111e2ce22Schris<?php 20489c64bSMoisés Braga Ribeirouse dokuwiki\Utf8\Sort; 30489c64bSMoisés Braga Ribeiro 411e2ce22Schris/** 511e2ce22Schris * ACL administration functions 611e2ce22Schris * 711e2ce22Schris * @license GPL 2 (http://www.gnu.org/licenses/gpl.html) 82a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 9e965e37fSAnika Henke * @author Anika Henke <anika@selfthinker.org> (concepts) 102a3623daSAndreas Gohr * @author Frank Schubert <frank@schokilade.de> (old version) 1111e2ce22Schris */ 12e04f1f16Schris 1311e2ce22Schris/** 1411e2ce22Schris * All DokuWiki plugins to extend the admin function 1511e2ce22Schris * need to inherit from this class 1611e2ce22Schris */ 17a4e3d556SAndreas Gohrclass admin_plugin_acl extends DokuWiki_Admin_Plugin 18a4e3d556SAndreas Gohr{ 19*bff2c9d2SAndreas Gohr public $acl; 20*bff2c9d2SAndreas Gohr protected $ns; 2140307ce6SMichael Hamann /** 2240307ce6SMichael Hamann * The currently selected item, associative array with id and type. 2340307ce6SMichael Hamann * Populated from (in this order): 2440307ce6SMichael Hamann * $_REQUEST['current_ns'] 2540307ce6SMichael Hamann * $_REQUEST['current_id'] 2640307ce6SMichael Hamann * $ns 2740307ce6SMichael Hamann * $ID 2840307ce6SMichael Hamann */ 29*bff2c9d2SAndreas Gohr protected $current_item; 303dc2d50cSAndreas Gohr protected $who = ''; 31*bff2c9d2SAndreas Gohr protected $usersgroups = []; 32*bff2c9d2SAndreas Gohr protected $specials = []; 331d3e0272SAndreas Gohr 3411e2ce22Schris /** 3511e2ce22Schris * return prompt for admin menu 3611e2ce22Schris */ 37a4e3d556SAndreas Gohr public function getMenuText($language) 38a4e3d556SAndreas Gohr { 392a3623daSAndreas Gohr return $this->getLang('admin_acl'); 4011e2ce22Schris } 4111e2ce22Schris 4211e2ce22Schris /** 4311e2ce22Schris * return sort order for position in admin menu 4411e2ce22Schris */ 45a4e3d556SAndreas Gohr public function getMenuSort() 46a4e3d556SAndreas Gohr { 4711e2ce22Schris return 1; 4811e2ce22Schris } 4911e2ce22Schris 5011e2ce22Schris /** 5111e2ce22Schris * handle user request 522a3623daSAndreas Gohr * 532a3623daSAndreas Gohr * Initializes internal vars and handles modifications 542a3623daSAndreas Gohr * 552a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 5611e2ce22Schris */ 57a4e3d556SAndreas Gohr public function handle() 58a4e3d556SAndreas Gohr { 5911e2ce22Schris global $AUTH_ACL; 602a3623daSAndreas Gohr global $ID; 61d752aedeSAndreas Gohr global $auth; 62c8f80b4eSAndreas Gohr global $config_cascade; 6364273335SAndreas Gohr global $INPUT; 6411e2ce22Schris 655d87b2ccSAndreas Gohr // fresh 1:1 copy without replacements 66defb7d57SAnika Henke $AUTH_ACL = file($config_cascade['acl']['default']); 675d87b2ccSAndreas Gohr 682a3623daSAndreas Gohr // namespace given? 6964273335SAndreas Gohr if ($INPUT->str('ns') == '*') { 702a3623daSAndreas Gohr $this->ns = '*'; 7111e2ce22Schris } else { 7264273335SAndreas Gohr $this->ns = cleanID($INPUT->str('ns')); 7311e2ce22Schris } 7411e2ce22Schris 7564273335SAndreas Gohr if ($INPUT->str('current_ns')) { 76*bff2c9d2SAndreas Gohr $this->current_item = ['id' => cleanID($INPUT->str('current_ns')), 'type' => 'd']; 7764273335SAndreas Gohr } elseif ($INPUT->str('current_id')) { 78*bff2c9d2SAndreas Gohr $this->current_item = ['id' => cleanID($INPUT->str('current_id')), 'type' => 'f']; 7940307ce6SMichael Hamann } elseif ($this->ns) { 80*bff2c9d2SAndreas Gohr $this->current_item = ['id' => $this->ns, 'type' => 'd']; 8140307ce6SMichael Hamann } else { 82*bff2c9d2SAndreas Gohr $this->current_item = ['id' => $ID, 'type' => 'f']; 8340307ce6SMichael Hamann } 8440307ce6SMichael Hamann 852a3623daSAndreas Gohr // user or group choosen? 8664273335SAndreas Gohr $who = trim($INPUT->str('acl_w')); 8764273335SAndreas Gohr if ($INPUT->str('acl_t') == '__g__' && $who) { 88d752aedeSAndreas Gohr $this->who = '@'.ltrim($auth->cleanGroup($who), '@'); 8964273335SAndreas Gohr } elseif ($INPUT->str('acl_t') == '__u__' && $who) { 9080601d26SAndreas Gohr $this->who = ltrim($who, '@'); 91b78bf706Sromain if ($this->who != '%USER%' && $this->who != '%GROUP%') { #keep wildcard as is 9280601d26SAndreas Gohr $this->who = $auth->cleanUser($this->who); 9380601d26SAndreas Gohr } 9464273335SAndreas Gohr } elseif ($INPUT->str('acl_t') && 9564273335SAndreas Gohr $INPUT->str('acl_t') != '__u__' && 9664273335SAndreas Gohr $INPUT->str('acl_t') != '__g__') { 9764273335SAndreas Gohr $this->who = $INPUT->str('acl_t'); 982a3623daSAndreas Gohr } elseif ($who) { 992a3623daSAndreas Gohr $this->who = $who; 1002a3623daSAndreas Gohr } 101634d7150SAndreas Gohr 1022a3623daSAndreas Gohr // handle modifications 10364273335SAndreas Gohr if ($INPUT->has('cmd') && checkSecurityToken()) { 10464273335SAndreas Gohr $cmd = $INPUT->extract('cmd')->str('cmd'); 105d7554c0bSAndreas Gohr 1062a3623daSAndreas Gohr // scope for modifications 1072a3623daSAndreas Gohr if ($this->ns) { 1082a3623daSAndreas Gohr if ($this->ns == '*') { 1092a3623daSAndreas Gohr $scope = '*'; 1102a3623daSAndreas Gohr } else { 1112a3623daSAndreas Gohr $scope = $this->ns.':*'; 1122a3623daSAndreas Gohr } 1132a3623daSAndreas Gohr } else { 1142a3623daSAndreas Gohr $scope = $ID; 1152a3623daSAndreas Gohr } 11611e2ce22Schris 