10440ff15Schris<?php 254cc7aa4SAndreas Gohr 38553d24dSAndreas Gohruse dokuwiki\Extension\AdminPlugin; 454cc7aa4SAndreas Gohruse dokuwiki\Utf8\Clean; 50440ff15Schris/* 60440ff15Schris * User Manager 70440ff15Schris * 80440ff15Schris * Dokuwiki Admin Plugin 90440ff15Schris * 100440ff15Schris * This version of the user manager has been modified to only work with 110440ff15Schris * objectified version of auth system 120440ff15Schris * 130440ff15Schris * @author neolao <neolao@neolao.com> 140440ff15Schris * @author Chris Smith <chris@jalakai.co.uk> 150440ff15Schris */ 160440ff15Schris/** 170440ff15Schris * All DokuWiki plugins to extend the admin function 180440ff15Schris * need to inherit from this class 190440ff15Schris */ 208553d24dSAndreas Gohrclass admin_plugin_usermanager extends AdminPlugin 213a97d936SAndreas Gohr{ 22bf9be0e3SAndreas Gohr protected const IMAGE_DIR = DOKU_BASE.'lib/plugins/usermanager/images/'; 230440ff15Schris 2454cc7aa4SAndreas Gohr protected $auth; // auth object 253a97d936SAndreas Gohr protected $users_total = 0; // number of registered users 2654cc7aa4SAndreas Gohr protected $filter = []; // user selection filter(s) 273a97d936SAndreas Gohr protected $start = 0; // index of first user to be displayed 283a97d936SAndreas Gohr protected $last = 0; // index of the last user to be displayed 293a97d936SAndreas Gohr protected $pagesize = 20; // number of users to list on one page 303a97d936SAndreas Gohr protected $edit_user = ''; // set to user selected for editing 3154cc7aa4SAndreas Gohr protected $edit_userdata = []; 323a97d936SAndreas Gohr protected $disabled = ''; // if disabled set to explanatory string 3354cc7aa4SAndreas Gohr protected $import_failures = []; 343a97d936SAndreas Gohr protected $lastdisabled = false; // set to true if last user is unknown and last button is hence buggy 350440ff15Schris 360440ff15Schris /** 370440ff15Schris * Constructor 380440ff15Schris */ 393a97d936SAndreas Gohr public function __construct() 403a97d936SAndreas Gohr { 41c5a7c0c6SGerrit Uitslag /** @var DokuWiki_Auth_Plugin $auth */ 420440ff15Schris global $auth; 430440ff15Schris 440440ff15Schris $this->setupLocale(); 4551d94d49Schris 4651d94d49Schris if (!isset($auth)) { 473a97d936SAndreas Gohr $this->disabled = $this->lang['noauth']; 4882fd59b6SAndreas Gohr } elseif (!$auth->canDo('getUsers')) { 493a97d936SAndreas Gohr $this->disabled = $this->lang['nosupport']; 5051d94d49Schris } else { 5151d94d49Schris // we're good to go 523a97d936SAndreas Gohr $this->auth = & $auth; 5351d94d49Schris } 54ae1afd2fSChristopher Smith 55ae1afd2fSChristopher Smith // attempt to retrieve any import failures from the session 560e80bb5eSChristopher Smith if (!empty($_SESSION['import_failures'])) { 573a97d936SAndreas Gohr $this->import_failures = $_SESSION['import_failures']; 58ae1afd2fSChristopher Smith } 590440ff15Schris } 600440ff15Schris 610440ff15Schris /** 62c5a7c0c6SGerrit Uitslag * Return prompt for admin menu 63253d4b48SGerrit Uitslag * 64253d4b48SGerrit Uitslag * @param string $language 65253d4b48SGerrit Uitslag * @return string 660440ff15Schris */ 673a97d936SAndreas Gohr public function getMenuText($language) 683a97d936SAndreas Gohr { 690440ff15Schris 703a97d936SAndreas Gohr if (!is_null($this->auth)) 710440ff15Schris return parent::getMenuText($language); 720440ff15Schris 733a97d936SAndreas Gohr return $this->getLang('menu').' '.$this->disabled; 740440ff15Schris } 750440ff15Schris 760440ff15Schris /** 770440ff15Schris * return sort order for position in admin menu 78253d4b48SGerrit Uitslag * 79253d4b48SGerrit Uitslag * @return int 800440ff15Schris */ 813a97d936SAndreas Gohr public function getMenuSort() 823a97d936SAndreas Gohr { 830440ff15Schris return 2; 840440ff15Schris } 850440ff15Schris 860440ff15Schris /** 8767a31a83SMichael Große * @return int current start value for pageination 8867a31a83SMichael Große */ 893a97d936SAndreas Gohr public function getStart() 903a97d936SAndreas Gohr { 913a97d936SAndreas Gohr return $this->start; 9267a31a83SMichael Große } 9367a31a83SMichael Große 9467a31a83SMichael Große /** 9567a31a83SMichael Große * @return int number of users per page 9667a31a83SMichael Große */ 973a97d936SAndreas Gohr public function getPagesize() 983a97d936SAndreas Gohr { 993a97d936SAndreas Gohr return $this->pagesize; 10067a31a83SMichael Große } 10167a31a83SMichael Große 10267a31a83SMichael Große /** 103462e9e37SMichael Große * @param boolean $lastdisabled 104462e9e37SMichael Große */ 1053a97d936SAndreas Gohr public function setLastdisabled($lastdisabled) 1063a97d936SAndreas Gohr { 1073a97d936SAndreas Gohr $this->lastdisabled = $lastdisabled; 108462e9e37SMichael Große } 109462e9e37SMichael Große 110462e9e37SMichael Große /** 111c5a7c0c6SGerrit Uitslag * Handle user request 112253d4b48SGerrit Uitslag * 113253d4b48SGerrit Uitslag * @return bool 1140440ff15Schris */ 1153a97d936SAndreas Gohr public function handle() 1163a97d936SAndreas Gohr { 11700d58927SMichael Hamann global $INPUT; 1183a97d936SAndreas Gohr if (is_null($this->auth)) return false; 1190440ff15Schris 1200440ff15Schris // extract the command and any specific parameters 1210440ff15Schris // submit button name is of the form - fn[cmd][param(s)] 12200d58927SMichael Hamann $fn = $INPUT->param('fn'); 1230440ff15Schris 1240440ff15Schris if (is_array($fn)) { 1250440ff15Schris $cmd = key($fn); 1260440ff15Schris $param = is_array($fn[$cmd]) ? key($fn[$cmd]) : null; 1270440ff15Schris } else { 1280440ff15Schris $cmd = $fn; 1290440ff15Schris $param = null; 1300440ff15Schris } 1310440ff15Schris 1320440ff15Schris if ($cmd != "search") { 1333a97d936SAndreas Gohr $this->start = $INPUT->int('start', 0); 1343a97d936SAndreas Gohr $this->filter = $this->retrieveFilter(); 1350440ff15Schris } 1360440ff15Schris 1370440ff15Schris switch ($cmd) { 1383a97d936SAndreas Gohr case "add": 1393a97d936SAndreas Gohr $this->addUser(); 1400440ff15Schris break; 1413a97d936SAndreas Gohr case "delete": 1423a97d936SAndreas Gohr $this->deleteUser(); 1433a97d936SAndreas Gohr break; 1443a97d936SAndreas Gohr case "modify": 1453a97d936SAndreas Gohr $this->modifyUser(); 1463a97d936SAndreas Gohr break; 1473a97d936SAndreas Gohr case "edit": 1483a97d936SAndreas Gohr $this->editUser($param); 1493a97d936SAndreas Gohr break; 1503a97d936SAndreas Gohr case "search": 1513a97d936SAndreas Gohr $this->setFilter($param); 1523a97d936SAndreas Gohr $this->start = 0; 1533a97d936SAndreas Gohr break; 1543a97d936SAndreas Gohr case "export": 1553a97d936SAndreas Gohr $this->exportCSV(); 1563a97d936SAndreas Gohr break; 1573a97d936SAndreas Gohr case "import": 1583a97d936SAndreas Gohr $this->importCSV(); 1593a97d936SAndreas Gohr break; 1603a97d936SAndreas Gohr case "importfails": 1613a97d936SAndreas Gohr $this->downloadImportFailures(); 1623a97d936SAndreas Gohr break; 1630440ff15Schris } 1640440ff15Schris 1653a97d936SAndreas Gohr $this->users_total = $this->auth->canDo('getUserCount') ? $this->auth->getUserCount($this->filter) : -1; 1660440ff15Schris 1670440ff15Schris // page handling 1680440ff15Schris switch ($cmd) { 1693a97d936SAndreas Gohr case 'start': 1703a97d936SAndreas Gohr $this->start = 0; 1713a97d936SAndreas Gohr break; 1723a97d936SAndreas Gohr case 'prev': 1733a97d936SAndreas Gohr $this->start -= $this->pagesize; 1743a97d936SAndreas Gohr break; 1753a97d936SAndreas Gohr case 'next': 1763a97d936SAndreas Gohr $this->start += $this->pagesize; 1773a97d936SAndreas Gohr break; 1783a97d936SAndreas Gohr case 'last': 1793a97d936SAndreas Gohr $this->start = $this->users_total; 1803a97d936SAndreas Gohr break; 1810440ff15Schris } 1823a97d936SAndreas Gohr $this->validatePagination(); 183c5a7c0c6SGerrit Uitslag return true; 1840440ff15Schris } 1850440ff15Schris 1860440ff15Schris /** 187c5a7c0c6SGerrit Uitslag * Output appropriate html 188253d4b48SGerrit Uitslag * 189253d4b48SGerrit Uitslag * @return bool 1900440ff15Schris */ 1913a97d936SAndreas Gohr public function html() 1923a97d936SAndreas Gohr { 1930440ff15Schris global $ID; 1940440ff15Schris 1953a97d936SAndreas Gohr if (is_null($this->auth)) { 1960440ff15Schris print $this->lang['badauth']; 1970440ff15Schris return false; 1980440ff15Schris } 1990440ff15Schris 2003a97d936SAndreas Gohr $user_list = $this->auth->retrieveUsers($this->start, $this->pagesize, $this->filter); 2010440ff15Schris 2023a97d936SAndreas Gohr $page_buttons = $this->pagination(); 2033a97d936SAndreas Gohr $delete_disable = $this->auth->canDo('delUser') ? '' : 'disabled="disabled"'; 2040440ff15Schris 2053a97d936SAndreas Gohr $editable = $this->auth->canDo('UserMod'); 2063a97d936SAndreas Gohr $export_label = empty($this->filter) ? $this->lang['export_all'] : $this->lang['export_filtered']; 2076154103cSmatthiasgrimm 2080440ff15Schris print $this->locale_xhtml('intro'); 2090440ff15Schris print $this->locale_xhtml('list'); 2100440ff15Schris 21158dde80dSAnika Henke ptln("<div id=\"user__manager\">"); 21258dde80dSAnika Henke ptln("<div class=\"level2\">"); 2130440ff15Schris 2143a97d936SAndreas Gohr if ($this->users_total > 0) { 21564159a61SAndreas Gohr ptln( 21664159a61SAndreas Gohr "<p>" . sprintf( 21764159a61SAndreas Gohr $this->lang['summary'], 2183a97d936SAndreas Gohr $this->start + 1, 2193a97d936SAndreas Gohr $this->last, 2203a97d936SAndreas Gohr $this->users_total, 2213a97d936SAndreas Gohr $this->auth->getUserCount() 22264159a61SAndreas Gohr ) . "</p>" 22364159a61SAndreas Gohr ); 2240440ff15Schris } else { 2253a97d936SAndreas Gohr if ($this->users_total < 0) { 226a102b175SGerrit Uitslag $allUserTotal = 0; 227a102b175SGerrit Uitslag } else { 2283a97d936SAndreas Gohr $allUserTotal = $this->auth->getUserCount(); 229a102b175SGerrit Uitslag } 230a102b175SGerrit Uitslag ptln("<p>".sprintf($this->lang['nonefound'], $allUserTotal)."</p>"); 2310440ff15Schris } 2320440ff15Schris ptln("<form action=\"".wl($ID)."\" method=\"post\">"); 233634d7150SAndreas Gohr formSecurityToken(); 234c7b28ffdSAnika Henke ptln(" <div class=\"table\">"); 2350440ff15Schris ptln(" <table class=\"inline\">"); 2360440ff15Schris ptln(" <thead>"); 2370440ff15Schris ptln(" <tr>"); 23864159a61SAndreas Gohr ptln(" <th> </th> 23964159a61SAndreas Gohr <th>".$this->lang["user_id"]."</th> 24064159a61SAndreas Gohr <th>".$this->lang["user_name"]."</th> 24164159a61SAndreas Gohr <th>".$this->lang["user_mail"]."</th> 24264159a61SAndreas Gohr <th>".$this->lang["user_groups"]."</th>"); 2430440ff15Schris ptln(" </tr>"); 2440440ff15Schris 2450440ff15Schris ptln(" <tr>"); 24664159a61SAndreas Gohr ptln(" <td class=\"rightalign\"><input type=\"image\" src=\"". 2473a97d936SAndreas Gohr self::IMAGE_DIR."search.png\" name=\"fn[search][new]\" title=\"". 24864159a61SAndreas Gohr $this->lang['search_prompt']."\" alt=\"".$this->lang['search']."\" class=\"button\" /></td>"); 24964159a61SAndreas Gohr ptln(" <td><input type=\"text\" name=\"userid\" class=\"edit\" value=\"". 2503a97d936SAndreas Gohr $this->htmlFilter('user')."\" /></td>"); 25164159a61SAndreas Gohr ptln(" <td><input type=\"text\" name=\"username\" class=\"edit\" value=\"". 2523a97d936SAndreas Gohr $this->htmlFilter('name')."\" /></td>"); 25364159a61SAndreas Gohr ptln(" <td><input type=\"text\" name=\"usermail\" class=\"edit\" value=\"". 2543a97d936SAndreas Gohr $this->htmlFilter('mail')."\" /></td>"); 25564159a61SAndreas Gohr ptln(" <td><input type=\"text\" name=\"usergroups\" class=\"edit\" value=\"". 2563a97d936SAndreas Gohr $this->htmlFilter('grps')."\" /></td>"); 2570440ff15Schris ptln(" </tr>"); 2580440ff15Schris ptln(" </thead>"); 2590440ff15Schris 2603a97d936SAndreas Gohr if ($this->users_total) { 2610440ff15Schris ptln(" <tbody>"); 2620440ff15Schris foreach ($user_list as $user => $userinfo) { 2630440ff15Schris extract($userinfo); 264c5a7c0c6SGerrit Uitslag /** 265c5a7c0c6SGerrit Uitslag * @var string $name 266c5a7c0c6SGerrit Uitslag * @var string $pass 267c5a7c0c6SGerrit Uitslag * @var string $mail 268c5a7c0c6SGerrit Uitslag * @var array $grps 269c5a7c0c6SGerrit Uitslag */ 27054cc7aa4SAndreas Gohr $groups = implode(', ', $grps); 271a2c0246eSAnika Henke ptln(" <tr class=\"user_info\">"); 27264159a61SAndreas Gohr ptln(" <td class=\"centeralign\"><input type=\"checkbox\" name=\"delete[".hsc($user). 27364159a61SAndreas Gohr "]\" ".$delete_disable." /></td>"); 2742365d73dSAnika Henke if ($editable) { 27554cc7aa4SAndreas Gohr ptln(" <td><a href=\"".wl($ID, ['fn[edit]['.$user.']' => 1, 27677d19185SAndreas Gohr 'do' => 'admin', 27777d19185SAndreas Gohr 'page' => 'usermanager', 27854cc7aa4SAndreas Gohr 'sectok' => getSecurityToken()]). 27977d19185SAndreas Gohr "\" title=\"".$this->lang['edit_prompt']."\">".hsc($user)."</a></td>"); 2802365d73dSAnika Henke } else { 2812365d73dSAnika Henke ptln(" <td>".hsc($user)."</td>"); 2822365d73dSAnika Henke } 2832365d73dSAnika Henke ptln(" <td>".hsc($name)."</td><td>".hsc($mail)."</td><td>".hsc($groups)."</td>"); 2840440ff15Schris ptln(" </tr>"); 2850440ff15Schris } 2860440ff15Schris ptln(" </tbody>"); 2870440ff15Schris } 2880440ff15Schris 2890440ff15Schris ptln(" <tbody>"); 2902365d73dSAnika Henke ptln(" <tr><td colspan=\"5\" class=\"centeralign\">"); 291a2c0246eSAnika Henke ptln(" <span class=\"medialeft\">"); 29264159a61SAndreas Gohr ptln(" <button type=\"submit\" name=\"fn[delete]\" id=\"usrmgr__del\" ".$delete_disable.">". 29364159a61SAndreas Gohr $this->lang['delete_selected']."</button>"); 29476c49356SMike Wilmes ptln(" </span>"); 29576c49356SMike Wilmes ptln(" <span class=\"mediaright\">"); 29664159a61SAndreas Gohr ptln(" <button type=\"submit\" name=\"fn[start]\" ".$page_buttons['start'].">". 29764159a61SAndreas Gohr $this->lang['start']."</button>"); 29864159a61SAndreas Gohr ptln(" <button type=\"submit\" name=\"fn[prev]\" ".$page_buttons['prev'].">". 29964159a61SAndreas Gohr $this->lang['prev']."</button>"); 30064159a61SAndreas Gohr ptln(" <button type=\"submit\" name=\"fn[next]\" ".$page_buttons['next'].">". 30164159a61SAndreas Gohr $this->lang['next']."</button>"); 30264159a61SAndreas Gohr ptln(" <button type=\"submit\" name=\"fn[last]\" ".$page_buttons['last'].">". 30364159a61SAndreas Gohr $this->lang['last']."</button>"); 30476c49356SMike Wilmes ptln(" </span>"); 3053a97d936SAndreas Gohr if (!empty($this->filter)) { 306ae614416SAnika Henke ptln(" <button type=\"submit\" name=\"fn[search][clear]\">".$this->lang['clear']."</button>"); 3075c967d3dSChristopher Smith } 308ae614416SAnika Henke ptln(" <button type=\"submit\" name=\"fn[export]\">".$export_label."</button>"); 3095164d9c9SAnika Henke ptln(" <input type=\"hidden\" name=\"do\" value=\"admin\" />"); 3105164d9c9SAnika Henke ptln(" <input type=\"hidden\" name=\"page\" value=\"usermanager\" />"); 311daf4ca4eSAnika Henke 3123a97d936SAndreas Gohr $this->htmlFilterSettings(2); 313daf4ca4eSAnika Henke 3140440ff15Schris ptln(" </td></tr>"); 3150440ff15Schris ptln(" </tbody>"); 3160440ff15Schris ptln(" </table>"); 317c7b28ffdSAnika Henke ptln(" </div>"); 3180440ff15Schris 3190440ff15Schris ptln("</form>"); 3200440ff15Schris ptln("</div>"); 3210440ff15Schris 3223a97d936SAndreas Gohr $style = $this->edit_user ? " class=\"edit_user\"" : ""; 3230440ff15Schris 3243a97d936SAndreas Gohr if ($this->auth->canDo('addUser')) { 3250440ff15Schris ptln("<div".