Главная Обзор Помощь
Вход
bn
/
se
2
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: c3c9d4bf9b
Ветки Метки
se
/
SE
/
se-lib
/
Route
/
Users.php

Users.php 39 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977 
  1. <?php
    2. 

  2. 

  3. Lib::loadClass('RouteBase');
    4. 

  4. Lib::loadClass('UserStorageFactory');
    5. 

  5. Lib::loadClass('ProcesHelper');
    6. 

  6. Lib::loadClass('SyncUsers');
    7. 

  7. Lib::loadClass('UsersHelper');
    8. 

  8. Lib::loadClass('UsersLdapHelper');
    9. 

  9. Lib::loadClass('TypespecialVariable');
    10. 

  10. Lib::loadClass('TableAjax');
    11. 

  11. Lib::loadClass('UserActivity');
    12. 

  12. Lib::loadClass('UI');
    13. 

  13. Lib::loadClass('Response');
    14. 

  14. 

  15. class Route_Users extends RouteBase {
    16. 

  16. 

  17. 	public function handleAuth() {
    18. 

  18. 		if (!User::logged()) {
    19. 

  19. 			throw new HttpException('Unauthorized', 401);
    20. 

  20. 		}
    21. 

  21. 	}
    22. 

  22. 

  23. 	public function defaultAction() {
    24. 

  24. 		UI::gora();
    25. 

  25. 		UI::menu();
    26. 

  26. 		$this->menu();
    27. 

  27. 		UI::dol();
    28. 

  28. 	}
    29. 

  29. 

  30. 	public function menu() {
    31. 

  31. 		$usrLogin = User::getLogin();
    32. 

  32. 		?>
    33. 

  33. <div class="container">
    34. 

  34. 	<h3>Użytkownicy i grupy</h3>
    35. 

  35. 	<ul>
    36. 

  36. 		<li>
    37. 

  37. 			<form class="form-inline" action="index.php" method="GET">
    38. 

  38. 				<input type="hidden" name="_route" value="Users">
    39. 

  39. 				<input type="hidden" name="_task" value="syncUser">
    40. 

  40. 				<label for="usrLogin">login: </label>
    41. 

  41. 				<input type="text" name="usrLogin" value="<?php echo $usrLogin; ?>">
    42. 

  42. 				<input type="submit" value="Synchronizuj do bazy LDAP" class="btn btn-xs btn-default">
    43. 

  43. 			</form>
    44. 

  44. 		</li>
    45. 

  45. 		<li>
    46. 

  46. 			<form class="form-inline" action="index.php" method="GET">
    47. 

  47. 				<input type="hidden" name="_route" value="Users">
    48. 

  48. 				<input type="hidden" name="_task" value="userGroups">
    49. 

  49. 				<label for="usrLogin">login: </label>
    50. 

  50. 				<input type="text" name="usrLogin" value="<?php echo $usrLogin; ?>">
    51. 

  51. 				<input type="submit" value="Dodaj grupy" class="btn btn-xs btn-default">
    52. 

  52. 			</form>
    53. 

  53. 		</li>
    54. 

  54. 		<li>
    55. 

  55. 			<form class="form-inline" action="index.php" method="GET">
    56. 

  56. 				<input type="hidden" name="_route" value="Users">
    57. 

  57. 				<input type="hidden" name="_task" value="nestedGroups">
    58. 

  58. 				<label for="idGroup">id grupy: </label>
    59. 

  59. 				<input type="text" name="idGroup" value="">
    60. 

  60. 				<input type="submit" value="Grupy uprawnień" class="btn btn-xs btn-default">
    61. 

  61. 			</form>
    62. 

  62. 		</li>
    63. 

  63. 	</ul>
    64. 

  64. </div>
    65. 

  65. <?php
    66. 

  66. 	}
    67. 

  67. 

  68. 	public function reloadPermsAction() {
    69. 

  69. 		try {
    70. 

  70. 			$dbgExecTime = new DebugExecutionTime();
    71. 

  71. 			$dbgExecTime->activate();
    72. 

  72. 			$dbgExecTime->log('start');
    73. 

  73. 

  74. 			$routeFixCrmProcesInitIdx = Router::getRoute('FixCrmProcesInitIdx');
    75. 

  75. 			if ($routeFixCrmProcesInitIdx) {
    76. 

  76. 				$routeFixCrmProcesInitIdx->runMethod('callProcedure');
    77. 

  77. 			}
    78. 

  78. 

  79. 			$dbgExecTime->log('FixCrmProcesInitIdx::callProcedure');
    80. 

  80. 			$fixAllPermsExecTime = $dbgExecTime->getLastExecTime();
    81. 

  81. 

  82. 			User::reloadAcl();
    83. 

  83. 

  84. 			$dbgExecTime->log('User::reloadAcl');
    85. 

  85. 			$fixUserPermsExecTime = $dbgExecTime->getLastExecTime();
    86. 

  86. 

  87. 		} catch (Exception $e) {
    88. 

  88. 			$data['errors'][] = $e->getMessage();
    89. 

  89. 		}
    90. 

  90. 

  91. 		UI::gora();
    92. 

  92. 		UI::menu();
    93. 

  93. 		echo UI::h('div', [ 'class' => "container"], [
    94. 

  94. 			UI::h('div', [
    95. 

  95. 				'class' => "alert alert-success",
    96. 

  96. 				'title' => number_format($fixAllPermsExecTime, 4) . " s / " . number_format($fixUserPermsExecTime, 4) . " s"
    97. 

  97. 			], "Zaktualizowano uprawnienia"),
    98. 

  98. 		]);
    99. 

  99. 		UI::loadTemplate('defaultPage', $data);
    100. 

  100. 		echo UI::h('script', [], "
    101. 

  101. 			(function (global) {
    102. 

  102. 				if (global.p5UI__MenuStore) global.p5UI__MenuStore.remoteUpdate()
    103. 

  103. 			})(window)
    104. 

  104. 		");
    105. 

  105. 		UI::dol();
    106. 

  106. 	}
    107. 

  107. 

  108. 	public function nestedGroupsAction() {
    109. 

  109. 		UI::gora();
    110. 

  110. 		UI::menu();
    111. 

  111. 		echo '<div class="container">';
    112. 

  112. 		try {
    113. 

  113. 			$idGroup = V::get('idGroup', 0, $_GET, 'int');
    114. 

  114. 			if (empty($idGroup)) throw new Exception("Empty group id");
    115. 

  115. 			$subTask = V::get('_subTask', '', $_POST);
    116. 

  116. 			$successMsg = null;
    117. 

  117. 			if ('removeParentGroup' == $subTask) {
    118. 

  118. 				$idParentGroupToRemove = V::get('idParentGroupToRemove', 0, $_POST, 'int');
    119. 

  119. 				$this->nestedGroupsRemoveParentGroup($idGroup, $idParentGroupToRemove);
    120. 

  120. 				$successMsg = "Usunięto grupę nadrzędną [{$idParentGroupToRemove}] do grupy [{$idGroup}]";
    121. 

  121. 			} else if ('removeNestedGroup' == $subTask) {
    122. 

  122. 				$idNestedGroupToRemove = V::get('idNestedGroupToRemove', 0, $_POST, 'int');
    123. 

  123. 				$this->nestedGroupsRemoveNestedGroup($idGroup, $idNestedGroupToRemove);
    124. 

  124. 				$successMsg = "Usunięto grupę zagnieżdżoną [{$idNestedGroupToRemove}] do grupy [{$idGroup}]";
    125. 

  125. 			} else if ('addParentGroup' == $subTask) {
    126. 

  126. 				$idParentGroupToAdd = V::get('idParentGroupToAdd', 0, $_POST, 'int');
    127. 

  127. 				$this->nestedGroupsAddParentGroup($idGroup, $idParentGroupToAdd);
    128. 

  128. 				$successMsg = "Dodano grupę nadrzędną [{$idParentGroupToAdd}] do grupy [{$idGroup}]";
    129. 

  129. 			} else if ('addNestedGroup' == $subTask) {
    130. 

  130. 				$idNestedGroupToAdd = V::get('idNestedGroupToAdd', 0, $_POST, 'int');
    131. 

  131. 				$this->nestedGroupsAddNestedGroup($idGroup, $idNestedGroupToAdd);
    132. 

  132. 				$successMsg = "Dodano grupę zagnieżdżoną [{$idNestedGroupToAdd}] do grupy [{$idGroup}]";
    133. 

  133. 			}
    134. 

  134. 			if (!empty($successMsg)) {
    135. 

  135. 				?><div class="alert alert-success"><?php echo $successMsg; ?></div><?php
    136. 

  136. 			}
    137. 

  137. 			$this->printFormNestedGroups($idGroup);
    138. 

