 		}
    484. 

  484. 

  485. 		//print_r($this->rights);
    486. 

  486. 		// Convert for old right definition
    487. 

  487. 		if (!empty($this->rights->societe->creer))
    488. 

  488. 			$this->rights->societe->edit = true;
    489. 

  489. 		if (!empty($this->rights->societe->supprimer))
    490. 

  490. 			$this->rights->societe->delete = true;
    491. 

  491. 		if (!empty($this->rights->societe->contact->creer)) {
    492. 

  492. 			if (!is_object($this->rights->contact))
    493. 

  493. 				$this->rights->contact = new stdClass(); // For avoid error
    494. 

  494. 			$this->rights->contact->edit = true;
    495. 

  495. 		}
    496. 

  496. 		if (!empty($this->rights->societe->contact->supprimer)) {
    497. 

  497. 			if (!is_object($this->rights->contact))
    498. 

  498. 				$this->rights->contact = new stdClass(); // For avoid error
    499. 

  499. 			$this->rights->contact->delete = true;
    500. 

  500. 		}
    501. 

  501. 		if (!empty($this->rights->agenda->myactions->write))
    502. 

  502. 			$this->rights->agenda->edit = true;
    503. 

  503. 		if (!empty($this->rights->agenda->myactions->delete))
    504. 

  504. 			$this->rights->agenda->delete = true;
    505. 

  505. 		if (!empty($this->rights->commande->creer))
    506. 

  506. 			$this->rights->commande->edit = true;
    507. 

  507. 		if (!empty($this->rights->commande->supprimer))
    508. 

  508. 			$this->rights->commande->delete = true;
    509. 

  509. 

  510. 

  511. 

  512. 		if (!$moduletag) {
    513. 

  513. 			// Si module etait non defini, alors on a tout charge, on peut donc considerer
    514. 

  514. 			// que les droits sont en cache (car tous charges) pour cet instance de user
    515. 

  515. 			$this->all_permissions_are_loaded = 1;
    516. 

  516. 		} else {
    517. 

  517. 			// Si module defini, on le marque comme charge en cache
    518. 

  518. 			$this->_tab_loaded[$moduletag] = 1;
    519. 

  519. 		}
    520. 

  520. 	}
    521. 

  521. 

  522. 	/**
    523. 

  523. 	 *  Change status of a user
    524. 

  524. 	 *
    525. 

  525. 	 * 	@param	int		$statut		Status to set
    526. 

  526. 	 *  @return int     			<0 if KO, 0 if nothing is done, >0 if OK
    527. 

  527. 	 */
    528. 

  528. 	function setstatus($status) {
    529. 

  529. 		$error = 0;
    530. 

  530. 

  531. 		if ($status == 0)
    532. 

  532. 			$status = "DISABLE";
    533. 

  533. 		else
    534. 

  534. 			$status = "ENABLE";
    535. 

  535. 

  536. 		// Check parameters
    537. 

  537. 		if ($this->Status == $status)
    538. 

  538. 			return 0;
    539. 

  539. 		else {
    540. 

  540. 			$userid = $this->email;
    541. 

  541. 

  542. 			if ($status == 'ENABLE') {
    543. 

  543. 				if ($this->admin == true)
    544. 

  544. 					$this->couchAdmin->addDatabaseAdminUser($userid);
    545. 

  545. 				else
    546. 

  546. 					$this->couchAdmin->addDatabaseReaderUser($userid);
    547. 

  547. 			}
    548. 

  548. 			elseif ($status == 'DISABLE') {
    549. 

  549. 				$this->couchAdmin->removeDatabaseAdminUser($userid);
    550. 

  550. 				$this->couchAdmin->removeDatabaseReaderUser($userid);
    551. 

  551. 			}
    552. 

  552. 

  553. 			$this->set("Status", $status);
    554. 

  554. 			dol_delcache($this->id);
    555. 

  555. 		}
    556. 

  556. 

  557. 		return 1;
    558. 

  558. 	}
    559. 

  559. 

  560. 	/**
    561. 

  561. 	 *    	Delete the user
    562. 

  562. 	 *
    563. 

  563. 	 * 		@return		int		<0 if KO, >0 if OK
    564. 

  564. 	 */
    565. 

  565. 	function delete() {
    566. 

  566. 		global $user, $conf, $langs;
    567. 

  567. 

  568. 		$error = 0;
    569. 

  569. 

  570. 		$this->db->begin();
    571. 

  571. 

  572. 		$this->fetch($this->id);
    573. 

  573. 

  574. 		// Supprime droits
    575. 

  575. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user_rights WHERE fk_user = " . $this->id;
    576. 

  576. 		if ($this->db->query($sql)) {
    577. 

  577. 			
    578. 

  578. 		}
    579. 

  579. 

  580. 		// Remove group
    581. 

  581. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "usergroup_user WHERE fk_user  = " . $this->id;
    582. 

  582. 		if ($this->db->query($sql)) {
    583. 

  583. 			
    584. 

  584. 		}
    585. 

  585. 

  586. 		// Si contact, supprime lien
    587. 

  587. 		if ($this->contact_id) {
    588. 

  588. 			$sql = "UPDATE " . MAIN_DB_PREFIX . "socpeople SET fk_user_creat = null WHERE rowid = " . $this->contact_id;
    589. 

  589. 			if ($this->db->query($sql)) {
    590. 

  590. 				
    591. 

  591. 			}
    592. 

  592. 		}
    593. 

  593. 

  594. 		// Supprime utilisateur
    595. 

  595. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user WHERE rowid = $this->id";
    596. 

  596. 		$result = $this->db->query($sql);
    597. 

  597. 

  598. 		if ($result) {
    599. 

  599. 			// Appel des triggers
    600. 

  600. 			include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    601. 

  601. 			$interface = new Interfaces($this->db);
    602. 

  602. 			$result = $interface->run_triggers('USER_DELETE', $this, $user, $langs, $conf);
    603. 

  603. 			if ($result < 0) {
    604. 

  604. 				$error++;
    605. 

  605. 				$this->errors = $interface->errors;
    606. 

  606. 			}
    607. 

  607. 			// Fin appel triggers
    608. 

  608. 

  609. 			$this->db->commit();
    610. 

  610. 			return 1;
    611. 

  611. 		} else {
    612. 

  612. 			$this->db->rollback();
    613. 

  613. 			return -1;
    614. 

  614. 		}
    615. 

  615. 	}
    616. 

  616. 

  617. 	/**
    618. 

  618. 	 *  Create or Update an user into database
    619. 

  619. 	 *
    620. 

  620. 	 *  @param	User	$user        	Objet user qui demande la creation
    621. 

  621. 	 *  @param  int		$notrigger		1 ne declenche pas les triggers, 0 sinon
    622. 

  622. 	 *  @return int			         	<0 si KO, id compte cree si OK
    623. 

  623. 	 */
    624. 

  624. 	function update($user, $notrigger = 0, $action) {
    625. 

  625. 		global $conf, $langs;
    626. 

  626. 

  627. 		// Clean parameters
    628. 

  628. 		$this->name = trim($this->name);
    629. 

  629. 		$this->pass = trim($this->pass);
    630. 

  630. 		$this->Firstname = trim($this->Firstname);
    631. 

  631. 		$this->Lastname = trim($this->Lastname);
    632. 

  632. 

  633. 		// Check parameters
    634. 

  634. 		/* if (!isValidEMail($this->email)) {
    635. 

  635. 			$langs->load("errors");
    636. 

  636. 			$this->error = $langs->trans("ErrorBadEMail", $this->email);
    637. 

  637. 			return -1;
    638. 

  638. 		  } */
    639. 

  639. 

  640. 		$error = 0;
    641. 

  641. 

  642. 		try {
    643. 

  643. 			$result = $this->couchAdmin->getUser($this->name);
    644. 

  644. 		} catch (Exception $e) {
    645. 

  645. 			// User doesn-t exist
    646. 

  646. 		}
    647. 

  647. 

