111e2ce22Schris<?php 211e2ce22Schris/** 311e2ce22Schris * ACL administration functions 411e2ce22Schris * 511e2ce22Schris * @license GPL 2 (http://www.gnu.org/licenses/gpl.html) 62a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 7e965e37fSAnika Henke * @author Anika Henke <anika@selfthinker.org> (concepts) 82a3623daSAndreas Gohr * @author Frank Schubert <frank@schokilade.de> (old version) 911e2ce22Schris */ 10e04f1f16Schris// must be run within Dokuwiki 11e04f1f16Schrisif(!defined('DOKU_INC')) die(); 12e04f1f16Schris 1311e2ce22Schris/** 1411e2ce22Schris * All DokuWiki plugins to extend the admin function 1511e2ce22Schris * need to inherit from this class 1611e2ce22Schris */ 1711e2ce22Schrisclass admin_plugin_acl extends DokuWiki_Admin_Plugin { 182a3623daSAndreas Gohr var $acl = null; 192a3623daSAndreas Gohr var $ns = null; 2040307ce6SMichael Hamann /** 2140307ce6SMichael Hamann * The currently selected item, associative array with id and type. 2240307ce6SMichael Hamann * Populated from (in this order): 2340307ce6SMichael Hamann * $_REQUEST['current_ns'] 2440307ce6SMichael Hamann * $_REQUEST['current_id'] 2540307ce6SMichael Hamann * $ns 2640307ce6SMichael Hamann * $ID 2740307ce6SMichael Hamann */ 2840307ce6SMichael Hamann var $current_item = null; 292a3623daSAndreas Gohr var $who = ''; 302a3623daSAndreas Gohr var $usersgroups = array(); 3115976576SAndreas Gohr var $specials = array(); 321d3e0272SAndreas Gohr 3311e2ce22Schris /** 3411e2ce22Schris * return some info 3511e2ce22Schris */ 3611e2ce22Schris function getInfo(){ 3711e2ce22Schris return array( 382a3623daSAndreas Gohr 'author' => 'Andreas Gohr', 392a3623daSAndreas Gohr 'email' => 'andi@splitbrain.org', 40d7554c0bSAndreas Gohr 'date' => '2010-01-17', 41a8900dc9SAndreas Gohr 'name' => 'ACL Manager', 4211e2ce22Schris 'desc' => 'Manage Page Access Control Lists', 43f46c9e83SAnika Henke 'url' => 'http://dokuwiki.org/plugin:acl', 4411e2ce22Schris ); 4511e2ce22Schris } 4611e2ce22Schris 4711e2ce22Schris /** 4811e2ce22Schris * return prompt for admin menu 4911e2ce22Schris */ 5011e2ce22Schris function getMenuText($language) { 512a3623daSAndreas Gohr return $this->getLang('admin_acl'); 5211e2ce22Schris } 5311e2ce22Schris 5411e2ce22Schris /** 5511e2ce22Schris * return sort order for position in admin menu 5611e2ce22Schris */ 5711e2ce22Schris function getMenuSort() { 5811e2ce22Schris return 1; 5911e2ce22Schris } 6011e2ce22Schris 6111e2ce22Schris /** 6211e2ce22Schris * handle user request 632a3623daSAndreas Gohr * 642a3623daSAndreas Gohr * Initializes internal vars and handles modifications 652a3623daSAndreas Gohr * 662a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 6711e2ce22Schris */ 6811e2ce22Schris function handle() { 6911e2ce22Schris global $AUTH_ACL; 702a3623daSAndreas Gohr global $ID; 71d752aedeSAndreas Gohr global $auth; 72c8f80b4eSAndreas Gohr global $config_cascade; 7311e2ce22Schris 745d87b2ccSAndreas Gohr // fresh 1:1 copy without replacements 755d87b2ccSAndreas Gohr $AUTH_ACL = file(DOKU_CONF.'acl.auth.php'); 765d87b2ccSAndreas Gohr 77d7554c0bSAndreas Gohr 782a3623daSAndreas Gohr // namespace given? 792a3623daSAndreas Gohr if($_REQUEST['ns'] == '*'){ 802a3623daSAndreas Gohr $this->ns = '*'; 8111e2ce22Schris }else{ 822a3623daSAndreas Gohr $this->ns = cleanID($_REQUEST['ns']); 8311e2ce22Schris } 8411e2ce22Schris 8540307ce6SMichael Hamann if ($_REQUEST['current_ns']) { 8640307ce6SMichael Hamann $this->current_item = array('id' => cleanID($_REQUEST['current_ns']), 'type' => 'd'); 8740307ce6SMichael Hamann } elseif ($_REQUEST['current_id']) { 8840307ce6SMichael Hamann $this->current_item = array('id' => cleanID($_REQUEST['current_id']), 'type' => 'f'); 8940307ce6SMichael Hamann } elseif ($this->ns) { 9040307ce6SMichael Hamann $this->current_item = array('id' => $this->ns, 'type' => 'd'); 9140307ce6SMichael Hamann } else { 9240307ce6SMichael Hamann $this->current_item = array('id' => $ID, 'type' => 'f'); 9340307ce6SMichael Hamann } 9440307ce6SMichael Hamann 952a3623daSAndreas Gohr // user or group choosen? 962a3623daSAndreas Gohr $who = trim($_REQUEST['acl_w']); 972a3623daSAndreas Gohr if($_REQUEST['acl_t'] == '__g__' && $who){ 98d752aedeSAndreas Gohr $this->who = '@'.ltrim($auth->cleanGroup($who),'@'); 992a3623daSAndreas Gohr }elseif($_REQUEST['acl_t'] == '__u__' && $who){ 10080601d26SAndreas Gohr $this->who = ltrim($who,'@'); 10180601d26SAndreas Gohr if($this->who != '%USER%'){ #keep wildcard as is 10280601d26SAndreas Gohr $this->who = $auth->cleanUser($this->who); 10380601d26SAndreas Gohr } 1042a3623daSAndreas Gohr }elseif($_REQUEST['acl_t'] && 1052a3623daSAndreas Gohr $_REQUEST['acl_t'] != '__u__' && 1062a3623daSAndreas Gohr $_REQUEST['acl_t'] != '__g__'){ 1072a3623daSAndreas Gohr $this->who = $_REQUEST['acl_t']; 1082a3623daSAndreas Gohr }elseif($who){ 1092a3623daSAndreas Gohr $this->who = $who; 1102a3623daSAndreas Gohr } 111634d7150SAndreas Gohr 1122a3623daSAndreas Gohr // handle modifications 113d7554c0bSAndreas Gohr if(isset($_REQUEST['cmd']) && checkSecurityToken()){ 