574 lines
17 KiB
PHP
574 lines
17 KiB
PHP
<?php
|
|
/**
|
|
* The model file of group module of ZenTaoPMS.
|
|
*
|
|
* @copyright Copyright 2009-2015 青岛易软天创网络科技有限公司(QingDao Nature Easy Soft Network Technology Co,LTD, www.cnezsoft.com)
|
|
* @license ZPL (http://zpl.pub/page/zplv12.html)
|
|
* @author Chunsheng Wang <chunsheng@cnezsoft.com>
|
|
* @package group
|
|
* @version $Id: model.php 4976 2013-07-02 08:15:31Z wyd621@gmail.com $
|
|
* @link http://www.zentao.net
|
|
*/
|
|
?>
|
|
<?php
|
|
class groupModel extends model
|
|
{
|
|
/**
|
|
* Create a group.
|
|
*
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function create()
|
|
{
|
|
$group = fixer::input('post')->get();
|
|
if(isset($group->limited))
|
|
{
|
|
unset($group->limited);
|
|
$group->role = 'limited';
|
|
}
|
|
return $this->dao->insert(TABLE_GROUP)->data($group)->batchCheck($this->config->group->create->requiredFields, 'notempty')->exec();
|
|
}
|
|
|
|
/**
|
|
* Update a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function update($groupID)
|
|
{
|
|
$group = fixer::input('post')->get();
|
|
return $this->dao->update(TABLE_GROUP)->data($group)->batchCheck($this->config->group->edit->requiredFields, 'notempty')->where('id')->eq($groupID)->exec();
|
|
}
|
|
|
|
/**
|
|
* Copy a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copy($groupID)
|
|
{
|
|
$group = fixer::input('post')->remove('options')->get();
|
|
$this->dao->insert(TABLE_GROUP)->data($group)->check('name', 'unique')->check('name', 'notempty')->exec();
|
|
if($this->post->options == false) return;
|
|
if(!dao::isError())
|
|
{
|
|
$newGroupID = $this->dao->lastInsertID();
|
|
$options = join(',', $this->post->options);
|
|
if(strpos($options, 'copyPriv') !== false) $this->copyPriv($groupID, $newGroupID);
|
|
if(strpos($options, 'copyUser') !== false) $this->copyUser($groupID, $newGroupID);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Copy privileges.
|
|
*
|
|
* @param string $fromGroup
|
|
* @param string $toGroup
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copyPriv($fromGroup, $toGroup)
|
|
{
|
|
$privs = $this->dao->findByGroup($fromGroup)->from(TABLE_GROUPPRIV)->fetchAll();
|
|
foreach($privs as $priv)
|
|
{
|
|
$priv->group = $toGroup;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($priv)->exec();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Copy user.
|
|
*
|
|
* @param string $fromGroup
|
|
* @param string $toGroup
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copyUser($fromGroup, $toGroup)
|
|
{
|
|
$users = $this->dao->findByGroup($fromGroup)->from(TABLE_USERGROUP)->fetchAll();
|
|
foreach($users as $user)
|
|
{
|
|
$user->group = $toGroup;
|
|
$this->dao->insert(TABLE_USERGROUP)->data($user)->exec();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Get group lists.
|
|
*
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getList($programID = 0)
|
|
{
|
|
return $this->dao->select('*')->from(TABLE_GROUP)->where('PRJ')->eq($programID)->orderBy('id')->fetchAll();
|
|
}
|
|
|
|
/**
|
|
* Get group pairs.
|
|
*
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getPairs($programID = 0)
|
|
{
|
|
return $this->dao->select('id, name')->from(TABLE_GROUP)->where('PRJ')->eq($programID)->orderBy('id')->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get group by id.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return object
|
|
*/
|
|
public function getByID($groupID)
|
|
{
|
|
$group = $this->dao->findById($groupID)->from(TABLE_GROUP)->fetch();
|
|
if($group->acl) $group->acl = json_decode($group->acl, true);
|
|
if(!isset($group->acl) || !is_array($group->acl)) $group->acl = array();
|
|
return $group;
|
|
}
|
|
|
|
/**
|
|
* Get group by account.
|
|
*
|
|
* @param string $account
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getByAccount($account)
|
|
{
|
|
return $this->dao->select('t2.*')->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_GROUP)->alias('t2')
|
|
->on('t1.group = t2.id')
|
|
->where('t1.account')->eq($account)
|
|
->fetchAll('id');
|
|
}
|
|
|
|
/**
|
|
* Get the account number in the group.