  138. 		} catch (Exception $e) {
    139. 

  139. 			?><div class="alert alert-danger"><?php echo $e->getMessage(); ?>
    140. 

  140. 	<br><a href="index.php?_route=Users">wróć</a>
    141. 

  141. </div><?php
    142. 

  142. 			echo UserActivity::showListInContainer();
    143. 

  143. 		}
    144. 

  144. 		echo '</div>';// .container
    145. 

  145. 		UI::dol();
    146. 

  146. 	}
    147. 

  147. 

  148. 	public function nestedGroupsRemoveParentGroup($idGroup, $idParentGroupToRemove) {
    149. 

  149. 		if (!$idGroup) throw new Exception("Wrong param id group!");
    150. 

  150. 		if (!$idParentGroupToRemove) throw new Exception("Wrong param id parent group to remove!");
    151. 

  151. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    152. 

  152. 		if (!$usrStorageDB) throw new Exception("Error: storage db not exists!");
    153. 

  153. 		$group = $usrStorageDB->getGroupWithoutNested($idGroup);
    154. 

  154. 		if (!$group) throw new Exception("Error: group not exists!");
    155. 

  155. 		$parentGroup = $usrStorageDB->getGroupWithoutNested($idParentGroupToRemove);
    156. 

  156. 		if (!$parentGroup) throw new Exception("Error: parent group not exists!");
    157. 

  157. 		$usrStorageDB->removeParentGroup($idGroup, $idParentGroupToRemove);
    158. 

  158. 	}
    159. 

  159. 

  160. 	public function nestedGroupsRemoveNestedGroup($idGroup, $idNestedGroupToRemove) {
    161. 

  161. 		if (!$idGroup) throw new Exception("Wrong param id group!");
    162. 

  162. 		if (!$idNestedGroupToRemove) throw new Exception("Wrong param id parent group to remove!");
    163. 

  163. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    164. 

  164. 		if (!$usrStorageDB) throw new Exception("Error: storage db not exists!");
    165. 

  165. 		$group = $usrStorageDB->getGroupWithoutNested($idGroup);
    166. 

  166. 		if (!$group) throw new Exception("Error: group not exists!");
    167. 

  167. 		$nestedGroup = $usrStorageDB->getGroupWithoutNested($idNestedGroupToRemove);
    168. 

  168. 		if (!$nestedGroup) throw new Exception("Error: nested group not exists!");
    169. 

  169. 		$usrStorageDB->removeNestedGroup($idGroup, $idNestedGroupToRemove);
    170. 

  170. 	}
    171. 

  171. 

  172. 	public function nestedGroupsAddParentGroup($idGroup, $idParentGroupToAdd) {
    173. 

  173. 		if ($idGroup <= 0) throw new Exception("Wrong param id group");
    174. 

  174. 		if ($idParentGroupToAdd <= 0) throw new Exception("Wrong param id parent group to add");
    175. 

  175. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    176. 

  176. 		if (!$usrStorageDB) throw new Exception("Error: storage db not exists!");
    177. 

  177. 		$group = $usrStorageDB->getGroupWithoutNested($idGroup);
    178. 

  178. 		if (!$group) throw new Exception("Error: group [{$idGroup}] not exists!");
    179. 

  179. 		$parentGroup = $usrStorageDB->getGroupWithoutNested($idParentGroupToAdd);
    180. 

  180. 		if (!$parentGroup) throw new Exception("Error: parent group [{$idParentGroupToAdd}] not exists!");
    181. 

  181. 		$usrStorageDB->addParentGroup($idGroup, $idParentGroupToAdd);
    182. 

  182. 	}
    183. 

  183. 

  184. 	public function nestedGroupsAddNestedGroup($idGroup, $idNestedGroupToAdd) {
    185. 

  185. 		if ($idGroup <= 0) throw new Exception("Wrong param id group");
    186. 

  186. 		if ($idNestedGroupToAdd <= 0) throw new Exception("Wrong param id parent group to add");
    187. 

  187. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    188. 

  188. 		if (!$usrStorageDB) throw new Exception("Error: storage db not exists!");
    189. 

  189. 		$group = $usrStorageDB->getGroupWithoutNested($idGroup);
    190. 

  190. 		if (!$group) throw new Exception("Error: group not exists!");
    191. 

  191. 		$nestedGroup = $usrStorageDB->getGroupWithoutNested($idNestedGroupToAdd);
    192. 

  192. 		if (!$nestedGroup) throw new Exception("Error: nested group [{$idNestedGroupToAdd}] not exists!");
    193. 

  193. 		$usrStorageDB->addNestedGroup($idGroup, $idNestedGroupToAdd);
    194. 

  194. 	}
    195. 

  195. 

  196. 	public function printFormNestedGroups($idGroup) {
    197. 

  197. 		$linkTypeIdNestedGroups = 5;
    198. 

  198. 

  199. 		if (!$idGroup) throw new Exception("Wrong param group id!");
    200. 

  200. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    201. 

  201. 		if (!$usrStorageDB) throw new Exception("Error storage not exists!");
    202. 

  202. 		$group = $usrStorageDB->getGroup($idGroup);
    203. 

  203. 		if (!$group) throw new Exception("Grupa {$idGroup} nie istnieje.");
    204. 

  204. 		DBG::_('DBG_SU', '>1', 'group', $group, __CLASS__, __FUNCTION__, __LINE__);
    205. 

  205. 

  206. 		{
    207. 

  207. 			$idZasob = ProcesHelper::getZasobTableID('ITEM_LINKS');
    208. 

  208. 			if ($idZasob <= 0) throw new Exception("Brak zasobu dla tabeli 'ITEM_LINKS'");
    209. 

  209. 			$zasobObj = ProcesHelper::getZasobTableInfo($idZasob);
    210. 

  210. 			if (!$zasobObj) throw new Exception("Zasob TABELA ID={$idZasob} nie istnieje");
    211. 

  211. 			UserActivity::add($idZasob);
    212. 

  212. 			$userAcl = User::getAcl();
    213. 

  213. 			$userAcl->fetchGroups();
    214. 

  214. 			if (!$userAcl->hasTableAcl($zasobObj->ID)) throw new Exception("Brak uprawnień do tabeli ID={$zasobObj->ID}");
    215. 

  215. 		}
    216. 

  216. 

  217. 		if (V::get('_testUsrGroupsLdapLvl0', '', $_GET)) {
    218. 

  218. 			$usrLogin = User::getLogin();
    219. 

  219. 			$groups = array(); $groupsLvl3 = array();
    220. 

  220. 			$groupsNetwork = UsersLdapHelper::getUserGroups($usrLogin, 0);
    221. 

  221. 			foreach ($groupsNetwork as $vGroup) {
    222. 

  222. 				$groups[$vGroup->cn] = $vGroup->appleUID;
    223. 

  223. 			}
    224. 

  224. 			DBG::_(true, true, "groups ldap lvl 0", $groups, __CLASS__, __FUNCTION__, __LINE__);
    225. 

  225. 			$groupsNetwork = UsersLdapHelper::getUserGroups($usrLogin, 3);
    226. 

  226. 			foreach ($groupsNetwork as $vGroup) {
    227. 

  227. 				$groupsLvl3[$vGroup->cn] = $vGroup->appleUID;
    228. 

  228. 			}
    229. 

  229. 			DBG::_(true, true, "groups ldap lvl 3", $groupsLvl3, __CLASS__, __FUNCTION__, __LINE__);
    230. 

  230. 		}
    231. 

  231. 

  232. 		$group->getParentGroups();
    233. 

  233. 		DBG::_('DBG_NG', '>1', "group with nested", $group, __CLASS__, __FUNCTION__, __LINE__);
    234. 

  234. 

  235. 		$typeSpecialNestedGroups = TypespecialVariable::getInstance(-1, '__NESTED_GROUPS');
    236. 

  236. 

  237. 		$groupUsers = array();
    238. 

  238. 		$groupNestedUsers = array();
    239. 

  239. 		$idZasobTableUsers = ProcesHelper::getZasobTableID('ADMIN_USERS');
    240. 

  240. 		if ($group->zasobID > 0) {
    241. 

  241. 			$groupUsers = UsersHelper::getUsersByGroupId($idGroup);
    242. 

  242. 			$groupNestedUsers = UsersHelper::getUsersByGroupsIds(array_keys($group->nestedGroups), array_keys($groupUsers));
    243. 

  243. 		}
    244. 

  244. 

  245. 		$idZasobTableZasoby = ProcesHelper::getZasobTableID('CRM_LISTA_ZASOBOW');
    246. 

  246. ?>
    247. 

  247. <style type="text/css">
    248. 

  248. .frm-groups .selectize-control { float:left; }
    249. 

