PageRenderTime 26ms CodeModel.GetById 19ms RepoModel.GetById 0ms app.codeStats 1ms

/workflow/engine/methods/authSources/authSources_Ajax.php

https://bitbucket.org/ferOnti/processmaker
PHP | 190 lines | 152 code | 11 blank | 27 comment | 23 complexity | 674bf3b30652c8eed02fb4bf6631e608 MD5 | raw file
    

  1. <?php

    2. 

  2. /**

    3. 

  3.  * authSources_Ajax.php

    4. 

  4.  *

    5. 

  5.  * ProcessMaker Open Source Edition

    6. 

  6.  * Copyright (C) 2004 - 2011 Colosa Inc.23

    7. 

  7.  *

    8. 

  8.  * This program is free software: you can redistribute it and/or modify

    9. 

  9.  * it under the terms of the GNU Affero General Public License as

    10. 

  10.  * published by the Free Software Foundation, either version 3 of the

    11. 

  11.  * License, or (at your option) any later version.

    12. 

  12.  *

    13. 

  13.  * This program is distributed in the hope that it will be useful,

    14. 

  14.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

    15. 

  15.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

    16. 

  16.  * GNU Affero General Public License for more details.

    17. 

  17.  *

    18. 

  18.  * You should have received a copy of the GNU Affero General Public License

    19. 

  19.  * along with this program. If not, see <http://www.gnu.org/licenses/>.

    20. 

  20.  *

    21. 

  21.  * For more information, contact Colosa Inc, 2566 Le Jeune Rd.,

    22. 

  22.  * Coral Gables, FL, 33134, USA, or email info@colosa.com.

    23. 

  23.  */

    24. 

  24. try {

    25. 

  25.     global $RBAC;

    26. 

  26.     if ($RBAC->userCanAccess( 'PM_SETUP_ADVANCE' ) != 1) {

    27. 

  27.         G::SendTemporalMessage( 'ID_USER_HAVENT_RIGHTS_PAGE', 'error', 'labels' );

    28. 

  28.         G::header( 'location: ../login/login' );

    29. 

  29.         die();

    30. 

  30.     }

    31. 

  31. 

    32. 

  32.     switch ($_REQUEST['action']) {

    33. 

  33.         case 'searchUsers':

    34. 

  34.             require_once 'classes/model/Users.php';

    35. 

  35.             $criteria = new Criteria( 'workflow' );

    36. 

  36.             $criteria->addSelectColumn( UsersPeer::USR_USERNAME );

    37. 

  37.             $criteria->add( UsersPeer::USR_STATUS, array ('CLOSED'

    38. 

  38.             ), Criteria::NOT_IN );

    39. 

  39.             $dataset = UsersPeer::DoSelectRs( $criteria );

    40. 

  40.             $dataset->setFetchmode( ResultSet::FETCHMODE_ASSOC );

    41. 

  41.             $dataset->next();

    42. 

  42.             $pmUsers = array ();

    43. 

  43.             while ($row = $dataset->getRow()) {

    44. 

  44.                 $pmUsers[] = $row['USR_USERNAME'];

    45. 

  45.                 $dataset->next();

    46. 

  46.             }

    47. 

  47. 

    48. 

  48.             $aFields = $RBAC->getAuthSource( $_POST['sUID'] );            

    49. 

  49.             G::LoadThirdParty( 'pear/json', 'class.json' );

    50. 

  50.             $oJSON = new Services_JSON();

    51. 

  51.             $i = 0;

    52. 

  52.             $oUser = new Users();

    53. 

  53.             $aAux = $RBAC->searchUsers( $_POST['sUID'], $_POST['sKeyword'] );

    54. 

  54.             $aUsers = array ();

    55. 

  55.             // note added by gustavo cruz gustavo-at-colosa.com

    56. 

  56.             // changed the user data showed to accept FirstName and LastName variables

    57. 

  57.             $aUsers[] = array ('Checkbox' => 'char','Username' => 'char','FullName' => 'char','FirstName' => 'char','LastName' => 'char','Email' => 'char','DistinguishedName' => 'char'

    58. 

  58.             );

    59. 

  59.             foreach ($aAux as $aUser) {

    60. 

  60.                 if (! in_array( $aUser['sUsername'], $pmUsers )) {

    61. 

  61.                     // add replace to change D'Souza to D*Souza by krlos

    62. 

  62.                     $sCheckbox = '<div align="center"><input type="checkbox" name="aUsers[' . $i . ']" id="aUsers[' . $i . ']" value=\'' . str_replace( "\'", "*", addslashes( $oJSON->encode( $aUser ) ) ) . '\' /></div>';

    63. 

  63.                     $i ++;

    64. 

  64.                 } else {

    65. 