$style.">"); 3260440ff15Schris print $this->locale_xhtml('add'); 3270440ff15Schris ptln(" <div class=\"level2\">"); 3280440ff15Schris 32954cc7aa4SAndreas Gohr $this->htmlUserForm('add', null, [], 4); 3300440ff15Schris 3310440ff15Schris ptln(" </div>"); 3320440ff15Schris ptln("</div>"); 3330440ff15Schris } 3340440ff15Schris 3353a97d936SAndreas Gohr if ($this->edit_user && $this->auth->canDo('UserMod')) { 336c632fc69SAndreas Gohr ptln("<div".$style." id=\"scroll__here\">"); 3370440ff15Schris print $this->locale_xhtml('edit'); 3380440ff15Schris ptln(" <div class=\"level2\">"); 3390440ff15Schris 3403a97d936SAndreas Gohr $this->htmlUserForm('modify', $this->edit_user, $this->edit_userdata, 4); 3410440ff15Schris 3420440ff15Schris ptln(" </div>"); 3430440ff15Schris ptln("</div>"); 3440440ff15Schris } 345ae1afd2fSChristopher Smith 3463a97d936SAndreas Gohr if ($this->auth->canDo('addUser')) { 3473a97d936SAndreas Gohr $this->htmlImportForm(); 348ae1afd2fSChristopher Smith } 34958dde80dSAnika Henke ptln("</div>"); 350c5a7c0c6SGerrit Uitslag return true; 3510440ff15Schris } 3520440ff15Schris 35382fd59b6SAndreas Gohr /** 35464cdf779SAndreas Gohr * User Manager is only available if the auth backend supports it 35564cdf779SAndreas Gohr * 35664cdf779SAndreas Gohr * @inheritdoc 35764cdf779SAndreas Gohr * @return bool 35864cdf779SAndreas Gohr */ 35964cdf779SAndreas Gohr public function isAccessibleByCurrentUser() 36064cdf779SAndreas Gohr { 36164cdf779SAndreas Gohr /** @var DokuWiki_Auth_Plugin $auth */ 36264cdf779SAndreas Gohr global $auth; 36364cdf779SAndreas Gohr if(!$auth || !$auth->canDo('getUsers') ) { 36464cdf779SAndreas Gohr return false; 36564cdf779SAndreas Gohr } 36664cdf779SAndreas Gohr 36764cdf779SAndreas Gohr return parent::isAccessibleByCurrentUser(); 36864cdf779SAndreas Gohr } 36964cdf779SAndreas Gohr 37064cdf779SAndreas Gohr 37164cdf779SAndreas Gohr /** 372c5a7c0c6SGerrit Uitslag * Display form to add or modify a user 373c5a7c0c6SGerrit Uitslag * 374c5a7c0c6SGerrit Uitslag * @param string $cmd 'add' or 'modify' 375c5a7c0c6SGerrit Uitslag * @param string $user id of user 376c5a7c0c6SGerrit Uitslag * @param array $userdata array with name, mail, pass and grps 377c5a7c0c6SGerrit Uitslag * @param int $indent 37882fd59b6SAndreas Gohr */ 37954cc7aa4SAndreas Gohr protected function htmlUserForm($cmd, $user = '', $userdata = [], $indent = 0) 3803a97d936SAndreas Gohr { 381a6858c6aSchris global $conf; 382bb4866bdSchris global $ID; 383be9008d3SChristopher Smith global $lang; 38454cc7aa4SAndreas Gohr $name = ''; 38554cc7aa4SAndreas Gohr $mail = ''; 38654cc7aa4SAndreas Gohr $groups = ''; 38754cc7aa4SAndreas Gohr $notes = []; 3880440ff15Schris 3890440ff15Schris if ($user) { 39078c7c8c9Schris extract($userdata); 39154cc7aa4SAndreas Gohr if (!empty($grps)) $groups = implode(',', $grps); 392a6858c6aSchris } else { 393a6858c6aSchris $notes[] = sprintf($this->lang['note_group'], $conf['defaultgroup']); 3940440ff15Schris } 3950440ff15Schris 3960440ff15Schris ptln("<form action=\"".wl($ID)."\" method=\"post\">", $indent); 397634d7150SAndreas Gohr formSecurityToken(); 398c7b28ffdSAnika Henke ptln(" <div class=\"table\">", $indent); 3990440ff15Schris ptln(" <table class=\"inline\">", $indent); 4000440ff15Schris ptln(" <thead>", $indent); 4010440ff15Schris ptln(" <tr><th>".$this->lang["field"]."</th><th>".$this->lang["value"]."</th></tr>", $indent); 4020440ff15Schris ptln(" </thead>", $indent); 4030440ff15Schris ptln(" <tbody>", $indent); 40426fb387bSchris 4053a97d936SAndreas Gohr $this->htmlInputField( 40664159a61SAndreas Gohr $cmd . "_userid", 40764159a61SAndreas Gohr "userid", 40864159a61SAndreas Gohr $this->lang["user_id"], 40964159a61SAndreas Gohr $user, 4103a97d936SAndreas Gohr $this->auth->canDo("modLogin"), 41164159a61SAndreas Gohr true, 41264159a61SAndreas Gohr $indent + 6 41364159a61SAndreas Gohr ); 4143a97d936SAndreas Gohr $this->htmlInputField( 41564159a61SAndreas Gohr $cmd . "_userpass", 41664159a61SAndreas Gohr "userpass", 41764159a61SAndreas Gohr $this->lang["user_pass"], 41864159a61SAndreas Gohr "", 4193a97d936SAndreas Gohr $this->auth->canDo("modPass"), 42064159a61SAndreas Gohr false, 42164159a61SAndreas Gohr $indent + 6 42264159a61SAndreas Gohr ); 4233a97d936SAndreas Gohr $this->htmlInputField( 42464159a61SAndreas Gohr $cmd . "_userpass2", 42564159a61SAndreas Gohr "userpass2", 42664159a61SAndreas Gohr $lang["passchk"], 42764159a61SAndreas Gohr "", 4283a97d936SAndreas Gohr $this->auth->canDo("modPass"), 42964159a61SAndreas Gohr false, 43064159a61SAndreas Gohr $indent + 6 43164159a61SAndreas Gohr ); 4323a97d936SAndreas Gohr $this->htmlInputField( 43364159a61SAndreas Gohr $cmd . "_username", 43464159a61SAndreas Gohr "username", 43564159a61SAndreas Gohr $this->lang["user_name"], 43664159a61SAndreas Gohr $name, 4373a97d936SAndreas Gohr $this->auth->canDo("modName"), 43864159a61SAndreas Gohr true, 43964159a61SAndreas Gohr $indent + 6 44064159a61SAndreas Gohr ); 4413a97d936SAndreas Gohr $this->htmlInputField( 44264159a61SAndreas Gohr $cmd . "_usermail", 44364159a61SAndreas Gohr "usermail", 44464159a61SAndreas Gohr $this->lang["user_mail"], 44564159a61SAndreas Gohr $mail, 4463a97d936SAndreas Gohr $this->auth->canDo("modMail"), 44764159a61SAndreas Gohr true, 44864159a61SAndreas Gohr $indent + 6 44964159a61SAndreas Gohr ); 4503a97d936SAndreas Gohr $this->htmlInputField( 45164159a61SAndreas Gohr $cmd . "_usergroups", 45264159a61SAndreas Gohr "usergroups", 45364159a61SAndreas Gohr $this->lang["user_groups"], 45464159a61SAndreas Gohr $groups, 4553a97d936SAndreas Gohr $this->auth->canDo("modGroups"), 45664159a61SAndreas Gohr false, 45764159a61SAndreas Gohr $indent + 6 45864159a61SAndreas Gohr ); 45926fb387bSchris 4603a97d936SAndreas Gohr if ($this->auth->canDo("modPass")) { 461ee9498f5SChristopher Smith if ($cmd == 'add') { 462c3f4fb63SGina Haeussge $notes[] = $this->lang['note_pass']; 463ee9498f5SChristopher Smith } 464a6858c6aSchris if ($user) { 465a6858c6aSchris $notes[] = $this->lang['note_notify']; 466a6858c6aSchris } 467a6858c6aSchris 46864159a61SAndreas Gohr ptln("<tr><td><label for=\"".$cmd."_usernotify\" >". 46964159a61SAndreas Gohr $this->lang["user_notify"].": </label></td> 47064159a61SAndreas Gohr <td><input type=\"checkbox\" id=\"".$cmd."_usernotify\" name=\"usernotify\" value=\"1\" /> 47164159a61SAndreas Gohr </td></tr>", $indent); 472a6858c6aSchris } 473a6858c6aSchris 4740440ff15Schris ptln(" </tbody>", $indent); 4750440ff15Schris ptln(" <tbody>", $indent); 4760440ff15Schris ptln(" <tr>", $indent); 4770440ff15Schris ptln(" <td colspan=\"2\">", $indent); 4780440ff15Schris ptln(" <input type=\"hidden\" name=\"do\" value=\"admin\" />", $indent); 4790440ff15Schris ptln(" <input type=\"hidden\" name=\"page\" value=\"usermanager\" />", $indent); 4800440ff15Schris 4810440ff15Schris // save current $user, we need this to access details if the name is changed 4820440ff15Schris if ($user) 483f23f9594SAndreas Gohr ptln(" <input type=\"hidden\" name=\"userid_old\" value=\"".hsc($user)."\" />", $indent); 4840440ff15Schris 4853a97d936SAndreas Gohr $this->htmlFilterSettings($indent+10); 4860440ff15Schris 487ae614416SAnika Henke ptln(" <button type=\"submit\" name=\"fn[".$cmd."]\">".$this->lang[$cmd]."</button>", $indent); 4880440ff15Schris ptln(" </td>", $indent); 4890440ff15Schris ptln(" </tr>", $indent); 4900440ff15Schris ptln(" </tbody>", $indent); 4910440ff15Schris ptln(" </table>", $indent); 49245c19902SChristopher Smith 49345c19902SChristopher Smith if ($notes) { 49445c19902SChristopher Smith ptln(" <ul class=\"notes\">"); 49545c19902SChristopher Smith foreach ($notes as $note) { 496ae614416SAnika Henke ptln(" <li><span class=\"li\">".