114d7554c0bSAndreas Gohr 1152a3623daSAndreas Gohr // scope for modifications 1162a3623daSAndreas Gohr if($this->ns){ 1172a3623daSAndreas Gohr if($this->ns == '*'){ 1182a3623daSAndreas Gohr $scope = '*'; 1192a3623daSAndreas Gohr }else{ 1202a3623daSAndreas Gohr $scope = $this->ns.':*'; 1212a3623daSAndreas Gohr } 1222a3623daSAndreas Gohr }else{ 1232a3623daSAndreas Gohr $scope = $ID; 1242a3623daSAndreas Gohr } 12511e2ce22Schris 1262a3623daSAndreas Gohr if(isset($_REQUEST['cmd']['save']) && $scope && $this->who && isset($_REQUEST['acl'])){ 1272a3623daSAndreas Gohr // handle additions or single modifications 1282a3623daSAndreas Gohr $this->_acl_del($scope, $this->who); 1292a3623daSAndreas Gohr $this->_acl_add($scope, $this->who, (int) $_REQUEST['acl']); 1302a3623daSAndreas Gohr }elseif(isset($_REQUEST['cmd']['del']) && $scope && $this->who){ 1312a3623daSAndreas Gohr // handle single deletions 1322a3623daSAndreas Gohr $this->_acl_del($scope, $this->who); 1332a3623daSAndreas Gohr }elseif(isset($_REQUEST['cmd']['update'])){ 1342a3623daSAndreas Gohr // handle update of the whole file 1357325569eSTom N Harris foreach((array) $_REQUEST['del'] as $where => $names){ 1362a3623daSAndreas Gohr // remove all rules marked for deletion 1377325569eSTom N Harris foreach($names as $who) 1382a3623daSAndreas Gohr unset($_REQUEST['acl'][$where][$who]); 1392a3623daSAndreas Gohr } 1402a3623daSAndreas Gohr // prepare lines 1412a3623daSAndreas Gohr $lines = array(); 1422a3623daSAndreas Gohr // keep header 1432a3623daSAndreas Gohr foreach($AUTH_ACL as $line){ 1442a3623daSAndreas Gohr if($line{0} == '#'){ 1452a3623daSAndreas Gohr $lines[] = $line; 1462a3623daSAndreas Gohr }else{ 1472a3623daSAndreas Gohr break; 1482a3623daSAndreas Gohr } 1492a3623daSAndreas Gohr } 1502a3623daSAndreas Gohr // re-add all rules 1512a3623daSAndreas Gohr foreach((array) $_REQUEST['acl'] as $where => $opt){ 1522a3623daSAndreas Gohr foreach($opt as $who => $perm){ 1534db77915SChristian Marg if ($who[0]=='@') { 1544db77915SChristian Marg if ($who!='@ALL') { 1554db77915SChristian Marg $who = '@'.ltrim($auth->cleanGroup($who),'@'); 1564db77915SChristian Marg } 15780601d26SAndreas Gohr } elseif ($who != '%USER%'){ #keep wildcard as is 1584db77915SChristian Marg $who = $auth->cleanUser($who); 1594db77915SChristian Marg } 1602a3623daSAndreas Gohr $who = auth_nameencode($who,true); 1612a3623daSAndreas Gohr $lines[] = "$where\t$who\t$perm\n"; 1622a3623daSAndreas Gohr } 1632a3623daSAndreas Gohr } 1642a3623daSAndreas Gohr // save it 165c8f80b4eSAndreas Gohr io_saveFile($config_cascade['acl']['default'], join('',$lines)); 16611e2ce22Schris } 16711e2ce22Schris 16811e2ce22Schris // reload ACL config 169c8f80b4eSAndreas Gohr $AUTH_ACL = file($config_cascade['acl']['default']); 17011e2ce22Schris } 17111e2ce22Schris 1722a3623daSAndreas Gohr // initialize ACL array 1732a3623daSAndreas Gohr $this->_init_acl_config(); 1742a3623daSAndreas Gohr } 1752a3623daSAndreas Gohr 17611e2ce22Schris /** 17711e2ce22Schris * ACL Output function 17811e2ce22Schris * 17911e2ce22Schris * print a table with all significant permissions for the 18011e2ce22Schris * current id 18111e2ce22Schris * 18211e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 18311e2ce22Schris * @author Andreas Gohr <andi@splitbrain.org> 18411e2ce22Schris */ 18511e2ce22Schris function html() { 18611e2ce22Schris global $ID; 18711e2ce22Schris 1882a3623daSAndreas Gohr echo '<div id="acl_manager">'.NL; 1892a3623daSAndreas Gohr echo '<h1>'.$this->getLang('admin_acl').'</h1>'.NL; 1902a3623daSAndreas Gohr echo '<div class="level1">'.NL; 19111e2ce22Schris 1922a3623daSAndreas Gohr echo '<div id="acl__tree">'.NL; 19340307ce6SMichael Hamann $this->_html_explorer(); 1942a3623daSAndreas Gohr echo '</div>'.NL; 19511e2ce22Schris 1962a3623daSAndreas Gohr echo '<div id="acl__detail">'.NL; 1972a3623daSAndreas Gohr $this->_html_detail(); 1982a3623daSAndreas Gohr echo '</div>'.NL; 1992a3623daSAndreas Gohr echo '</div>'.NL; 20011e2ce22Schris 2012a3623daSAndreas Gohr echo '<div class="clearer"></div>'; 2022a3623daSAndreas Gohr echo '<h2>'.$this->getLang('current').'</h2>'.NL; 2032a3623daSAndreas Gohr echo '<div class="level2">'.NL; 2042a3623daSAndreas Gohr $this->_html_table(); 2052a3623daSAndreas Gohr echo '</div>'.NL; 2062a3623daSAndreas Gohr 2070ef43815SAndreas Gohr echo '<div class="footnotes"><div class="fn">'.NL; 2080ef43815SAndreas Gohr echo '<sup><a id="fn__1" class="fn_bot" name="fn__1" href="#fnt__1">1)</a></sup>'.NL; 2090ef43815SAndreas Gohr echo $this->getLang('p_include'); 2100ef43815SAndreas Gohr echo '</div></div>'; 2110ef43815SAndreas Gohr 2122a3623daSAndreas Gohr echo '</div>'.NL; 21311e2ce22Schris } 21411e2ce22Schris 2152a3623daSAndreas Gohr /** 2162a3623daSAndreas Gohr * returns array with set options for building links 2172a3623daSAndreas Gohr * 2182a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 2192a3623daSAndreas Gohr */ 2202a3623daSAndreas Gohr function _get_opts($addopts=null){ 2212a3623daSAndreas Gohr global $ID; 2222a3623daSAndreas Gohr $opts = array( 