  648. 		if (isset($result->name) && $action == 'add' && $action != 'install') {
    649. 

  649. 			$this->error = 'ErrorLoginAlreadyExists';
    650. 

  650. 			return -6;
    651. 

  651. 		} else {
    652. 

  652. 			if ($action == 'add' || $action == 'install' || empty($result->name)) {
    653. 

  653. 				try {
    654. 

  654. 					if ($action != 'install') {
    655. 

  655. 						if ($this->admin)
    656. 

  656. 							$this->couchAdmin->createAdmin($this->name, $this->pass);
    657. 

  657. 						else
    658. 

  658. 							$this->couchAdmin->createUser($this->name, $this->pass);
    659. 

  659. 					}
    660. 

  660. 					unset($this->pass);
    661. 

  661. 					if (!empty($this->roles)) // use not empty instead count for avoid error
    662. 

  662. 						foreach ($this->roles as $group)
    663. 

  663. 							$this->couchAdmin->addRoleToUser($this->name, $group);
    664. 

  664. 				} catch (Exception $e) {
    665. 

  665. 					$this->error = $e->getMessage();
    666. 

  666. 					error_log($this->error);
    667. 

  667. 					return -4;
    668. 

  668. 				}
    669. 

  669. 			}
    670. 

  670. 		}
    671. 

  671. 

  672. 		try {
    673. 

  673. 			/* $user_tmp = $this->couchAdmin->getUser($this->name);
    674. 

    675. 

  675. 			  $this->salt = $user_tmp->salt;
    676. 

  676. 			  $this->password_sha = $user_tmp->password_sha;
    677. 

  677. 			  $this->type = $user_tmp->type;
    678. 

  678. 			  $this->roles = $user_tmp->roles;
    679. 

  679. 			  $this->_id = $user_tmp->_id;
    680. 

  680. 			  $this->_rev = $user_tmp->_rev; */
    681. 

  681. 

  682. 			if ($action == 'add' || $action == 'install') {
    683. 

  683. 				if (empty($this->Status))
    684. 

  684. 					$this->Status = "DISABLE";
    685. 

  685. 				$this->CreateDate = dol_now();
    686. 

  686. 				$this->_id = "user:" . $this->name;
    687. 

  687. 			}
    688. 

  688. 

  689. 			$pass = null;
    690. 

  690. 			if (!empty($this->pass)) { // For avoid error
    691. 

  691. 				$pass = $this->pass;
    692. 

  692. 				unset($this->pass);
    693. 

  693. 			}
    694. 

  694. 

  695. 			//print_r($this);exit;
    696. 

  696. 			$result = $this->record(); // Save all specific parameters
    697. 

  697. 

  698. 			if (empty($user)) //install process
    699. 

  699. 				$caneditpassword = 1;
    700. 

  700. 			else
    701. 

  701. 				$caneditpassword = ((($user->login == $this->name) && $user->rights->user->self->password) || (($user->login != $this->name) && $user->rights->user->user->password)) || $user->admin;
    702. 

  702. 

  703. 			if ($caneditpassword && !empty($pass)) { // Case we can edit only password
    704. 

  704. 				$this->couchAdmin->setPassword($this->name, $pass);
    705. 

  705. 			}
    706. 

  706. 

  707. 			if ($action == 'update') {
    708. 

  708. 				if ($this->admin)
    709. 

  709. 					$this->couchAdmin->addRoleToUser($this->name, "_admin");
    710. 

  710. 				else
    711. 

  711. 					$this->couchAdmin->removeRoleFromUser($this->name, "_admin");
    712. 

  712. 			}
    713. 

  713. 		} catch (Exception $e) {
    714. 

  714. 			$this->error = $e->getMessage();
    715. 

  715. 			error_log($this->error);
    716. 

  716. 			return -3;
    717. 

  717. 		}
    718. 

  718. 

  719. 		if ($result) {
    720. 

  720. 			$this->id = $this->name;
    721. 

  721. 			$this->_id = $result->id;
    722. 

  722. 			$this->_rev = $result->rev;
    723. 

  723. 

  724. 			if (!$notrigger && !empty($user)) {
    725. 

  725. 				// Appel des triggers
    726. 

  726. 				include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    727. 

  727. 				$interface = new Interfaces($this->db);
    728. 

  728. 				$result = $interface->run_triggers('USER_CREATE', $this, $user, $langs, $conf);
    729. 

  729. 				if ($result < 0) {
    730. 

  730. 					$error++;
    731. 

  731. 					$this->errors = $interface->errors;
    732. 

  732. 				}
    733. 

  733. 				// Fin appel triggers
    734. 

  734. 			}
    735. 

  735. 		} else {
    736. 

  736. 			$this->error = $this->db->lasterror();
    737. 

  737. 			return -2;
    738. 

  738. 		}
    739. 

  739. 

  740. 		return $this->id;
    741. 

  741. 	}
    742. 

  742. 

  743. 	/**
    744. 

  744. 	 *  Create a user from a contact object. User will be internal but if contact is linked to a third party, user will be external
    745. 

  745. 	 *
    746. 

  746. 	 *  @param	Contact	$contact    Object for source contact
    747. 

  747. 	 * 	@param  string	$login      Login to force
    748. 

  748. 	 *  @param  string	$password   Password to force
    749. 

  749. 	 *  @return int 				<0 if error, if OK returns id of created user
    750. 

  750. 	 */
    751. 

  751. 	function create_from_contact($contact, $login = '', $password = '') {
    752. 

  752. 		global $conf, $user, $langs;
    753. 

  753. 

  754. 		$error = 0;
    755. 

  755. 

  756. 		// Positionne parametres
    757. 

  757. 		$this->admin = 0;
    758. 

  758. 		$this->nom = $contact->nom;   // TODO deprecated
    759. 

  759. 		$this->prenom = $contact->prenom; // TODO deprecated
    760. 

  760. 		$this->lastname = $contact->nom;
    761. 

  761. 		$this->firstname = $contact->prenom;
    762. 

  762. 		$this->email = $contact->email;
    763. 

  763. 		$this->office_phone = $contact->phone_pro;
    764. 

  764. 		$this->office_fax = $contact->fax;
    765. 

  765. 		$this->user_mobile = $contact->phone_mobile;
    766. 

  766. 

  767. 		if (empty($login))
    768. 

  768. 			$login = strtolower(substr($contact->prenom, 0, 4)) . strtolower(substr($contact->nom, 0, 4));
    769. 

  769. 		$this->login = $login;
    770. 

  770. 

  771. 		$this->db->begin();
    772. 

  772. 

  773. 		// Cree et positionne $this->id
    774. 

  774. 		$result = $this->create($user);
    775. 

  775. 		if ($result > 0) {
    776. 

  776. 			$sql = "UPDATE " . MAIN_DB_PREFIX . "user";
    777. 

  777. 			$sql.= " SET fk_socpeople=" . $contact->id;
    778. 

  778. 			if ($contact->socid)
    779. 

  779. 				$sql.=", fk_societe=" . $contact->socid;
    780. 

  780. 			$sql.= " WHERE rowid=" . $this->id;
    781. 

  781. 			$resql = $this->db->query($sql);
    782. 

  782. 

  783. 			dol_syslog(get_class($this) . "::create_from_contact sql=" . $sql, LOG_DEBUG);
    784. 

  784. 			if ($resql) {
    785. 

  785. 				// Appel des triggers
    786. 

  786. 				include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    787. 

  787. 				$interface = new Interfaces($this->db);
    788. 

  788. 				$result = $interface->run_triggers('USER_CREATE_FROM_CONTACT', $this, $user, $langs, $conf);
    789. 

  789. 				if ($result < 0) {
    790. 

  790. 					$error++;
    791. 

  791. 					$this->errors = $interface->errors;
    792. 

  792. 				}
    793. 

  793. 				// Fin appel triggers
    794. 

  794. 

  795. 				$this->db->commit();
    796. 

  796. 				return $this->id;
    797. 

  797. 			} else {
    798. 