$note."</li>", $indent); 49745c19902SChristopher Smith } 49845c19902SChristopher Smith ptln(" </ul>"); 49945c19902SChristopher Smith } 500c7b28ffdSAnika Henke ptln(" </div>", $indent); 5010440ff15Schris ptln("</form>", $indent); 5020440ff15Schris } 5030440ff15Schris 504c5a7c0c6SGerrit Uitslag /** 505c5a7c0c6SGerrit Uitslag * Prints a inputfield 506c5a7c0c6SGerrit Uitslag * 507c5a7c0c6SGerrit Uitslag * @param string $id 508c5a7c0c6SGerrit Uitslag * @param string $name 509c5a7c0c6SGerrit Uitslag * @param string $label 510c5a7c0c6SGerrit Uitslag * @param string $value 511c5a7c0c6SGerrit Uitslag * @param bool $cando whether auth backend is capable to do this action 5129b82d43fSAndreas Gohr * @param bool $required is this field required? 513c5a7c0c6SGerrit Uitslag * @param int $indent 514c5a7c0c6SGerrit Uitslag */ 5153a97d936SAndreas Gohr protected function htmlInputField($id, $name, $label, $value, $cando, $required, $indent = 0) 5163a97d936SAndreas Gohr { 5177de12fceSAndreas Gohr $class = $cando ? '' : ' class="disabled"'; 5187de12fceSAndreas Gohr echo str_pad('', $indent); 5197de12fceSAndreas Gohr 520359e9417SChristopher Smith if ($name == 'userpass' || $name == 'userpass2') { 521d796a891SAndreas Gohr $fieldtype = 'password'; 522d796a891SAndreas Gohr $autocomp = 'autocomplete="off"'; 5237b3674bdSChristopher Smith } elseif ($name == 'usermail') { 5247b3674bdSChristopher Smith $fieldtype = 'email'; 5257b3674bdSChristopher Smith $autocomp = ''; 526d796a891SAndreas Gohr } else { 527d796a891SAndreas Gohr $fieldtype = 'text'; 528d796a891SAndreas Gohr $autocomp = ''; 529d796a891SAndreas Gohr } 530f23f9594SAndreas Gohr $value = hsc($value); 531d796a891SAndreas Gohr 5327de12fceSAndreas Gohr echo "<tr $class>"; 5337de12fceSAndreas Gohr echo "<td><label for=\"$id\" >$label: </label></td>"; 5347de12fceSAndreas Gohr echo "<td>"; 5357de12fceSAndreas Gohr if ($cando) { 5369b82d43fSAndreas Gohr $req = ''; 5379b82d43fSAndreas Gohr if ($required) $req = 'required="required"'; 53864159a61SAndreas Gohr echo "<input type=\"$fieldtype\" id=\"$id\" name=\"$name\" 53964159a61SAndreas Gohr value=\"$value\" class=\"edit\" $autocomp $req />"; 5407de12fceSAndreas Gohr } else { 5417de12fceSAndreas Gohr echo "<input type=\"hidden\" name=\"$name\" value=\"$value\" />"; 54264159a61SAndreas Gohr echo "<input type=\"$fieldtype\" id=\"$id\" name=\"$name\" 54364159a61SAndreas Gohr value=\"$value\" class=\"edit disabled\" disabled=\"disabled\" />"; 5447de12fceSAndreas Gohr } 5457de12fceSAndreas Gohr echo "</td>"; 5467de12fceSAndreas Gohr echo "</tr>"; 54726fb387bSchris } 54826fb387bSchris 549c5a7c0c6SGerrit Uitslag /** 550c5a7c0c6SGerrit Uitslag * Returns htmlescaped filter value 551c5a7c0c6SGerrit Uitslag * 552c5a7c0c6SGerrit Uitslag * @param string $key name of search field 553c5a7c0c6SGerrit Uitslag * @return string html escaped value 554c5a7c0c6SGerrit Uitslag */ 5553a97d936SAndreas Gohr protected function htmlFilter($key) 5563a97d936SAndreas Gohr { 5573a97d936SAndreas Gohr if (empty($this->filter)) return ''; 5583a97d936SAndreas Gohr return (isset($this->filter[$key]) ? hsc($this->filter[$key]) : ''); 5590440ff15Schris } 5600440ff15Schris 561c5a7c0c6SGerrit Uitslag /** 562c5a7c0c6SGerrit Uitslag * Print hidden inputs with the current filter values 563c5a7c0c6SGerrit Uitslag * 564c5a7c0c6SGerrit Uitslag * @param int $indent 565c5a7c0c6SGerrit Uitslag */ 5663a97d936SAndreas Gohr protected function htmlFilterSettings($indent = 0) 5673a97d936SAndreas Gohr { 5680440ff15Schris 5693a97d936SAndreas Gohr ptln("<input type=\"hidden\" name=\"start\" value=\"".$this->start."\" />", $indent); 5700440ff15Schris 5713a97d936SAndreas Gohr foreach ($this->filter as $key => $filter) { 5720440ff15Schris ptln("<input type=\"hidden\" name=\"filter[".$key."]\" value=\"".hsc($filter)."\" />", $indent); 5730440ff15Schris } 5740440ff15Schris } 5750440ff15Schris 576c5a7c0c6SGerrit Uitslag /** 577c5a7c0c6SGerrit Uitslag * Print import form and summary of previous import 578c5a7c0c6SGerrit Uitslag * 579c5a7c0c6SGerrit Uitslag * @param int $indent 580c5a7c0c6SGerrit Uitslag */ 5813a97d936SAndreas Gohr protected function htmlImportForm($indent = 0) 5823a97d936SAndreas Gohr { 583ae1afd2fSChristopher Smith global $ID; 584ae1afd2fSChristopher Smith 58554cc7aa4SAndreas Gohr $failure_download_link = wl($ID, ['do'=>'admin', 'page'=>'usermanager', 'fn[importfails]'=>1]); 586ae1afd2fSChristopher Smith 587ae1afd2fSChristopher Smith ptln('<div class="level2 import_users">', $indent); 588ae1afd2fSChristopher Smith print $this->locale_xhtml('import'); 589ae1afd2fSChristopher Smith ptln(' <form action="'.wl($ID).'" method="post" enctype="multipart/form-data">', $indent); 590ae1afd2fSChristopher Smith formSecurityToken(); 591b59cff8bSGerrit Uitslag ptln(' <label>'.$this->lang['import_userlistcsv'].'<input type="file" name="import" /></label>', $indent); 592ae614416SAnika Henke ptln(' <button type="submit" name="fn[import]">'.$this->lang['import'].'</button>', $indent); 593ae1afd2fSChristopher Smith ptln(' <input type="hidden" name="do" value="admin" />', $indent); 594ae1afd2fSChristopher Smith ptln(' <input type="hidden" name="page" value="usermanager" />', $indent); 595ae1afd2fSChristopher Smith 5963a97d936SAndreas Gohr $this->htmlFilterSettings($indent+4); 597ae1afd2fSChristopher Smith ptln(' </form>', $indent); 598ae1afd2fSChristopher Smith ptln('</div>'); 599ae1afd2fSChristopher Smith 600ae1afd2fSChristopher Smith // list failures from the previous import 6013a97d936SAndreas Gohr if ($this->import_failures) { 6023a97d936SAndreas Gohr $digits = strlen(count($this->import_failures)); 603ae1afd2fSChristopher Smith ptln('<div class="level3 import_failures">', $indent); 604b59cff8bSGerrit Uitslag ptln(' <h3>'.$this->lang['import_header'].'</h3>'); 605ae1afd2fSChristopher Smith ptln(' <table class="import_failures">', $indent); 606ae1afd2fSChristopher Smith ptln(' <thead>', $indent); 607ae1afd2fSChristopher Smith ptln(' <tr>', $indent); 608ae1afd2fSChristopher Smith ptln(' <th class="line">'.$this->lang['line'].'</th>', $indent); 609ae1afd2fSChristopher Smith ptln(' <th class="error">'.$this->lang['error'].'</th>', $indent); 610ae1afd2fSChristopher Smith ptln(' <th class="userid">'.$this->lang['user_id'].'</th>', $indent); 611ae1afd2fSChristopher Smith ptln(' <th class="username">'.$this->lang['user_name'].'</th>', $indent); 612ae1afd2fSChristopher Smith ptln(' <th class="usermail">'.$this->lang['user_mail'].'</th>', $indent); 613ae1afd2fSChristopher Smith ptln(' <th class="usergroups">'.$this->lang['user_groups'].'</th>', $indent); 614ae1afd2fSChristopher Smith ptln(' </tr>', $indent); 615ae1afd2fSChristopher Smith ptln(' </thead>', $indent); 616ae1afd2fSChristopher Smith ptln(' <tbody>', $indent); 6173a97d936SAndreas Gohr foreach ($this->import_failures as $line => $failure) { 618ae1afd2fSChristopher Smith ptln(' <tr>', $indent); 619ae1afd2fSChristopher Smith ptln(' <td class="lineno"> '.sprintf('%0'.$digits.'d', $line).' </td>', $indent); 620ae1afd2fSChristopher Smith ptln(' <td class="error">' .$failure['error'].' </td>', $indent); 621ae1afd2fSChristopher Smith ptln(' <td class="field userid"> '.hsc($failure['user'][0]).' </td>', $indent); 622ae1afd2fSChristopher Smith ptln(' <td class="field username"> '.hsc($failure['user'][2]).' </td>', $indent); 623ae1afd2fSChristopher Smith ptln(' <td class="field usermail"> '.hsc($failure['user'][3]).' </td>', $indent); 624ae1afd2fSChristopher Smith ptln(' <td class="field usergroups"> '.hsc($failure['user'][4]).' </td>', $indent); 625ae1afd2fSChristopher Smith ptln(' </tr>', $indent); 626ae1afd2fSChristopher Smith } 627ae1afd2fSChristopher Smith ptln(' </tbody>', $indent); 628ae1afd2fSChristopher Smith ptln(' </table>', $indent); 629b59cff8bSGerrit Uitslag ptln(' <p><a href="'.