|
|
*
|
|
* @param array $groupIdList
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getGroupAccounts($groupIdList = array())
|
|
{
|
|
$groupIdList = array_filter($groupIdList);
|
|
if(empty($groupIdList)) return array();
|
|
return $this->dao->select('account')->from(TABLE_USERGROUP)->where('`group`')->in($groupIdList)->fetchPairs('account');
|
|
}
|
|
|
|
/**
|
|
* Get privileges of a groups.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getPrivs($groupID)
|
|
{
|
|
$privs = array();
|
|
$stmt = $this->dao->select('module, method')->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->orderBy('module')->query();
|
|
while($priv = $stmt->fetch()) $privs[$priv->module][$priv->method] = $priv->method;
|
|
return $privs;
|
|
}
|
|
|
|
/**
|
|
* Get user pairs of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getUserPairs($groupID)
|
|
{
|
|
return $this->dao->select('t2.account, t2.realname')
|
|
->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_USER)->alias('t2')->on('t1.account = t2.account')
|
|
->where('`group`')->eq((int)$groupID)
|
|
->andWhere('t2.deleted')->eq(0)
|
|
->orderBy('t2.account')
|
|
->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get user programs of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getUserPrograms($groupID)
|
|
{
|
|
return $this->dao->select('t1.account, t1.PRJ')
|
|
->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_USER)->alias('t2')->on('t1.account = t2.account')
|
|
->where('`group`')->eq((int)$groupID)
|
|
->andWhere('t2.deleted')->eq(0)
|
|
->orderBy('account')
|
|
->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get the ID of the group that has access to the program.
|
|
*
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getAccessProgramGroup()
|
|
{
|
|
$accessibleGroup = $this->getList();
|
|
$accessibleGroupID = array(0);
|
|
foreach($accessibleGroup as $group)
|
|
{
|
|
if($group->acl) $group->acl = json_decode($group->acl, true);
|
|
if(!isset($group->acl) || !is_array($group->acl)) $group->acl = array();
|
|
|
|
if(empty($group->acl))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
|
|
if(!isset($group->acl['views']) || empty($group->acl['views']))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
|
|
if(in_array('program', $group->acl['views']))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
}
|
|
return $accessibleGroupID;
|
|
}
|
|
|
|
/**
|
|
* Delete a group.
|
|
*
|
|
* @param int $groupID
|
|
* @param null $null compatible with that of model::delete()
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function delete($groupID, $null = null)
|
|
{
|
|
$this->dao->delete()->from(TABLE_GROUP)->where('id')->eq($groupID)->exec();
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->exec();
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->exec();
|
|
}
|
|
|
|
/**
|
|
* Update privilege of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function updatePrivByGroup($groupID, $menu, $version)
|
|
{
|
|
/* Set priv when have version. */
|
|
if($version)
|
|
{
|
|
$noCheckeds = trim($this->post->noChecked, ',');
|
|
if($noCheckeds)
|
|
{
|
|
$noCheckeds = explode(',', $noCheckeds);
|
|
foreach($noCheckeds as $noChecked)
|
|
{
|
|
/* Delete no checked priv*/
|
|
list($module, $method) = explode('-', $noChecked);
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->andWhere('module')->eq($module)->andWhere('method')->eq($method)->exec();
|
|
}
|
|
}
|
|
|
|
/* Replace new. */
|
|
if($this->post->actions)
|
|
{
|
|
foreach($this->post->actions as $moduleName => $moduleActions)
|
|
{
|
|
foreach($moduleActions as $actionName)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->module = $moduleName;
|
|
$data->method = $actionName;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/* Delete old. */
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->andWhere('module')->in($this->getMenuModules($menu))->exec();
|
|
|
|
/* Insert new. */
|
|
if($this->post->actions)
|
|
{
|
|
foreach($this->post->actions as $moduleName => $moduleActions)
|
|
{
|
|
foreach($moduleActions as $actionName)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->module = $moduleName;
|
|
$data->method = $actionName;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Update view priv
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function updateView($groupID)
|
|
{
|
|
$actions = $this->post->actions;
|
|
if(isset($_POST['allchecker']))$actions['views'] = array();
|
|
if(!isset($actions['actions']))$actions['actions'] = array();
|
|
|
|
$dynamic = $actions['actions'];
|
|
if(!isset($_POST['allchecker']))
|
|
{
|
|
$dynamic = array();
|
|
foreach($actions['actions'] as $moduleName => $moduleActions)
|
|
{
|
|
if(isset($this->lang->menugroup->$moduleName))
|
|
{
|
|
$groupModule = $this->lang->menugroup->$moduleName;
|
|
if($groupModule != 'my' and !isset($actions['views'][$groupModule])) continue;
|
|
}
|
|
else
|
|
{
|
|
if($moduleName != 'my' and !isset($actions['views'][$moduleName])) continue;
|
|
}
|
|
|
|
$dynamic[$moduleName] = $moduleActions;
|
|
}
|
|
}
|
|
$actions['actions'] = $dynamic;
|
|
|
|
$actions = empty($actions) ? '' : json_encode($actions);
|
|
$this->dao->update(TABLE_GROUP)->set('acl')->eq($actions)->where('id')->eq($groupID)->exec();
|
|
return dao::isError() ? false : true;
|
|
}
|
|
|
|
/**
|
|
* Update privilege by module.