  798. 				$this->error = $this->db->error();
    799. 

  799. 				dol_syslog(get_class($this) . "::create_from_contact " . $this->error, LOG_ERR);
    800. 

  800. 

  801. 				$this->db->rollback();
    802. 

  802. 				return -1;
    803. 

  803. 			}
    804. 

  804. 		} else {
    805. 

  805. 			// $this->error deja positionne
    806. 

  806. 			dol_syslog(get_class($this) . "::create_from_contact - 0");
    807. 

  807. 

  808. 			$this->db->rollback();
    809. 

  809. 			return $result;
    810. 

  810. 		}
    811. 

  811. 	}
    812. 

  812. 

  813. 	/**
    814. 

  814. 	 *  Create a user into database from a member object
    815. 

  815. 	 *
    816. 

  816. 	 *  @param	Adherent	$member		Object member source
    817. 

  817. 	 * 	@param	string		$login		Login to force
    818. 

  818. 	 *  @return int						<0 if KO, if OK, return id of created account
    819. 

  819. 	 */
    820. 

  820. 	function create_from_member($member, $login = '') {
    821. 

  821. 		global $conf, $user, $langs;
    822. 

  822. 

  823. 		// Positionne parametres
    824. 

  824. 		$this->admin = 0;
    825. 

  825. 		$this->lastname = $member->lastname;
    826. 

  826. 		$this->firstname = $member->firstname;
    827. 

  827. 		$this->email = $member->email;
    828. 

  828. 		$this->pass = $member->pass;
    829. 

  829. 

  830. 		if (empty($login))
    831. 

  831. 			$login = strtolower(substr($member->firstname, 0, 4)) . strtolower(substr($member->lastname, 0, 4));
    832. 

  832. 		$this->login = $login;
    833. 

  833. 

  834. 		$this->db->begin();
    835. 

  835. 

  836. 		// Cree et positionne $this->id
    837. 

  837. 		$result = $this->create($user);
    838. 

  838. 		if ($result > 0) {
    839. 

  839. 			$result = $this->setPassword($user, $this->pass);
    840. 

  840. 

  841. 			$sql = "UPDATE " . MAIN_DB_PREFIX . "user";
    842. 

  842. 			$sql.= " SET fk_member=" . $member->id;
    843. 

  843. 			if ($member->fk_soc)
    844. 

  844. 				$sql.= ", fk_societe=" . $member->fk_soc;
    845. 

  845. 			$sql.= " WHERE rowid=" . $this->id;
    846. 

  846. 

  847. 			dol_syslog(get_class($this) . "::create_from_member sql=" . $sql, LOG_DEBUG);
    848. 

  848. 			$resql = $this->db->query($sql);
    849. 

  849. 			if ($resql) {
    850. 

  850. 				$this->db->commit();
    851. 

  851. 				return $this->id;
    852. 

  852. 			} else {
    853. 

  853. 				$this->error = $this->db->error();
    854. 

  854. 				dol_syslog(get_class($this) . "::create_from_member - 1 - " . $this->error, LOG_ERR);
    855. 

  855. 

  856. 				$this->db->rollback();
    857. 

  857. 				return -1;
    858. 

  858. 			}
    859. 

  859. 		} else {
    860. 

  860. 			// $this->error deja positionne
    861. 

  861. 			dol_syslog(get_class($this) . "::create_from_member - 2 - " . $this->error, LOG_ERR);
    862. 

  862. 

  863. 			$this->db->rollback();
    864. 

  864. 			return $result;
    865. 

  865. 		}
    866. 

  866. 	}
    867. 

  867. 

  868. 	/**
    869. 

  869. 	 *    Affectation des permissions par defaut
    870. 

  870. 	 *
    871. 

  871. 	 *    @return     Si erreur <0, si ok renvoi le nbre de droits par defaut positionnes
    872. 

  872. 	 */
    873. 

  873. 	function set_default_rights() {
    874. 

  874. 		global $conf;
    875. 

  875. 

  876. 		$sql = "SELECT id FROM " . MAIN_DB_PREFIX . "rights_def";
    877. 

  877. 		$sql.= " WHERE bydefault = 1";
    878. 

  878. 		$sql.= " AND entity = " . $conf->entity;
    879. 

  879. 

  880. 		$resql = $this->db->query($sql);
    881. 

  881. 		if ($resql) {
    882. 

  882. 			$num = $this->db->num_rows($resql);
    883. 

  883. 			$i = 0;
    884. 

  884. 			$rd = array();
    885. 

  885. 			while ($i < $num) {
    886. 

  886. 				$row = $this->db->fetch_row($resql);
    887. 

  887. 				$rd[$i] = $row[0];
    888. 

  888. 				$i++;
    889. 

  889. 			}
    890. 

  890. 			$this->db->free($resql);
    891. 

  891. 		}
    892. 

  892. 		$i = 0;
    893. 

  893. 		while ($i < $num) {
    894. 

  894. 

  895. 			$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user_rights WHERE fk_user = $this->id AND fk_id=$rd[$i]";
    896. 

  896. 			$result = $this->db->query($sql);
    897. 

  897. 

  898. 			$sql = "INSERT INTO " . MAIN_DB_PREFIX . "user_rights (fk_user, fk_id) VALUES ($this->id, $rd[$i])";
    899. 

  899. 			$result = $this->db->query($sql);
    900. 

  900. 			if (!$result)
    901. 

  901. 				return -1;
    902. 

  902. 			$i++;
    903. 

  903. 		}
    904. 

  904. 

  905. 		return $i;
    906. 

  906. 	}
    907. 

  907. 

  908. 	/**
    909. 

  909. 	 *    Mise e jour en base de la date de deniere connexion d'un utilisateur
    910. 

  910. 	 * 	  Fonction appelee lors d'une nouvelle connexion
    911. 

  911. 	 *
    912. 

  912. 	 *    @return     <0 si echec, >=0 si ok
    913. 

  913. 	 */
    914. 

  914. 	function update_last_login_date() {
    915. 

  915. 		$now = dol_now();
    916. 

  916. 

  917. 		$this->LastConnection = $this->NewConnection;
    918. 

  918. 		$this->NewConnection = $now;
    919. 

  919. 		$this->record(true);
    920. 

  920. 	}
    921. 

  921. 

  922. 	/**
    923. 

  923. 	 *  Change password of a user
    924. 

  924. 	 *
    925. 

  925. 	 *  @param	User	$user             		Object user of user making change
    926. 

  926. 	 *  @param  string	$password         		New password in clear text (to generate if not provided)
    927. 

  927. 	 * 	@param	int		$changelater			1=Change password only after clicking on confirm email
    928. 

  928. 	 * 	@param	int		$notrigger				1=Does not launch triggers
    929. 

  929. 	 * 	@param	int		$nosyncmember	        Do not synchronize linked member
    930. 

  930. 	 *  @return string 			          		If OK return clear password, 0 if no change, < 0 if error
    931. 

  931. 	 */
    932. 

  932. 	function setPassword($user, $password = '', $changelater = 0, $notrigger = 0, $nosyncmember = 0) {
    933. 

  933. 		global $conf, $langs;
    934. 

  934. 		require_once(DOL_DOCUMENT_ROOT . "/core/lib/security2.lib.php");
    935. 

  935. 

  936. 		$error = 0;
    937. 

  937. 

  938. 		dol_syslog(get_class($this) . "::setPassword user=" . $user->id . " password=" . preg_replace('/./i', '*', $password) . " changelater=" . $changelater . " notrigger=" . $notrigger . " nosyncmember=" . $nosyncmember, LOG_DEBUG);
    939. 

  939. 

  940. 		// If new password not provided, we generate one
    941. 

  941. 		if (!$password) {
    942. 

  942. 			$password = getRandomPassword('');
    943. 

  943. 		}
    944. 

  944. 

  945. 		// Crypte avec md5
    946. 

  946. 		$password_crypted = dol_hash($password);
    947. 

  947. 

  948. 		// Mise a jour
    949. 