$failure_download_link.'">'.$this->lang['import_downloadfailures'].'</a></p>'); 630ae1afd2fSChristopher Smith ptln('</div>'); 631ae1afd2fSChristopher Smith } 632ae1afd2fSChristopher Smith } 633ae1afd2fSChristopher Smith 634c5a7c0c6SGerrit Uitslag /** 635c5a7c0c6SGerrit Uitslag * Add an user to auth backend 636c5a7c0c6SGerrit Uitslag * 637c5a7c0c6SGerrit Uitslag * @return bool whether succesful 638c5a7c0c6SGerrit Uitslag */ 6393a97d936SAndreas Gohr protected function addUser() 6403a97d936SAndreas Gohr { 64100d58927SMichael Hamann global $INPUT; 642634d7150SAndreas Gohr if (!checkSecurityToken()) return false; 6433a97d936SAndreas Gohr if (!$this->auth->canDo('addUser')) return false; 6440440ff15Schris 64554cc7aa4SAndreas Gohr [$user, $pass, $name, $mail, $grps, $passconfirm] = $this->retrieveUser(); 6460440ff15Schris if (empty($user)) return false; 6476733c4d7SChris Smith 6483a97d936SAndreas Gohr if ($this->auth->canDo('modPass')) { 649c3f4fb63SGina Haeussge if (empty($pass)) { 65000d58927SMichael Hamann if ($INPUT->has('usernotify')) { 6518a285f7fSAndreas Gohr $pass = auth_pwgen($user); 652c3f4fb63SGina Haeussge } else { 65360b9901bSAndreas Gohr msg($this->lang['add_fail'], -1); 65409a5dcd6SMichael Große msg($this->lang['addUser_error_missing_pass'], -1); 65560b9901bSAndreas Gohr return false; 65660b9901bSAndreas Gohr } 65754cc7aa4SAndreas Gohr } elseif (!$this->verifyPassword($pass, $passconfirm)) { 65809a5dcd6SMichael Große msg($this->lang['add_fail'], -1); 65909a5dcd6SMichael Große msg($this->lang['addUser_error_pass_not_identical'], -1); 660359e9417SChristopher Smith return false; 661359e9417SChristopher Smith } 66254cc7aa4SAndreas Gohr } elseif (!empty($pass)) { 6636733c4d7SChris Smith msg($this->lang['add_fail'], -1); 66409a5dcd6SMichael Große msg($this->lang['addUser_error_modPass_disabled'], -1); 6656733c4d7SChris Smith return false; 6666733c4d7SChris Smith } 6676733c4d7SChris Smith 6683a97d936SAndreas Gohr if ($this->auth->canDo('modName')) { 6696733c4d7SChris Smith if (empty($name)) { 6706733c4d7SChris Smith msg($this->lang['add_fail'], -1); 67109a5dcd6SMichael Große msg($this->lang['addUser_error_name_missing'], -1); 6726733c4d7SChris Smith return false; 6736733c4d7SChris Smith } 67454cc7aa4SAndreas Gohr } elseif (!empty($name)) { 67509a5dcd6SMichael Große msg($this->lang['add_fail'], -1); 67609a5dcd6SMichael Große msg($this->lang['addUser_error_modName_disabled'], -1); 6776733c4d7SChris Smith return false; 6786733c4d7SChris Smith } 6796733c4d7SChris Smith 6803a97d936SAndreas Gohr if ($this->auth->canDo('modMail')) { 6816733c4d7SChris Smith if (empty($mail)) { 6826733c4d7SChris Smith msg($this->lang['add_fail'], -1); 68309a5dcd6SMichael Große msg($this->lang['addUser_error_mail_missing'], -1); 6846733c4d7SChris Smith return false; 6856733c4d7SChris Smith } 68654cc7aa4SAndreas Gohr } elseif (!empty($mail)) { 68709a5dcd6SMichael Große msg($this->lang['add_fail'], -1); 68809a5dcd6SMichael Große msg($this->lang['addUser_error_modMail_disabled'], -1); 6896733c4d7SChris Smith return false; 6906733c4d7SChris Smith } 6910440ff15Schris 69254cc7aa4SAndreas Gohr if ($ok = $this->auth->triggerUserMod('create', [$user, $pass, $name, $mail, $grps])) { 693a6858c6aSchris msg($this->lang['add_ok'], 1); 694a6858c6aSchris 69500d58927SMichael Hamann if ($INPUT->has('usernotify') && $pass) { 6963a97d936SAndreas Gohr $this->notifyUser($user, $pass); 697a6858c6aSchris } 698a6858c6aSchris } else { 69960b9901bSAndreas Gohr msg($this->lang['add_fail'], -1); 70009a5dcd6SMichael Große msg($this->lang['addUser_error_create_event_failed'], -1); 701a6858c6aSchris } 702a6858c6aSchris 703a6858c6aSchris return $ok; 7040440ff15Schris } 7050440ff15Schris 7060440ff15Schris /** 707c5a7c0c6SGerrit Uitslag * Delete user from auth backend 708c5a7c0c6SGerrit Uitslag * 709c5a7c0c6SGerrit Uitslag * @return bool whether succesful 7100440ff15Schris */ 7113a97d936SAndreas Gohr protected function deleteUser() 7123a97d936SAndreas Gohr { 71300d58927SMichael Hamann global $conf, $INPUT; 7149ec82636SAndreas Gohr 715634d7150SAndreas Gohr if (!checkSecurityToken()) return false; 7163a97d936SAndreas Gohr if (!$this->auth->canDo('delUser')) return false; 7170440ff15Schris 71800d58927SMichael Hamann $selected = $INPUT->arr('delete'); 71900d58927SMichael Hamann if (empty($selected)) return false; 7200440ff15Schris $selected = array_keys($selected); 7210440ff15Schris 722c9a8f912SMichael Klier if (in_array($_SERVER['REMOTE_USER'], $selected)) { 723c9a8f912SMichael Klier msg("You can't delete yourself!", -1); 724c9a8f912SMichael Klier return false; 725c9a8f912SMichael Klier } 726c9a8f912SMichael Klier 72754cc7aa4SAndreas Gohr $count = $this->auth->triggerUserMod('delete', [$selected]); 7280440ff15Schris if ($count == count($selected)) { 7290440ff15Schris $text = str_replace('%d', $count, $this->lang['delete_ok']); 7300440ff15Schris msg("$text.", 1); 7310440ff15Schris } else { 7320440ff15Schris $part1 = str_replace('%d', $count, $this->lang['delete_ok']); 7330440ff15Schris $part2 = str_replace('%d', (count($selected)-$count), $this->lang['delete_fail']); 7340440ff15Schris msg("$part1, $part2", -1); 7350440ff15Schris } 73678c7c8c9Schris 7379ec82636SAndreas Gohr // invalidate all sessions 7389ec82636SAndreas Gohr io_saveFile($conf['cachedir'].'/sessionpurge', time()); 7399ec82636SAndreas Gohr 74078c7c8c9Schris return true; 74178c7c8c9Schris } 74278c7c8c9Schris 74378c7c8c9Schris /** 74478c7c8c9Schris * Edit user (a user has been selected for editing) 745c5a7c0c6SGerrit Uitslag * 746c5a7c0c6SGerrit Uitslag * @param string $param id of the user 747c5a7c0c6SGerrit Uitslag * @return bool whether succesful 74878c7c8c9Schris */ 7493a97d936SAndreas Gohr protected function editUser($param) 7503a97d936SAndreas Gohr { 751634d7150SAndreas Gohr if (!checkSecurityToken()) return false; 7523a97d936SAndreas Gohr if (!$this->auth->canDo('UserMod')) return false; 7533a97d936SAndreas Gohr $user = $this->auth->cleanUser(preg_replace('/.*[:\/]/', '', $param)); 7543a97d936SAndreas Gohr $userdata = $this->auth->getUserData($user); 75578c7c8c9Schris 75678c7c8c9Schris // no user found? 75778c7c8c9Schris if (!$userdata) { 75878c7c8c9Schris msg($this->lang['edit_usermissing'], -1); 75978c7c8c9Schris return false; 76078c7c8c9Schris } 76178c7c8c9Schris 7623a97d936SAndreas Gohr $this->edit_user = $user; 7633a97d936SAndreas Gohr $this->edit_userdata = $userdata; 76478c7c8c9Schris 76578c7c8c9Schris return true; 7660440ff15Schris } 7670440ff15Schris 7680440ff15Schris /** 769c5a7c0c6SGerrit Uitslag * Modify user in the auth backend (modified user data has been recieved) 770c5a7c0c6SGerrit Uitslag * 771c5a7c0c6SGerrit Uitslag * @return bool whether succesful 7720440ff15Schris */ 7733a97d936SAndreas Gohr protected function modifyUser() 7743a97d936SAndreas Gohr { 77500d58927SMichael Hamann global $conf, $INPUT; 7769ec82636SAndreas Gohr 777634d7150SAndreas Gohr if (!checkSecurityToken()) return false; 7783a97d936SAndreas Gohr if (!$this->auth->canDo('UserMod')) return false; 7790440ff15Schris 78026fb387bSchris // get currently valid user data 7813a97d936SAndreas Gohr $olduser = $this->auth->cleanUser(preg_replace('/.