11764273335SAndreas Gohr if ($cmd == 'save' && $scope && $this->who && $INPUT->has('acl')) { 1182a3623daSAndreas Gohr // handle additions or single modifications 119a4e3d556SAndreas Gohr $this->deleteACL($scope, $this->who); 12055cc5b99SAndreas Gohr $this->addOrUpdateACL($scope, $this->who, $INPUT->int('acl')); 12164273335SAndreas Gohr } elseif ($cmd == 'del' && $scope && $this->who) { 1222a3623daSAndreas Gohr // handle single deletions 123a4e3d556SAndreas Gohr $this->deleteACL($scope, $this->who); 12464273335SAndreas Gohr } elseif ($cmd == 'update') { 12564273335SAndreas Gohr $acl = $INPUT->arr('acl'); 12664273335SAndreas Gohr 1272a3623daSAndreas Gohr // handle update of the whole file 12864273335SAndreas Gohr foreach ($INPUT->arr('del') as $where => $names) { 1292a3623daSAndreas Gohr // remove all rules marked for deletion 1307325569eSTom N Harris foreach ($names as $who) 13164273335SAndreas Gohr unset($acl[$where][$who]); 1322a3623daSAndreas Gohr } 1332a3623daSAndreas Gohr // prepare lines 134*bff2c9d2SAndreas Gohr $lines = []; 1352a3623daSAndreas Gohr // keep header 1362a3623daSAndreas Gohr foreach ($AUTH_ACL as $line) { 1375312cb0bSSyntaxseed if ($line[0] == '#') { 1382a3623daSAndreas Gohr $lines[] = $line; 1392a3623daSAndreas Gohr } else { 1402a3623daSAndreas Gohr break; 1412a3623daSAndreas Gohr } 1422a3623daSAndreas Gohr } 1432a3623daSAndreas Gohr // re-add all rules 14464273335SAndreas Gohr foreach ($acl as $where => $opt) { 1452a3623daSAndreas Gohr foreach ($opt as $who => $perm) { 1464db77915SChristian Marg if ($who[0]=='@') { 1474db77915SChristian Marg if ($who != '@ALL') { 1484db77915SChristian Marg $who = '@'.ltrim($auth->cleanGroup($who), '@'); 1494db77915SChristian Marg } 150b78bf706Sromain } elseif ($who != '%USER%' && $who != '%GROUP%') { #keep wildcard as is 1514db77915SChristian Marg $who = $auth->cleanUser($who); 1524db77915SChristian Marg } 1532a3623daSAndreas Gohr $who = auth_nameencode($who, true); 1542a3623daSAndreas Gohr $lines[] = "$where\t$who\t$perm\n"; 1552a3623daSAndreas Gohr } 1562a3623daSAndreas Gohr } 1572a3623daSAndreas Gohr // save it 158*bff2c9d2SAndreas Gohr io_saveFile($config_cascade['acl']['default'], implode('', $lines)); 15911e2ce22Schris } 16011e2ce22Schris 16111e2ce22Schris // reload ACL config 162c8f80b4eSAndreas Gohr $AUTH_ACL = file($config_cascade['acl']['default']); 16311e2ce22Schris } 16411e2ce22Schris 1652a3623daSAndreas Gohr // initialize ACL array 166a4e3d556SAndreas Gohr $this->initAclConfig(); 1672a3623daSAndreas Gohr } 1682a3623daSAndreas Gohr 16911e2ce22Schris /** 17011e2ce22Schris * ACL Output function 17111e2ce22Schris * 17211e2ce22Schris * print a table with all significant permissions for the 17311e2ce22Schris * current id 17411e2ce22Schris * 17511e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 17611e2ce22Schris * @author Andreas Gohr <andi@splitbrain.org> 17711e2ce22Schris */ 178a4e3d556SAndreas Gohr public function html() 179a4e3d556SAndreas Gohr { 1802a3623daSAndreas Gohr echo '<div id="acl_manager">'.NL; 1812a3623daSAndreas Gohr echo '<h1>'.$this->getLang('admin_acl').'</h1>'.NL; 1822a3623daSAndreas Gohr echo '<div class="level1">'.NL; 18311e2ce22Schris 1842a3623daSAndreas Gohr echo '<div id="acl__tree">'.NL; 185a4e3d556SAndreas Gohr $this->makeExplorer(); 1862a3623daSAndreas Gohr echo '</div>'.NL; 18711e2ce22Schris 1882a3623daSAndreas Gohr echo '<div id="acl__detail">'.NL; 189a4e3d556SAndreas Gohr $this->printDetail(); 1902a3623daSAndreas Gohr echo '</div>'.NL; 1912a3623daSAndreas Gohr echo '</div>'.NL; 19211e2ce22Schris 1932a3623daSAndreas Gohr echo '<div class="clearer"></div>'; 1942a3623daSAndreas Gohr echo '<h2>'.$this->getLang('current').'</h2>'.NL; 1952a3623daSAndreas Gohr echo '<div class="level2">'.NL; 196a4e3d556SAndreas Gohr $this->printAclTable(); 1972a3623daSAndreas Gohr echo '</div>'.NL; 1982a3623daSAndreas Gohr 1990ef43815SAndreas Gohr echo '<div class="footnotes"><div class="fn">'.NL; 20063e967bdSAnika Henke echo '<sup><a id="fn__1" class="fn_bot" href="#fnt__1">1)</a></sup>'.NL; 201e7f8ebf3SPhy echo '<div class="content">'.$this->getLang('p_include').'</div>'; 2020ef43815SAndreas Gohr echo '</div></div>'; 2030ef43815SAndreas Gohr 2042a3623daSAndreas Gohr echo '</div>'.NL; 20511e2ce22Schris } 20611e2ce22Schris 2072a3623daSAndreas Gohr /** 2082a3623daSAndreas Gohr * returns array with set options for building links 2092a3623daSAndreas Gohr * 2102a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 2112a3623daSAndreas Gohr */ 212a4e3d556SAndreas Gohr protected function getLinkOptions($addopts = null) 213a4e3d556SAndreas Gohr { 214*bff2c9d2SAndreas Gohr $opts = ['do'=>'admin', 'page'=>'acl']; 2152a3623daSAndreas Gohr if ($this->ns) $opts['ns'] = $this->ns; 2162a3623daSAndreas Gohr if ($this->who) $opts['acl_w'] = $this->who; 2172a3623daSAndreas Gohr 2182a3623daSAndreas Gohr if (is_null($addopts)) return $opts; 2192a3623daSAndreas Gohr return array_merge($opts, $addopts); 2202a3623daSAndreas Gohr } 2212a3623daSAndreas Gohr 2222a3623daSAndreas Gohr /** 2232a3623daSAndreas Gohr * Display a tree menu to select a page or namespace 2242a3623daSAndreas Gohr * 2252a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 