  949. 		if (!$changelater) {
    950. 

  950. 			if (!is_object($this->oldcopy))
    951. 

  951. 				$this->oldcopy = dol_clone($this);
    952. 

  952. 

  953. 			$sql = "UPDATE " . MAIN_DB_PREFIX . "user";
    954. 

  954. 			$sql.= " SET pass_crypted = '" . $this->db->escape($password_crypted) . "',";
    955. 

  955. 			$sql.= " pass_temp = null";
    956. 

  956. 			if (!empty($conf->global->DATABASE_PWD_ENCRYPTED)) {
    957. 

  957. 				$sql.= ", pass = null";
    958. 

  958. 			} else {
    959. 

  959. 				$sql.= ", pass = '" . $this->db->escape($password) . "'";
    960. 

  960. 			}
    961. 

  961. 			$sql.= " WHERE rowid = " . $this->id;
    962. 

  962. 

  963. 			dol_syslog(get_class($this) . "::setPassword sql=hidden", LOG_DEBUG);
    964. 

  964. 			$result = $this->db->query($sql);
    965. 

  965. 			if ($result) {
    966. 

  966. 				if ($this->db->affected_rows($result)) {
    967. 

  967. 					$this->pass = $password;
    968. 

  968. 					$this->pass_indatabase = $password;
    969. 

  969. 					$this->pass_indatabase_crypted = $password_crypted;
    970. 

  970. 

  971. 					if ($this->fk_member && !$nosyncmember) {
    972. 

  972. 						require_once(DOL_DOCUMENT_ROOT . "/adherents/class/adherent.class.php");
    973. 

  973. 

  974. 						// This user is linked with a member, so we also update members informations
    975. 

  975. 						// if this is an update.
    976. 

  976. 						$adh = new Adherent($this->db);
    977. 

  977. 						$result = $adh->fetch($this->fk_member);
    978. 

  978. 

  979. 						if ($result >= 0) {
    980. 

  980. 							$result = $adh->setPassword($user, $this->pass, 0, 1); // Cryptage non gere dans module adherent
    981. 

  981. 							if ($result < 0) {
    982. 

  982. 								$this->error = $adh->error;
    983. 

  983. 								dol_syslog(get_class($this) . "::setPassword " . $this->error, LOG_ERR);
    984. 

  984. 								$error++;
    985. 

  985. 							}
    986. 

  986. 						} else {
    987. 

  987. 							$this->error = $adh->error;
    988. 

  988. 							$error++;
    989. 

  989. 						}
    990. 

  990. 					}
    991. 

  991. 

  992. 					dol_syslog(get_class($this) . "::setPassword notrigger=" . $notrigger . " error=" . $error, LOG_DEBUG);
    993. 

  993. 

  994. 					if (!$error && !$notrigger) {
    995. 

  995. 						// Appel des triggers
    996. 

  996. 						include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    997. 

  997. 						$interface = new Interfaces($this->db);
    998. 

  998. 						$result = $interface->run_triggers('USER_NEW_PASSWORD', $this, $user, $langs, $conf);
    999. 

  999. 						if ($result < 0)
    1000. 

  1000. 							$this->errors = $interface->errors;
    1001. 

  1001. 						// Fin appel triggers
    1002. 

  1002. 					}
    1003. 

  1003. 

  1004. 					return $this->pass;
    1005. 

  1005. 				}
    1006. 

  1006. 				else {
    1007. 

  1007. 					return 0;
    1008. 

  1008. 				}
    1009. 

  1009. 			} else {
    1010. 

  1010. 				dol_print_error($this->db);
    1011. 

  1011. 				return -1;
    1012. 

  1012. 			}
    1013. 

  1013. 		} else {
    1014. 

  1014. 			// We store clear password in password temporary field.
    1015. 

  1015. 			// After receiving confirmation link, we will crypt it and store it in pass_crypted
    1016. 

  1016. 			$sql = "UPDATE " . MAIN_DB_PREFIX . "user";
    1017. 

  1017. 			$sql.= " SET pass_temp = '" . $this->db->escape($password) . "'";
    1018. 

  1018. 			$sql.= " WHERE rowid = " . $this->id;
    1019. 

  1019. 

  1020. 			dol_syslog(get_class($this) . "::setPassword sql=hidden", LOG_DEBUG); // No log
    1021. 

  1021. 			$result = $this->db->query($sql);
    1022. 

  1022. 			if ($result) {
    1023. 

  1023. 				return $password;
    1024. 

  1024. 			} else {
    1025. 

  1025. 				dol_print_error($this->db);
    1026. 

  1026. 				return -3;
    1027. 

  1027. 			}
    1028. 

  1028. 		}
    1029. 

  1029. 	}
    1030. 

  1030. 

  1031. 	/**
    1032. 

  1032. 	 *  Envoie mot de passe par mail
    1033. 

  1033. 	 *
    1034. 

  1034. 	 *  @param	User	$user           Object user de l'utilisateur qui fait l'envoi
    1035. 

  1035. 	 *  @param	string	$password       Nouveau mot de passe
    1036. 

  1036. 	 * 	@param	int		$changelater	1=Change password only after clicking on confirm email
    1037. 

  1037. 	 *  @return int 		            < 0 si erreur, > 0 si ok
    1038. 

  1038. 	 */
    1039. 

  1039. 	function send_password($user, $password = '', $changelater = 0) {
    1040. 

  1040. 		global $conf, $langs;
    1041. 

  1041. 		global $dolibarr_main_url_root;
    1042. 

  1042. 

  1043. 		require_once DOL_DOCUMENT_ROOT . "/core/class/CMailFile.class.php";
    1044. 

  1044. 

  1045. 		$subject = $langs->trans("SubjectNewPassword");
    1046. 

  1046. 		$msgishtml = 0;
    1047. 

  1047. 

  1048. 		// Define $msg
    1049. 

  1049. 		$mesg = '';
    1050. 

  1050. 

  1051. 		$outputlangs = new Translate();
    1052. 

  1052. 		if (isset($this->conf->MAIN_LANG_DEFAULT) && $this->conf->MAIN_LANG_DEFAULT != 'auto') { // If user has defined its own language (rare because in most cases, auto is used)
    1053. 

  1053. 			$outputlangs->getDefaultLang($this->conf->MAIN_LANG_DEFAULT);
    1054. 

  1054. 		} else { // If user has not defined its own language, we used current language
    1055. 

  1055. 			$outputlangs = $langs;
    1056. 

  1056. 		}
    1057. 

  1057. 

  1058. 		// Define urlwithouturlroot
    1059. 

  1059. 		if (!empty($_SERVER["HTTP_HOST"])) { // Autodetect main url root
    1060. 

  1060. 			$urlwithouturlroot = 'http://' . preg_replace('/' . preg_quote(DOL_URL_ROOT, '/') . '$/i', '', $_SERVER["HTTP_HOST"]);
    1061. 

  1061. 		} else {
    1062. 

  1062. 			$urlwithouturlroot = preg_replace('/' . preg_quote(DOL_URL_ROOT, '/') . '$/i', '', $dolibarr_main_url_root);
    1063. 

  1063. 		}
    1064. 

  1064. 		if (!empty($dolibarr_main_force_https))
    1065. 

  1065. 			$urlwithouturlroot = preg_replace('/http:/i', 'https:', $urlwithouturlroot);
    1066. 

  1066. 

  1067. 		// TODO Use outputlangs to translate messages
    1068. 

  1068. 		if (!$changelater) {
    1069. 

  1069. 			$mesg.= "A request to change your Dolibarr password has been received.\n";
    1070. 

  1070. 			$mesg.= "This is your new keys to login:\n\n";
    1071. 

  1071. 			$mesg.= $langs->trans("Login") . " : $this->login\n";
    1072. 

  1072. 			$mesg.= $langs->trans("Password") . " : $password\n\n";
    1073. 

  1073. 			$mesg.= "\n";
    1074. 

  1074. 			$url = $urlwithouturlroot . DOL_URL_ROOT;
    1075. 