2232a3623daSAndreas Gohr 'do'=>'admin', 2242a3623daSAndreas Gohr 'page'=>'acl', 2252a3623daSAndreas Gohr ); 2262a3623daSAndreas Gohr if($this->ns) $opts['ns'] = $this->ns; 2272a3623daSAndreas Gohr if($this->who) $opts['acl_w'] = $this->who; 2282a3623daSAndreas Gohr 2292a3623daSAndreas Gohr if(is_null($addopts)) return $opts; 2302a3623daSAndreas Gohr return array_merge($opts, $addopts); 2312a3623daSAndreas Gohr } 2322a3623daSAndreas Gohr 2332a3623daSAndreas Gohr /** 2342a3623daSAndreas Gohr * Display a tree menu to select a page or namespace 2352a3623daSAndreas Gohr * 2362a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 2372a3623daSAndreas Gohr */ 2382a3623daSAndreas Gohr function _html_explorer(){ 2392a3623daSAndreas Gohr global $conf; 2402a3623daSAndreas Gohr global $ID; 2412a3623daSAndreas Gohr global $lang; 2422a3623daSAndreas Gohr 2432a3623daSAndreas Gohr $dir = $conf['datadir']; 2442a3623daSAndreas Gohr $ns = $this->ns; 2452a3623daSAndreas Gohr if(empty($ns)){ 2462a3623daSAndreas Gohr $ns = dirname(str_replace(':','/',$ID)); 2472a3623daSAndreas Gohr if($ns == '.') $ns =''; 2482a3623daSAndreas Gohr }elseif($ns == '*'){ 2492a3623daSAndreas Gohr $ns =''; 2502a3623daSAndreas Gohr } 2512a3623daSAndreas Gohr $ns = utf8_encodeFN(str_replace(':','/',$ns)); 2522a3623daSAndreas Gohr 253a8900dc9SAndreas Gohr $data = $this->_get_tree($ns); 2542a3623daSAndreas Gohr 2552a3623daSAndreas Gohr // wrap a list with the root level around the other namespaces 2562a3623daSAndreas Gohr $item = array( 'level' => 0, 'id' => '*', 'type' => 'd', 2572a3623daSAndreas Gohr 'open' =>'true', 'label' => '['.$lang['mediaroot'].']'); 2582a3623daSAndreas Gohr 2592a3623daSAndreas Gohr echo '<ul class="acltree">'; 2602a3623daSAndreas Gohr echo $this->_html_li_acl($item); 2612a3623daSAndreas Gohr echo '<div class="li">'; 2622a3623daSAndreas Gohr echo $this->_html_list_acl($item); 2632a3623daSAndreas Gohr echo '</div>'; 2642a3623daSAndreas Gohr echo html_buildlist($data,'acl', 2652a3623daSAndreas Gohr array($this,'_html_list_acl'), 2662a3623daSAndreas Gohr array($this,'_html_li_acl')); 2672a3623daSAndreas Gohr echo '</li>'; 2682a3623daSAndreas Gohr echo '</ul>'; 2692a3623daSAndreas Gohr 2702a3623daSAndreas Gohr } 2712a3623daSAndreas Gohr 2722a3623daSAndreas Gohr /** 273a8900dc9SAndreas Gohr * get a combined list of media and page files 274a8900dc9SAndreas Gohr * 275a8900dc9SAndreas Gohr * @param string $folder an already converted filesystem folder of the current namespace 276a8900dc9SAndreas Gohr * @param string $limit limit the search to this folder 277a8900dc9SAndreas Gohr */ 278a8900dc9SAndreas Gohr function _get_tree($folder,$limit=''){ 279a8900dc9SAndreas Gohr global $conf; 280a8900dc9SAndreas Gohr 281a8900dc9SAndreas Gohr // read tree structure from pages and media 282a8900dc9SAndreas Gohr $data = array(); 283a8900dc9SAndreas Gohr search($data,$conf['datadir'],'search_index',array('ns' => $folder),$limit); 284a8900dc9SAndreas Gohr $media = array(); 285a8900dc9SAndreas Gohr search($media,$conf['mediadir'],'search_index',array('ns' => $folder, 'nofiles' => true),$limit); 286a8900dc9SAndreas Gohr $data = array_merge($data,$media); 287a8900dc9SAndreas Gohr unset($media); 288a8900dc9SAndreas Gohr 289a8900dc9SAndreas Gohr // combine by sorting and removing duplicates 290a8900dc9SAndreas Gohr usort($data,array($this,'_tree_sort')); 291a8900dc9SAndreas Gohr $count = count($data); 292a8900dc9SAndreas Gohr if($count>0) for($i=1; $i<$count; $i++){ 293d74913c6SMichael Hamann if($data[$i-1]['id'] == $data[$i]['id'] && $data[$i-1]['type'] == $data[$i]['type']) unset($data[$i]); 294a8900dc9SAndreas Gohr } 295a8900dc9SAndreas Gohr return $data; 296a8900dc9SAndreas Gohr } 297a8900dc9SAndreas Gohr 298a8900dc9SAndreas Gohr /** 299a8900dc9SAndreas Gohr * usort callback 300a8900dc9SAndreas Gohr * 301a8900dc9SAndreas Gohr * Sorts the combined trees of media and page files 302a8900dc9SAndreas Gohr */ 303a8900dc9SAndreas Gohr function _tree_sort($a,$b){ 304d74913c6SMichael Hamann // handle the trivial cases first 305d74913c6SMichael Hamann if ($a['id'] == '') return -1; 306d74913c6SMichael Hamann if ($b['id'] == '') return 1; 307d74913c6SMichael Hamann // split up the id into parts 308d74913c6SMichael Hamann $a_ids = explode(':', $a['id']); 309d74913c6SMichael Hamann $b_ids = explode(':', $b['id']); 310d74913c6SMichael Hamann // now loop through the parts 311d74913c6SMichael Hamann while (count($a_ids) && count($b_ids)) { 312d74913c6SMichael Hamann // compare each level from upper to lower 313d74913c6SMichael Hamann // until a non-equal component is found 314d74913c6SMichael Hamann $cur_result = strcmp(array_shift($a_ids), array_shift($b_ids)); 315d74913c6SMichael Hamann if ($cur_result) { 316d74913c6SMichael Hamann // if one of the components is the last component and is a file 317d74913c6SMichael Hamann // and the other one is either of a deeper level or a directory, 318d74913c6SMichael Hamann // the file has to come after the deeper level or directory 319d74913c6SMichael Hamann if (empty($a_ids) && $a['type'] == 'f' && (count($b_ids) || $b['type'] == 'd')) return 1; 320d74913c6SMichael Hamann if (empty($b_ids) && $b['type'] == 'f' && (count($a_ids) || $a['type'] == 'd')) return -1; 321d74913c6SMichael Hamann return $cur_result; 322a8900dc9SAndreas Gohr } 323a8900dc9SAndreas Gohr } 324d74913c6SMichael Hamann // The two ids seem to be equal. One of them might however refer 325d74913c6SMichael Hamann // to a page, one to a namespace, the namespace needs to be first. 