*[:\/]/', '', $INPUT->str('userid_old'))); 7823a97d936SAndreas Gohr $oldinfo = $this->auth->getUserData($olduser); 783073766c6Smatthiasgrimm 78426fb387bSchris // get new user data subject to change 78554cc7aa4SAndreas Gohr [$newuser, $newpass, $newname, $newmail, $newgrps, $passconfirm] = $this->retrieveUser(); 786073766c6Smatthiasgrimm if (empty($newuser)) return false; 7870440ff15Schris 78854cc7aa4SAndreas Gohr $changes = []; 789073766c6Smatthiasgrimm if ($newuser != $olduser) { 7903a97d936SAndreas Gohr if (!$this->auth->canDo('modLogin')) { // sanity check, shouldn't be possible 79126fb387bSchris msg($this->lang['update_fail'], -1); 79226fb387bSchris return false; 79326fb387bSchris } 79426fb387bSchris 79526fb387bSchris // check if $newuser already exists 7963a97d936SAndreas Gohr if ($this->auth->getUserData($newuser)) { 797073766c6Smatthiasgrimm msg(sprintf($this->lang['update_exists'], $newuser), -1); 798a6858c6aSchris $re_edit = true; 7990440ff15Schris } else { 800073766c6Smatthiasgrimm $changes['user'] = $newuser; 8010440ff15Schris } 80293eefc2fSAndreas Gohr } 8033a97d936SAndreas Gohr if ($this->auth->canDo('modPass')) { 8042400ddcbSChristopher Smith if ($newpass || $passconfirm) { 8053a97d936SAndreas Gohr if ($this->verifyPassword($newpass, $passconfirm)) { 806359e9417SChristopher Smith $changes['pass'] = $newpass; 807359e9417SChristopher Smith } else { 808359e9417SChristopher Smith return false; 809359e9417SChristopher Smith } 81054cc7aa4SAndreas Gohr } elseif ($INPUT->has('usernotify')) { 811359e9417SChristopher Smith // no new password supplied, check if we need to generate one (or it stays unchanged) 812359e9417SChristopher Smith $changes['pass'] = auth_pwgen($olduser); 813359e9417SChristopher Smith } 814359e9417SChristopher Smith } 8150440ff15Schris 8163a97d936SAndreas Gohr if (!empty($newname) && $this->auth->canDo('modName') && $newname != $oldinfo['name']) { 817073766c6Smatthiasgrimm $changes['name'] = $newname; 81840d72af6SChristopher Smith } 8193a97d936SAndreas Gohr if (!empty($newmail) && $this->auth->canDo('modMail') && $newmail != $oldinfo['mail']) { 820073766c6Smatthiasgrimm $changes['mail'] = $newmail; 82140d72af6SChristopher Smith } 8223a97d936SAndreas Gohr if (!empty($newgrps) && $this->auth->canDo('modGroups') && $newgrps != $oldinfo['grps']) { 823073766c6Smatthiasgrimm $changes['grps'] = $newgrps; 82440d72af6SChristopher Smith } 8250440ff15Schris 82654cc7aa4SAndreas Gohr if ($ok = $this->auth->triggerUserMod('modify', [$olduser, $changes])) { 8270440ff15Schris msg($this->lang['update_ok'], 1); 828a6858c6aSchris 8296ed3476bSChristopher Smith if ($INPUT->has('usernotify') && !empty($changes['pass'])) { 830a6858c6aSchris $notify = empty($changes['user']) ? $olduser : $newuser; 8313a97d936SAndreas Gohr $this->notifyUser($notify, $changes['pass']); 832a6858c6aSchris } 833a6858c6aSchris 8349ec82636SAndreas Gohr // invalidate all sessions 8359ec82636SAndreas Gohr io_saveFile($conf['cachedir'].'/sessionpurge', time()); 8360440ff15Schris } else { 8370440ff15Schris msg($this->lang['update_fail'], -1); 8380440ff15Schris } 83978c7c8c9Schris 840a6858c6aSchris if (!empty($re_edit)) { 8413a97d936SAndreas Gohr $this->editUser($olduser); 8420440ff15Schris } 8430440ff15Schris 844a6858c6aSchris return $ok; 845a6858c6aSchris } 846a6858c6aSchris 847a6858c6aSchris /** 848c5a7c0c6SGerrit Uitslag * Send password change notification email 849c5a7c0c6SGerrit Uitslag * 850c5a7c0c6SGerrit Uitslag * @param string $user id of user 851c5a7c0c6SGerrit Uitslag * @param string $password plain text 852c5a7c0c6SGerrit Uitslag * @param bool $status_alert whether status alert should be shown 853c5a7c0c6SGerrit Uitslag * @return bool whether succesful 854a6858c6aSchris */ 8553a97d936SAndreas Gohr protected function notifyUser($user, $password, $status_alert = true) 8563a97d936SAndreas Gohr { 857a6858c6aSchris 858a6858c6aSchris if ($sent = auth_sendPassword($user, $password)) { 859328143f8SChristopher Smith if ($status_alert) { 860a6858c6aSchris msg($this->lang['notify_ok'], 1); 861328143f8SChristopher Smith } 86254cc7aa4SAndreas Gohr } elseif ($status_alert) { 863a6858c6aSchris msg($this->lang['notify_fail'], -1); 864a6858c6aSchris } 865a6858c6aSchris 866a6858c6aSchris return $sent; 867a6858c6aSchris } 868a6858c6aSchris 869a6858c6aSchris /** 870359e9417SChristopher Smith * Verify password meets minimum requirements 871359e9417SChristopher Smith * :TODO: extend to support password strength 872359e9417SChristopher Smith * 873359e9417SChristopher Smith * @param string $password candidate string for new password 874359e9417SChristopher Smith * @param string $confirm repeated password for confirmation 875359e9417SChristopher Smith * @return bool true if meets requirements, false otherwise 876359e9417SChristopher Smith */ 8773a97d936SAndreas Gohr protected function verifyPassword($password, $confirm) 8783a97d936SAndreas Gohr { 879be9008d3SChristopher Smith global $lang; 880359e9417SChristopher Smith 8812400ddcbSChristopher Smith if (empty($password) && empty($confirm)) { 882359e9417SChristopher Smith return false; 883359e9417SChristopher Smith } 884359e9417SChristopher Smith 885359e9417SChristopher Smith if ($password !== $confirm) { 886be9008d3SChristopher Smith msg($lang['regbadpass'], -1); 887359e9417SChristopher Smith return false; 888359e9417SChristopher Smith } 889359e9417SChristopher Smith 890359e9417SChristopher Smith // :TODO: test password for required strength 891359e9417SChristopher Smith 892359e9417SChristopher Smith // if we make it this far the password is good 893359e9417SChristopher Smith return true; 894359e9417SChristopher Smith } 895359e9417SChristopher Smith 896359e9417SChristopher Smith /** 897c5a7c0c6SGerrit Uitslag * Retrieve & clean user data from the form 898a6858c6aSchris * 899c5a7c0c6SGerrit Uitslag * @param bool $clean whether the cleanUser method of the authentication backend is applied 900a6858c6aSchris * @return array (user, password, full name, email, array(groups)) 9010440ff15Schris */ 9023a97d936SAndreas Gohr protected function retrieveUser($clean = true) 9033a97d936SAndreas Gohr { 904c5a7c0c6SGerrit Uitslag /** @var DokuWiki_Auth_Plugin $auth */ 9057441e340SAndreas Gohr global $auth; 906fbfbbe8aSHakan Sandell global $INPUT; 9070440ff15Schris 90854cc7aa4SAndreas Gohr $user = []; 909fbfbbe8aSHakan Sandell $user[0] = ($clean) ? $auth->cleanUser($INPUT->str('userid')) : $INPUT->str('userid'); 910fbfbbe8aSHakan Sandell $user[1] = $INPUT->str('userpass'); 911fbfbbe8aSHakan Sandell $user[2] = $INPUT->str('username'); 912fbfbbe8aSHakan Sandell $user[3] = $INPUT->str('usermail'); 913fbfbbe8aSHakan Sandell $user[4] = explode(',', $INPUT->str('usergroups')); 914359e9417SChristopher Smith $user[5] = $INPUT->str('userpass2'); // repeated password for confirmation 9150440ff15Schris 9167441e340SAndreas Gohr $user[4] = array_map('trim', $user[4]); 91754cc7aa4SAndreas Gohr if ($clean) $user[4] = array_map([$auth, 'cleanGroup'], $user[4]); 9187441e340SAndreas Gohr $user[4] = array_filter($user[4]); 9197441e340SAndreas Gohr $user[4] = array_unique($user[4]); 92054cc7aa4SAndreas Gohr if ($user[4] === []) $user[4] = null; 9210440ff15Schris 9220440ff15Schris return $user; 9230440ff15Schris } 9240440ff15Schris 925c5a7c0c6SGerrit Uitslag /** 926c5a7c0c6SGerrit Uitslag * Set the filter with the current search terms or clear the filter 927c5a7c0c6SGerrit Uitslag * 928c5a7c0c6SGerrit Uitslag * @param string $op 'new' or 'clear' 929c5a7c0c6SGerrit Uitslag */ 9303a97d936SAndreas Gohr protected function setFilter($op) 9313a97d936SAndreas Gohr { 9320440ff15Schris 93354cc7aa4SAndreas Gohr $this->filter = []; 9340440ff15Schris 9350440ff15Schris if ($op == 'new') { 936*a19c9aa0SGerrit Uitslag [$user, /* pass */, $name, $mail, $grps] = $this->retrieveUser(false); 9370440ff15Schris 