  249. .conn_groups {}
    250. 

  250.  .conn_groups .conn_groups-list {}
    251. 

  251.   .conn_groups .conn_groups-list .conn_groups-list_item { line-height:22px; }
    252. 

  252.   .conn_groups .conn_groups-list .conn_groups-list_item form { display:inline; margin:0; }
    253. 

  253.   .conn_groups .conn_groups-list_item-rmBtn {  display:inline; margin:0; padding:0 6px; border:none; opacity:0.4; }
    254. 

  254.   .conn_groups .conn_groups-list_item-editBtn {  margin:0 6px; padding:0; border:none; opacity:0.4; }
    255. 

  255.   .conn_groups .conn_groups-list_item:hover .conn_groups-list_item-rmBtn { display:inline; opacity:1; }
    256. 

  256.   .conn_groups .conn_groups-list_item:hover .conn_groups-list_item-editBtn { opacity:1; }
    257. 

  257. .users-with-perms {}
    258. 

  258.  .users-with-perms address { padding:0 6px; border:1px solid #eee; }
    259. 

  259.  .users-with-perms address:hover { border-color:#333; }
    260. 

  260. </style>
    261. 

  261. <div class="container conn_groups">
    262. 

  262. 	<h4>Grupy uprawnień
    263. 

  263. 		<!-- <em style="color:#ccc;">(Nested Groups)</em> -->
    264. 

  264. 	</h4>
    265. 

  265. 	<blockquote>
    266. 

  266. 		Grupa [<?php echo $idGroup; ?>]: <code><?php echo $group->type; ?></code> <?php echo $group->zasobDESC; ?>
    267. 

  267. 		<a class="btn btn-xs btn-link" href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobTableZasoby; ?>#EDIT/<?php echo $idGroup; ?>" title="Edytuj rekord"><i class="glyphicon glyphicon-pencil"></i> edytuj</a>
    268. 

  268. 		<a class="btn btn-xs btn-link" href="index.php?_route=Users&_task=syncGroup&idGroup=<?php echo $idGroup; ?>"><i class="glyphicon glyphicon-retweet"></i> synchronizuj do LDAP</a>
    269. 

  269. 	</blockquote>
    270. 

  270. 

  271. 	<br>
    272. 

  272. 

  273. 	<div class="row">
    274. 

  274. 		<div class="col-md-6">
    275. 

  275. <!--			<p><b>Grupy posiadające dostęp do rekordów grupy [<?php echo $group->zasobID; ?>] <?php echo $group->zasobDESC; ?></b> <em>(<?php echo (!empty($group->parentGroups))? count($group->parentGroups) : 0; ?>)</em>:
    276. 

  276. 				</p> -->
    277. 

  277. 			<blockquote>
    278. 

  278. <!--				<h5>Ustal grupy, które będą miały uprawnienia do rekordów dostępnych dla
    279. 

  279. 					[<?php echo $group->zasobID; ?>] <?php echo $group->zasobDESC; ?>
    280. 

  280. 				</h5>
    281. 

  281. 				<small>np. grupy podrzędnych pracowników.</small> -->
    282. 

  282. 				<h5>Udostępnij rekordy innym grupom</h5>
    283. 

  283. 				<small>np. przełożonemu.</small>
    284. 

  284. 			</blockquote>
    285. 

  285. 			<ul class="conn_groups-list">
    286. 

  286. 				<?php if (!empty($group->nestedGroups)) : ?>
    287. 

  287. 					<?php foreach ($group->nestedGroups as $vNestedGroup) : ?>
    288. 

  288. 						<li class="conn_groups-list_item">
    289. 

  289. 							[<?php echo $vNestedGroup->zasobID; ?>]
    290. 

  290. 							<?php echo $vNestedGroup->type; ?>
    291. 

  291. 							<?php echo $vNestedGroup->zasobDESC; ?>
    292. 

  292. 							<a href="index.php?_route=Users&_task=nestedGroups&idGroup=<?php echo $vNestedGroup->zasobID; ?>" class="glyphicon glyphicon-pencil conn_groups-list_item-editBtn" title="Edytuj grupę"> </a>
    293. 

  293. 							<form action="" method="POST" class="form-inline frm-groups">
    294. 

  294. 								<input type="hidden" name="_subTask" value="removeNestedGroup">
    295. 

  295. 								<button name="idNestedGroupToRemove" value="<?php echo $vNestedGroup->zasobID; ?>" class="btn-link btn-sm conn_groups-list_item-rmBtn" title="usuń grupę"><i class="glyphicon glyphicon-remove"></i></button>
    296. 

  296. 							</form>
    297. 

  297. 						</li>
    298. 

  298. 					<?php endforeach; ?>
    299. 

  299. 				<?php endif; ?>
    300. 

  300. 				<?php if ($typeSpecialNestedGroups) : ?>
    301. 

  301. 					<li>
    302. 

  302. 						<form action="" method="POST" class="form-inline frm-groups">
    303. 

  303. 							<input type="hidden" name="_subTask" value="addNestedGroup">
    304. 

  304. 							<?php
    305. 

  305. 								$fName = 'idNestedGroupToAdd';
    306. 

  306. 								$fldParams = array();
    307. 

  307. 								$fldParams['allowCreate'] = false;
    308. 

  308. 								$fldParams['ajaxDataUrlBase'] = "index.php?_route=Users&_task=typeSpecialIdNestedGroup";
    309. 

  309. 								//$fldParams['ajaxDataUrlBase'] .= "&DBG_TS=3";
    310. 

  310. 								echo $typeSpecialNestedGroups->showFormItem($tblID = -1, $fName, $selValue = '', $fldParams);
    311. 

  311. 							?>
    312. 

  312. 							<button class="btn">dodaj</button>
    313. 

  313. 						</form>
    314. 

  314. 					</li>
    315. 

  315. 				<?php endif; ?>
    316. 

  316. 			</ul>
    317. 

  317. 

  318. <!--			<p><b>Grupy do rekordów, których posiada dostęp grupa [<?php echo $group->zasobID; ?>] <?php echo $group->zasobDESC; ?></b> <em>(<?php echo (!empty($group->parentGroups))? count($group->parentGroups) : 0; ?>)</em>:
    319. 

  319. 			</p> -->
    320. 

  320. 			<blockquote>
    321. 

  321. 				<h5>Grupy, które udostępniają rekordy</h5>
    322. 

  322. 				<small>np. grupy podrzędnych pracowników lub dział, podmiot.</small>
    323. 

  323. 			</blockquote>
    324. 

  324. 			<ul class="conn_groups-list">
    325. 

  325. 				<?php if (!empty($group->parentGroups)) : ?>
    326. 

  326. 					<?php foreach ($group->parentGroups as $vParentGroup) : ?>
    327. 

  327. 						<li class="conn_groups-list_item">
    328. 

  328. 							[<?php echo $vParentGroup->zasobID; ?>]
    329. 

  329. 							<?php // if ('DZIAL' == $vParentGroup->type) : ?>
    330. 

  330. 								<?php echo $vParentGroup->type; ?>
    331. 

  331. 							<?php // endif; ?>
    332. 

  332. 							<?php echo $vParentGroup->zasobDESC; ?>
    333. 

  333. 							<a href="index.php?_route=Users&_task=nestedGroups&idGroup=<?php echo $vParentGroup->zasobID; ?>" class="glyphicon glyphicon-pencil conn_groups-list_item-editBtn" title="Edytuj grupę"> </a>
    334. 

  334. 							<form action="" method="POST" class="form-inline frm-groups">
    335. 

  335. 								<input type="hidden" name="_subTask" value="removeParentGroup">
    336. 

  336. 								<button name="idParentGroupToRemove" value="<?php echo $vParentGroup->zasobID; ?>" class="btn-link btn-sm conn_groups-list_item-rmBtn" title="usuń grupę"><i class="glyphicon glyphicon-remove"></i></button>
    337. 

  337. 							</form>
    338. 

  338. 						</li>
    339. 

  339. 					<?php endforeach; ?>
    340. 

  340. 				<?php endif; ?>
    341. 

  341. 

  342. 				<?php if ($typeSpecialNestedGroups) : ?>
    343. 

  343. 					<li>
    344. 

  344. 						<form action="" method="POST" class="form-inline frm-groups">
    345. 

  345. 							<input type="hidden" name="_subTask" value="addParentGroup">
    346. 

  346. 							<?php
    347. 

  347. 								$fName = 'idParentGroupToAdd';
    348. 

  348. 								$fldParams = array();
    349. 

  349. 								$fldParams['allowCreate'] = false;
    350. 

  350. 								$fldParams['ajaxDataUrlBase'] = "index.php?_route=Users&_task=typeSpecialIdNestedGroup";
    351. 