2262a3623daSAndreas Gohr */ 227a4e3d556SAndreas Gohr protected function makeExplorer() 228a4e3d556SAndreas Gohr { 2292a3623daSAndreas Gohr global $conf; 2302a3623daSAndreas Gohr global $ID; 2312a3623daSAndreas Gohr global $lang; 2322a3623daSAndreas Gohr 2332a3623daSAndreas Gohr $ns = $this->ns; 2342a3623daSAndreas Gohr if (empty($ns)) { 2352a3623daSAndreas Gohr $ns = dirname(str_replace(':', '/', $ID)); 2362a3623daSAndreas Gohr if ($ns == '.') $ns =''; 2372a3623daSAndreas Gohr } elseif ($ns == '*') { 2382a3623daSAndreas Gohr $ns =''; 2392a3623daSAndreas Gohr } 2402a3623daSAndreas Gohr $ns = utf8_encodeFN(str_replace(':', '/', $ns)); 2412a3623daSAndreas Gohr 242a4e3d556SAndreas Gohr $data = $this->makeTree($ns); 2432a3623daSAndreas Gohr 2442a3623daSAndreas Gohr // wrap a list with the root level around the other namespaces 245*bff2c9d2SAndreas Gohr array_unshift($data, [ 246*bff2c9d2SAndreas Gohr 'level' => 0, 247*bff2c9d2SAndreas Gohr 'id' => '*', 248*bff2c9d2SAndreas Gohr 'type' => 'd', 249*bff2c9d2SAndreas Gohr 'open' =>'true', 250*bff2c9d2SAndreas Gohr 'label' => '['.$lang['mediaroot'].']' 251*bff2c9d2SAndreas Gohr ]); 2522a3623daSAndreas Gohr 253a4e3d556SAndreas Gohr echo html_buildlist( 254a4e3d556SAndreas Gohr $data, 255a4e3d556SAndreas Gohr 'acl', 256*bff2c9d2SAndreas Gohr [$this, 'makeTreeItem'], 257*bff2c9d2SAndreas Gohr [$this, 'makeListItem'] 258a4e3d556SAndreas Gohr ); 2592a3623daSAndreas Gohr } 2602a3623daSAndreas Gohr 2612a3623daSAndreas Gohr /** 262a8900dc9SAndreas Gohr * get a combined list of media and page files 263a8900dc9SAndreas Gohr * 264a4e3d556SAndreas Gohr * also called via AJAX 265a4e3d556SAndreas Gohr * 266a8900dc9SAndreas Gohr * @param string $folder an already converted filesystem folder of the current namespace 267a8900dc9SAndreas Gohr * @param string $limit limit the search to this folder 2683dc2d50cSAndreas Gohr * @return array 269a8900dc9SAndreas Gohr */ 270a4e3d556SAndreas Gohr public function makeTree($folder, $limit = '') 271a4e3d556SAndreas Gohr { 272a8900dc9SAndreas Gohr global $conf; 273a8900dc9SAndreas Gohr 274a8900dc9SAndreas Gohr // read tree structure from pages and media 275*bff2c9d2SAndreas Gohr $data = []; 276*bff2c9d2SAndreas Gohr search($data, $conf['datadir'], 'search_index', ['ns' => $folder], $limit); 277*bff2c9d2SAndreas Gohr $media = []; 278*bff2c9d2SAndreas Gohr search($media, $conf['mediadir'], 'search_index', ['ns' => $folder, 'nofiles' => true], $limit); 279a8900dc9SAndreas Gohr $data = array_merge($data, $media); 280a8900dc9SAndreas Gohr unset($media); 281a8900dc9SAndreas Gohr 282a8900dc9SAndreas Gohr // combine by sorting and removing duplicates 283*bff2c9d2SAndreas Gohr usort($data, [$this, 'treeSort']); 284a8900dc9SAndreas Gohr $count = count($data); 285a8900dc9SAndreas Gohr if ($count>0) for ($i=1; $i<$count; $i++) { 286d072820dSChristopher Smith if ($data[$i-1]['id'] == $data[$i]['id'] && $data[$i-1]['type'] == $data[$i]['type']) { 287d072820dSChristopher Smith unset($data[$i]); 288d072820dSChristopher Smith $i++; // duplicate found, next $i can't be a duplicate, so skip forward one 289d072820dSChristopher Smith } 290a8900dc9SAndreas Gohr } 291a8900dc9SAndreas Gohr return $data; 292a8900dc9SAndreas Gohr } 293a8900dc9SAndreas Gohr 294a8900dc9SAndreas Gohr /** 295a8900dc9SAndreas Gohr * usort callback 296a8900dc9SAndreas Gohr * 297a8900dc9SAndreas Gohr * Sorts the combined trees of media and page files 298a8900dc9SAndreas Gohr */ 299a4e3d556SAndreas Gohr public function treeSort($a, $b) 300a4e3d556SAndreas Gohr { 301d74913c6SMichael Hamann // handle the trivial cases first 302d74913c6SMichael Hamann if ($a['id'] == '') return -1; 303d74913c6SMichael Hamann if ($b['id'] == '') return 1; 304d74913c6SMichael Hamann // split up the id into parts 305d74913c6SMichael Hamann $a_ids = explode(':', $a['id']); 306d74913c6SMichael Hamann $b_ids = explode(':', $b['id']); 307d74913c6SMichael Hamann // now loop through the parts 308d74913c6SMichael Hamann while (count($a_ids) && count($b_ids)) { 309d74913c6SMichael Hamann // compare each level from upper to lower 310d74913c6SMichael Hamann // until a non-equal component is found 3110489c64bSMoisés Braga Ribeiro $cur_result = Sort::strcmp(array_shift($a_ids), array_shift($b_ids)); 312d74913c6SMichael Hamann if ($cur_result) { 313d74913c6SMichael Hamann // if one of the components is the last component and is a file 314d74913c6SMichael Hamann // and the other one is either of a deeper level or a directory, 315d74913c6SMichael Hamann // the file has to come after the deeper level or directory 316*bff2c9d2SAndreas Gohr if ($a_ids === [] && $a['type'] == 'f' && (count($b_ids) || $b['type'] == 'd')) return 1; 317*bff2c9d2SAndreas Gohr if ($b_ids === [] && $b['type'] == 'f' && (count($a_ids) || $a['type'] == 'd')) return -1; 318d74913c6SMichael Hamann return $cur_result; 319a8900dc9SAndreas Gohr } 320a8900dc9SAndreas Gohr } 321d74913c6SMichael Hamann // The two ids seem to be equal. One of them might however refer 322d74913c6SMichael Hamann // to a page, one to a namespace, the namespace needs to be first. 