326d74913c6SMichael Hamann if (empty($a_ids) && empty($b_ids)) { 327d74913c6SMichael Hamann if ($a['type'] == $b['type']) return 0; 328d74913c6SMichael Hamann if ($a['type'] == 'f') return 1; 329d74913c6SMichael Hamann return -1; 330d74913c6SMichael Hamann } 331d74913c6SMichael Hamann // Now the empty part is either a page in the parent namespace 332d74913c6SMichael Hamann // that obviously needs to be after the namespace 333d74913c6SMichael Hamann // Or it is the namespace that contains the other part and should be 334d74913c6SMichael Hamann // before that other part. 335d74913c6SMichael Hamann if (empty($a_ids)) return ($a['type'] == 'd') ? -1 : 1; 336d74913c6SMichael Hamann if (empty($b_ids)) return ($b['type'] == 'd') ? 1 : -1; 337d74913c6SMichael Hamann } 338a8900dc9SAndreas Gohr 339a8900dc9SAndreas Gohr /** 3402a3623daSAndreas Gohr * Display the current ACL for selected where/who combination with 3412a3623daSAndreas Gohr * selectors and modification form 3422a3623daSAndreas Gohr * 3432a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 3442a3623daSAndreas Gohr */ 3452a3623daSAndreas Gohr function _html_detail(){ 3462a3623daSAndreas Gohr global $conf; 3472a3623daSAndreas Gohr global $ID; 3482a3623daSAndreas Gohr 3492404d0edSAnika Henke echo '<form action="'.wl().'" method="post" accept-charset="utf-8"><div class="no">'.NL; 3502a3623daSAndreas Gohr 3512a3623daSAndreas Gohr echo '<div id="acl__user">'; 3522a3623daSAndreas Gohr echo $this->getLang('acl_perms').' '; 3532a3623daSAndreas Gohr $inl = $this->_html_select(); 3542a3623daSAndreas Gohr echo '<input type="text" name="acl_w" class="edit" value="'.(($inl)?'':hsc(ltrim($this->who,'@'))).'" />'.NL; 355211977d2Shakan.sandell echo '<input type="submit" value="'.$this->getLang('btn_select').'" class="button" />'.NL; 3562a3623daSAndreas Gohr echo '</div>'.NL; 3572a3623daSAndreas Gohr 3582a3623daSAndreas Gohr echo '<div id="acl__info">'; 3592a3623daSAndreas Gohr $this->_html_info(); 3602a3623daSAndreas Gohr echo '</div>'; 3612a3623daSAndreas Gohr 3622a3623daSAndreas Gohr echo '<input type="hidden" name="ns" value="'.hsc($this->ns).'" />'.NL; 3632a3623daSAndreas Gohr echo '<input type="hidden" name="id" value="'.hsc($ID).'" />'.NL; 3642a3623daSAndreas Gohr echo '<input type="hidden" name="do" value="admin" />'.NL; 3652a3623daSAndreas Gohr echo '<input type="hidden" name="page" value="acl" />'.NL; 366d7554c0bSAndreas Gohr echo '<input type="hidden" name="sectok" value="'.getSecurityToken().'" />'.NL; 3672404d0edSAnika Henke echo '</div></form>'.NL; 3682a3623daSAndreas Gohr } 3692a3623daSAndreas Gohr 3702a3623daSAndreas Gohr /** 3712a3623daSAndreas Gohr * Print infos and editor 3722a3623daSAndreas Gohr */ 3732a3623daSAndreas Gohr function _html_info(){ 3742a3623daSAndreas Gohr global $ID; 3752a3623daSAndreas Gohr 3762a3623daSAndreas Gohr if($this->who){ 3772a3623daSAndreas Gohr $current = $this->_get_exact_perm(); 3782a3623daSAndreas Gohr 3792a3623daSAndreas Gohr // explain current permissions 3802a3623daSAndreas Gohr $this->_html_explain($current); 3812a3623daSAndreas Gohr // load editor 3822a3623daSAndreas Gohr $this->_html_acleditor($current); 3832a3623daSAndreas Gohr }else{ 3842a3623daSAndreas Gohr echo '<p>'; 3852a3623daSAndreas Gohr if($this->ns){ 3862a3623daSAndreas Gohr printf($this->getLang('p_choose_ns'),hsc($this->ns)); 3872a3623daSAndreas Gohr }else{ 3882a3623daSAndreas Gohr printf($this->getLang('p_choose_id'),hsc($ID)); 3892a3623daSAndreas Gohr } 3902a3623daSAndreas Gohr echo '</p>'; 3912a3623daSAndreas Gohr 3922a3623daSAndreas Gohr echo $this->locale_xhtml('help'); 3932a3623daSAndreas Gohr } 3942a3623daSAndreas Gohr } 3952a3623daSAndreas Gohr 3962a3623daSAndreas Gohr /** 3972a3623daSAndreas Gohr * Display the ACL editor 3982a3623daSAndreas Gohr * 3992a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 4002a3623daSAndreas Gohr */ 4012a3623daSAndreas Gohr function _html_acleditor($current){ 4022a3623daSAndreas Gohr global $lang; 4032a3623daSAndreas Gohr 4042a3623daSAndreas Gohr echo '<fieldset>'; 4052a3623daSAndreas Gohr if(is_null($current)){ 4062a3623daSAndreas Gohr echo '<legend>'.$this->getLang('acl_new').'</legend>'; 4072a3623daSAndreas Gohr }else{ 4082a3623daSAndreas Gohr echo '<legend>'.$this->getLang('acl_mod').'</legend>'; 4092a3623daSAndreas Gohr } 4102a3623daSAndreas Gohr 4112a3623daSAndreas Gohr 4122a3623daSAndreas Gohr echo $this->_html_checkboxes($current,empty($this->ns),'acl'); 4132a3623daSAndreas Gohr 4142a3623daSAndreas Gohr if(is_null($current)){ 4152a3623daSAndreas Gohr echo '<input type="submit" name="cmd[save]" class="button" value="'.