  351. 								//$fldParams['ajaxDataUrlBase'] .= "&DBG_TS=3";
    352. 

  352. 								echo $typeSpecialNestedGroups->showFormItem($tblID = -1, $fName, $selValue = '', $fldParams);
    353. 

  353. 							?>
    354. 

  354. 							<button class="btn">dodaj</button>
    355. 

  355. 						</form>
    356. 

  356. 					</li>
    357. 

  357. 				<?php endif; ?>
    358. 

  358. 			</ul>
    359. 

  359. 

  360. 		</div>
    361. 

  361. 		<div class="col-md-6 users-with-perms">
    362. 

  362. 

  363. 			<h5>Użytkownicy:</h5>
    364. 

  364. 			<?php if (empty($groupUsers)) : ?>
    365. 

  365. 				<div class="alert">Brak użytkowników przypisanych bezpośrednio do grupy</div>
    366. 

  366. 			<?php else : ?>
    367. 

  367. 				<div class="row">
    368. 

  368. 				<?php foreach ($groupUsers as $usr) : ?>
    369. 

  369. 					<div class="col-md-6">
    370. 

  370. 						<address>
    371. 

  371. 							<strong><?php echo $usr->ADM_NAME; ?></strong>
    372. 

  372. 							<a href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobTableUsers; ?>#EDIT/<?php echo $usr->ID; ?>" class="glyphicon glyphicon-pencil" title="Edytuj rekord"> </a>
    373. 

  373. 

  374. 							<br><em><?php echo $usr->EMPLOYEE_TYPE; ?></em>
    375. 

  375. 

  376. 							<?php if (!empty($usr->ADM_PHONE)) : ?>
    377. 

  377. 								<br><abbr title="Telefon">Tel.:</abbr> <?php echo $usr->ADM_PHONE; ?>
    378. 

  378. 							<?php endif; ?>
    379. 

  379. 

  380. 							<?php if (!empty($usr->EMAIL)) : ?>
    381. 

  381. 								<br><a href="mailto:<?php echo $usr->EMAIL; ?>"><?php echo $usr->EMAIL; ?></a>
    382. 

  382. 							<?php endif; ?>
    383. 

  383. 						</address>
    384. 

  384. 					</div>
    385. 

  385. 				<?php endforeach; ?>
    386. 

  386. 				</div>
    387. 

  387. 			<?php endif; ?>
    388. 

  388. 

  389. 			<h5>Użytkownicy z uprawnieniami do rekordów</h5>
    390. 

  390. 			<?php if (empty($groupNestedUsers)) : ?>
    391. 

  391. 				<div class="alert">Brak</div>
    392. 

  392. 			<?php else : ?>
    393. 

  393. 				<div class="row">
    394. 

  394. 				<?php foreach ($groupNestedUsers as $usr) : ?>
    395. 

  395. 					<div class="col-md-6">
    396. 

  396. 						<address>
    397. 

  397. 							<strong><?php echo $usr->ADM_NAME; ?></strong>
    398. 

  398. 							<a href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobTableUsers; ?>#EDIT/<?php echo $usr->ID; ?>" class="glyphicon glyphicon-pencil" title="Edytuj rekord"> </a>
    399. 

  399. 

  400. 							<br><em><?php echo $usr->EMPLOYEE_TYPE; ?></em>
    401. 

  401. 

  402. 							<?php if (!empty($usr->ADM_PHONE)) : ?>
    403. 

  403. 								<br><abbr title="Telefon">Tel.:</abbr> <?php echo $usr->ADM_PHONE; ?>
    404. 

  404. 							<?php endif; ?>
    405. 

  405. 

  406. 							<?php if (!empty($usr->EMAIL)) : ?>
    407. 

  407. 								<br><a href="mailto:<?php echo $usr->EMAIL; ?>"><?php echo $usr->EMAIL; ?></a>
    408. 

  408. 							<?php endif; ?>
    409. 

  409. 						</address>
    410. 

  410. 					</div>
    411. 

  411. 				<?php endforeach; ?>
    412. 

  412. 				</div>
    413. 

  413. 			<?php endif; ?>
    414. 

  414. 

  415. 		</div>
    416. 

  416. 	</div>
    417. 

  417. </div>
    418. 

  418. <?php
    419. 

  419. 		{// render table
    420. 

  420. 			$tblAcl = $userAcl->getTableAcl($zasobObj->ID);
    421. 

  421. 			$forceTblAclInit = ('1' == V::get('_force', '', $_GET));
    422. 

  422. 			$tblAcl->init($forceTblAclInit);
    423. 

  423. 			$forceFilterInit = array();
    424. 

  424. 			$filterInit = new stdClass();
    425. 

  425. 			$filterInit->currSortCol = 'ID';
    426. 

  426. 			$filterInit->currSortFlip = 'desc';
    427. 

  427. 			foreach ($_GET as $k => $v) {
    428. 

  428. 				if (strlen($k) > 3 && substr($k, 0, 2) == 'f_' && !empty($v)) {// filter prefix
    429. 

  429. 					$filterInit->$k = $v;
    430. 

  430. 				}
    431. 

  431. 				else if (strlen($k) > 4 && substr($k, 0, 3) == 'sf_' && !empty($v)) {// special filter prefix
    432. 

  432. 					$filterInit->$k = $v;
    433. 

  433. 				}
    434. 

  434. 				else if (strlen($k) > 4 && substr($k, 0, 3) == 'ff_' && !empty($v)) {// force filter prefix
    435. 

  435. 					$fldName = substr($k, 3);
    436. 

  436. 					$forceFilterInit[$fldName] = $v;
    437. 

  437. 				}
    438. 

  438. 			}
    439. 

  439. 

  440. 			$tblZasobyID = ProcesHelper::getZasobTableID('CRM_LISTA_ZASOBOW');
    441. 

  441. 			$forceFilterInit['TABLE_1_NAME'] = 'CRM_LISTA_ZASOBOW';
    442. 

  442. 			$forceFilterInit['TABLE_1_ZASOB_ID'] = $tblZasobyID;
    443. 

  443. 			$forceFilterInit['TABLE_1_ID'] = $group->zasobID;
    444. 

  444. 			$forceFilterInit['TABLE_2_NAME'] = 'CRM_LISTA_ZASOBOW';
    445. 

  445. 			$forceFilterInit['TABLE_2_ZASOB_ID'] = $tblZasobyID;
    446. 

  446. 			$forceFilterInit['LINKS_TYPE_ID'] = $linkTypeIdNestedGroups;
    447. 

  447. 

  448. 			$tbl = new TableAjax($tblAcl);
    449. 

  449. 			$tbl->setLabel($zasobObj->OPIS);
    450. 

  450. 			$tbl->setFilterInit($filterInit);
    451. 

  451. 			if (!empty($forceFilterInit)) $tbl->setForceFilterInit($forceFilterInit);
    452. 

  452. 			$tbl->addRowFunction('edit');
    453. 

  453. 			$tbl->addRowFunction('hist');
    454. 

  454. 			$tbl->addRowFunction('files');
    455. 

  455. 			$tbl->addRowFunction('cp');
    456. 

  456. 			echo $tbl->render();
    457. 

  457. 		}
    458. 

  458. 	}
    459. 

  459. 

  460. 	public function typeSpecialIdNestedGroupAction() {
    461. 

  461. 		header("Content-type: application/json");
    462. 

  462. 		$typeSpecialNestedGroups = TypespecialVariable::getInstance(-1, '__NESTED_GROUPS');
    463. 

  463. 

  464. 		$query = V::get('q', '', $_REQUEST);
    465. 

  465. 		$rawRows = null;
    466. 

  466. 		$rows = $typeSpecialNestedGroups->getValuesWithExports($query);
    467. 

  467. 		DBG::_('DBG', '>0', "rows(q={$query})", $rows, __CLASS__, __FUNCTION__, __LINE__);
    468. 

  468. 		foreach ($rows as $kID => $vItem) {
    469. 

  469. 			$itemJson = new stdClass();
    470. 

  470. 			$itemJson->id = $vItem->id;
    471. 

  471. 			$itemJson->name = $vItem->param_out;
    472. 

  472. 			if (!empty($vItem->exports)) {
    473. 

  473. 				$itemJson->exports = $vItem->exports;
    474. 

  474. 			}
    475. 

  475. 			$jsonData[] = $itemJson;
    476. 

  476. 		}
    477. 

  477. 		echo json_encode($jsonData);
    478. 

  478. 	}
    479. 

  479. 

  480. 	public function userGroupsAction() {
    481. 

  481. 		UI::gora();
    482. 

  482. 		UI::menu();
    483. 

  483. 		$usrLogin = V::get('usrLogin', '', $_GET);
    484. 