323*bff2c9d2SAndreas Gohr if ($a_ids === [] && $b_ids === []) { 324d74913c6SMichael Hamann if ($a['type'] == $b['type']) return 0; 325d74913c6SMichael Hamann if ($a['type'] == 'f') return 1; 326d74913c6SMichael Hamann return -1; 327d74913c6SMichael Hamann } 328d74913c6SMichael Hamann // Now the empty part is either a page in the parent namespace 329d74913c6SMichael Hamann // that obviously needs to be after the namespace 330d74913c6SMichael Hamann // Or it is the namespace that contains the other part and should be 331d74913c6SMichael Hamann // before that other part. 332*bff2c9d2SAndreas Gohr if ($a_ids === []) return ($a['type'] == 'd') ? -1 : 1; 333*bff2c9d2SAndreas Gohr if ($b_ids === []) return ($b['type'] == 'd') ? 1 : -1; 3343dc2d50cSAndreas Gohr return 0; //shouldn't happen 335d74913c6SMichael Hamann } 336a8900dc9SAndreas Gohr 337a8900dc9SAndreas Gohr /** 3382a3623daSAndreas Gohr * Display the current ACL for selected where/who combination with 3392a3623daSAndreas Gohr * selectors and modification form 3402a3623daSAndreas Gohr * 3412a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 3422a3623daSAndreas Gohr */ 343a4e3d556SAndreas Gohr protected function printDetail() 344a4e3d556SAndreas Gohr { 3452a3623daSAndreas Gohr global $ID; 3462a3623daSAndreas Gohr 3472404d0edSAnika Henke echo '<form action="'.wl().'" method="post" accept-charset="utf-8"><div class="no">'.NL; 3482a3623daSAndreas Gohr 3492a3623daSAndreas Gohr echo '<div id="acl__user">'; 3502a3623daSAndreas Gohr echo $this->getLang('acl_perms').' '; 351a4e3d556SAndreas Gohr $inl = $this->makeSelect(); 3522a3623daSAndreas Gohr echo '<input type="text" name="acl_w" class="edit" value="'.(($inl)?'':hsc(ltrim($this->who, '@'))).'" />'.NL; 353ae614416SAnika Henke echo '<button type="submit">'.$this->getLang('btn_select').'</button>'.NL; 3542a3623daSAndreas Gohr echo '</div>'.NL; 3552a3623daSAndreas Gohr 3562a3623daSAndreas Gohr echo '<div id="acl__info">'; 357a4e3d556SAndreas Gohr $this->printInfo(); 3582a3623daSAndreas Gohr echo '</div>'; 3592a3623daSAndreas Gohr 3602a3623daSAndreas Gohr echo '<input type="hidden" name="ns" value="'.hsc($this->ns).'" />'.NL; 3612a3623daSAndreas Gohr echo '<input type="hidden" name="id" value="'.hsc($ID).'" />'.NL; 3622a3623daSAndreas Gohr echo '<input type="hidden" name="do" value="admin" />'.NL; 3632a3623daSAndreas Gohr echo '<input type="hidden" name="page" value="acl" />'.NL; 364d7554c0bSAndreas Gohr echo '<input type="hidden" name="sectok" value="'.getSecurityToken().'" />'.NL; 3652404d0edSAnika Henke echo '</div></form>'.NL; 3662a3623daSAndreas Gohr } 3672a3623daSAndreas Gohr 3682a3623daSAndreas Gohr /** 3695381a7eeSElan Ruusamäe * Print info and editor 370a4e3d556SAndreas Gohr * 371a4e3d556SAndreas Gohr * also loaded via Ajax 3722a3623daSAndreas Gohr */ 373a4e3d556SAndreas Gohr public function printInfo() 374a4e3d556SAndreas Gohr { 3752a3623daSAndreas Gohr global $ID; 3762a3623daSAndreas Gohr 3772a3623daSAndreas Gohr if ($this->who) { 378a4e3d556SAndreas Gohr $current = $this->getExactPermisson(); 3792a3623daSAndreas Gohr 3802a3623daSAndreas Gohr // explain current permissions 381a4e3d556SAndreas Gohr $this->printExplanation($current); 3822a3623daSAndreas Gohr // load editor 383a4e3d556SAndreas Gohr $this->printAclEditor($current); 3842a3623daSAndreas Gohr } else { 3852a3623daSAndreas Gohr echo '<p>'; 3862a3623daSAndreas Gohr if ($this->ns) { 3872a3623daSAndreas Gohr printf($this->getLang('p_choose_ns'), hsc($this->ns)); 3882a3623daSAndreas Gohr } else { 3892a3623daSAndreas Gohr printf($this->getLang('p_choose_id'), hsc($ID)); 3902a3623daSAndreas Gohr } 3912a3623daSAndreas Gohr echo '</p>'; 3922a3623daSAndreas Gohr 3932a3623daSAndreas Gohr echo $this->locale_xhtml('help'); 3942a3623daSAndreas Gohr } 3952a3623daSAndreas Gohr } 3962a3623daSAndreas Gohr 3972a3623daSAndreas Gohr /** 3982a3623daSAndreas Gohr * Display the ACL editor 3992a3623daSAndreas Gohr * 4002a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 4012a3623daSAndreas Gohr */ 402a4e3d556SAndreas Gohr protected function printAclEditor($current) 403a4e3d556SAndreas Gohr { 4042a3623daSAndreas Gohr global $lang; 4052a3623daSAndreas Gohr 4062a3623daSAndreas Gohr echo '<fieldset>'; 4072a3623daSAndreas Gohr if (is_null($current)) { 4082a3623daSAndreas Gohr echo '<legend>'.$this->getLang('acl_new').'</legend>'; 4092a3623daSAndreas Gohr } else { 4102a3623daSAndreas Gohr echo '<legend>'.$this->getLang('acl_mod').'</legend>'; 4112a3623daSAndreas Gohr } 4122a3623daSAndreas Gohr 413a4e3d556SAndreas Gohr echo $this->makeCheckboxes($current, empty($this->ns), 'acl'); 4142a3623daSAndreas Gohr 4152a3623daSAndreas Gohr if (is_null($current)) { 416ae614416SAnika Henke echo '<button type="submit" name="cmd[save]">'.$lang['btn_save'].'</button>'.NL; 4172a3623daSAndreas Gohr } else { 418ae614416SAnika Henke echo '<button type="submit" name="cmd[save]">'.$lang['btn_update'].'</button>'.NL; 419ae614416SAnika Henke echo '<button type="submit" name="cmd[del]">'.$lang['btn_delete'].'