$lang['btn_save'].'" />'.NL; 4162a3623daSAndreas Gohr }else{ 4172a3623daSAndreas Gohr echo '<input type="submit" name="cmd[save]" class="button" value="'.$lang['btn_update'].'" />'.NL; 4182a3623daSAndreas Gohr echo '<input type="submit" name="cmd[del]" class="button" value="'.$lang['btn_delete'].'" />'.NL; 4192a3623daSAndreas Gohr } 4202a3623daSAndreas Gohr 4212a3623daSAndreas Gohr echo '</fieldset>'; 4222a3623daSAndreas Gohr } 4232a3623daSAndreas Gohr 4242a3623daSAndreas Gohr /** 4252a3623daSAndreas Gohr * Explain the currently set permissions in plain english/$lang 4262a3623daSAndreas Gohr * 4272a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 4282a3623daSAndreas Gohr */ 4292a3623daSAndreas Gohr function _html_explain($current){ 4302a3623daSAndreas Gohr global $ID; 4312a3623daSAndreas Gohr global $auth; 4322a3623daSAndreas Gohr 4332a3623daSAndreas Gohr $who = $this->who; 4342a3623daSAndreas Gohr $ns = $this->ns; 4352a3623daSAndreas Gohr 4362a3623daSAndreas Gohr // prepare where to check 4372a3623daSAndreas Gohr if($ns){ 4382a3623daSAndreas Gohr if($ns == '*'){ 4392a3623daSAndreas Gohr $check='*'; 4402a3623daSAndreas Gohr }else{ 4412a3623daSAndreas Gohr $check=$ns.':*'; 4422a3623daSAndreas Gohr } 4432a3623daSAndreas Gohr }else{ 4442a3623daSAndreas Gohr $check = $ID; 4452a3623daSAndreas Gohr } 4462a3623daSAndreas Gohr 4472a3623daSAndreas Gohr // prepare who to check 4482a3623daSAndreas Gohr if($who{0} == '@'){ 4492a3623daSAndreas Gohr $user = ''; 4502a3623daSAndreas Gohr $groups = array(ltrim($who,'@')); 4512a3623daSAndreas Gohr }else{ 4522a3623daSAndreas Gohr $user = auth_nameencode($who); 4532a3623daSAndreas Gohr $info = $auth->getUserData($user); 454c1791678SAndreas Gohr if($info === false){ 455c1791678SAndreas Gohr $groups = array(); 456c1791678SAndreas Gohr }else{ 45778750b94SAndreas Gohr $groups = $info['grps']; 4582a3623daSAndreas Gohr } 459c1791678SAndreas Gohr } 4602a3623daSAndreas Gohr 4612a3623daSAndreas Gohr // check the permissions 4622a3623daSAndreas Gohr $perm = auth_aclcheck($check,$user,$groups); 4632a3623daSAndreas Gohr 4642a3623daSAndreas Gohr // build array of named permissions 4652a3623daSAndreas Gohr $names = array(); 4662a3623daSAndreas Gohr if($perm){ 4672a3623daSAndreas Gohr if($ns){ 4682a3623daSAndreas Gohr if($perm >= AUTH_DELETE) $names[] = $this->getLang('acl_perm16'); 4692a3623daSAndreas Gohr if($perm >= AUTH_UPLOAD) $names[] = $this->getLang('acl_perm8'); 4702a3623daSAndreas Gohr if($perm >= AUTH_CREATE) $names[] = $this->getLang('acl_perm4'); 4712a3623daSAndreas Gohr } 4722a3623daSAndreas Gohr if($perm >= AUTH_EDIT) $names[] = $this->getLang('acl_perm2'); 4732a3623daSAndreas Gohr if($perm >= AUTH_READ) $names[] = $this->getLang('acl_perm1'); 4742a3623daSAndreas Gohr $names = array_reverse($names); 4752a3623daSAndreas Gohr }else{ 4762a3623daSAndreas Gohr $names[] = $this->getLang('acl_perm0'); 4772a3623daSAndreas Gohr } 4782a3623daSAndreas Gohr 4792a3623daSAndreas Gohr // print permission explanation 4802a3623daSAndreas Gohr echo '<p>'; 4812a3623daSAndreas Gohr if($user){ 4822a3623daSAndreas Gohr if($ns){ 4832a3623daSAndreas Gohr printf($this->getLang('p_user_ns'),hsc($who),hsc($ns),join(', ',$names)); 4842a3623daSAndreas Gohr }else{ 4852a3623daSAndreas Gohr printf($this->getLang('p_user_id'),hsc($who),hsc($ID),join(', ',$names)); 4862a3623daSAndreas Gohr } 4872a3623daSAndreas Gohr }else{ 4882a3623daSAndreas Gohr if($ns){ 4892a3623daSAndreas Gohr printf($this->getLang('p_group_ns'),hsc(ltrim($who,'@')),hsc($ns),join(', ',$names)); 4902a3623daSAndreas Gohr }else{ 4912a3623daSAndreas Gohr printf($this->getLang('p_group_id'),hsc(ltrim($who,'@')),hsc($ID),join(', ',$names)); 4922a3623daSAndreas Gohr } 4932a3623daSAndreas Gohr } 4942a3623daSAndreas Gohr echo '</p>'; 4952a3623daSAndreas Gohr 4962a3623daSAndreas Gohr // add note if admin 4972a3623daSAndreas Gohr if($perm == AUTH_ADMIN){ 4982a3623daSAndreas Gohr echo '<p>'.$this->getLang('p_isadmin').'</p>'; 4992a3623daSAndreas Gohr }elseif(is_null($current)){ 5002a3623daSAndreas Gohr echo '<p>'.$this->getLang('p_inherited').'</p>'; 5012a3623daSAndreas Gohr } 50211e2ce22Schris } 50311e2ce22Schris 50411e2ce22Schris 50511e2ce22Schris /** 5062a3623daSAndreas Gohr * Item formatter for the tree view 50711e2ce22Schris * 5082a3623daSAndreas Gohr * User function for html_buildlist() 50911e2ce22Schris * 5102a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 51111e2ce22Schris */ 5122a3623daSAndreas Gohr function _html_list_acl($item){ 5132a3623daSAndreas Gohr global $ID; 5142a3623daSAndreas Gohr $ret = ''; 5152a3623daSAndreas Gohr // what to display 5162a3623daSAndreas Gohr if($item['label']){ 5172a3623daSAndreas Gohr $base = $item['label']; 5182a3623daSAndreas Gohr }else{ 5192a3623daSAndreas Gohr $base = ':'.$item['id']; 5202a3623daSAndreas Gohr $base = substr($base,strrpos($base,':')+1); 5212a3623daSAndreas Gohr } 5222a3623daSAndreas Gohr 5232a3623daSAndreas Gohr // highlight? 