  484. 		echo '<div class="container">';
    485. 

  485. 		try {
    486. 

  486. 			if (empty($usrLogin)) throw new Exception("Empty user login");
    487. 

  487. 			$subTask = V::get('_subTask', '', $_POST);
    488. 

  488. 			if ('removeUserGroup' == $subTask) {
    489. 

  489. 				$idProfileToRemove = V::get('idProfileToRemove', 0, $_POST, 'int');
    490. 

  490. 				$this->removeUserGroup($usrLogin, $idProfileToRemove);
    491. 

  491. 				?><div class="alert alert-info">Użytkownik został usunięty z danej grupy</div><?php
    492. 

  492. 			} else if ('addUserGroup' == $subTask) {
    493. 

  493. 				$idGroup = V::get('idGroup', 0, $_POST, 'int');
    494. 

  494. 				$idTelboxes = V::get('addTelboxesID', 0, $_POST, 'int');
    495. 

  495. 				$this->addUserGroup($usrLogin, $idGroup, $idTelboxes);
    496. 

  496. 				?><div class="alert alert-info">Dodano grupę [<?php echo $idGroup; ?>] do użytkownika [<?php echo $usrLogin; ?>]</div><?php
    497. 

  497. 			}
    498. 

  498. 			$this->printFormUserGroup($usrLogin);
    499. 

  499. 		} catch (Exception $e) {
    500. 

  500. 			?><div class="alert alert-danger"><?php echo $e->getMessage(); ?>
    501. 

  501. 	<br><a href="index.php?_route=Users&_task=userGroups&usrLogin=<?php echo $usrLogin; ?>">wróć</a>
    502. 

  502. </div><?php
    503. 

  503. 			echo UserActivity::showListInContainer();
    504. 

  504. 		}
    505. 

  505. 		echo '</div>';// .container
    506. 

  506. 		UI::dol();
    507. 

  507. 	}
    508. 

  508. 

  509. 	public function printFormUserGroup($usrLogin) {
    510. 

  510. 		if (empty($usrLogin)) throw new Exception("Empty user login");
    511. 

  511. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    512. 

  512. 		if (!$usrStorageDB) throw new Exception("Storage DB not exists!");
    513. 

  513. 		$usr = $usrStorageDB->getUser($usrLogin);
    514. 

  514. 		if (!$usr) throw new Exception("Użytkownik '{$usrLogin}' nie istnieje.");
    515. 

  515. 		$stanowiska = array();
    516. 

  516. 		$stanowiska = $usrStorageDB->getUserProfiles($usrLogin, $fetchNested = false);
    517. 

  517. 		uasort($stanowiska, array($this, 'sortStanowiskaByType'));
    518. 

  518. 

  519. 		$groups = UsersHelper::getGroupByUser($usr->primaryKey);
    520. 

  520. 		DBG::_('DBG_SU', '>1', 'groups', $groups, __CLASS__, __FUNCTION__, __LINE__);
    521. 

  521. 

  522. 		$groupsNetwork = UsersLdapHelper::getUserGroups($usrLogin, 3);
    523. 

  523. 		DBG::_('DBG_SU', '>1', 'groupsNetwork', $groupsNetwork, __CLASS__, __FUNCTION__, __LINE__);
    524. 

  524. 

  525. 		$typeSpecialUserGroups = TypespecialVariable::getInstance(-1, '__USER_GROUPS');
    526. 

  526. 		$typeSpecialTelboxes   = TypespecialVariable::getInstance(-1, '__TELBOXES');
    527. 

  527. 		$idZasobUsersTbl = ProcesHelper::getZasobTableID('ADMIN_USERS');
    528. 

  528. ?>
    529. 

  529. <style type="text/css">
    530. 

  530. .frm-groups .selectize-control { float:left; }
    531. 

  531. .conn_groups {}
    532. 

  532.  .conn_groups .conn_groups-list {}
    533. 

  533.   .conn_groups .conn_groups-list .conn_groups-list_item { line-height:22px; }
    534. 

  534.   .conn_groups .conn_groups-list .conn_groups-list_item form { display:inline; margin:0; }
    535. 

  535.   .conn_groups .conn_groups-list_item-rmBtn { /*display:none;*/ opacity:0.4; margin:0; padding:0 10px; border:none; }
    536. 

  536.   .conn_groups .conn_groups-list_item:hover .conn_groups-list_item-rmBtn { /*display:inline;*/ opacity:1; }
    537. 

  537. </style>
    538. 

  538. <div class="conn_groups">
    539. 

  539. 	<h4>Ustalanie stanowiska</h4>
    540. 

  540. 	<blockquote>
    541. 

  541. 		Użytkownik
    542. 

  542. 		<?php if ($usr->isDisabled) : ?>
    543. 

  543. 			<span class="label label-danger">zablokowany!</span>
    544. 

  544. 		<?php else : ?>
    545. 

  545. 			<span class="label label-info">aktywny</span>
    546. 

  546. 		<?php endif; ?>
    547. 

  547. 		[<?php echo $usr->primaryKey; ?>] <b><?php echo $usr->name; ?></b> <code><?php echo $usr->login; ?></code>
    548. 

  548. 		<?php if ($idZasobUsersTbl > 0) : ?>
    549. 

  549. 			<a href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobUsersTbl; ?>#EDIT/<?php echo $usr->primaryKey; ?>"
    550. 

  550. 				 class="btn btn-xs btn-link"><span class="glyphicon glyphicon-pencil"></span> edytuj</a>
    551. 

  551. 		<?php endif; ?>
    552. 

  552. 		<a href="index.php?_route=Users&_task=syncUser&usrLogin=<?php echo $usr->login; ?>"
    553. 

  553. 			  class="btn btn-xs btn-link"><span class="glyphicon glyphicon-retweet"></span> synchronizuj do LDAP</a>
    554. 

  554. 	</blockquote>
    555. 

  555. 

  556. 	<h4>Przypisane grupy (<?php echo (!empty($stanowiska))? count($stanowiska) : 0; ?>):</h4>
    557. 

  557. 	<?php if (!empty($stanowiska)) : ?>
    558. 

  558. 		<ul class="conn_groups-list">
    559. 

  559. 			<?php foreach ($stanowiska as $vProfile) : ?>
    560. 

  560. 				<li class="conn_groups-list_item">
    561. 

  561. 					<?php echo $vProfile->group->realName; ?>
    562. 

  562. 					<?php if ($vProfile->localisationId > 0) : ?>
    563. 

  563. 						(lokalizacja [<?php echo $vProfile->localisationId; ?>])
    564. 

  564. 					<?php endif; ?>
    565. 

  565. 					<form class="form-inline frm-groups" action="" method="POST">
    566. 

  566. 						<input type="hidden" name="_subTask" value="removeUserGroup">
    567. 

  567. 						<button name="idProfileToRemove" value="<?php echo $vProfile->profileId; ?>" class="btn-link btn-sm conn_groups-list_item-rmBtn" title="usuń grupę" onclick="return confirm('Czy jesteś pewien że chcesz usunąć przypisanie do grupy <?php echo $vProfile->group->realName; ?>?');"><i class="glyphicon glyphicon-remove"></i></button>
    568. 

  568. 					</form>
    569. 

  569. 				</li>
    570. 

  570. 			<?php endforeach; ?>
    571. 

  571. 		</ul>
    572. 

  572. 	<?php endif; ?>
    573. 

  573. 

  574. 	<?php if ($typeSpecialUserGroups && $typeSpecialTelboxes) : ?>
    575. 

  575. 		<h4>Dodaj grupę:</h4>
    576. 

  576. 		<form class="form-horizontal" action="" method="POST">
    577. 

  577. 			<input type="hidden" name="_subTask" value="addUserGroup">
    578. 

  578. 			<div class="form-group">
    579. 

  579. 				<label class="col-sm-3 control-label" for="idGroup">Grupa</label>
    580. 

  580. 				<div class="col-sm-9">
    581. 

  581. 					<?php
    582. 

  582. 						$fName = 'idGroup';
    583. 

  583. 						$fldParams = array();
    584. 

  584. 						$fldParams['allowCreate'] = false;
    585. 

  585. 						$fldParams['ajaxDataUrlBase'] = "index.php?_route=Users&_task=typeSpecialIdGroup";
    586. 

  586. 						//$fldParams['ajaxDataUrlBase'] .= "&DBG_TS=3";
    587. 

  587. 						echo $typeSpecialUserGroups->showFormItem($tblID = -1, $fName, $selValue = '', $fldParams);
    588. 

  588. 					?>
    589. 

  589. 				</div>
    590. 

  590. 			</div>
    591. 

  591. 			<div class="form-group">
    592. 