  65.                     $sCheckbox = G::LoadTranslation( 'ID_USER_REGISTERED' ) . ':<br />(' . $aUser['sUsername'] . ')';

    66. 

  66.                 }

    67. 

  67.                 // note added by gustavo cruz gustavo-at-colosa.com

    68. 

  68.                 // assign the user data to the DBArray variable.

    69. 

  69.                 $aUsers[] = array ('Checkbox' => $sCheckbox,'Username' => $aUser['sUsername'],'FullName' => $aUser['sFullname'],'FirstName' => $aUser['sFirstname'],'LastName' => $aUser['sLastname'],'Email' => $aUser['sEmail'],'DistinguishedName' => $aUser['sDN']

    70. 

  70.                 );

    71. 

  71.             }

    72. 

  72.             global $_DBArray;

    73. 

  73.             $_DBArray['users'] = $aUsers;

    74. 

  74.             $_SESSION['_DBArray'] = $_DBArray;

    75. 

  75.             G::LoadClass( 'ArrayPeer' );

    76. 

  76.             $oCriteria = new Criteria( 'dbarray' );

    77. 

  77.             $oCriteria->setDBArrayTable( 'users' );

    78. 

  78.             $aData = Array ('Checkbox' => '0','FullName' => '0'

    79. 

  79.             );

    80. 

  80. 

    81. 

  81.             global $G_PUBLISH;

    82. 

  82.             $G_PUBLISH = new Publisher();

    83. 

  83.             if ($aFields['AUTH_SOURCE_PROVIDER'] != 'ldap') {

    84. 

  84.                 $G_PUBLISH->AddContent( 'propeltable', 'pagedTableLdap', 'authSources/ldapSearchResults', $oCriteria, ' ', array ('Checkbox' => G::LoadTranslation( 'ID_MSG_CONFIRM_DELETE_CASE_SCHEDULER' )

    85. 

  85.                 ) );

    86. 

  86.             } else {

    87. 

  87.                 if (file_exists( PATH_XMLFORM . 'authSources/' . $aFields['AUTH_SOURCE_PROVIDER'] . 'Edit.xml' )) {

    88. 

  88.                     $G_PUBLISH->AddContent( 'propeltable', 'pagedTableLdap', 'authSources/' . $aFields['AUTH_SOURCE_PROVIDER'] . 'SearchResults', $oCriteria, ' ', array ('Checkbox' => G::LoadTranslation( 'ID_MSG_CONFIRM_DELETE_CASE_SCHEDULER' )

    89. 

  89.                     ) );

    90. 

  90.                 } else {

    91. 

  91.                     $G_PUBLISH->AddContent( 'xmlform', 'xmlform', 'login/showMessage', '', array ('MESSAGE' => 'File: ' . $aFields['AUTH_SOURCE_PROVIDER'] . 'SearchResults.xml' . ' doesn\'t exist.'

    92. 

  92.                     ) );

    93. 

  93.                 }

    94. 

  94.             }

    95. 

  95.             G::RenderPage( 'publish', 'raw' );

    96. 

  96.             break;

    97. 

  97.         case 'authSourcesList':

    98. 

  98.             require_once PATH_RBAC . 'model/AuthenticationSource.php';

    99. 

  99.             global $RBAC;

    100. 

  100.             G::LoadClass( 'configuration' );

    101. 

  101.             $co = new Configurations();

    102. 

  102.             $config = $co->getConfiguration( 'authSourcesList', 'pageSize', '', $_SESSION['USER_LOGGED'] );

    103. 

  103.             $limit_size = isset( $config['pageSize'] ) ? $config['pageSize'] : 20;

    104. 

  104. 

    105. 

  105.             $start = isset( $_REQUEST['start'] ) ? $_REQUEST['start'] : 0;

    106. 

  106.             $limit = isset( $_REQUEST['limit'] ) ? $_REQUEST['limit'] : $limit_size;

    107. 

  107.             $filter = isset( $_REQUEST['textFilter'] ) ? $_REQUEST['textFilter'] : '';

    108. 

  108. 

    109. 

  109.             $Criterias = $RBAC->getAuthenticationSources( $start, $limit, $filter );

    110. 

  110. 

    111. 

  111.             $Dat = AuthenticationSourcePeer::doSelectRS( $Criterias['COUNTER'] );

    112. 

  112.             $Dat->setFetchmode( ResultSet::FETCHMODE_ASSOC );

    113. 

  113.             $Dat->next();

    114. 

  114.             $row = $Dat->getRow();

    115. 

  115.             $total_sources = $row['CNT'];

    116. 

  116. 

    117. 

  117.             $oDataset = AuthenticationSourcePeer::doSelectRS( $Criterias['LIST'] );

    118. 