52440307ce6SMichael Hamann if( ($item['type']== $this->current_item['type'] && $item['id'] == $this->current_item['id'])) 52540307ce6SMichael Hamann $cl = ' cur'; 5262a3623daSAndreas Gohr 5272a3623daSAndreas Gohr // namespace or page? 5282a3623daSAndreas Gohr if($item['type']=='d'){ 5292a3623daSAndreas Gohr if($item['open']){ 5302a3623daSAndreas Gohr $img = DOKU_BASE.'lib/images/minus.gif'; 5312a3623daSAndreas Gohr $alt = '−'; 5322a3623daSAndreas Gohr }else{ 5332a3623daSAndreas Gohr $img = DOKU_BASE.'lib/images/plus.gif'; 5342a3623daSAndreas Gohr $alt = '+'; 5352a3623daSAndreas Gohr } 5362a3623daSAndreas Gohr $ret .= '<img src="'.$img.'" alt="'.$alt.'" />'; 537d7554c0bSAndreas Gohr $ret .= '<a href="'.wl('',$this->_get_opts(array('ns'=>$item['id'],'sectok'=>getSecurityToken()))).'" class="idx_dir'.$cl.'">'; 5382a3623daSAndreas Gohr $ret .= $base; 5392a3623daSAndreas Gohr $ret .= '</a>'; 5402a3623daSAndreas Gohr }else{ 541d7554c0bSAndreas Gohr $ret .= '<a href="'.wl('',$this->_get_opts(array('id'=>$item['id'],'ns'=>'','sectok'=>getSecurityToken()))).'" class="wikilink1'.$cl.'">'; 5422a3623daSAndreas Gohr $ret .= noNS($item['id']); 5432a3623daSAndreas Gohr $ret .= '</a>'; 5442a3623daSAndreas Gohr } 5452a3623daSAndreas Gohr return $ret; 5462a3623daSAndreas Gohr } 5472a3623daSAndreas Gohr 5482a3623daSAndreas Gohr 5492a3623daSAndreas Gohr function _html_li_acl($item){ 5502a3623daSAndreas Gohr return '<li class="level'.$item['level'].'">'; 5512a3623daSAndreas Gohr } 5522a3623daSAndreas Gohr 5532a3623daSAndreas Gohr 5542a3623daSAndreas Gohr /** 5552a3623daSAndreas Gohr * Get current ACL settings as multidim array 5562a3623daSAndreas Gohr * 5572a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 5582a3623daSAndreas Gohr */ 5592a3623daSAndreas Gohr function _init_acl_config(){ 56011e2ce22Schris global $AUTH_ACL; 5612a3623daSAndreas Gohr global $conf; 56211e2ce22Schris $acl_config=array(); 5632a3623daSAndreas Gohr $usersgroups = array(); 56411e2ce22Schris 56515976576SAndreas Gohr // get special users and groups 56615976576SAndreas Gohr $this->specials[] = '@ALL'; 56715976576SAndreas Gohr $this->specials[] = '@'.$conf['defaultgroup']; 56815976576SAndreas Gohr if($conf['manager'] != '!!not set!!'){ 56915976576SAndreas Gohr $this->specials = array_merge($this->specials, 57015976576SAndreas Gohr array_map('trim', 57115976576SAndreas Gohr explode(',',$conf['manager']))); 57215976576SAndreas Gohr } 57315976576SAndreas Gohr $this->specials = array_filter($this->specials); 57415976576SAndreas Gohr $this->specials = array_unique($this->specials); 57515976576SAndreas Gohr sort($this->specials); 57615976576SAndreas Gohr 5772a3623daSAndreas Gohr foreach($AUTH_ACL as $line){ 5782a3623daSAndreas Gohr $line = trim(preg_replace('/#.*$/','',$line)); //ignore comments 5792a3623daSAndreas Gohr if(!$line) continue; 5802a3623daSAndreas Gohr 5812a3623daSAndreas Gohr $acl = preg_split('/\s+/',$line); 58211e2ce22Schris //0 is pagename, 1 is user, 2 is acl 5832a3623daSAndreas Gohr 5842a3623daSAndreas Gohr $acl[1] = rawurldecode($acl[1]); 5852a3623daSAndreas Gohr $acl_config[$acl[0]][$acl[1]] = $acl[2]; 5862a3623daSAndreas Gohr 5872a3623daSAndreas Gohr // store non-special users and groups for later selection dialog 5882a3623daSAndreas Gohr $ug = $acl[1]; 58915976576SAndreas Gohr if(in_array($ug,$this->specials)) continue; 5902a3623daSAndreas Gohr $usersgroups[] = $ug; 5912a3623daSAndreas Gohr } 5922a3623daSAndreas Gohr 5932a3623daSAndreas Gohr $usersgroups = array_unique($usersgroups); 5942a3623daSAndreas Gohr sort($usersgroups); 595d0b0ddffSAndreas Gohr ksort($acl_config); 5962a3623daSAndreas Gohr 5972a3623daSAndreas Gohr $this->acl = $acl_config; 5982a3623daSAndreas Gohr $this->usersgroups = $usersgroups; 5992a3623daSAndreas Gohr } 6002a3623daSAndreas Gohr 6012a3623daSAndreas Gohr /** 6022a3623daSAndreas Gohr * Display all currently set permissions in a table 6032a3623daSAndreas Gohr * 6042a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 6052a3623daSAndreas Gohr */ 6062a3623daSAndreas Gohr function _html_table(){ 6072a3623daSAndreas Gohr global $lang; 6082a3623daSAndreas Gohr global $ID; 6092a3623daSAndreas Gohr 6102404d0edSAnika Henke echo '<form action="'.wl().'" method="post" accept-charset="utf-8"><div class="no">'.NL; 6112a3623daSAndreas Gohr if($this->ns){ 6122a3623daSAndreas Gohr echo '<input type="hidden" name="ns" value="'.hsc($this->ns).'" />'.NL; 6132a3623daSAndreas Gohr }else{ 6142a3623daSAndreas Gohr echo '<input type="hidden" name="id" value="'.hsc($ID).'" />'.NL; 61511e2ce22Schris } 6162a3623daSAndreas Gohr echo '<input type="hidden" name="acl_w" value="'.hsc($this->who).'" />'.NL; 6172a3623daSAndreas Gohr echo '<input type="hidden" name="do" value="admin" />'.NL; 6182a3623daSAndreas Gohr echo '<input type="hidden" name="page" value="acl" />'.NL; 619d7554c0bSAndreas Gohr echo '<input type="hidden" name="sectok" value="'.getSecurityToken().'" />'.NL; 6202a3623daSAndreas Gohr echo '<table class="inline">'; 6212a3623daSAndreas Gohr echo '<tr>'; 6222a3623daSAndreas Gohr echo '<th>'.