</button>'.NL; 4202a3623daSAndreas Gohr } 4212a3623daSAndreas Gohr 4222a3623daSAndreas Gohr echo '</fieldset>'; 4232a3623daSAndreas Gohr } 4242a3623daSAndreas Gohr 4252a3623daSAndreas Gohr /** 4262a3623daSAndreas Gohr * Explain the currently set permissions in plain english/$lang 4272a3623daSAndreas Gohr * 4282a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 4292a3623daSAndreas Gohr */ 430a4e3d556SAndreas Gohr protected function printExplanation($current) 431a4e3d556SAndreas Gohr { 4322a3623daSAndreas Gohr global $ID; 4332a3623daSAndreas Gohr global $auth; 4342a3623daSAndreas Gohr 4352a3623daSAndreas Gohr $who = $this->who; 4362a3623daSAndreas Gohr $ns = $this->ns; 4372a3623daSAndreas Gohr 4382a3623daSAndreas Gohr // prepare where to check 4392a3623daSAndreas Gohr if ($ns) { 4402a3623daSAndreas Gohr if ($ns == '*') { 4412a3623daSAndreas Gohr $check='*'; 4422a3623daSAndreas Gohr } else { 4432a3623daSAndreas Gohr $check=$ns.':*'; 4442a3623daSAndreas Gohr } 4452a3623daSAndreas Gohr } else { 4462a3623daSAndreas Gohr $check = $ID; 4472a3623daSAndreas Gohr } 4482a3623daSAndreas Gohr 4492a3623daSAndreas Gohr // prepare who to check 4505312cb0bSSyntaxseed if ($who[0] == '@') { 4512a3623daSAndreas Gohr $user = ''; 452*bff2c9d2SAndreas Gohr $groups = [ltrim($who, '@')]; 4532a3623daSAndreas Gohr } else { 454116065d2SAndreas Gohr $user = $who; 4552a3623daSAndreas Gohr $info = $auth->getUserData($user); 456c1791678SAndreas Gohr if ($info === false) { 457*bff2c9d2SAndreas Gohr $groups = []; 458c1791678SAndreas Gohr } else { 45978750b94SAndreas Gohr $groups = $info['grps']; 4602a3623daSAndreas Gohr } 461c1791678SAndreas Gohr } 4622a3623daSAndreas Gohr 4632a3623daSAndreas Gohr // check the permissions 4642a3623daSAndreas Gohr $perm = auth_aclcheck($check, $user, $groups); 4652a3623daSAndreas Gohr 4662a3623daSAndreas Gohr // build array of named permissions 467*bff2c9d2SAndreas Gohr $names = []; 4682a3623daSAndreas Gohr if ($perm) { 4692a3623daSAndreas Gohr if ($ns) { 4702a3623daSAndreas Gohr if ($perm >= AUTH_DELETE) $names[] = $this->getLang('acl_perm16'); 4712a3623daSAndreas Gohr if ($perm >= AUTH_UPLOAD) $names[] = $this->getLang('acl_perm8'); 4722a3623daSAndreas Gohr if ($perm >= AUTH_CREATE) $names[] = $this->getLang('acl_perm4'); 4732a3623daSAndreas Gohr } 4742a3623daSAndreas Gohr if ($perm >= AUTH_EDIT) $names[] = $this->getLang('acl_perm2'); 4752a3623daSAndreas Gohr if ($perm >= AUTH_READ) $names[] = $this->getLang('acl_perm1'); 4762a3623daSAndreas Gohr $names = array_reverse($names); 4772a3623daSAndreas Gohr } else { 4782a3623daSAndreas Gohr $names[] = $this->getLang('acl_perm0'); 4792a3623daSAndreas Gohr } 4802a3623daSAndreas Gohr 4812a3623daSAndreas Gohr // print permission explanation 4822a3623daSAndreas Gohr echo '<p>'; 4832a3623daSAndreas Gohr if ($user) { 4842a3623daSAndreas Gohr if ($ns) { 485*bff2c9d2SAndreas Gohr printf($this->getLang('p_user_ns'), hsc($who), hsc($ns), implode(', ', $names)); 4862a3623daSAndreas Gohr } else { 487*bff2c9d2SAndreas Gohr printf($this->getLang('p_user_id'), hsc($who), hsc($ID), implode(', ', $names)); 4882a3623daSAndreas Gohr } 489*bff2c9d2SAndreas Gohr } elseif ($ns) { 490*bff2c9d2SAndreas Gohr printf($this->getLang('p_group_ns'), hsc(ltrim($who, '@')), hsc($ns), implode(', ', $names)); 4912a3623daSAndreas Gohr } else { 492*bff2c9d2SAndreas Gohr printf($this->getLang('p_group_id'), hsc(ltrim($who, '@')), hsc($ID), implode(', ', $names)); 4932a3623daSAndreas Gohr } 4942a3623daSAndreas Gohr echo '</p>'; 4952a3623daSAndreas Gohr 4962a3623daSAndreas Gohr // add note if admin 4972a3623daSAndreas Gohr if ($perm == AUTH_ADMIN) { 4982a3623daSAndreas Gohr echo '<p>'.$this->getLang('p_isadmin').'</p>'; 4992a3623daSAndreas Gohr } elseif (is_null($current)) { 5002a3623daSAndreas Gohr echo '<p>'.$this->getLang('p_inherited').'</p>'; 5012a3623daSAndreas Gohr } 50211e2ce22Schris } 50311e2ce22Schris 50411e2ce22Schris 50511e2ce22Schris /** 5062a3623daSAndreas Gohr * Item formatter for the tree view 50711e2ce22Schris * 5082a3623daSAndreas Gohr * User function for html_buildlist() 50911e2ce22Schris * 5102a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 51111e2ce22Schris */ 5127ecc081fSAndreas Gohr public function makeTreeItem($item) 513a4e3d556SAndreas Gohr { 5142a3623daSAndreas Gohr $ret = ''; 5152a3623daSAndreas Gohr // what to display 5160e80bb5eSChristopher Smith if (!empty($item['label'])) { 5172a3623daSAndreas Gohr $base = $item['label']; 5182a3623daSAndreas Gohr } else { 5192a3623daSAndreas Gohr $base = ':'.$item['id']; 5202a3623daSAndreas Gohr $base = substr($base, strrpos($base, ':')+1); 5212a3623daSAndreas Gohr } 5222a3623daSAndreas Gohr 5232a3623daSAndreas Gohr // highlight? 524d072820dSChristopher Smith if (($item['type']== $this->current_item['type'] && $item['id'] == $this->current_item['id'])) { 52540307ce6SMichael Hamann $cl = ' cur'; 526d072820dSChristopher Smith } else { 527d072820dSChristopher Smith $cl = ''; 528d072820dSChristopher Smith } 5292a3623daSAndreas Gohr 5302a3623daSAndreas Gohr // namespace or page? 5312a3623daSAndreas Gohr if ($item['type']=='d') { 5322a3623daSAndreas Gohr if ($item['open']) { 5332a3623daSAndreas Gohr $img = DOKU_BASE.'lib/images/minus.gif'; 534e260f93bSAnika Henke $alt = '−'; 5352a3623daSAndreas Gohr } else { 5362a3623daSAndreas Gohr $img = DOKU_BASE.'lib/images/plus.gif'; 5372a3623daSAndreas Gohr $alt = '+'; 5382a3623daSAndreas Gohr } 5392a3623daSAndreas Gohr $ret .