LDAPAccountManager/lam/templates/profedit/profilepage.php

263 lines
8.0 KiB
PHP
Raw Normal View History

<?php
/*
$Id$
2009-10-27 18:47:12 +00:00
This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)
2010-01-01 17:21:46 +00:00
Copyright (C) 2003 - 2010 Roland Gruber
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
2004-06-10 22:13:39 +00:00
*/
2004-06-10 22:13:39 +00:00
/**
* Manages creating/changing of profiles.
*
2004-10-09 11:04:20 +00:00
* @package profiles
2004-06-10 22:13:39 +00:00
* @author Roland Gruber
*/
2006-03-26 17:51:25 +00:00
/** security functions */
include_once("../../lib/security.inc");
2004-06-10 22:13:39 +00:00
/** helper functions for profiles */
include_once("../../lib/profiles.inc");
2004-06-10 22:13:39 +00:00
/** access to LDAP server */
include_once("../../lib/ldap.inc");
2004-06-10 22:13:39 +00:00
/** access to configuration options */
include_once("../../lib/config.inc");
2004-06-10 22:13:39 +00:00
/** access to account modules */
include_once("../../lib/modules.inc");
/** Used to display status messages */
include_once("../../lib/status.inc");
// start session
2006-03-26 17:51:25 +00:00
startSecureSession();
2007-12-30 13:15:39 +00:00
// die if no write access
if (!checkIfWriteAccessIsAllowed()) die();
setlanguage();
// check if user is logged in, if not go to login
if (!$_SESSION['ldap'] || !$_SESSION['ldap']->server()) {
metaRefresh("../login.php");
exit;
}
// copy type and profile name from POST to GET
if (isset($_POST['profname'])) $_GET['edit'] = $_POST['profname'];
if (isset($_POST['accounttype'])) $_GET['type'] = $_POST['accounttype'];
// abort button was pressed
// back to profile editor
2006-01-25 18:31:19 +00:00
if (isset($_POST['abort'])) {
metaRefresh("profilemain.php");
exit;
}
2004-03-14 15:34:53 +00:00
// print header
2010-01-01 17:21:46 +00:00
include '../main_header.php';
// save button was presed
2006-01-25 18:31:19 +00:00
if (isset($_POST['save'])) {
// create option array to check and save
$options = array();
$opt_keys = array_keys($_SESSION['profile_types']);
foreach ($opt_keys as $element) {
// text fields
if ($_SESSION['profile_types'][$element] == "text") {
$options[$element] = array($_POST[$element]);
}
// checkboxes
elseif ($_SESSION['profile_types'][$element] == "checkbox") {
2006-01-25 18:31:19 +00:00
if (isset($_POST[$element]) && ($_POST[$element] == "on")) $options[$element] = array('true');
else $options[$element] = array('false');
}
// dropdownbox
elseif ($_SESSION['profile_types'][$element] == "select") {
$options[$element] = array($_POST[$element]);
}
// multiselect
elseif ($_SESSION['profile_types'][$element] == "multiselect") {
2006-01-25 18:31:19 +00:00
if (isset($_POST[$element])) $options[$element] = $_POST[$element]; // value is already an array
else $options[$element] = array();
}
}
// remove double slashes if magic quotes are on
if (get_magic_quotes_gpc() == 1) {
foreach ($opt_keys as $element) {
2006-01-25 18:31:19 +00:00
if (isset($options[$element][0]) && is_string($options[$element][0])) $options[$element][0] = stripslashes($options[$element][0]);
}
}
// check options
$errors = checkProfileOptions($_POST['accounttype'], $options);
// print error messages if any
if (sizeof($errors) > 0) {
for ($i = 0; $i < sizeof($errors); $i++) {
2010-05-19 19:22:29 +00:00
call_user_func_array('StatusMessage', $errors[$i]);
}
echo "<br>\n";
}
else { // input data is valid, save profile
// save profile
if (saveAccountProfile($options, $_POST['profname'], $_POST['accounttype'])) {
echo StatusMessage("INFO", _("Profile was saved."), $_POST['profname']);
2005-11-06 16:35:23 +00:00
echo ("<br><p><a href=\"profilemain.php\">" . _("Back to profile editor") . "</a></p>");
echo "</body></html>";
exit();
}
else StatusMessage("ERROR", _("Unable to save profile!"), $_POST['profname']);
}
}
// empty list of attribute types
$_SESSION['profile_types'] = array();
// check if account type is valid
$type = $_GET['type'];
// get module options
$options = getProfileOptions($type);
// load old profile or POST values if needed
2004-03-15 16:34:16 +00:00
$old_options = array();
if (isset($_POST['save'])) {
$postKeys = array_keys($_POST);
for ($i = 0; $i < sizeof($postKeys); $i++) {
if (!is_array($_POST[$postKeys[$i]])) {
if (get_magic_quotes_gpc() == 1) {
$old_options[$postKeys[$i]] = array(stripslashes($_POST[$postKeys[$i]]));
}
else {