9383a97d936SAndreas Gohr if (!empty($user)) $this->filter['user'] = $user; 9393a97d936SAndreas Gohr if (!empty($name)) $this->filter['name'] = $name; 9403a97d936SAndreas Gohr if (!empty($mail)) $this->filter['mail'] = $mail; 94154cc7aa4SAndreas Gohr if (!empty($grps)) $this->filter['grps'] = implode('|', $grps); 9420440ff15Schris } 9430440ff15Schris } 9440440ff15Schris 945c5a7c0c6SGerrit Uitslag /** 946c5a7c0c6SGerrit Uitslag * Get the current search terms 947c5a7c0c6SGerrit Uitslag * 948c5a7c0c6SGerrit Uitslag * @return array 949c5a7c0c6SGerrit Uitslag */ 9503a97d936SAndreas Gohr protected function retrieveFilter() 9513a97d936SAndreas Gohr { 952fbfbbe8aSHakan Sandell global $INPUT; 9530440ff15Schris 954fbfbbe8aSHakan Sandell $t_filter = $INPUT->arr('filter'); 9550440ff15Schris 9560440ff15Schris // messy, but this way we ensure we aren't getting any additional crap from malicious users 95754cc7aa4SAndreas Gohr $filter = []; 9580440ff15Schris 9590440ff15Schris if (isset($t_filter['user'])) $filter['user'] = $t_filter['user']; 9600440ff15Schris if (isset($t_filter['name'])) $filter['name'] = $t_filter['name']; 9610440ff15Schris if (isset($t_filter['mail'])) $filter['mail'] = $t_filter['mail']; 9620440ff15Schris if (isset($t_filter['grps'])) $filter['grps'] = $t_filter['grps']; 9630440ff15Schris 9640440ff15Schris return $filter; 9650440ff15Schris } 9660440ff15Schris 967c5a7c0c6SGerrit Uitslag /** 968c5a7c0c6SGerrit Uitslag * Validate and improve the pagination values 969c5a7c0c6SGerrit Uitslag */ 9703a97d936SAndreas Gohr protected function validatePagination() 9713a97d936SAndreas Gohr { 9720440ff15Schris 9733a97d936SAndreas Gohr if ($this->start >= $this->users_total) { 9743a97d936SAndreas Gohr $this->start = $this->users_total - $this->pagesize; 9750440ff15Schris } 9763a97d936SAndreas Gohr if ($this->start < 0) $this->start = 0; 9770440ff15Schris 9783a97d936SAndreas Gohr $this->last = min($this->users_total, $this->start + $this->pagesize); 9790440ff15Schris } 9800440ff15Schris 981c5a7c0c6SGerrit Uitslag /** 982c5a7c0c6SGerrit Uitslag * Return an array of strings to enable/disable pagination buttons 983c5a7c0c6SGerrit Uitslag * 984c5a7c0c6SGerrit Uitslag * @return array with enable/disable attributes 9850440ff15Schris */ 9863a97d936SAndreas Gohr protected function pagination() 9873a97d936SAndreas Gohr { 9880440ff15Schris 98951d94d49Schris $disabled = 'disabled="disabled"'; 99051d94d49Schris 99154cc7aa4SAndreas Gohr $buttons = []; 9923a97d936SAndreas Gohr $buttons['start'] = $buttons['prev'] = ($this->start == 0) ? $disabled : ''; 99351d94d49Schris 9943a97d936SAndreas Gohr if ($this->users_total == -1) { 99551d94d49Schris $buttons['last'] = $disabled; 99651d94d49Schris $buttons['next'] = ''; 99751d94d49Schris } else { 99864159a61SAndreas Gohr $buttons['last'] = $buttons['next'] = 9993a97d936SAndreas Gohr (($this->start + $this->pagesize) >= $this->users_total) ? $disabled : ''; 100051d94d49Schris } 10010440ff15Schris 10023a97d936SAndreas Gohr if ($this->lastdisabled) { 1003462e9e37SMichael Große $buttons['last'] = $disabled; 1004462e9e37SMichael Große } 1005462e9e37SMichael Große 10060440ff15Schris return $buttons; 10070440ff15Schris } 10085c967d3dSChristopher Smith 1009c5a7c0c6SGerrit Uitslag /** 1010c5a7c0c6SGerrit Uitslag * Export a list of users in csv format using the current filter criteria 10115c967d3dSChristopher Smith */ 10123a97d936SAndreas Gohr protected function exportCSV() 10133a97d936SAndreas Gohr { 10145c967d3dSChristopher Smith // list of users for export - based on current filter criteria 10153a97d936SAndreas Gohr $user_list = $this->auth->retrieveUsers(0, 0, $this->filter); 101654cc7aa4SAndreas Gohr $column_headings = [ 10175c967d3dSChristopher Smith $this->lang["user_id"], 10185c967d3dSChristopher Smith $this->lang["user_name"], 10195c967d3dSChristopher Smith $this->lang["user_mail"], 10205c967d3dSChristopher Smith $this->lang["user_groups"] 102154cc7aa4SAndreas Gohr ]; 10225c967d3dSChristopher Smith 10235c967d3dSChristopher Smith // ============================================================================================== 10245c967d3dSChristopher Smith // GENERATE OUTPUT 10255c967d3dSChristopher Smith // normal headers for downloading... 10265c967d3dSChristopher Smith header('Content-type: text/csv;charset=utf-8'); 10275c967d3dSChristopher Smith header('Content-Disposition: attachment; filename="wikiusers.csv"'); 10285c967d3dSChristopher Smith# // for debugging assistance, send as text plain to the browser 10295c967d3dSChristopher Smith# header('Content-type: text/plain;charset=utf-8'); 10305c967d3dSChristopher Smith 10315c967d3dSChristopher Smith // output the csv 10325c967d3dSChristopher Smith $fd = fopen('php://output', 'w'); 10335c967d3dSChristopher Smith fputcsv($fd, $column_headings); 10345c967d3dSChristopher Smith foreach ($user_list as $user => $info) { 103554cc7aa4SAndreas Gohr $line = [$user, $info['name'], $info['mail'], implode(',', $info['grps'])]; 10365c967d3dSChristopher Smith fputcsv($fd, $line); 10375c967d3dSChristopher Smith } 10385c967d3dSChristopher Smith fclose($fd); 10393a97d936SAndreas Gohr if (defined('DOKU_UNITTEST')) { 10403a97d936SAndreas Gohr return; 10413a97d936SAndreas Gohr } 1042b2c01466SChristopher Smith 10435c967d3dSChristopher Smith die; 10445c967d3dSChristopher Smith } 1045ae1afd2fSChristopher Smith 1046c5a7c0c6SGerrit Uitslag /** 1047c5a7c0c6SGerrit Uitslag * Import a file of users in csv format 1048ae1afd2fSChristopher Smith * 1049ae1afd2fSChristopher Smith * csv file should have 4 columns, user_id, full name, email, groups (comma separated) 1050c5a7c0c6SGerrit Uitslag * 10515ba64050SChristopher Smith * @return bool whether successful 1052ae1afd2fSChristopher Smith */ 10533a97d936SAndreas Gohr protected function importCSV() 10543a97d936SAndreas Gohr { 1055ae1afd2fSChristopher Smith // check we are allowed to add users 1056ae1afd2fSChristopher Smith if (!checkSecurityToken()) return false; 10573a97d936SAndreas Gohr if (!$this->auth->canDo('addUser')) return false; 1058ae1afd2fSChristopher Smith 1059ae1afd2fSChristopher Smith // check file uploaded ok. 10603a97d936SAndreas Gohr if (empty($_FILES['import']['size']) || 10613a97d936SAndreas Gohr !empty($_FILES['import']['error']) && $this->isUploadedFile($_FILES['import']['tmp_name']) 106264159a61SAndreas Gohr ) { 1063ae1afd2fSChristopher Smith msg($this->lang['import_error_upload'], -1); 1064ae1afd2fSChristopher Smith return false; 1065ae1afd2fSChristopher Smith } 1066ae1afd2fSChristopher Smith // retrieve users from the file 106754cc7aa4SAndreas Gohr $this->import_failures = []; 1068ae1afd2fSChristopher Smith $import_success_count = 0; 1069ae1afd2fSChristopher Smith $import_fail_count = 0; 1070ae1afd2fSChristopher Smith $line = 0; 1071ae1afd2fSChristopher Smith $fd = fopen($_FILES['import']['tmp_name'], 'r'); 1072ae1afd2fSChristopher Smith if ($fd) { 1073ae1afd2fSChristopher Smith while ($csv = fgets($fd)) { 107454cc7aa4SAndreas Gohr if (!Clean::isUtf8($csv)) { 1075efcec72bSChristopher Smith $csv = utf8_encode($csv); 1076efcec72bSChristopher Smith } 1077d0c0a5c4SAnika Henke $raw = str_getcsv($csv); 1078ae1afd2fSChristopher Smith $error = ''; // clean out any errors from the previous line 1079ae1afd2fSChristopher Smith // data checks... 