= '<img src="'.$img.'" alt="'.$alt.'" />'; 54064159a61SAndreas Gohr $ret .= '<a href="'. 541*bff2c9d2SAndreas Gohr wl('', $this->getLinkOptions(['ns'=> $item['id'], 'sectok'=>getSecurityToken()])). 54264159a61SAndreas Gohr '" class="idx_dir'.$cl.'">'; 5432a3623daSAndreas Gohr $ret .= $base; 5442a3623daSAndreas Gohr $ret .= '</a>'; 5452a3623daSAndreas Gohr } else { 54664159a61SAndreas Gohr $ret .= '<a href="'. 547*bff2c9d2SAndreas Gohr wl('', $this->getLinkOptions(['id'=> $item['id'], 'ns'=>'', 'sectok'=>getSecurityToken()])). 54864159a61SAndreas Gohr '" class="wikilink1'.$cl.'">'; 5492a3623daSAndreas Gohr $ret .= noNS($item['id']); 5502a3623daSAndreas Gohr $ret .= '</a>'; 5512a3623daSAndreas Gohr } 5522a3623daSAndreas Gohr return $ret; 5532a3623daSAndreas Gohr } 5542a3623daSAndreas Gohr 5553dc2d50cSAndreas Gohr /** 5563dc2d50cSAndreas Gohr * List Item formatter 5573dc2d50cSAndreas Gohr * 5583dc2d50cSAndreas Gohr * @param array $item 5593dc2d50cSAndreas Gohr * @return string 5603dc2d50cSAndreas Gohr */ 561a4e3d556SAndreas Gohr public function makeListItem($item) 562a4e3d556SAndreas Gohr { 5632b580f7aSAdrian Lang return '<li class="level' . $item['level'] . ' ' . 5642b580f7aSAdrian Lang ($item['open'] ? 'open' : 'closed') . '">'; 5652a3623daSAndreas Gohr } 5662a3623daSAndreas Gohr 5672a3623daSAndreas Gohr 5682a3623daSAndreas Gohr /** 5692a3623daSAndreas Gohr * Get current ACL settings as multidim array 5702a3623daSAndreas Gohr * 5712a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 5722a3623daSAndreas Gohr */ 573a4e3d556SAndreas Gohr public function initAclConfig() 574a4e3d556SAndreas Gohr { 57511e2ce22Schris global $AUTH_ACL; 5762a3623daSAndreas Gohr global $conf; 577*bff2c9d2SAndreas Gohr $acl_config=[]; 578*bff2c9d2SAndreas Gohr $usersgroups = []; 57911e2ce22Schris 58015976576SAndreas Gohr // get special users and groups 58115976576SAndreas Gohr $this->specials[] = '@ALL'; 58215976576SAndreas Gohr $this->specials[] = '@'.$conf['defaultgroup']; 58315976576SAndreas Gohr if ($conf['manager'] != '!!not set!!') { 584a4e3d556SAndreas Gohr $this->specials = array_merge( 585a4e3d556SAndreas Gohr $this->specials, 586a4e3d556SAndreas Gohr array_map( 587a4e3d556SAndreas Gohr 'trim', 588a4e3d556SAndreas Gohr explode(',', $conf['manager']) 589a4e3d556SAndreas Gohr ) 590a4e3d556SAndreas Gohr ); 59115976576SAndreas Gohr } 59215976576SAndreas Gohr $this->specials = array_filter($this->specials); 59315976576SAndreas Gohr $this->specials = array_unique($this->specials); 5940489c64bSMoisés Braga Ribeiro Sort::sort($this->specials); 59515976576SAndreas Gohr 5962a3623daSAndreas Gohr foreach ($AUTH_ACL as $line) { 5972a3623daSAndreas Gohr $line = trim(preg_replace('/#.*$/', '', $line)); //ignore comments 5982a3623daSAndreas Gohr if (!$line) continue; 5992a3623daSAndreas Gohr 60021c3090aSChristopher Smith $acl = preg_split('/[ \t]+/', $line); 60111e2ce22Schris //0 is pagename, 1 is user, 2 is acl 6022a3623daSAndreas Gohr 6032a3623daSAndreas Gohr $acl[1] = rawurldecode($acl[1]); 6042a3623daSAndreas Gohr $acl_config[$acl[0]][$acl[1]] = $acl[2]; 6052a3623daSAndreas Gohr 6062a3623daSAndreas Gohr // store non-special users and groups for later selection dialog 6072a3623daSAndreas Gohr $ug = $acl[1]; 60815976576SAndreas Gohr if (in_array($ug, $this->specials)) continue; 6092a3623daSAndreas Gohr $usersgroups[] = $ug; 6102a3623daSAndreas Gohr } 6112a3623daSAndreas Gohr 6122a3623daSAndreas Gohr $usersgroups = array_unique($usersgroups); 6130489c64bSMoisés Braga Ribeiro Sort::sort($usersgroups); 6140489c64bSMoisés Braga Ribeiro Sort::ksort($acl_config); 6150489c64bSMoisés Braga Ribeiro foreach (array_keys($acl_config) as $pagename) { 6160489c64bSMoisés Braga Ribeiro Sort::ksort($acl_config[$pagename]); 6170489c64bSMoisés Braga Ribeiro } 6182a3623daSAndreas Gohr 6192a3623daSAndreas Gohr $this->acl = $acl_config; 6202a3623daSAndreas Gohr $this->usersgroups = $usersgroups; 6212a3623daSAndreas Gohr } 6222a3623daSAndreas Gohr 6232a3623daSAndreas Gohr /** 6242a3623daSAndreas Gohr * Display all currently set permissions in a table 6252a3623daSAndreas Gohr * 6262a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 6272a3623daSAndreas Gohr */ 628a4e3d556SAndreas Gohr protected function printAclTable() 629a4e3d556SAndreas Gohr { 6302a3623daSAndreas Gohr global $lang; 6312a3623daSAndreas Gohr global $ID; 6322a3623daSAndreas Gohr 6332404d0edSAnika Henke echo '<form action="'.wl().'" method="post" accept-charset="utf-8"><div class="no">'.NL; 6342a3623daSAndreas Gohr if ($this->ns) { 6352a3623daSAndreas Gohr echo '<input type="hidden" name="ns" value="'.hsc($this->ns).'" />'.NL; 6362a3623daSAndreas Gohr } else { 6372a3623daSAndreas Gohr echo '<input type="hidden" name="id" value="'.hsc($ID).'" />'.NL; 63811e2ce22Schris } 6392a3623daSAndreas Gohr echo '<input type="hidden" name="acl_w" value="'.hsc($this->who).'" />'.NL; 6402a3623daSAndreas Gohr echo '<input type="hidden" name="do" value="admin" />'.NL; 6412a3623daSAndreas Gohr echo '<input type="hidden" name="page" value="acl" />'.NL; 642d7554c0bSAndreas Gohr echo '<input type="hidden" name="sectok" value="'.getSecurityToken().'" />'.NL; 643c7b28ffdSAnika Henke echo '<div class="table">'; 6442a3623daSAndreas Gohr echo '<table class="inline">'; 6452a3623daSAndreas Gohr echo '<tr>'; 6462a3623daSAndreas Gohr echo '<th>'.