  1075. 			$mesg.= 'Click here to go to Dolibarr: ' . $url . "\n\n";
    1076. 

  1076. 			$mesg.= "--\n";
    1077. 

  1077. 			$mesg.= $user->getFullName($langs); // Username that make then sending
    1078. 

  1078. 		} else {
    1079. 

  1079. 			$mesg.= "A request to change your Dolibarr password has been received.\n";
    1080. 

  1080. 			$mesg.= "Your new key to login will be:\n\n";
    1081. 

  1081. 			$mesg.= $langs->trans("Login") . " : $this->login\n";
    1082. 

  1082. 			$mesg.= $langs->trans("Password") . " : $password\n\n";
    1083. 

  1083. 			$mesg.= "\n";
    1084. 

  1084. 			$mesg.= "You must click on the folowing link to validate its change.\n";
    1085. 

  1085. 			$url = $urlwithouturlroot . DOL_URL_ROOT . '/user/passwordforgotten.php?action=validatenewpassword&username=' . $this->login . "&passwordmd5=" . dol_hash($password);
    1086. 

  1086. 			$mesg.= $url . "\n\n";
    1087. 

  1087. 			$mesg.= "If you didn't ask anything, just forget this email\n\n";
    1088. 

  1088. 			dol_syslog(get_class($this) . "::send_password url=" . $url);
    1089. 

  1089. 		}
    1090. 

  1090. 		$mailfile = new CMailFile(
    1091. 

  1091. 				$subject, $this->email, $conf->notification->email_from, $mesg, array(), array(), array(), '', '', 0, $msgishtml
    1092. 

  1092. 		);
    1093. 

  1093. 

  1094. 		if ($mailfile->sendfile()) {
    1095. 

  1095. 			return 1;
    1096. 

  1096. 		} else {
    1097. 

  1097. 			$langs->trans("errors");
    1098. 

  1098. 			$this->error = $langs->trans("ErrorFailedToSendPassword") . ' ' . $mailfile->error;
    1099. 

  1099. 			return -1;
    1100. 

  1100. 		}
    1101. 

  1101. 	}
    1102. 

  1102. 

  1103. 	/**
    1104. 

  1104. 	 * 		Renvoie la derniere erreur fonctionnelle de manipulation de l'objet
    1105. 

  1105. 	 *
    1106. 

  1106. 	 * 		@return    string      chaine erreur
    1107. 

  1107. 	 */
    1108. 

  1108. 	function error() {
    1109. 

  1109. 		return $this->error;
    1110. 

  1110. 	}
    1111. 

  1111. 

  1112. 	/**
    1113. 

  1113. 	 *    	Read clicktodial information for user
    1114. 

  1114. 	 *
    1115. 

  1115. 	 * 		@return		<0 if KO, >0 if OK
    1116. 

  1116. 	 */
    1117. 

  1117. 	function fetch_clicktodial() {
    1118. 

  1118. 		$sql = "SELECT login, pass, poste ";
    1119. 

  1119. 		$sql.= " FROM " . MAIN_DB_PREFIX . "user_clicktodial as u";
    1120. 

  1120. 		$sql.= " WHERE u.fk_user = " . $this->id;
    1121. 

  1121. 

  1122. 		$resql = $this->db->query($sql);
    1123. 

  1123. 		if ($resql) {
    1124. 

  1124. 			if ($this->db->num_rows($resql)) {
    1125. 

  1125. 				$obj = $this->db->fetch_object($resql);
    1126. 

  1126. 

  1127. 				$this->clicktodial_login = $obj->login;
    1128. 

  1128. 				$this->clicktodial_password = $obj->pass;
    1129. 

  1129. 				$this->clicktodial_poste = $obj->poste;
    1130. 

  1130. 			}
    1131. 

  1131. 

  1132. 			$this->clicktodial_loaded = 1; // Data loaded (found or not)
    1133. 

  1133. 

  1134. 			$this->db->free($resql);
    1135. 

  1135. 			return 1;
    1136. 

  1136. 		} else {
    1137. 

  1137. 			$this->error = $this->db->error();
    1138. 

  1138. 			return -1;
    1139. 

  1139. 		}
    1140. 

  1140. 	}
    1141. 

  1141. 

  1142. 	/**
    1143. 

  1143. 	 *  Update clicktodial info
    1144. 

  1144. 	 *
    1145. 

  1145. 	 *  @return	void
    1146. 

  1146. 	 */
    1147. 

  1147. 	function update_clicktodial() {
    1148. 

  1148. 		$this->db->begin();
    1149. 

  1149. 

  1150. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "user_clicktodial";
    1151. 

  1151. 		$sql .= " WHERE fk_user = " . $this->id;
    1152. 

  1152. 

  1153. 		$result = $this->db->query($sql);
    1154. 

  1154. 

  1155. 		$sql = "INSERT INTO " . MAIN_DB_PREFIX . "user_clicktodial";
    1156. 

  1156. 		$sql .= " (fk_user,login,pass,poste)";
    1157. 

  1157. 		$sql .= " VALUES (" . $this->id;
    1158. 

  1158. 		$sql .= ", '" . $this->clicktodial_login . "'";
    1159. 

  1159. 		$sql .= ", '" . $this->clicktodial_password . "'";
    1160. 

  1160. 		$sql .= ", '" . $this->clicktodial_poste . "')";
    1161. 

  1161. 

  1162. 		$result = $this->db->query($sql);
    1163. 

  1163. 

  1164. 		if ($result) {
    1165. 

  1165. 			$this->db->commit();
    1166. 

  1166. 			return 0;
    1167. 

  1167. 		} else {
    1168. 

  1168. 			$this->db->rollback();
    1169. 

  1169. 			$this->error = $this->db->error();
    1170. 

  1170. 			return -1;
    1171. 

  1171. 		}
    1172. 

  1172. 	}
    1173. 

  1173. 

  1174. 	/**
    1175. 

  1175. 	 *  Add user into a group
    1176. 

  1176. 	 *
    1177. 

  1177. 	 *  @param	Group	$group      Id of group
    1178. 

  1178. 	 *  @param  int		$entity     Entity
    1179. 

  1179. 	 *  @param  int		$notrigger  Disable triggers
    1180. 

  1180. 	 *  @return int  				<0 if KO, >0 if OK
    1181. 

  1181. 	 */
    1182. 

  1182. 	function SetInGroup($group, $entity, $notrigger = 0) {
    1183. 

  1183. 		global $conf, $langs, $user;
    1184. 

  1184. 

  1185. 		$error = 0;
    1186. 

  1186. 

  1187. 		$this->db->begin();
    1188. 

  1188. 

  1189. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "usergroup_user";
    1190. 

  1190. 		$sql.= " WHERE fk_user  = " . $this->id;
    1191. 

  1191. 		$sql.= " AND fk_usergroup = " . $group;
    1192. 

  1192. 		$sql.= " AND entity = " . $entity;
    1193. 

  1193. 

  1194. 		$result = $this->db->query($sql);
    1195. 

  1195. 

  1196. 		$sql = "INSERT INTO " . MAIN_DB_PREFIX . "usergroup_user (entity, fk_user, fk_usergroup)";
    1197. 

  1197. 		$sql.= " VALUES (" . $entity . "," . $this->id . "," . $group . ")";
    1198. 

  1198. 

  1199. 		$result = $this->db->query($sql);
    1200. 

  1200. 		if ($result) {
    1201. 

  1201. 			if (!$error && !$notrigger) {
    1202. 

  1202. 				$this->newgroupid = $group;
    1203. 

  1203. 

  1204. 				// Appel des triggers
    1205. 

  1205. 				include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    1206. 

  1206. 				$interface = new Interfaces($this->db);
    1207. 

  1207. 				$result = $interface->run_triggers('USER_SETINGROUP', $this, $user, $langs, $conf);
    1208. 

  1208. 				if ($result < 0) {
    1209. 

  1209. 					$error++;
    1210. 

  1210. 					$this->errors = $interface->errors;
    1211. 