  118.             $oDataset->setFetchmode( ResultSet::FETCHMODE_ASSOC );

    119. 

  119. 

    120. 

  120.             global $RBAC;

    121. 

  121.             $auth = $RBAC->getAllUsersByAuthSource();

    122. 

  122. 

    123. 

  123.             $aSources = Array ();

    124. 

  124.             while ($oDataset->next()) {

    125. 

  125.                 $aSources[] = $oDataset->getRow();

    126. 

  126.                 $index = sizeof( $aSources ) - 1;

    127. 

  127.                 $aSources[$index]['CURRENT_USERS'] = isset( $auth[$aSources[$index]['AUTH_SOURCE_UID']] ) ? $auth[$aSources[$index]['AUTH_SOURCE_UID']] : 0;

    128. 

  128.             }

    129. 

  129.             echo '{sources: ' . G::json_encode( $aSources ) . ', total_sources: ' . $total_sources . '}';

    130. 

  130.             break;

    131. 

  131.         case 'canDeleteAuthSource':

    132. 

  132.             try {

    133. 

  133.                 $authUID = $_POST['auth_uid'];

    134. 

  134.                 global $RBAC;

    135. 

  135.                 $aAuth = $RBAC->getAllUsersByAuthSource();

    136. 

  136.                 $response = isset( $aAuth[$authUID] ) ? 'false' : 'true';

    137. 

  137.                 echo '{success: ' . $response . '}';

    138. 

  138.             } catch (Exception $ex) {

    139. 

  139.                 echo '{success: false, error: ' . $ex->getMessage() . '}';

    140. 

  140.             }

    141. 

  141.             break;

    142. 

  142.         case 'deleteAuthSource':

    143. 

  143.             try {

    144. 

  144.                 global $RBAC;

    145. 

  145.                 $RBAC->removeAuthSource( $_POST['auth_uid'] );

    146. 

  146.                 echo '{success: true}';

    147. 

  147.             } catch (Exception $ex) {

    148. 

  148.                 echo '{success: false, error: ' . $ex->getMessage() . '}';

    149. 

  149.             }

    150. 

  150.             break;

    151. 

  151.         case 'authSourcesNew':

    152. 

  152.             $arr = Array ();

    153. 

  153.             $oDirectory = dir( PATH_RBAC . 'plugins' . PATH_SEP );

    154. 

  154.             $aAuthSourceTypes = array ();

    155. 

  155.             while ($sObject = $oDirectory->read()) {

    156. 

  156.                 if (($sObject != '.') && ($sObject != '..') && ($sObject != '.svn') && ($sObject != 'ldap')) {

    157. 

  157.                     if (is_file( PATH_RBAC . 'plugins' . PATH_SEP . $sObject )) {

    158. 

  158.                         $sType = trim( str_replace( 'class.', '', str_replace( '.php', '', $sObject ) ) );

    159. 

  159.                         $aAuthSourceTypes['sType'] = $sType;

    160. 

  160.                         $aAuthSourceTypes['sLabel'] = $sType;

    161. 

  161.                         $arr[] = $aAuthSourceTypes;

    162. 

  162.                     }

    163. 

  163.                 }

    164. 

  164.             }

    165. 

  165.             echo '{sources: ' . G::json_encode( $arr ) . '}';

    166. 

  166.             break;

    167. 

  167.         case 'loadauthSourceData':

    168. 

  168.             global $RBAC;

    169. 

  169. 

    170. 

  170.             $fields = $RBAC->getAuthSource( $_POST['sUID'] );

    171. 

  171.             if (is_array( $fields['AUTH_SOURCE_DATA'] )) {

    172. 

  172.                 foreach ($fields['AUTH_SOURCE_DATA'] as $field => $value) {

    173. 

  173.                     $fields[$field] = $value;

    174. 

  174.                 }

    175. 

  175.             }

    176. 

  176.             unset( $fields['AUTH_SOURCE_DATA'] );

    177. 

  177.             $result->success = true;

    178. 

  178.             $result->sources = $fields;

    179. 

  179.             print (G::json_encode( $result )) ;

    180. 

  180.             break;

    181. 

  181.     }

    182. 

  182. } catch (Exception $e) {

    183. 

  183.     $fields = array ('MESSAGE' => $e->getMessage()

    184. 

  184.     );

    185. 

  185.     global $G_PUBLISH;

    186. 

  186.     $G_PUBLISH = new Publisher();

    187. 

  187.     $G_PUBLISH->AddContent( 'xmlform', 'xmlform', 'login/showMessage', '', $fields );

    188. 

  188.     G::RenderPage( 'publish', 'blank' );

    189. 

  189. }

    190. 

  190. 

    191. 

  191.