$this->getLang('where').'</th>'; 6472a3623daSAndreas Gohr echo '<th>'.$this->getLang('who').'</th>'; 64863e967bdSAnika Henke echo '<th>'.$this->getLang('perm').'<sup><a id="fnt__1" class="fn_top" href="#fn__1">1)</a></sup></th>'; 6492a3623daSAndreas Gohr echo '<th>'.$lang['btn_delete'].'</th>'; 6502a3623daSAndreas Gohr echo '</tr>'; 6512a3623daSAndreas Gohr foreach ($this->acl as $where => $set) { 6522a3623daSAndreas Gohr foreach ($set as $who => $perm) { 6532a3623daSAndreas Gohr echo '<tr>'; 6542a3623daSAndreas Gohr echo '<td>'; 6552a3623daSAndreas Gohr if (substr($where, -1) == '*') { 6562a3623daSAndreas Gohr echo '<span class="aclns">'.hsc($where).'</span>'; 6572a3623daSAndreas Gohr $ispage = false; 6582a3623daSAndreas Gohr } else { 6592a3623daSAndreas Gohr echo '<span class="aclpage">'.hsc($where).'</span>'; 6602a3623daSAndreas Gohr $ispage = true; 6612a3623daSAndreas Gohr } 6622a3623daSAndreas Gohr echo '</td>'; 6632a3623daSAndreas Gohr 6642a3623daSAndreas Gohr echo '<td>'; 6655312cb0bSSyntaxseed if ($who[0] == '@') { 6662a3623daSAndreas Gohr echo '<span class="aclgroup">'.hsc($who).'</span>'; 6672a3623daSAndreas Gohr } else { 6682a3623daSAndreas Gohr echo '<span class="acluser">'.hsc($who).'</span>'; 6692a3623daSAndreas Gohr } 6702a3623daSAndreas Gohr echo '</td>'; 6712a3623daSAndreas Gohr 6722a3623daSAndreas Gohr echo '<td>'; 673a4e3d556SAndreas Gohr echo $this->makeCheckboxes($perm, $ispage, 'acl['.$where.']['.$who.']'); 6742a3623daSAndreas Gohr echo '</td>'; 6752a3623daSAndreas Gohr 67663e967bdSAnika Henke echo '<td class="check">'; 6777325569eSTom N Harris echo '<input type="checkbox" name="del['.hsc($where).'][]" value="'.hsc($who).'" />'; 6782a3623daSAndreas Gohr echo '</td>'; 6792a3623daSAndreas Gohr echo '</tr>'; 68011e2ce22Schris } 68111e2ce22Schris } 68211e2ce22Schris 6832a3623daSAndreas Gohr echo '<tr>'; 68463e967bdSAnika Henke echo '<th class="action" colspan="4">'; 685ae614416SAnika Henke echo '<button type="submit" name="cmd[update]">'.$lang['btn_update'].'</button>'; 6862a3623daSAndreas Gohr echo '</th>'; 6872a3623daSAndreas Gohr echo '</tr>'; 6882a3623daSAndreas Gohr echo '</table>'; 689c7b28ffdSAnika Henke echo '</div>'; 6902404d0edSAnika Henke echo '</div></form>'.NL; 69111e2ce22Schris } 69211e2ce22Schris 6932a3623daSAndreas Gohr /** 6942a3623daSAndreas Gohr * Returns the permission which were set for exactly the given user/group 6952a3623daSAndreas Gohr * and page/namespace. Returns null if no exact match is available 6962a3623daSAndreas Gohr * 6972a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 6982a3623daSAndreas Gohr */ 699a4e3d556SAndreas Gohr protected function getExactPermisson() 700a4e3d556SAndreas Gohr { 7012a3623daSAndreas Gohr global $ID; 7022a3623daSAndreas Gohr if ($this->ns) { 7032a3623daSAndreas Gohr if ($this->ns == '*') { 7042a3623daSAndreas Gohr $check = '*'; 7052a3623daSAndreas Gohr } else { 7062a3623daSAndreas Gohr $check = $this->ns.':*'; 7072a3623daSAndreas Gohr } 7082a3623daSAndreas Gohr } else { 7092a3623daSAndreas Gohr $check = $ID; 71011e2ce22Schris } 71111e2ce22Schris 7123bde27bfSAndreas Gohr if (isset($this->acl[$check][$this->who])) { 7133bde27bfSAndreas Gohr return $this->acl[$check][$this->who]; 7142a3623daSAndreas Gohr } else { 7152a3623daSAndreas Gohr return null; 7162a3623daSAndreas Gohr } 7172a3623daSAndreas Gohr } 71811e2ce22Schris 71911e2ce22Schris /** 72011e2ce22Schris * adds new acl-entry to conf/acl.auth.php 72111e2ce22Schris * 72211e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 72311e2ce22Schris */ 72455cc5b99SAndreas Gohr public function addOrUpdateACL($acl_scope, $acl_user, $acl_level) 725a4e3d556SAndreas Gohr { 726c8f80b4eSAndreas Gohr global $config_cascade; 7273f1e0037SGuillaume Turri 72855cc5b99SAndreas Gohr // first make sure we won't end up with 2 lines matching this user and scope. See issue #1115 72955cc5b99SAndreas Gohr $this->deleteACL($acl_scope, $acl_user); 7302a3623daSAndreas Gohr $acl_user = auth_nameencode($acl_user, true); 73111e2ce22Schris 73211e2ce22Schris // max level for pagenames is edit 73311e2ce22Schris if (strpos($acl_scope, '*') === false) { 73411e2ce22Schris if ($acl_level > AUTH_EDIT) $acl_level = AUTH_EDIT; 73511e2ce22Schris } 73611e2ce22Schris 73711e2ce22Schris $new_acl = "$acl_scope\t$acl_user\t$acl_level\n"; 73811e2ce22Schris 7392b71c2eeSPatrick Brown return io_saveFile($config_cascade['acl']['default'], $new_acl, true); 74011e2ce22Schris } 74111e2ce22Schris 74211e2ce22Schris /** 74311e2ce22Schris * remove acl-entry from conf/acl.auth.php 74411e2ce22Schris * 74511e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 74611e2ce22Schris */ 747a4e3d556SAndreas Gohr public function deleteACL($acl_scope, $acl_user) 748a4e3d556SAndreas Gohr { 749c8f80b4eSAndreas Gohr global $config_cascade; 7502a3623daSAndreas Gohr $acl_user = auth_nameencode($acl_user, true); 75111e2ce22Schris 75221c3090aSChristopher Smith $acl_pattern = '^'.preg_quote($acl_scope, '/').'[ \t]+'.$acl_user.'[ \t]+[0-8].