$old_options[$postKeys[$i]] = array($_POST[$postKeys[$i]]);
}
}
else {
$old_options[$postKeys[$i]] = $_POST[$postKeys[$i]];
}
}
}
elseif (isset($_GET['edit'])) {
2004-10-06 20:00:17 +00:00
$old_options = loadAccountProfile($_GET['edit'], $type);
}
// display formular
echo ("<form action=\"profilepage.php?type=$type\" method=\"post\">\n");
// suffix box
// get root suffix
$rootsuffix = $_SESSION['config']->get_Suffix($type);
// get subsuffixes
$suffixes = array();
foreach ($_SESSION['ldap']->search_units($rootsuffix) as $suffix) {
$suffixes[] = $suffix;
}
2005-05-21 14:35:14 +00:00
// get RDNs
$rdns = getRDNAttributes($type);
2008-12-28 13:59:03 +00:00
echo "<fieldset class=\"" . $type . "edit\">\n";
echo "<legend><img align=\"middle\" src=\"../../graphics/logo32.png\" alt=\"logo32.png\"> <b>" . _("LDAP") . "</b></legend>\n";
2005-05-21 14:35:14 +00:00
echo "<table border=0>";
echo "<tr><td>";
// LDAP suffix
echo _("LDAP suffix") . ":";
echo "</td><td>";
echo "<select name=\"ldap_suffix\" tabindex=\"1\">";
for ($i = 0; $i < sizeof($suffixes); $i++) {
2006-01-25 18:31:19 +00:00
if (isset($old_options['ldap_suffix']) && ($old_options['ldap_suffix'][0] == $suffixes[$i])) {
2005-05-21 14:35:14 +00:00
echo "<option selected>" . $suffixes[$i] . "</option>\n";
}
else {
echo "<option>" . $suffixes[$i] . "</option>\n";
}
}
echo "</select>\n";
2005-05-21 14:35:14 +00:00
echo "</td><td>";
// help link
2009-02-07 22:56:36 +00:00
echo "&nbsp;";
printHelpLink(getHelp('', '361'), '361');
echo "<br>\n";
2005-05-21 14:35:14 +00:00
echo "</td></tr>";
// LDAP RDN
echo "<tr><td>";
echo _("RDN identifier") . ":";
echo "</td><td>";
echo "<select name=\"ldap_rdn\" tabindex=\"1\">";
for ($i = 0; $i < sizeof($rdns); $i++) {
2006-01-25 18:31:19 +00:00
if (isset($old_options['ldap_rdn']) && ($old_options['ldap_rdn'][0] == $rdns[$i])) {
2005-05-21 14:35:14 +00:00
echo "<option selected>" . $rdns[$i] . "</option>\n";
}
else {
echo "<option>" . $rdns[$i] . "</option>\n";
}
}
echo "</select>\n";
echo "</td><td>";
// help link
2009-02-07 22:56:36 +00:00
echo "&nbsp;";
printHelpLink(getHelp('', '301'), '301');
echo "<br>\n";
2005-05-21 14:35:14 +00:00
echo "</td></tr>";
echo "</table>";
echo "</fieldset>\n<br>\n";
2005-05-21 14:35:14 +00:00
$_SESSION['profile_types']['ldap_suffix'] = 'select';
$_SESSION['profile_types']['ldap_rdn'] = 'select';
2004-07-02 15:27:14 +00:00
// index for tab order (1 is LDAP suffix)
$tabindex = 2;
// display module options
$modules = array_keys($options);
for ($m = 0; $m < sizeof($modules); $m++) {
// ignore modules without options
if (sizeof($options[$modules[$m]]) < 1) continue;
echo "<fieldset class=\"" . $type . "edit\">\n";
2007-11-19 18:52:50 +00:00
$icon = '';
$module = new $modules[$m]($type);
$iconImage = $module->getIcon();
if ($iconImage != null) {
2007-12-01 12:34:52 +00:00
$icon = '<img align="middle" src="../../graphics/' . $iconImage . '" alt="' . $iconImage . '"> ';
2007-11-19 18:52:50 +00:00
}
echo "<legend>$icon<b>" . getModuleAlias($modules[$m], $type) . "</b></legend>\n";
2009-02-07 19:25:22 +00:00
$profileTypes = parseHtml($modules[$m], $options[$modules[$m]], $old_options, true, $tabindex, $type);
$_SESSION['profile_types'] = array_merge($profileTypes, $_SESSION['profile_types']);
echo "</fieldset>\n";
2004-06-23 19:14:07 +00:00
echo "<br>";
}
// profile name and submit/abort buttons
echo ("<b>" . _("Profile name") . ":</b> \n");
2004-07-14 12:57:11 +00:00
$tabindex++;
2010-05-19 19:22:29 +00:00
$profName = '';
if (isset($_GET['edit'])) {
$profName = $_GET['edit'];
}
echo ("<input tabindex=\"$tabindex\" type=\"text\" name=\"profname\" value=\"" . $profName . "\">\n");
2009-02-07 22:56:36 +00:00
printHelpLink(getHelp('', '360'), '360');
echo "<br><br>\n";
2004-07-14 12:57:11 +00:00
$tabindex++;
echo ("<input tabindex=\"$tabindex\" type=\"submit\" name=\"save\" value=\"" . _("Save") . "\">\n");
2004-07-14 12:57:11 +00:00
$tabindex++;
echo ("<input tabindex=\"$tabindex\" type=\"reset\" name=\"reset\" value=\"" . _("Reset") . "\">\n");
2004-07-14 12:57:11 +00:00
$tabindex++;
2006-03-04 10:49:55 +00:00
echo ("<input tabindex=\"$tabindex\" type=\"submit\" name=\"abort\" value=\"" . _("Cancel") . "\">\n");
2004-03-15 16:34:16 +00:00
echo "<input type=\"hidden\" name=\"accounttype\" value=\"$type\">\n";
2009-02-07 22:56:36 +00:00
echo "<br><br><br><br>\n";
echo ("</form></body></html>\n");
?>