1080ae1afd2fSChristopher Smith if (1 == ++$line) { 1081ae1afd2fSChristopher Smith if ($raw[0] == 'user_id' || $raw[0] == $this->lang['user_id']) continue; // skip headers 1082ae1afd2fSChristopher Smith } 1083ae1afd2fSChristopher Smith if (count($raw) < 4) { // need at least four fields 1084ae1afd2fSChristopher Smith $import_fail_count++; 1085ae1afd2fSChristopher Smith $error = sprintf($this->lang['import_error_fields'], count($raw)); 108654cc7aa4SAndreas Gohr $this->import_failures[$line] = ['error' => $error, 'user' => $raw, 'orig' => $csv]; 1087ae1afd2fSChristopher Smith continue; 1088ae1afd2fSChristopher Smith } 1089ae1afd2fSChristopher Smith array_splice($raw, 1, 0, auth_pwgen()); // splice in a generated password 10903a97d936SAndreas Gohr $clean = $this->cleanImportUser($raw, $error); 10913a97d936SAndreas Gohr if ($clean && $this->importUser($clean, $error)) { 10923a97d936SAndreas Gohr $sent = $this->notifyUser($clean[0], $clean[1], false); 1093328143f8SChristopher Smith if (!$sent) { 1094328143f8SChristopher Smith msg(sprintf($this->lang['import_notify_fail'], $clean[0], $clean[3]), -1); 1095328143f8SChristopher Smith } 1096ae1afd2fSChristopher Smith $import_success_count++; 1097ae1afd2fSChristopher Smith } else { 1098ae1afd2fSChristopher Smith $import_fail_count++; 1099e73725baSChristopher Smith array_splice($raw, 1, 1); // remove the spliced in password 110054cc7aa4SAndreas Gohr $this->import_failures[$line] = ['error' => $error, 'user' => $raw, 'orig' => $csv]; 1101ae1afd2fSChristopher Smith } 1102ae1afd2fSChristopher Smith } 110364159a61SAndreas Gohr msg( 110464159a61SAndreas Gohr sprintf( 110564159a61SAndreas Gohr $this->lang['import_success_count'], 110664159a61SAndreas Gohr ($import_success_count + $import_fail_count), 110764159a61SAndreas Gohr $import_success_count 110864159a61SAndreas Gohr ), 110964159a61SAndreas Gohr ($import_success_count ? 1 : -1) 111064159a61SAndreas Gohr ); 1111ae1afd2fSChristopher Smith if ($import_fail_count) { 1112ae1afd2fSChristopher Smith msg(sprintf($this->lang['import_failure_count'], $import_fail_count), -1); 1113ae1afd2fSChristopher Smith } 1114ae1afd2fSChristopher Smith } else { 1115ae1afd2fSChristopher Smith msg($this->lang['import_error_readfail'], -1); 1116ae1afd2fSChristopher Smith } 1117ae1afd2fSChristopher Smith 1118ae1afd2fSChristopher Smith // save import failures into the session 1119ae1afd2fSChristopher Smith if (!headers_sent()) { 1120ae1afd2fSChristopher Smith session_start(); 11213a97d936SAndreas Gohr $_SESSION['import_failures'] = $this->import_failures; 1122ae1afd2fSChristopher Smith session_write_close(); 1123ae1afd2fSChristopher Smith } 1124c5a7c0c6SGerrit Uitslag return true; 1125ae1afd2fSChristopher Smith } 1126ae1afd2fSChristopher Smith 1127c5a7c0c6SGerrit Uitslag /** 1128786dfb0eSGerrit Uitslag * Returns cleaned user data 1129c5a7c0c6SGerrit Uitslag * 1130c5a7c0c6SGerrit Uitslag * @param array $candidate raw values of line from input file 1131253d4b48SGerrit Uitslag * @param string $error 1132253d4b48SGerrit Uitslag * @return array|false cleaned data or false 1133c5a7c0c6SGerrit Uitslag */ 11343a97d936SAndreas Gohr protected function cleanImportUser($candidate, &$error) 11353a97d936SAndreas Gohr { 1136ae1afd2fSChristopher Smith global $INPUT; 1137ae1afd2fSChristopher Smith 11383a97d936SAndreas Gohr // FIXME kludgy .... 1139ae1afd2fSChristopher Smith $INPUT->set('userid', $candidate[0]); 1140ae1afd2fSChristopher Smith $INPUT->set('userpass', $candidate[1]); 1141ae1afd2fSChristopher Smith $INPUT->set('username', $candidate[2]); 1142ae1afd2fSChristopher Smith $INPUT->set('usermail', $candidate[3]); 1143ae1afd2fSChristopher Smith $INPUT->set('usergroups', $candidate[4]); 1144ae1afd2fSChristopher Smith 11453a97d936SAndreas Gohr $cleaned = $this->retrieveUser(); 114654cc7aa4SAndreas Gohr [$user, /* pass */ , $name, $mail, /* grps */ ] = $cleaned; 1147ae1afd2fSChristopher Smith if (empty($user)) { 1148ae1afd2fSChristopher Smith $error = $this->lang['import_error_baduserid']; 1149ae1afd2fSChristopher Smith return false; 1150ae1afd2fSChristopher Smith } 1151ae1afd2fSChristopher Smith 1152ae1afd2fSChristopher Smith // no need to check password, handled elsewhere 1153ae1afd2fSChristopher Smith 11543a97d936SAndreas Gohr if (!($this->auth->canDo('modName') xor empty($name))) { 1155ae1afd2fSChristopher Smith $error = $this->lang['import_error_badname']; 1156ae1afd2fSChristopher Smith return false; 1157ae1afd2fSChristopher Smith } 1158ae1afd2fSChristopher Smith 11593a97d936SAndreas Gohr if ($this->auth->canDo('modMail')) { 1160328143f8SChristopher Smith if (empty($mail) || !mail_isvalid($mail)) { 1161ae1afd2fSChristopher Smith $error = $this->lang['import_error_badmail']; 1162ae1afd2fSChristopher Smith return false; 1163ae1afd2fSChristopher Smith } 116454cc7aa4SAndreas Gohr } elseif (!empty($mail)) { 1165328143f8SChristopher Smith $error = $this->lang['import_error_badmail']; 1166328143f8SChristopher Smith return false; 1167328143f8SChristopher Smith } 1168ae1afd2fSChristopher Smith 1169ae1afd2fSChristopher Smith return $cleaned; 1170ae1afd2fSChristopher Smith } 1171ae1afd2fSChristopher Smith 1172c5a7c0c6SGerrit Uitslag /** 1173c5a7c0c6SGerrit Uitslag * Adds imported user to auth backend 1174c5a7c0c6SGerrit Uitslag * 1175c5a7c0c6SGerrit Uitslag * Required a check of canDo('addUser') before 1176c5a7c0c6SGerrit Uitslag * 1177c5a7c0c6SGerrit Uitslag * @param array $user data of user 1178c5a7c0c6SGerrit Uitslag * @param string &$error reference catched error message 11795ba64050SChristopher Smith * @return bool whether successful 1180c5a7c0c6SGerrit Uitslag */ 11813a97d936SAndreas Gohr protected function importUser($user, &$error) 11823a97d936SAndreas Gohr { 11833a97d936SAndreas Gohr if (!$this->auth->triggerUserMod('create', $user)) { 1184ae1afd2fSChristopher Smith $error = $this->lang['import_error_create']; 1185ae1afd2fSChristopher Smith return false; 1186ae1afd2fSChristopher Smith } 1187ae1afd2fSChristopher Smith 1188ae1afd2fSChristopher Smith return true; 1189ae1afd2fSChristopher Smith } 1190ae1afd2fSChristopher Smith 1191c5a7c0c6SGerrit Uitslag /** 1192c5a7c0c6SGerrit Uitslag * Downloads failures as csv file 1193c5a7c0c6SGerrit Uitslag */ 11943a97d936SAndreas Gohr protected function downloadImportFailures() 11953a97d936SAndreas Gohr { 1196ae1afd2fSChristopher Smith 1197ae1afd2fSChristopher Smith // ============================================================================================== 1198ae1afd2fSChristopher Smith // GENERATE OUTPUT 1199ae1afd2fSChristopher Smith // normal headers for downloading... 1200ae1afd2fSChristopher Smith header('Content-type: text/csv;charset=utf-8'); 1201ae1afd2fSChristopher Smith header('Content-Disposition: attachment; filename="importfails.csv"'); 1202ae1afd2fSChristopher Smith# // for debugging assistance, send as text plain to the browser 1203ae1afd2fSChristopher Smith# header('Content-type: text/plain;charset=utf-8'); 1204ae1afd2fSChristopher Smith 1205ae1afd2fSChristopher Smith // output the csv 1206ae1afd2fSChristopher Smith $fd = fopen('php://output', 'w'); 12073a97d936SAndreas Gohr foreach ($this->import_failures as $fail) { 120854cc7aa4SAndreas Gohr fwrite($fd, $fail['orig']); 1209ae1afd2fSChristopher Smith } 1210ae1afd2fSChristopher Smith fclose($fd); 1211ae1afd2fSChristopher Smith die; 1212ae1afd2fSChristopher Smith } 1213ae1afd2fSChristopher Smith 1214b2c01466SChristopher Smith /** 1215b2c01466SChristopher Smith * wrapper for is_uploaded_file to facilitate overriding by test suite 1216253d4b48SGerrit Uitslag * 1217253d4b48SGerrit Uitslag * @param string $file filename 1218253d4b48SGerrit Uitslag * @return bool 1219b2c01466SChristopher Smith */ 12203a97d936SAndreas Gohr protected function isUploadedFile($file) 12213a97d936SAndreas Gohr { 1222b2c01466SChristopher Smith return is_uploaded_file($file); 1223b2c01466SChristopher Smith } 12240440ff15Schris} 1225