*$'; 75311e2ce22Schris 754699e3c49SPatrick Brown return io_deleteFromFile($config_cascade['acl']['default'], "/$acl_pattern/", true); 75511e2ce22Schris } 75611e2ce22Schris 75711e2ce22Schris /** 7582a3623daSAndreas Gohr * print the permission radio boxes 75911e2ce22Schris * 76011e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 76111e2ce22Schris * @author Andreas Gohr <andi@splitbrain.org> 76211e2ce22Schris */ 763a4e3d556SAndreas Gohr protected function makeCheckboxes($setperm, $ispage, $name) 764a4e3d556SAndreas Gohr { 76511e2ce22Schris global $lang; 76611e2ce22Schris 76711e2ce22Schris static $label = 0; //number labels 76811e2ce22Schris $ret = ''; 76911e2ce22Schris 770041a602dSChristopher Smith if ($ispage && $setperm > AUTH_EDIT) $setperm = AUTH_EDIT; 7712a3623daSAndreas Gohr 772*bff2c9d2SAndreas Gohr foreach ([AUTH_NONE, AUTH_READ, AUTH_EDIT, AUTH_CREATE, AUTH_UPLOAD, AUTH_DELETE] as $perm) { 773*bff2c9d2SAndreas Gohr ++$label; 77411e2ce22Schris 77511e2ce22Schris //general checkbox attributes 776*bff2c9d2SAndreas Gohr $atts = [ 777*bff2c9d2SAndreas Gohr 'type' => 'radio', 77811e2ce22Schris 'id' => 'pbox'.$label, 7792a3623daSAndreas Gohr 'name' => $name, 780*bff2c9d2SAndreas Gohr 'value' => $perm 781*bff2c9d2SAndreas Gohr ]; 78211e2ce22Schris //dynamic attributes 7832a3623daSAndreas Gohr if (!is_null($setperm) && $setperm == $perm) $atts['checked'] = 'checked'; 7842a3623daSAndreas Gohr if ($ispage && $perm > AUTH_EDIT) { 7852a3623daSAndreas Gohr $atts['disabled'] = 'disabled'; 7862a3623daSAndreas Gohr $class = ' class="disabled"'; 7872a3623daSAndreas Gohr } else { 7882a3623daSAndreas Gohr $class = ''; 7892a3623daSAndreas Gohr } 79011e2ce22Schris 79111e2ce22Schris //build code 79263e967bdSAnika Henke $ret .= '<label for="pbox'.$label.'"'.$class.'>'; 793e260f93bSAnika Henke $ret .= '<input '.buildAttributes($atts).' /> '; 7942a3623daSAndreas Gohr $ret .= $this->getLang('acl_perm'.$perm); 7952a3623daSAndreas Gohr $ret .= '</label>'.NL; 79611e2ce22Schris } 79711e2ce22Schris return $ret; 79811e2ce22Schris } 79911e2ce22Schris 8002a3623daSAndreas Gohr /** 8012a3623daSAndreas Gohr * Print a user/group selector (reusing already used users and groups) 8022a3623daSAndreas Gohr * 8032a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 8042a3623daSAndreas Gohr */ 805a4e3d556SAndreas Gohr protected function makeSelect() 806a4e3d556SAndreas Gohr { 8072a3623daSAndreas Gohr $inlist = false; 80859bc3b48SGerrit Uitslag $usel = ''; 80959bc3b48SGerrit Uitslag $gsel = ''; 8102a3623daSAndreas Gohr 8112a3623daSAndreas Gohr if ($this->who && 8122a3623daSAndreas Gohr !in_array($this->who, $this->usersgroups) && 813a3a4e862SAndreas Gohr !in_array($this->who, $this->specials)) { 8145312cb0bSSyntaxseed if ($this->who[0] == '@') { 8152a3623daSAndreas Gohr $gsel = ' selected="selected"'; 8162a3623daSAndreas Gohr } else { 8172a3623daSAndreas Gohr $usel = ' selected="selected"'; 8182a3623daSAndreas Gohr } 8192a3623daSAndreas Gohr } else { 8202a3623daSAndreas Gohr $inlist = true; 8212a3623daSAndreas Gohr } 8222a3623daSAndreas Gohr 8232a3623daSAndreas Gohr echo '<select name="acl_t" class="edit">'.NL; 824fde860beSGerrit Uitslag echo ' <option value="__g__" class="aclgroup"'.$gsel.'>'.$this->getLang('acl_group').'</option>'.NL; 825fde860beSGerrit Uitslag echo ' <option value="__u__" class="acluser"'.$usel.'>'.$this->getLang('acl_user').'</option>'.NL; 826ecd7c1d6SAnika Henke if (!empty($this->specials)) { 827e260f93bSAnika Henke echo ' <optgroup label=" ">'.NL; 82815976576SAndreas Gohr foreach ($this->specials as $ug) { 8292a3623daSAndreas Gohr if ($ug == $this->who) { 8302a3623daSAndreas Gohr $sel = ' selected="selected"'; 8312a3623daSAndreas Gohr $inlist = true; 8322a3623daSAndreas Gohr } else { 8332a3623daSAndreas Gohr $sel = ''; 8342a3623daSAndreas Gohr } 8352a3623daSAndreas Gohr 8365312cb0bSSyntaxseed if ($ug[0] == '@') { 8372a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="aclgroup"'.$sel.'>'.hsc($ug).'</option>'.NL; 8382a3623daSAndreas Gohr } else { 8392a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="acluser"'.$sel.'>'.hsc($ug).'</option>'.NL; 8402a3623daSAndreas Gohr } 8412a3623daSAndreas Gohr } 8422a3623daSAndreas Gohr echo ' </optgroup>'.NL; 843ecd7c1d6SAnika Henke } 844ecd7c1d6SAnika Henke if (!empty($this->usersgroups)) { 845e260f93bSAnika Henke echo ' <optgroup label=" ">'.NL; 8462a3623daSAndreas Gohr foreach ($this->usersgroups as $ug) { 8472a3623daSAndreas Gohr if ($ug == $this->who) { 8482a3623daSAndreas Gohr $sel = ' selected="selected"'; 8492a3623daSAndreas Gohr $inlist = true; 8502a3623daSAndreas Gohr } else { 8512a3623daSAndreas Gohr $sel = ''; 8522a3623daSAndreas Gohr } 8532a3623daSAndreas Gohr 8545312cb0bSSyntaxseed if ($ug[0] == '@') { 8552a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="aclgroup"'.$sel.'>'.hsc($ug).'</option>'.NL; 8562a3623daSAndreas Gohr } else { 8572a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="acluser"'.$sel.'>'.hsc($ug).'</option>'.NL; 8582a3623daSAndreas Gohr } 8592a3623daSAndreas Gohr } 8602a3623daSAndreas Gohr echo ' </optgroup>'.NL; 861ecd7c1d6SAnika Henke } 8622a3623daSAndreas Gohr echo '</select>'.NL; 8632a3623daSAndreas Gohr return $inlist; 8642a3623daSAndreas Gohr } 86511e2ce22Schris} 866