$this->getLang('where').'</th>'; 6232a3623daSAndreas Gohr echo '<th>'.$this->getLang('who').'</th>'; 6240ef43815SAndreas Gohr echo '<th>'.$this->getLang('perm').'<sup><a id="fnt__1" class="fn_top" name="fnt__1" href="#fn__1">1)</a></sup></th>'; 6252a3623daSAndreas Gohr echo '<th>'.$lang['btn_delete'].'</th>'; 6262a3623daSAndreas Gohr echo '</tr>'; 6272a3623daSAndreas Gohr foreach($this->acl as $where => $set){ 6282a3623daSAndreas Gohr foreach($set as $who => $perm){ 6292a3623daSAndreas Gohr echo '<tr>'; 6302a3623daSAndreas Gohr echo '<td>'; 6312a3623daSAndreas Gohr if(substr($where,-1) == '*'){ 6322a3623daSAndreas Gohr echo '<span class="aclns">'.hsc($where).'</span>'; 6332a3623daSAndreas Gohr $ispage = false; 6342a3623daSAndreas Gohr }else{ 6352a3623daSAndreas Gohr echo '<span class="aclpage">'.hsc($where).'</span>'; 6362a3623daSAndreas Gohr $ispage = true; 6372a3623daSAndreas Gohr } 6382a3623daSAndreas Gohr echo '</td>'; 6392a3623daSAndreas Gohr 6402a3623daSAndreas Gohr echo '<td>'; 6412a3623daSAndreas Gohr if($who{0} == '@'){ 6422a3623daSAndreas Gohr echo '<span class="aclgroup">'.hsc($who).'</span>'; 6432a3623daSAndreas Gohr }else{ 6442a3623daSAndreas Gohr echo '<span class="acluser">'.hsc($who).'</span>'; 6452a3623daSAndreas Gohr } 6462a3623daSAndreas Gohr echo '</td>'; 6472a3623daSAndreas Gohr 6482a3623daSAndreas Gohr echo '<td>'; 6499f9e7398SAndreas Gohr echo $this->_html_checkboxes($perm,$ispage,'acl['.$where.']['.$who.']'); 6502a3623daSAndreas Gohr echo '</td>'; 6512a3623daSAndreas Gohr 6522a3623daSAndreas Gohr echo '<td align="center">'; 6537325569eSTom N Harris echo '<input type="checkbox" name="del['.hsc($where).'][]" value="'.hsc($who).'" />'; 6542a3623daSAndreas Gohr echo '</td>'; 6552a3623daSAndreas Gohr echo '</tr>'; 65611e2ce22Schris } 65711e2ce22Schris } 65811e2ce22Schris 6592a3623daSAndreas Gohr echo '<tr>'; 6602a3623daSAndreas Gohr echo '<th align="right" colspan="4">'; 6612a3623daSAndreas Gohr echo '<input type="submit" value="'.$lang['btn_update'].'" name="cmd[update]" class="button" />'; 6622a3623daSAndreas Gohr echo '</th>'; 6632a3623daSAndreas Gohr echo '</tr>'; 6642a3623daSAndreas Gohr echo '</table>'; 6652404d0edSAnika Henke echo '</div></form>'.NL; 66611e2ce22Schris } 66711e2ce22Schris 66811e2ce22Schris 6692a3623daSAndreas Gohr /** 6702a3623daSAndreas Gohr * Returns the permission which were set for exactly the given user/group 6712a3623daSAndreas Gohr * and page/namespace. Returns null if no exact match is available 6722a3623daSAndreas Gohr * 6732a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 6742a3623daSAndreas Gohr */ 6752a3623daSAndreas Gohr function _get_exact_perm(){ 6762a3623daSAndreas Gohr global $ID; 6772a3623daSAndreas Gohr if($this->ns){ 6782a3623daSAndreas Gohr if($this->ns == '*'){ 6792a3623daSAndreas Gohr $check = '*'; 6802a3623daSAndreas Gohr }else{ 6812a3623daSAndreas Gohr $check = $this->ns.':*'; 6822a3623daSAndreas Gohr } 6832a3623daSAndreas Gohr }else{ 6842a3623daSAndreas Gohr $check = $ID; 68511e2ce22Schris } 68611e2ce22Schris 6873bde27bfSAndreas Gohr if(isset($this->acl[$check][$this->who])){ 6883bde27bfSAndreas Gohr return $this->acl[$check][$this->who]; 6892a3623daSAndreas Gohr }else{ 6902a3623daSAndreas Gohr return null; 6912a3623daSAndreas Gohr } 6922a3623daSAndreas Gohr } 69311e2ce22Schris 69411e2ce22Schris /** 69511e2ce22Schris * adds new acl-entry to conf/acl.auth.php 69611e2ce22Schris * 69711e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 69811e2ce22Schris */ 6992a3623daSAndreas Gohr function _acl_add($acl_scope, $acl_user, $acl_level){ 700c8f80b4eSAndreas Gohr global $config_cascade; 701c8f80b4eSAndreas Gohr $acl_config = file_get_contents($config_cascade['acl']['default']); 7022a3623daSAndreas Gohr $acl_user = auth_nameencode($acl_user,true); 70311e2ce22Schris 70411e2ce22Schris // max level for pagenames is edit 70511e2ce22Schris if(strpos($acl_scope,'*') === false) { 70611e2ce22Schris if($acl_level > AUTH_EDIT) $acl_level = AUTH_EDIT; 70711e2ce22Schris } 70811e2ce22Schris 7092a3623daSAndreas Gohr 71011e2ce22Schris $new_acl = "$acl_scope\t$acl_user\t$acl_level\n"; 71111e2ce22Schris 71211e2ce22Schris $new_config = $acl_config.$new_acl; 71311e2ce22Schris 71411e2ce22Schris return io_saveFile(DOKU_CONF.'acl.auth.php', $new_config); 71511e2ce22Schris } 71611e2ce22Schris 71711e2ce22Schris /** 71811e2ce22Schris * remove acl-entry from conf/acl.auth.php 71911e2ce22Schris * 72011e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 72111e2ce22Schris */ 7222a3623daSAndreas Gohr function _acl_del($acl_scope, $acl_user){ 723c8f80b4eSAndreas Gohr global $config_cascade; 724c8f80b4eSAndreas Gohr $acl_config = file($config_cascade['acl']['default']); 7252a3623daSAndreas Gohr $acl_user = auth_nameencode($acl_user,true); 72611e2ce22Schris 72711e2ce22Schris $acl_pattern = '^'.preg_quote($acl_scope,'/').'\s+'.$acl_user.'\s+[0-8].*$'; 72811e2ce22Schris 7292a3623daSAndreas Gohr // save all non!