  592. 				<label class="col-sm-3 control-label" for="addTelboxesID">Lokalizacja</label>
    593. 

  593. 				<div class="col-sm-9">
    594. 

  594. 					<?php
    595. 

  595. 						$fName = 'addTelboxesID';
    596. 

  596. 						$fldParams = array();
    597. 

  597. 						$fldParams['allowCreate'] = false;
    598. 

  598. 						$fldParams['ajaxDataUrlBase'] = "index.php?_route=Users&_task=typeSpecialIdTelboxes";
    599. 

  599. 						//$fldParams['ajaxDataUrlBase'] .= "&DBG_TS=3";
    600. 

  600. 						echo $typeSpecialTelboxes->showFormItem($tblID = -1, $fName, $selValue = '', $fldParams);
    601. 

  601. 					?>
    602. 

  602. 				</div>
    603. 

  603. 			</div>
    604. 

  604. 			<div class="form-group">
    605. 

  605. 				<div class="col-sm-9 col-sm-offset-3">
    606. 

  606. 					<button type="submit" class="btn btn-xs btn-primary">dodaj grupę</button>
    607. 

  607. 				</div>
    608. 

  608. 			</div>
    609. 

  609. 		</form>
    610. 

  610. 	<?php endif; ?>
    611. 

  611. </div>
    612. 

  612. <?php
    613. 

  613. 		{// show table crm_auth_profile
    614. 

  614. 			$idZasobCrmAuthProfile = ProcesHelper::getZasobTableID('CRM_AUTH_PROFILE');
    615. 

  615. 			if ($idZasobCrmAuthProfile <= 0) throw new Exception("Can not find id zasob 'CRM_AUTH_PROFILE'");
    616. 

  616. 			$zasobObj = ProcesHelper::getZasobTableInfo($idZasobCrmAuthProfile);
    617. 

  617. 			if (!$zasobObj) throw new Exception("Zasob TABELA ID={$idZasobCrmAuthProfile} nie istnieje");
    618. 

  618. 			UserActivity::add($idZasobCrmAuthProfile);
    619. 

  619. 			$userAcl = User::getAcl();
    620. 

  620. 			if (!$userAcl->hasTableAcl($zasobObj->ID)) throw new Exception("Brak uprawnień do tabeli ID={$zasobObj->ID}");
    621. 

  621. 			$tblAcl = $userAcl->getTableAcl($zasobObj->ID);
    622. 

  622. 			$forceTblAclInit = ('1' == V::get('_force', '', $_GET));
    623. 

  623. 			$tblAcl->init($forceTblAclInit);
    624. 

  624. 

  625. 			$forceFilterInit = array();
    626. 

  626. 			$filterInit = new stdClass();
    627. 

  627. 			$filterInit->currSortCol = 'ID';
    628. 

  628. 			$filterInit->currSortFlip = 'desc';
    629. 

  629. 			foreach ($_GET as $k => $v) {
    630. 

  630. 				if (strlen($k) > 3 && substr($k, 0, 2) == 'f_' && !empty($v)) {// filter prefix
    631. 

  631. 					$filterInit->$k = $v;
    632. 

  632. 				}
    633. 

  633. 				else if (strlen($k) > 4 && substr($k, 0, 3) == 'sf_' && !empty($v)) {// special filter prefix
    634. 

  634. 					$filterInit->$k = $v;
    635. 

  635. 				}
    636. 

  636. 				else if (strlen($k) > 4 && substr($k, 0, 3) == 'ff_' && !empty($v)) {// force filter prefix
    637. 

  637. 					$fldName = substr($k, 3);
    638. 

  638. 					$forceFilterInit[$fldName] = $v;
    639. 

  639. 				}
    640. 

  640. 			}
    641. 

  641. 

  642. 			$forceFilterInit['REMOTE_ID'] = $usr->primaryKey;
    643. 

  643. 			$forceFilterInit['REMOTE_TABLE'] = 'ADMIN_USERS';
    644. 

  644. 

  645. 			$tbl = new TableAjax($tblAcl);
    646. 

  646. 			$tbl->setLabel($zasobObj->OPIS);
    647. 

  647. 			$tbl->setFilterInit($filterInit);
    648. 

  648. 			if (!empty($forceFilterInit)) $tbl->setForceFilterInit($forceFilterInit);
    649. 

  649. 			$tbl->addRowFunction('edit');
    650. 

  650. 			$tbl->addRowFunction('hist');
    651. 

  651. 			$tbl->addRowFunction('files');
    652. 

  652. 			$tbl->addRowFunction('cp');
    653. 

  653. 			echo $tbl->render();
    654. 

  654. 		}
    655. 

  655. 	}
    656. 

  656. 

  657. 	public function sortStanowiskaByType($a, $b) {
    658. 

  658. 		if ($a->group->type != $a->group->type) {
    659. 

  659. 			if ($a->group->type == 'network') {
    660. 

  660. 				return 1;
    661. 

  661. 			}
    662. 

  662. 			else if ($a->group->type == 'local') {
    663. 

  663. 				return -1;
    664. 

  664. 			}
    665. 

  665. 		}
    666. 

  666. 		return 0;
    667. 

  667. 	}
    668. 

  668. 

  669. 	public function removeUserGroup($usrLogin, $idProfileToRemove) {
    670. 

  670. 		if (!$usrLogin) throw new Exception("Wrong param user login!");
    671. 

  671. 		if (!$idProfileToRemove) throw new Exception("Wrong param id profile to remove!");
    672. 

  672. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    673. 

  673. 		if (!$usrStorageDB) throw new Exception("Error storage not exists!");
    674. 

  674. 		$profile = $usrStorageDB->getProfileById($idProfileToRemove);
    675. 

  675. 		if (!$profile) throw new Exception("Error profile not exists!");
    676. 

  676. 

  677. 		$usrStorageDB->removeUserGroupByProfileId($usrLogin, $profile->group, $idProfileToRemove);
    678. 

  678. 	}
    679. 

  679. 

  680. 	public function addUserGroup($usrLogin, $idGroup, $idTelboxes) {
    681. 

  681. 		DBG::_('DBG_NG', '>0', 'post', $_POST, __CLASS__, __FUNCTION__, __LINE__);
    682. 

  682. 		if (!$usrLogin) throw new Exception("Wrong param user login!");
    683. 

  683. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    684. 

  684. 		if (!$usrStorageDB) throw new Exception("Error storage not exists!");
    685. 

  685. 		$usr = $usrStorageDB->getUser($usrLogin);
    686. 

  686. 		if (!$usr) throw new Exception("Użytkownik {$usrLogin} nie istnieje.");
    687. 

  687. 

  688. 		if ($idGroup > 0) {
    689. 

  689. 			$groupToAdd = $usrStorageDB->getGroupWithoutNested($idGroup);
    690. 

  690. 			if (!$groupToAdd) throw new Exception("Grupa [{$idGroup}] nie istnieje");
    691. 

  691. 			$added = $usrStorageDB->addUserGroup($usrLogin, $groupToAdd, $idTelboxes);
    692. 

  692. 		}
    693. 

  693. 	}
    694. 

  694. 

  695. 	public function addUser($usrLogin, $idGroup, $idTelboxes, $ADM_ADMIN_LEVEL, $ADM_NAME, $ADM_ADMIN_DESC, $EMPLOYEE_TYPE, $ADM_PASSWD, $A_ADM_COMPANY, $A_CLASSIFIED, $DEFAULT_ACL_GROUP) {
    696. 

  696. 		DBG::_('DBG_NG', '>0', 'post', $_POST, __CLASS__, __FUNCTION__, __LINE__);
    697. 

  697. 		if (!$usrLogin) throw new Exception("Wrong param user login!");
    698. 

  698. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    699. 

  699. 		if (!$usrStorageDB) throw new Exception("Error storage not exists!");
    700. 

  700. 

  701. 		$usr = $usrStorageDB->getUser($usrLogin);
    702. 

  702. 		if ($usr) throw new Exception("Użytkownik {$usrLogin} już istnieje.");
    703. 

  703. 		if (!$usr) {
    704. 

  704. 			$acl = ACL::getStorageByNamespace("default_db/ADMIN_USERS/ADMIN_USERS");
    705. 

  705. 			$usr = $acl->addItem([
    706. 

  706. 				'ADM_ACCOUNT' => $usrLogin,
    707. 

  707. 				'ADM_ADMIN_LEVEL' => $ADM_ADMIN_LEVEL,
    708. 

  708. 				'ADM_NAME' => $ADM_NAME,
    709. 

  709. 				'ADM_ADMIN_DESC' => $ADM_ADMIN_DESC,
    710. 

  710. 				'EMPLOYEE_TYPE' => $EMPLOYEE_TYPE,
    711. 