  1211. 				}
    1212. 

  1212. 				// Fin appel triggers
    1213. 

  1213. 			}
    1214. 

  1214. 

  1215. 			if (!$error) {
    1216. 

  1216. 				$this->db->commit();
    1217. 

  1217. 				return 1;
    1218. 

  1218. 			} else {
    1219. 

  1219. 				$this->error = $interface->error;
    1220. 

  1220. 				dol_syslog(get_class($this) . "::SetInGroup " . $this->error, LOG_ERR);
    1221. 

  1221. 				$this->db->rollback();
    1222. 

  1222. 				return -2;
    1223. 

  1223. 			}
    1224. 

  1224. 		} else {
    1225. 

  1225. 			$this->error = $this->db->lasterror();
    1226. 

  1226. 			dol_syslog(get_class($this) . "::SetInGroup " . $this->error, LOG_ERR);
    1227. 

  1227. 			$this->db->rollback();
    1228. 

  1228. 			return -1;
    1229. 

  1229. 		}
    1230. 

  1230. 	}
    1231. 

  1231. 

  1232. 	/**
    1233. 

  1233. 	 *  Remove a user from a group
    1234. 

  1234. 	 *
    1235. 

  1235. 	 *  @param	Group   $group       Id of group
    1236. 

  1236. 	 *  @param  int		$entity      Entity
    1237. 

  1237. 	 *  @param  int		$notrigger   Disable triggers
    1238. 

  1238. 	 *  @return int  			     <0 if KO, >0 if OK
    1239. 

  1239. 	 */
    1240. 

  1240. 	function RemoveFromGroup($group, $entity, $notrigger = 0) {
    1241. 

  1241. 		global $conf, $langs, $user;
    1242. 

  1242. 

  1243. 		$error = 0;
    1244. 

  1244. 

  1245. 		$this->db->begin();
    1246. 

  1246. 

  1247. 		$sql = "DELETE FROM " . MAIN_DB_PREFIX . "usergroup_user";
    1248. 

  1248. 		$sql.= " WHERE fk_user  = " . $this->id;
    1249. 

  1249. 		$sql.= " AND fk_usergroup = " . $group;
    1250. 

  1250. 		$sql.= " AND entity = " . $entity;
    1251. 

  1251. 

  1252. 		$result = $this->db->query($sql);
    1253. 

  1253. 		if ($result) {
    1254. 

  1254. 			if (!$error && !$notrigger) {
    1255. 

  1255. 				$this->oldgroupid = $group;
    1256. 

  1256. 

  1257. 				// Appel des triggers
    1258. 

  1258. 				include_once(DOL_DOCUMENT_ROOT . "/core/class/interfaces.class.php");
    1259. 

  1259. 				$interface = new Interfaces($this->db);
    1260. 

  1260. 				$result = $interface->run_triggers('USER_REMOVEFROMGROUP', $this, $user, $langs, $conf);
    1261. 

  1261. 				if ($result < 0) {
    1262. 

  1262. 					$error++;
    1263. 

  1263. 					$this->errors = $interface->errors;
    1264. 

  1264. 				}
    1265. 

  1265. 				// Fin appel triggers
    1266. 

  1266. 			}
    1267. 

  1267. 

  1268. 			if (!$error) {
    1269. 

  1269. 				$this->db->commit();
    1270. 

  1270. 				return 1;
    1271. 

  1271. 			} else {
    1272. 

  1272. 				$this->error = $interface->error;
    1273. 

  1273. 				dol_syslog(get_class($this) . "::RemoveFromGroup " . $this->error, LOG_ERR);
    1274. 

  1274. 				$this->db->rollback();
    1275. 

  1275. 				return -2;
    1276. 

  1276. 			}
    1277. 

  1277. 		} else {
    1278. 

  1278. 			$this->error = $this->db->lasterror();
    1279. 

  1279. 			dol_syslog(get_class($this) . "::RemoveFromGroup " . $this->error, LOG_ERR);
    1280. 

  1280. 			$this->db->rollback();
    1281. 

  1281. 			return -1;
    1282. 

  1282. 		}
    1283. 

  1283. 	}
    1284. 

  1284. 

  1285. 	/**
    1286. 

  1286. 	 *  Return a link to the user card (with optionnaly the picto)
    1287. 

  1287. 	 * 	Use this->id,this->nom, this->prenom
    1288. 

  1288. 	 *
    1289. 

  1289. 	 * 	@param	int		$withpicto		Include picto in link (0=No picto, 1=Inclut le picto dans le lien, 2=Picto seul)
    1290. 

  1290. 	 * 	@param	string	$option			On what the link point to
    1291. 

  1291. 	 * 	@return	string					String with URL
    1292. 

  1292. 	 */
    1293. 

  1293. 	function getNomUrl($withpicto = 0, $option = '') {
    1294. 

  1294. 		global $langs;
    1295. 

  1295. 

  1296. 		$result = '';
    1297. 

  1297. 

  1298. 		$lien = '<a href="' . DOL_URL_ROOT . '/user/fiche.php?id=' . $this->id . '">';
    1299. 

  1299. 		$lienfin = '</a>';
    1300. 

  1300. 

  1301. 		if ($option == 'xxx') {
    1302. 

  1302. 			$lien = '<a href="' . DOL_URL_ROOT . '/user/fiche.php?id=' . $this->id . '">';
    1303. 

  1303. 			$lienfin = '</a>';
    1304. 

  1304. 		}
    1305. 

  1305. 		
    1306. 

  1306. 		if ($option == 'span') {
    1307. 

  1307. 			$lien = '<span>';
    1308. 

  1308. 			$lienfin = '</span>';
    1309. 

  1309. 		}
    1310. 

  1310. 

  1311. 		if ($withpicto)
    1312. 

  1312. 			$result.=($lien . img_object($langs->trans("ShowUser"), 'user') . $lienfin);
    1313. 

  1313. 		if ($withpicto && $withpicto != 2)
    1314. 

  1314. 			$result.=' ';
    1315. 

  1315. 		$result.=$lien . $this->getFullName($langs) . $lienfin;
    1316. 

  1316. 		return $result;
    1317. 

  1317. 	}
    1318. 

  1318. 

  1319. 	/**
    1320. 

  1320. 	 *  Renvoie login clicable (avec eventuellement le picto)
    1321. 

  1321. 	 *
    1322. 

  1322. 	 * 	@param	int		$withpicto		Inclut le picto dans le lien
    1323. 

  1323. 	 * 	@param	string	$option			Sur quoi pointe le lien
    1324. 

  1324. 	 * 	@return	string					Chaine avec URL
    1325. 

  1325. 	 */
    1326. 

  1326. 	function getLoginUrl($withpicto = 0, $option = '') {
    1327. 

  1327. 		global $langs;
    1328. 

  1328. 

  1329. 		$result = '';
    1330. 

  1330. 

  1331. 		$lien = '<a href="' . DOL_URL_ROOT . '/user/fiche.php?id=' . $this->id . '">';
    1332. 

  1332. 		$lienfin = '</a>';
    1333. 

  1333. 

  1334. 		if ($option == 'xxx') {
    1335. 

  1335. 			$lien = '<a href="' . DOL_URL_ROOT . '/user/fiche.php?id=' . $this->id . '">';
    1336. 

  1336. 			$lienfin = '</a>';
    1337. 

  1337. 		}
    1338. 

  1338. 

  1339. 		if ($withpicto)
    1340. 

  1340. 			$result.=($lien . img_object($langs->trans("ShowUser"), 'user') . $lienfin . ' ');
    1341. 

  1341. 		$result.=$lien . $this->login . $lienfin;
    1342. 

  1342. 		return $result;
    1343. 

  1343. 	}
    1344. 

  1344. 

  1345. 	/**
    1346. 

  1346. 	 * 	Retourne chaine DN complete dans l'annuaire LDAP pour l'objet
    1347. 

  1347. 	 *
    1348. 

  1348. 	 * 	@param	string	$info		Info string loaded by _load_ldap_info
    1349. 