-matching 73011e2ce22Schris $new_config = preg_grep("/$acl_pattern/", $acl_config, PREG_GREP_INVERT); 73111e2ce22Schris 73211e2ce22Schris return io_saveFile(DOKU_CONF.'acl.auth.php', join('',$new_config)); 73311e2ce22Schris } 73411e2ce22Schris 73511e2ce22Schris /** 7362a3623daSAndreas Gohr * print the permission radio boxes 73711e2ce22Schris * 73811e2ce22Schris * @author Frank Schubert <frank@schokilade.de> 73911e2ce22Schris * @author Andreas Gohr <andi@splitbrain.org> 74011e2ce22Schris */ 7412a3623daSAndreas Gohr function _html_checkboxes($setperm,$ispage,$name){ 74211e2ce22Schris global $lang; 74311e2ce22Schris 74411e2ce22Schris static $label = 0; //number labels 74511e2ce22Schris $ret = ''; 74611e2ce22Schris 7472a3623daSAndreas Gohr if($ispage && $setperm > AUTH_EDIT) $perm = AUTH_EDIT; 7482a3623daSAndreas Gohr 7492a3623daSAndreas Gohr foreach(array(AUTH_NONE,AUTH_READ,AUTH_EDIT,AUTH_CREATE,AUTH_UPLOAD,AUTH_DELETE) as $perm){ 75011e2ce22Schris $label += 1; 75111e2ce22Schris 75211e2ce22Schris //general checkbox attributes 7532a3623daSAndreas Gohr $atts = array( 'type' => 'radio', 75411e2ce22Schris 'id' => 'pbox'.$label, 7552a3623daSAndreas Gohr 'name' => $name, 75611e2ce22Schris 'value' => $perm ); 75711e2ce22Schris //dynamic attributes 7582a3623daSAndreas Gohr if(!is_null($setperm) && $setperm == $perm) $atts['checked'] = 'checked'; 7592a3623daSAndreas Gohr if($ispage && $perm > AUTH_EDIT){ 7602a3623daSAndreas Gohr $atts['disabled'] = 'disabled'; 7612a3623daSAndreas Gohr $class = ' class="disabled"'; 7622a3623daSAndreas Gohr }else{ 7632a3623daSAndreas Gohr $class = ''; 7642a3623daSAndreas Gohr } 76511e2ce22Schris 76611e2ce22Schris //build code 7672a3623daSAndreas Gohr $ret .= '<label for="pbox'.$label.'" title="'.$this->getLang('acl_perm'.$perm).'"'.$class.'>'; 768*c277a6bdSTom N Harris $ret .= '<input '.buildAttributes($atts).' /> '; 7692a3623daSAndreas Gohr $ret .= $this->getLang('acl_perm'.$perm); 7702a3623daSAndreas Gohr $ret .= '</label>'.NL; 77111e2ce22Schris } 77211e2ce22Schris return $ret; 77311e2ce22Schris } 77411e2ce22Schris 7752a3623daSAndreas Gohr /** 7762a3623daSAndreas Gohr * Print a user/group selector (reusing already used users and groups) 7772a3623daSAndreas Gohr * 7782a3623daSAndreas Gohr * @author Andreas Gohr <andi@splitbrain.org> 7792a3623daSAndreas Gohr */ 7802a3623daSAndreas Gohr function _html_select(){ 7812a3623daSAndreas Gohr global $conf; 7822a3623daSAndreas Gohr $inlist = false; 7832a3623daSAndreas Gohr 7842a3623daSAndreas Gohr if($this->who && 7852a3623daSAndreas Gohr !in_array($this->who,$this->usersgroups) && 786a3a4e862SAndreas Gohr !in_array($this->who,$this->specials)){ 7872a3623daSAndreas Gohr 7882a3623daSAndreas Gohr if($this->who{0} == '@'){ 7892a3623daSAndreas Gohr $gsel = ' selected="selected"'; 7902a3623daSAndreas Gohr }else{ 7912a3623daSAndreas Gohr $usel = ' selected="selected"'; 7922a3623daSAndreas Gohr } 7932a3623daSAndreas Gohr }else{ 7942a3623daSAndreas Gohr $usel = ''; 7952a3623daSAndreas Gohr $gsel = ''; 7962a3623daSAndreas Gohr $inlist = true; 7972a3623daSAndreas Gohr } 7982a3623daSAndreas Gohr 7992a3623daSAndreas Gohr 8002a3623daSAndreas Gohr echo '<select name="acl_t" class="edit">'.NL; 8012a3623daSAndreas Gohr echo ' <option value="__g__" class="aclgroup"'.$gsel.'>'.$this->getLang('acl_group').':</option>'.NL; 8022a3623daSAndreas Gohr echo ' <option value="__u__" class="acluser"'.$usel.'>'.$this->getLang('acl_user').':</option>'.NL; 8032a3623daSAndreas Gohr echo ' <optgroup label=" ">'.NL; 80415976576SAndreas Gohr foreach($this->specials as $ug){ 8052a3623daSAndreas Gohr if($ug == $this->who){ 8062a3623daSAndreas Gohr $sel = ' selected="selected"'; 8072a3623daSAndreas Gohr $inlist = true; 8082a3623daSAndreas Gohr }else{ 8092a3623daSAndreas Gohr $sel = ''; 8102a3623daSAndreas Gohr } 8112a3623daSAndreas Gohr 8122a3623daSAndreas Gohr if($ug{0} == '@'){ 8132a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="aclgroup"'.$sel.'>'.hsc($ug).'</option>'.NL; 8142a3623daSAndreas Gohr }else{ 8152a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="acluser"'.$sel.'>'.hsc($ug).'</option>'.NL; 8162a3623daSAndreas Gohr } 8172a3623daSAndreas Gohr } 8182a3623daSAndreas Gohr echo ' </optgroup>'.NL; 8192a3623daSAndreas Gohr echo ' <optgroup label=" ">'.NL; 8202a3623daSAndreas Gohr foreach($this->usersgroups as $ug){ 8212a3623daSAndreas Gohr if($ug == $this->who){ 8222a3623daSAndreas Gohr $sel = ' selected="selected"'; 8232a3623daSAndreas Gohr $inlist = true; 8242a3623daSAndreas Gohr }else{ 8252a3623daSAndreas Gohr $sel = ''; 8262a3623daSAndreas Gohr } 8272a3623daSAndreas Gohr 8282a3623daSAndreas Gohr if($ug{0} == '@'){ 8292a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="aclgroup"'.$sel.'>'.hsc($ug).'</option>'.NL; 8302a3623daSAndreas Gohr }else{ 8312a3623daSAndreas Gohr echo ' <option value="'.hsc($ug).'" class="acluser"'.$sel.'>'.hsc($ug).'</option>'.NL; 8322a3623daSAndreas Gohr } 8332a3623daSAndreas Gohr } 8342a3623daSAndreas Gohr echo ' </optgroup>'.NL; 8352a3623daSAndreas Gohr echo '</select>'.NL; 8362a3623daSAndreas Gohr return $inlist; 8372a3623daSAndreas Gohr } 83811e2ce22Schris} 839