  711. 				'ADM_PASSWD' => $ADM_PASSWD,
    712. 

  712. 				'A_ADM_COMPANY' => $A_ADM_COMPANY,
    713. 

  713. 				'A_CLASSIFIED' => $A_CLASSIFIED
    714. 

  714. 			]);
    715. 

  715. 			if (!$usr) throw new Exception("Nie udało się utworzyć wpisu użytkownika");
    716. 

  716. 

  717. 			if ($idGroup > 0) {
    718. 

  718. 				$groupToAdd = $usrStorageDB->getGroupWithoutNested($idGroup);
    719. 

  719. 				if (!$groupToAdd) throw new Exception("Grupa [{$idGroup}] nie istnieje");
    720. 

  720. 				$added = $usrStorageDB->addUserGroup($usrLogin, $groupToAdd, $idTelboxes);
    721. 

  721. 			}
    722. 

  722. 		}
    723. 

  723. 	}
    724. 

  724. 

  725. 	public function typeSpecialIdGroupAction() {
    726. 

  726. 		header("Content-type: application/json");
    727. 

  727. 		$typeSpecialUserGroups = TypespecialVariable::getInstance(-1, '__USER_GROUPS');
    728. 

  728. 

  729. 		$query = V::get('q', '', $_REQUEST);
    730. 

  730. 		$rawRows = null;
    731. 

  731. 		$rows = $typeSpecialUserGroups->getValuesWithExports($query);
    732. 

  732. 		DBG::_('DBG', '>0', "rows(q={$query})", $rows, __CLASS__, __FUNCTION__, __LINE__);
    733. 

  733. 		foreach ($rows as $kID => $vItem) {
    734. 

  734. 			$itemJson = new stdClass();
    735. 

  735. 			$itemJson->id = $vItem->id;
    736. 

  736. 			$itemJson->name = $vItem->param_out;
    737. 

  737. 			if (!empty($vItem->exports)) {
    738. 

  738. 				$itemJson->exports = $vItem->exports;
    739. 

  739. 			}
    740. 

  740. 			$jsonData[] = $itemJson;
    741. 

  741. 		}
    742. 

  742. 		echo json_encode($jsonData);
    743. 

  743. 	}
    744. 

  744. 

  745. 	public function typeSpecialIdTelboxesAction() {
    746. 

  746. 		header("Content-type: application/json");
    747. 

  747. 

  748. 		$typeSpecialTelboxes = TypespecialVariable::getInstance(-1, '__TELBOXES');
    749. 

  749. 

  750. 		$query = V::get('q', '', $_REQUEST);
    751. 

  751. 		$rawRows = null;
    752. 

  752. 		$rows = $typeSpecialTelboxes->getValuesWithExports($query);
    753. 

  753. 		DBG::_('DBG', '>0', "rows(q={$query})", $rows, __CLASS__, __FUNCTION__, __LINE__);
    754. 

  754. 		foreach ($rows as $kID => $vItem) {
    755. 

  755. 			$itemJson = new stdClass();
    756. 

  756. 			$itemJson->id = $vItem->id;
    757. 

  757. 			$itemJson->name = $vItem->param_out;
    758. 

  758. 			if (!empty($vItem->exports)) {
    759. 

  759. 				$itemJson->exports = $vItem->exports;
    760. 

  760. 			}
    761. 

  761. 			$jsonData[] = $itemJson;
    762. 

  762. 		}
    763. 

  763. 		echo json_encode($jsonData);
    764. 

  764. 	}
    765. 

  765. 

  766. 	public function syncGroupAction() {
    767. 

  767. 		$idGroup = V::get('idGroup', 0, $_GET, 'int');
    768. 

  768. 		$group = null;
    769. 

  769. 

  770. 		UI::gora();
    771. 

  771. 		UI::menu();
    772. 

  772. 		echo '<div class="container">';
    773. 

  773. 		try {
    774. 

  774. 			if (!$idGroup) throw new Exception("Brak numeru grupy!");
    775. 

  775. 			$idZasobTableZasoby = ProcesHelper::getZasobTableID('CRM_LISTA_ZASOBOW');
    776. 

  776. 			$usrStorageDB = UserStorageFactory::getStorage('DB');
    777. 

  777. 			if ($usrStorageDB) $group = $usrStorageDB->getGroup($idGroup);
    778. 

  778. 			?>
    779. 

  779. 			<h4>Synchronizacja grupy do bazy LDAP</h4>
    780. 

  780. <blockquote>
    781. 

  781. 	Grupa [<?php echo $idGroup; ?>]:
    782. 

  782. 	<?php if ($group) : ?>
    783. 

  783. 		<code><?php echo $group->type; ?></code> <?php echo $group->zasobDESC; ?>
    784. 

  784. 	<?php endif; ?>
    785. 

  785. 	<a class="btn btn-xs btn-link" href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobTableZasoby; ?>#EDIT/<?php echo $idGroup; ?>" title="Edytuj rekord"><i class="glyphicon glyphicon-pencil"></i> edytuj</a>
    786. 

  786. 	<a class="btn btn-xs btn-link" href="index.php?_route=Users&_task=nestedGroups&idGroup=<?php echo $idGroup; ?>"><i class="glyphicon glyphicon-random"></i> ustal powiązania między grupami uprawnień</a>
    787. 

  787. </blockquote>
    788. 

  788. <?php
    789. 

  789. 			$this->syncGroup($idGroup);
    790. 

  790. 		} catch (Exception $e) {
    791. 

  791. 			?><div class="alert alert-danger"><?php echo $e->getMessage(); ?></div><?php
    792. 

  792. 		}
    793. 

  793. 		echo '</div>';// .container
    794. 

  794. 		UI::dol();
    795. 

  795. 	}
    796. 

  796. 

  797. 	public function syncGroup($idGroup) {
    798. 

  798. 		$usrStorageDB = UserStorageFactory::getStorage('DB');
    799. 

  799. 		$usrStorageLdap = UserStorageFactory::getStorage('MacOSX');
    800. 

  800. 		if (!$usrStorageDB) throw new Exception("Error storage DB not exists");
    801. 

  801. 		if (!$usrStorageLdap) throw new Exception("Error storage Ldap not exists");
    802. 

  802. 

  803. 		$groupFrom = $usrStorageDB->getGroup($idGroup);
    804. 

  804. 		if (!$groupFrom) {
    805. 

  805. 			$db = DB::getDB();
    806. 

  806. 			$zasob = $db->get_by_id('CRM_LISTA_ZASOBOW', $idGroup);
    807. 

  807. 			if (!$zasob) {
    808. 

  808. 				throw new Exception("Zasób {$idGroup} nie istnieje");
    809. 

  809. 			} else {
    810. 

  810. 				throw new Exception("Zasób {$idGroup} nie jest grupą tylko {$zasob->TYPE}");
    811. 

  811. 			}
    812. 

  812. 		}
    813. 

  813. 		else {
    814. 

  814. 			$synUsers = new SyncUsers($usrStorageDB, $usrStorageLdap);
    815. 

  815. 			$syncTodoList = $synUsers->getSyncGroupTodoList($idGroup, $syncNestedGroups = true);
    816. 

  816. ?>
    817. 

  817. 			<?php if (empty($syncTodoList)) : ?>
    818. 

  818. 				<div class="alert alert-info">Brak zadań do wykonania - grupa zsynchronizowana</div>
    819. 

  819. 			<?php else : ?>
    820. 

  820. 				<div class="well">
    821. 

  821. 					<p>Lista zadań do wykonania:</p>
    822. 

  822. 					<ul>
    823. 

  823. 						<?php foreach ($syncTodoList as $vTask) : ?>
    824. 

  824. 							<li><?php echo $vTask; ?></li>
    825. 

  825. 						<?php endforeach; ?>
    826. 

  826. 					</ul>
    827. 

  827. 				</div>
    828. 

  828. 			<?php endif; ?>
    829. 

  829. <?php
    830. 

  830. 			if ('1' == V::get('_runSync', '', $_POST)) {
    831. 

  831. 				$synced = $synUsers->syncGroup($idGroup, $syncNestedGroups = true);
    832. 

  832. 				if (!$synced) {
    833. 

  833. 					?>
    834. 

  834. 					<div class="alert alert-danger">
    835. 

  835. 						Nie udało się zsynchronizować grupy [<?php echo $idGroup; ?>].
    836. 

  836. 					</div>
    837. 

  837. 					<?php
    838. 

  838. 					echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;display:none;">errors: (' . __CLASS__ . '::' . __FUNCTION__ . ':' . __LINE__ . '): ';print_r($synUsers->getErrorsMsgListWithDbg());echo'</pre>';
    839. 

  839. 				}
    840. 

  840. 				else {
    841. 

  841. 					?>
    842. 