  1349. 	 * 	@param	int		$mode		0=Return full DN (uid=qqq,ou=xxx,dc=aaa,dc=bbb)
    1350. 

  1350. 	 * 								1=
    1351. 

  1351. 	 * 								2=Return key only (uid=qqq)
    1352. 

  1352. 	 * 	@return	string				DN
    1353. 

  1353. 	 */
    1354. 

  1354. 	function _load_ldap_dn($info, $mode = 0) {
    1355. 

  1355. 		global $conf;
    1356. 

  1356. 		$dn = '';
    1357. 

  1357. 		if ($mode == 0)
    1358. 

  1358. 			$dn = $conf->global->LDAP_KEY_USERS . "=" . $info[$conf->global->LDAP_KEY_USERS] . "," . $conf->global->LDAP_USER_DN;
    1359. 

  1359. 		if ($mode == 1)
    1360. 

  1360. 			$dn = $conf->global->LDAP_USER_DN;
    1361. 

  1361. 		if ($mode == 2)
    1362. 

  1362. 			$dn = $conf->global->LDAP_KEY_USERS . "=" . $info[$conf->global->LDAP_KEY_USERS];
    1363. 

  1363. 		return $dn;
    1364. 

  1364. 	}
    1365. 

  1365. 

  1366. 	/**
    1367. 

  1367. 	 * 	Initialize the info array (array of LDAP values) that will be used to call LDAP functions
    1368. 

  1368. 	 *
    1369. 

  1369. 	 * 	@return		array		Tableau info des attributs
    1370. 

  1370. 	 */
    1371. 

  1371. 	function _load_ldap_info() {
    1372. 

  1372. 		global $conf, $langs;
    1373. 

  1373. 

  1374. 		$info = array();
    1375. 

  1375. 

  1376. 		// Object classes
    1377. 

  1377. 		$info["objectclass"] = explode(',', $conf->global->LDAP_USER_OBJECT_CLASS);
    1378. 

  1378. 

  1379. 		$this->fullname = $this->getFullName($langs);
    1380. 

  1380. 

  1381. 		// Champs
    1382. 

  1382. 		if ($this->fullname && $conf->global->LDAP_FIELD_FULLNAME)
    1383. 

  1383. 			$info[$conf->global->LDAP_FIELD_FULLNAME] = $this->fullname;
    1384. 

  1384. 		if ($this->lastname && $conf->global->LDAP_FIELD_NAME)
    1385. 

  1385. 			$info[$conf->global->LDAP_FIELD_NAME] = $this->lastname;
    1386. 

  1386. 		if ($this->firstname && $conf->global->LDAP_FIELD_FIRSTNAME)
    1387. 

  1387. 			$info[$conf->global->LDAP_FIELD_FIRSTNAME] = $this->firstname;
    1388. 

  1388. 		if ($this->login && $conf->global->LDAP_FIELD_LOGIN)
    1389. 

  1389. 			$info[$conf->global->LDAP_FIELD_LOGIN] = $this->login;
    1390. 

  1390. 		if ($this->login && $conf->global->LDAP_FIELD_LOGIN_SAMBA)
    1391. 

  1391. 			$info[$conf->global->LDAP_FIELD_LOGIN_SAMBA] = $this->login;
    1392. 

  1392. 		if ($this->pass && $conf->global->LDAP_FIELD_PASSWORD)
    1393. 

  1393. 			$info[$conf->global->LDAP_FIELD_PASSWORD] = $this->pass; // this->pass = mot de passe non crypte
    1394. 

  1394. 		if ($this->ldap_sid && $conf->global->LDAP_FIELD_SID)
    1395. 

  1395. 			$info[$conf->global->LDAP_FIELD_SID] = $this->ldap_sid;
    1396. 

  1396. 		if ($this->societe_id > 0) {
    1397. 

  1397. 			$soc = new Societe($this->db);
    1398. 

  1398. 			$soc->fetch($this->societe_id);
    1399. 

  1399. 

  1400. 			$info["o"] = $soc->nom;
    1401. 

  1401. 			if ($soc->client == 1)
    1402. 

  1402. 				$info["businessCategory"] = "Customers";
    1403. 

  1403. 			if ($soc->client == 2)
    1404. 

  1404. 				$info["businessCategory"] = "Prospects";
    1405. 

  1405. 			if ($soc->fournisseur == 1)
    1406. 

  1406. 				$info["businessCategory"] = "Suppliers";
    1407. 

  1407. 		}
    1408. 

  1408. 		if ($this->address && $conf->global->LDAP_FIELD_ADDRESS)
    1409. 

  1409. 			$info[$conf->global->LDAP_FIELD_ADDRESS] = $this->address;
    1410. 

  1410. 		if ($this->zip && $conf->global->LDAP_FIELD_ZIP)
    1411. 

  1411. 			$info[$conf->global->LDAP_FIELD_ZIP] = $this->zip;
    1412. 

  1412. 		if ($this->town && $conf->global->LDAP_FIELD_TOWN)
    1413. 

  1413. 			$info[$conf->global->LDAP_FIELD_TOWN] = $this->town;
    1414. 

  1414. 		if ($this->office_phone && $conf->global->LDAP_FIELD_PHONE)
    1415. 

  1415. 			$info[$conf->global->LDAP_FIELD_PHONE] = $this->office_phone;
    1416. 

  1416. 		if ($this->user_mobile && $conf->global->LDAP_FIELD_MOBILE)
    1417. 

  1417. 			$info[$conf->global->LDAP_FIELD_MOBILE] = $this->user_mobile;
    1418. 

  1418. 		if ($this->office_fax && $conf->global->LDAP_FIELD_FAX)
    1419. 

  1419. 			$info[$conf->global->LDAP_FIELD_FAX] = $this->office_fax;
    1420. 

  1420. 		if ($this->note && $conf->global->LDAP_FIELD_DESCRIPTION)
    1421. 

  1421. 			$info[$conf->global->LDAP_FIELD_DESCRIPTION] = $this->note;
    1422. 

  1422. 		if ($this->email && $conf->global->LDAP_FIELD_MAIL)
    1423. 

  1423. 			$info[$conf->global->LDAP_FIELD_MAIL] = $this->email;
    1424. 

  1424. 

  1425. 		if ($conf->global->LDAP_SERVER_TYPE == 'egroupware') {
    1426. 

  1426. 			$info["objectclass"][4] = "phpgwContact"; // compatibilite egroupware
    1427. 

  1427. 

  1428. 			$info['uidnumber'] = $this->id;
    1429. 

  1429. 

  1430. 			$info['phpgwTz'] = 0;
    1431. 

  1431. 			$info['phpgwMailType'] = 'INTERNET';
    1432. 

  1432. 			$info['phpgwMailHomeType'] = 'INTERNET';
    1433. 

  1433. 

  1434. 			$info["phpgwContactTypeId"] = 'n';
    1435. 

  1435. 			$info["phpgwContactCatId"] = 0;
    1436. 

  1436. 			$info["phpgwContactAccess"] = "public";
    1437. 

  1437. 

  1438. 			if (dol_strlen($this->egroupware_id) == 0) {
    1439. 

  1439. 				$this->egroupware_id = 1;
    1440. 

  1440. 			}
    1441. 

  1441. 

  1442. 			$info["phpgwContactOwner"] = $this->egroupware_id;
    1443. 

  1443. 

  1444. 			if ($this->email)
    1445. 

  1445. 				$info["rfc822Mailbox"] = $this->email;
    1446. 

  1446. 			if ($this->phone_mobile)
    1447. 

  1447. 				$info["phpgwCellTelephoneNumber"] = $this->phone_mobile;
    1448. 

  1448. 		}
    1449. 

  1449. 

  1450. 		return $info;
    1451. 

  1451. 	}
    1452. 

  1452. 

  1453. 	/**
    1454. 

  1454. 	 *  Initialise an instance with random values.
    1455. 

  1455. 	 *  Used to build previews or test instances.
    1456. 