|
|
*
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updatePrivByModule()
|
|
{
|
|
if($this->post->module == false or $this->post->actions == false or $this->post->groups == false) return false;
|
|
|
|
foreach($this->post->actions as $action)
|
|
{
|
|
foreach($this->post->groups as $group)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $group;
|
|
$data->module = $this->post->module;
|
|
$data->method = $action;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Update users.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updateUser($groupID)
|
|
{
|
|
$members = $this->post->members ? $this->post->members : array();
|
|
$groupUsers = $this->dao->select('account')->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->fetchPairs('account');
|
|
$newUsers = array_diff($members, $groupUsers);
|
|
$delUsers = array_diff($groupUsers, $members);
|
|
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->andWhere('account')->in($delUsers)->exec();
|
|
|
|
if($newUsers)
|
|
{
|
|
foreach($newUsers as $account)
|
|
{
|
|
$data = new stdclass();
|
|
$data->account = $account;
|
|
$data->group = $groupID;
|
|
$this->dao->insert(TABLE_USERGROUP)->data($data)->exec();
|
|
}
|
|
}
|
|
|
|
/* Adjust user view. */
|
|
$changedUsers = array_merge($newUsers, $delUsers);
|
|
if(!empty($changedUsers))
|
|
{
|
|
$this->loadModel('user');
|
|
foreach($changedUsers as $account) $this->user->computeUserView($account, true);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Update program admins.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updatePRJAdmin($groupID)
|
|
{
|
|
$this->loadModel('user');
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->exec();
|
|
|
|
$members = $this->post->members ? $this->post->members : array();
|
|
$programs = $this->post->program ? $this->post->program : array();
|
|
foreach($members as $id => $account)
|
|
{
|
|
if(!$account) continue;
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->account = $account;
|
|
$data->program = implode($programs[$account], ',');
|
|
|
|
$this->dao->replace(TABLE_USERGROUP)->data($data)->exec();
|
|
foreach($programs[$account] as $programID)
|
|
{
|
|
if(!$programID) continue;
|
|
$this->user->updateUserView($programID, 'program');
|
|
}
|
|
}
|
|
|
|
if(!dao::isError()) return true;
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Sort resource.
|
|
*
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function sortResource()
|
|
{
|
|
$resources = $this->lang->resource;
|
|
$this->lang->resource = new stdclass();
|
|
|
|
/* sort moduleOrder. */
|
|
ksort($this->lang->moduleOrder, SORT_ASC);
|
|
foreach($this->lang->moduleOrder as $moduleName)
|
|
{
|
|
$resource = $resources->$moduleName;
|
|
unset($resources->$moduleName);
|
|
$this->lang->resource->$moduleName = $resource;
|
|
}
|
|
foreach($resources as $key => $resource)
|
|
{
|
|
$this->lang->resource->$key = $resource;
|
|
}
|
|
|
|
/* sort methodOrder. */
|
|
foreach($this->lang->resource as $moduleName => $resources)
|
|
{
|
|
$resources = (array)$resources;
|
|
$tmpResources = new stdclass();
|
|
|
|
if(isset($this->lang->$moduleName->methodOrder))
|
|
{
|
|
ksort($this->lang->$moduleName->methodOrder, SORT_ASC);
|
|
foreach($this->lang->$moduleName->methodOrder as $key)
|
|
{
|
|
if(isset($resources[$key]))
|
|
{
|
|
$tmpResources->$key = $resources[$key];
|
|
unset($resources[$key]);
|
|
}
|
|
}
|
|
if($resources)
|
|
{
|
|
foreach($resources as $key => $resource)
|
|
{
|
|
$tmpResources->$key = $resource;
|
|
}
|
|
}
|
|
$this->lang->resource->$moduleName = $tmpResources;
|
|
unset($tmpResources);
|
|
}
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Check menu have module
|
|
*
|
|
* @param string $menu
|
|
* @param string $moduleName
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function checkMenuModule($menu, $moduleName)
|
|
{
|
|
if(empty($menu)) return true;
|
|
if($menu == 'other' and (isset($this->lang->navGroup->$moduleName) or isset($this->lang->mainNav->$moduleName))) return false;
|
|
if($menu != 'other' and !($moduleName == $menu or (isset($this->lang->navGroup->$moduleName) and $this->lang->navGroup->$moduleName == $menu))) return false;
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Get modules in menu
|
|
*
|
|
* @param string $menu
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function getMenuModules($menu)
|
|
{
|
|
$modules = array();
|
|
foreach($this->lang->resource as $moduleName => $action)
|
|
{
|
|
if($this->checkMenuModule($menu, $moduleName)) $modules[] = $moduleName;
|
|
}
|
|
return $modules;
|
|
}
|
|
|
|
/**
|
|
* Judge an action is clickable or not.
|
|
*
|
|
* @param object $group
|
|
* @param string $action
|
|
* @static
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public static function isClickable($group, $action)
|
|
{
|
|
$action = strtolower($action);
|
|
|
|
if($action == 'manageview' and $group->role == 'limited') return false;
|
|
if($action == 'copy' and $group->role == 'limited') return false;
|
|
|
|
return true;
|
|
}
|
|
}
|