  842. 					<div class="alert alert-success">
    843. 

  843. 						Synchronizacja grupy [<?php echo $idGroup; ?>] zakończona powodzeniem.
    844. 

  844. 					</div>
    845. 

  845. 					<?php
    846. 

  846. 				}
    847. 

  847. 			}
    848. 

  848. 			else {
    849. 

  849. 				?>
    850. 

  850. 				<form action="" method="POST">
    851. 

  851. 					<input type="hidden" name="_runSync" value="1">
    852. 

  852. 					<input type="submit" value="Synchronizuj" class="btn btn-primary btn-big">
    853. 

  853. 				</form>
    854. 

  854. 				<?php
    855. 

  855. 			}
    856. 

  856. 		}
    857. 

  857. 	}
    858. 

  858. 

  859. 	public function syncUserAction() {
    860. 

  860. 		UI::gora();
    861. 

  861. 		UI::menu();
    862. 

  862. 		$usrLogin = V::get('usrLogin', '', $_GET);
    863. 

  863. 		echo '<div class="container">';
    864. 

  864. 		try {
    865. 

  865. 			if (empty($usrLogin)) throw new Exception("Empty user login");
    866. 

  866. 

  867. 			$usrStorageDB = UserStorageFactory::getStorage('DB');
    868. 

  868. 			$usrStorageLdap = UserStorageFactory::getStorage('MacOSX');
    869. 

  869. 			if (!$usrStorageDB) throw new Exception("Error storage DB not exists");
    870. 

  870. 			if (!$usrStorageLdap) throw new Exception("Error storage Ldap not exists");
    871. 

  871. 

  872. 			echo '<h4>' . "Synchronizacja do LDAP" . '</h4>';
    873. 

  873. 			$usrFrom = $usrStorageDB->getUser($usrLogin);
    874. 

  874. 			DBG::_('DBG_SU', '>1', 'User from:', $usrFrom, __CLASS__, __FUNCTION__, __LINE__);
    875. 

  875. 			if ($usrFrom) {
    876. 

  876. 				$idZasobUsersTbl = ProcesHelper::getZasobTableID('ADMIN_USERS');
    877. 

  877. 				$idZasobPermsTbl = ProcesHelper::getZasobTableID('CRM_AUTH_PROFILE');
    878. 

  878. ?>
    879. 

  879. 	<blockquote>
    880. 

  880. 		Użytkownik
    881. 

  881. 		<?php if ($usrFrom->isDisabled) : ?>
    882. 

  882. 			<span class="label label-danger">zablokowany!</span>
    883. 

  883. 		<?php else : ?>
    884. 

  884. 			<span class="label label-info">aktywny</span>
    885. 

  885. 		<?php endif; ?>
    886. 

  886. 		[<?php echo $usrFrom->primaryKey; ?>] <b><?php echo $usrFrom->name; ?></b> <code><?php echo $usrFrom->login; ?></code>
    887. 

  887. 		<?php if ($idZasobUsersTbl > 0) : ?>
    888. 

  888. 			<a href="index.php?MENU_INIT=VIEWTABLE_AJAX&ZASOB_ID=<?php echo $idZasobUsersTbl; ?>#EDIT/<?php echo $usrFrom->primaryKey; ?>"
    889. 

  889. 				 class="btn btn-xs btn-link"><span class="glyphicon glyphicon-pencil"></span> edytuj</a>
    890. 

  890. 		<?php endif; ?>
    891. 

  891. 		<?php if ($idZasobPermsTbl > 0) : ?>
    892. 

  892. 			<a href="index.php?_route=Users&_task=userGroups&usrLogin=<?php echo $usrFrom->login; ?>"
    893. 

  893. 				 class="btn btn-xs btn-link"><span class="glyphicon glyphicon-user"></span> ustal stanowisko</a>
    894. 

  894. 		<?php endif; ?>
    895. 

  895. 	</blockquote>
    896. 

  896. <?php
    897. 

  897. 			}
    898. 

  898. 

  899. 			$this->syncUser($usrLogin, $usrStorageDB, $usrStorageLdap);
    900. 

  900. 		} catch (Exception $e) {
    901. 

  901. 			?><div class="alert alert-danger"><?php echo $e->getMessage(); ?></div><?php
    902. 

  902. 		}
    903. 

  903. 		echo '</div>';// .container
    904. 

  904. 		UI::dol();
    905. 

  905. 	}
    906. 

  906. 

  907. 	public function syncUser($userName, $usrStorageDB, $usrStorageLdap,$forceSync=null) {
    908. 

  908. 		if (empty($userName)) throw new Exception("Empty user login");
    909. 

  909. 		if (!$usrStorageDB) throw new Exception("Error storage DB not exists");
    910. 

  910. 		if (!$usrStorageLdap) throw new Exception("Error storage Ldap not exists");
    911. 

  911. 

  912. 		$synUsers = new SyncUsers($usrStorageDB, $usrStorageLdap);
    913. 

  913. 

  914. 		if ('1' == V::get('_runSync', '', $_POST) or $forceSync) {
    915. 

  915. 			$synced = $synUsers->syncUser($userName);
    916. 

  916. 			if (!$synced) {
    917. 

  917. 				UI::alert('danger', "Nie udało się zsynchronizować uprawnień użytkownika {$userName}.");
    918. 

  918. 				$errorsList = $synUsers->getErrorsMsgListWithDbg();
    919. 

  919. 				if (!empty($errorsList)) {
    920. 

  920. 					echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;">';
    921. 

  921. 						echo "Błędy:\n" . implode("\n", $errorsList);
    922. 

  922. 					echo '</pre>';
    923. 

  923. 				}
    924. 

  924. 			}
    925. 

  925. 			else {
    926. 

  926. 				UI::alert('success', "Synchronizacja uprawnień użytkownika {$userName} zakończona powodzeniem.");
    927. 

  927. 			}
    928. 

  928. 		}
    929. 

  929. 		if ('1' == V::get('_forceSyncAliasList', '', $_POST)) {
    930. 

  930. 			$synced = $synUsers->forceSyncUserAliasList($userName);
    931. 

  931. 			if (!$synced) {
    932. 

  932. 				UI::alert('danger', "Nie udało się poprawić aliasów {$userName}.");
    933. 

  933. 				$errorsList = $synUsers->getErrorsMsgListWithDbg();
    934. 

  934. 				if (!empty($errorsList)) {
    935. 

  935. 					echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;">';
    936. 

  936. 						echo "Błędy:\n" . implode("\n", $errorsList);
    937. 

  937. 					echo '</pre>';
    938. 

  938. 				}
    939. 

  939. 			}
    940. 

  940. 			else {
    941. 

  941. 				UI::alert('success', "Synchronizacja listy aliasów pocztowych użytkownika {$userName} zakończona powodzeniem.");
    942. 

  942. 			}
    943. 

  943. 		}
    944. 

  944. 

  945. 		$syncTodoList = $synUsers->getSyncUserTodoList($userName);
    946. 

  946. 		?>
    947. 

  947. 		<?php if (empty($syncTodoList)) : ?>
    948. 

  948. 			<div class="alert alert-info">Brak zadań do wykonania - użytkownik zsynchronizowany</div>
    949. 

  949. 		<?php else : ?>
    950. 

  950. 			<div class="well">
    951. 

  951. 				<p>Lista zadań do wykonania:</p>
    952. 

  952. 				<ul>
    953. 

  953. 					<?php foreach ($syncTodoList as $vTask) : ?>
    954. 

  954. 						<li><?php echo $vTask; ?></li>
    955. 

  955. 					<?php endforeach; ?>
    956. 

  956. 				</ul>
    957. 

  957. 			</div>
    958. 

  958. 		<?php endif; ?>
    959. 

  959. 		<div class="row">
    960. 

  960. 			<div class="col-md-2">
    961. 

  961. 				<form action="" method="POST">
    962. 

  962. 					<input type="hidden" name="_runSync" value="1">
    963. 

  963. 					<input type="submit" value="Synchronizuj" class="btn btn-primary btn-big">
    964. 

  964. 				</form>
    965. 

  965. 			</div>
    966. 

  966. 			<div class="col-md-10" style="text-align: right;">
    967. 

  967. 				<form action="" method="POST">
    968. 

  968. 					<input type="hidden" name="_forceSyncAliasList" value="1">
    969. 

  969. 					W razie problemów z aliasami pocztowymi:
    970. 

  970. 					<input type="submit" value="Popraw aliasy" class="btn btn-xs btn-warning">
    971. 

  971. 				</form>
    972. 

  972. 			</div>
    973. 

  973. 		</div>
    974. 

  974. 		<?php
    975. 

  975. 	}
    976. 

  976. 

  977. }
    978.