  1456. 	 * 	id must be 0 if object instance is a specimen.
    1457. 

  1457. 	 *
    1458. 

  1458. 	 *  @return	void
    1459. 

  1459. 	 */
    1460. 

  1460. 	function initAsSpecimen() {
    1461. 

  1461. 		global $user, $langs;
    1462. 

  1462. 

  1463. 		// Initialise parametres
    1464. 

  1464. 		$this->id = 0;
    1465. 

  1465. 		$this->ref = 'SPECIMEN';
    1466. 

  1466. 		$this->specimen = 1;
    1467. 

  1467. 

  1468. 		$this->nom = 'DOLIBARR';  // deprecated
    1469. 

  1469. 		$this->prenom = 'SPECIMEN';  // deprecated
    1470. 

  1470. 		$this->lastname = 'DOLIBARR';
    1471. 

  1471. 		$this->firstname = 'SPECIMEN';
    1472. 

  1472. 		$this->note = 'This is a note';
    1473. 

  1473. 		$this->email = 'email@specimen.com';
    1474. 

  1474. 		$this->office_phone = '0999999999';
    1475. 

  1475. 		$this->office_fax = '0999999998';
    1476. 

  1476. 		$this->user_mobile = '0999999997';
    1477. 

  1477. 		$this->admin = 0;
    1478. 

  1478. 		$this->login = 'dolibspec';
    1479. 

  1479. 		$this->pass = 'dolibspec';
    1480. 

  1480. 		$this->datec = time();
    1481. 

  1481. 		$this->datem = time();
    1482. 

  1482. 		$this->webcal_login = 'dolibspec';
    1483. 

  1483. 

  1484. 		$this->datelastlogin = time();
    1485. 

  1485. 		$this->datepreviouslogin = time();
    1486. 

  1486. 		$this->statut = 1;
    1487. 

  1487. 

  1488. 		$this->societe_id = 1;
    1489. 

  1489. 	}
    1490. 

  1490. 

  1491. 	/**
    1492. 

  1492. 	 *  Load info of user object
    1493. 

  1493. 	 *
    1494. 

  1494. 	 *  @param  int		$id     Id of user to load
    1495. 

  1495. 	 *  @return	void
    1496. 

  1496. 	 */
    1497. 

  1497. 	function info($id) {
    1498. 

  1498. 		$sql = "SELECT u.rowid, u.login as ref, u.datec,";
    1499. 

  1499. 		$sql.= " u.tms as date_modification, u.entity";
    1500. 

  1500. 		$sql.= " FROM " . MAIN_DB_PREFIX . "user as u";
    1501. 

  1501. 		$sql.= " WHERE u.rowid = " . $id;
    1502. 

  1502. 

  1503. 		$result = $this->db->query($sql);
    1504. 

  1504. 		if ($result) {
    1505. 

  1505. 			if ($this->db->num_rows($result)) {
    1506. 

  1506. 				$obj = $this->db->fetch_object($result);
    1507. 

  1507. 

  1508. 				$this->id = $obj->rowid;
    1509. 

  1509. 

  1510. 				$this->ref = (!$obj->ref) ? $obj->rowid : $obj->ref;
    1511. 

  1511. 				$this->date_creation = $this->db->jdate($obj->datec);
    1512. 

  1512. 				$this->date_modification = $this->db->jdate($obj->date_modification);
    1513. 

  1513. 				$this->entity = $obj->entity;
    1514. 

  1514. 			}
    1515. 

  1515. 

  1516. 			$this->db->free($result);
    1517. 

  1517. 		} else {
    1518. 

  1518. 			dol_print_error($this->db);
    1519. 

  1519. 		}
    1520. 

  1520. 	}
    1521. 

  1521. 

  1522. 	/**
    1523. 

  1523. 	 *    Return number of mass Emailing received by this contacts with its email
    1524. 

  1524. 	 *
    1525. 

  1525. 	 *    @return       int     Number of EMailings
    1526. 

  1526. 	 */
    1527. 

  1527. 	function getNbOfEMailings() {
    1528. 

  1528. 		$sql = "SELECT count(mc.email) as nb";
    1529. 

  1529. 		$sql.= " FROM " . MAIN_DB_PREFIX . "mailing_cibles as mc";
    1530. 

  1530. 		$sql.= " WHERE mc.email = '" . $this->db->escape($this->email) . "'";
    1531. 

  1531. 		$sql.= " AND mc.statut=1";   // -1 erreur, 0 non envoye, 1 envoye avec succes
    1532. 

  1532. 		$resql = $this->db->query($sql);
    1533. 

  1533. 		if ($resql) {
    1534. 

  1534. 			$obj = $this->db->fetch_object($resql);
    1535. 

  1535. 			$nb = $obj->nb;
    1536. 

  1536. 

  1537. 			$this->db->free($resql);
    1538. 

  1538. 			return $nb;
    1539. 

  1539. 		} else {
    1540. 

  1540. 			$this->error = $this->db->error();
    1541. 

  1541. 			return -1;
    1542. 

  1542. 		}
    1543. 

  1543. 	}
    1544. 

  1544. 

  1545. 	/**
    1546. 

  1546. 	 *  Return number of existing users
    1547. 

  1547. 	 *
    1548. 

  1548. 	 *  @param	string	$limitTo	Limit to 'active' or 'superadmin' users
    1549. 

  1549. 	 *  @param	int		$all		Return for all entities
    1550. 

  1550. 	 *  @return int  				Number of users
    1551. 

  1551. 	 */
    1552. 

  1552. 	function getNbOfUsers($limitTo = '') {
    1553. 

  1553. 		global $conf;
    1554. 

  1554. 

  1555. 		try {
    1556. 

  1556. 			$result = $this->couchAdmin->getAllUsers();
    1557. 

  1557. 		} catch (Exception $e) {
    1558. 

  1558. 			return 0;
    1559. 

  1559. 		}
    1560. 

  1560. 

  1561. 		return count($result);
    1562. 

  1562. 	}
    1563. 

  1563. 

  1564. 	function getAllUsers($include_docs) {
    1565. 

  1565. 		return $this->couchAdmin->getAllUsers($include_docs);
    1566. 

  1566. 	}
    1567. 

  1567. 

  1568. 	function getUserAdmins() {
    1569. 

  1569. 		$result = $this->couchAdmin->getUserAdmins();
    1570. 

  1570. 

  1571. 		$result_roles = $this->couchAdmin->getAllUsers(true);
    1572. 

  1572. 		foreach ($result_roles as $aRow) {
    1573. 

  1573. 			if (in_array("_admin", $aRow->doc->roles, true)) {
    1574. 

  1574. 				$name = $aRow->doc->name;
    1575. 

  1575. 				$result->$name = true;
    1576. 

  1576. 			}
    1577. 

  1577. 		}
    1578. 

  1578. 		return $result;
    1579. 

  1579. 	}
    1580. 

  1580. 

  1581. 	function getDatabaseAdminUsers() {
    1582. 

  1582. 		return $this->couchAdmin->getDatabaseAdminUsers();
    1583. 

  1583. 	}
    1584. 

  1584. 

  1585. 	function getDatabaseReaderUsers() {
    1586. 

  1586. 		return $this->couchAdmin->getDatabaseReaderUsers();
    1587. 

  1587. 	}
    1588. 

  1588. 

  1589. 	function getLibStatus() {
    1590. 

  1590. 		return $this->LibStatus($this->Status);
    1591. 

  1591. 	}
    1592. 

  1592. 

  1593. 	function addRoleToUser($role) {
    1594. 

  1594. 		return $this->couchAdmin->addRoleToUser($this->name, $role);
    1595. 

  1595. 	}
    1596. 

  1596. 

  1597. 	function removeRoleFromUser($role) {
    1598. 

  1598. 		return $this->couchAdmin->removeRoleFromUser($this->name, $role);
    1599. 

  1599. 	}
    1600. 

  1600. 

  1601. }
    1602. 

  1602. 

  1603. ?>
    1604. 

  1604.