627 lines
20 KiB
PHP
627 lines
20 KiB
PHP
<?php
|
|
/**
|
|
* The model file of group module of ZenTaoPMS.
|
|
*
|
|
* @copyright Copyright 2009-2015 青岛易软天创网络科技有限公司(QingDao Nature Easy Soft Network Technology Co,LTD, www.cnezsoft.com)
|
|
* @license ZPL (http://zpl.pub/page/zplv12.html)
|
|
* @author Chunsheng Wang <chunsheng@cnezsoft.com>
|
|
* @package group
|
|
* @version $Id: model.php 4976 2013-07-02 08:15:31Z wyd621@gmail.com $
|
|
* @link http://www.zentao.net
|
|
*/
|
|
?>
|
|
<?php
|
|
class groupModel extends model
|
|
{
|
|
/**
|
|
* Create a group.
|
|
*
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function create()
|
|
{
|
|
$group = fixer::input('post')->get();
|
|
if(isset($group->limited))
|
|
{
|
|
unset($group->limited);
|
|
$group->role = 'limited';
|
|
}
|
|
$this->dao->insert(TABLE_GROUP)->data($group)->batchCheck($this->config->group->create->requiredFields, 'notempty')->exec();
|
|
return $this->dao->lastInsertId();
|
|
}
|
|
|
|
/**
|
|
* Update a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function update($groupID)
|
|
{
|
|
$group = fixer::input('post')->get();
|
|
return $this->dao->update(TABLE_GROUP)->data($group)->batchCheck($this->config->group->edit->requiredFields, 'notempty')->where('id')->eq($groupID)->exec();
|
|
}
|
|
|
|
/**
|
|
* Copy a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copy($groupID)
|
|
{
|
|
$group = fixer::input('post')->remove('options')->get();
|
|
$this->dao->insert(TABLE_GROUP)->data($group)->check('name', 'unique')->check('name', 'notempty')->exec();
|
|
if($this->post->options == false) return;
|
|
if(!dao::isError())
|
|
{
|
|
$newGroupID = $this->dao->lastInsertID();
|
|
$options = join(',', $this->post->options);
|
|
if(strpos($options, 'copyPriv') !== false) $this->copyPriv($groupID, $newGroupID);
|
|
if(strpos($options, 'copyUser') !== false) $this->copyUser($groupID, $newGroupID);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Copy privileges.
|
|
*
|
|
* @param string $fromGroup
|
|
* @param string $toGroup
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copyPriv($fromGroup, $toGroup)
|
|
{
|
|
$privs = $this->dao->findByGroup($fromGroup)->from(TABLE_GROUPPRIV)->fetchAll();
|
|
foreach($privs as $priv)
|
|
{
|
|
$priv->group = $toGroup;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($priv)->exec();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Copy user.
|
|
*
|
|
* @param string $fromGroup
|
|
* @param string $toGroup
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function copyUser($fromGroup, $toGroup)
|
|
{
|
|
$users = $this->dao->findByGroup($fromGroup)->from(TABLE_USERGROUP)->fetchAll();
|
|
foreach($users as $user)
|
|
{
|
|
$user->group = $toGroup;
|
|
$this->dao->insert(TABLE_USERGROUP)->data($user)->exec();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Get group lists.
|
|
*
|
|
* @param int $projectID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getList($projectID = 0)
|
|
{
|
|
return $this->dao->select('*')->from(TABLE_GROUP)->where('project')->eq($projectID)->orderBy('id')->fetchAll();
|
|
}
|
|
|
|
/**
|
|
* Get group pairs.
|
|
*
|
|
* @param int $projectID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getPairs($projectID = 0)
|
|
{
|
|
return $this->dao->select('id, name')->from(TABLE_GROUP)->where('project')->eq($projectID)->orderBy('id')->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get group by id.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return object
|
|
*/
|
|
public function getByID($groupID)
|
|
{
|
|
$group = $this->dao->findById($groupID)->from(TABLE_GROUP)->fetch();
|
|
if($group->acl) $group->acl = json_decode($group->acl, true);
|
|
if(!isset($group->acl) || !is_array($group->acl)) $group->acl = array();
|
|
return $group;
|
|
}
|
|
|
|
/**
|
|
* Get group by account.
|
|
*
|
|
* @param string $account
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getByAccount($account)
|
|
{
|
|
return $this->dao->select('t2.*')->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_GROUP)->alias('t2')
|
|
->on('t1.`group` = t2.id')
|
|
->where('t1.account')->eq($account)
|
|
->fetchAll('id');
|
|
}
|
|
|
|
/**
|
|
* Get groups by accounts.
|
|
*
|
|
* @param array $accounts
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getByAccounts($accounts)
|
|
{
|
|
return $this->dao->select('t1.account, t2.acl, t2.id')->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_GROUP)->alias('t2')
|
|
->on('t1.`group` = t2.id')
|
|
->where('t1.account')->in($accounts)
|
|
->fetchGroup('account');
|
|
}
|
|
|
|
/**
|
|
* Get the account number in the group.
|
|
*
|
|
* @param array $groupIdList
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getGroupAccounts($groupIdList = array())
|
|
{
|
|
$groupIdList = array_filter($groupIdList);
|
|
if(empty($groupIdList)) return array();
|
|
return $this->dao->select('account')->from(TABLE_USERGROUP)->where('`group`')->in($groupIdList)->fetchPairs('account');
|
|
}
|
|
|
|
/**
|
|
* Get privileges of a groups.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getPrivs($groupID)
|
|
{
|
|
$privs = array();
|
|
$stmt = $this->dao->select('module, method')->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->orderBy('module')->query();
|
|
while($priv = $stmt->fetch()) $privs[$priv->module][$priv->method] = $priv->method;
|
|
return $privs;
|
|
}
|
|
|
|
/**
|
|
* Get user pairs of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getUserPairs($groupID)
|
|
{
|
|
return $this->dao->select('t2.account, t2.realname')
|
|
->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_USER)->alias('t2')->on('t1.account = t2.account')
|
|
->where('`group`')->eq((int)$groupID)
|
|
->andWhere('t2.deleted')->eq(0)
|
|
->orderBy('t2.account')
|
|
->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get user programs of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getUserPrograms($groupID)
|
|
{
|
|
return $this->dao->select('t1.account, t1.project')
|
|
->from(TABLE_USERGROUP)->alias('t1')
|
|
->leftJoin(TABLE_USER)->alias('t2')->on('t1.account = t2.account')
|
|
->where('`group`')->eq((int)$groupID)
|
|
->andWhere('t2.deleted')->eq(0)
|
|
->orderBy('account')
|
|
->fetchPairs();
|
|
}
|
|
|
|
/**
|
|
* Get the ID of the group that has access to the program.
|
|
*
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getAccessProgramGroup()
|
|
{
|
|
$accessibleGroup = $this->getList();
|
|
$accessibleGroupID = array(0);
|
|
foreach($accessibleGroup as $group)
|
|
{
|
|
if($group->acl) $group->acl = json_decode($group->acl, true);
|
|
if(!isset($group->acl) || !is_array($group->acl)) $group->acl = array();
|
|
|
|
if(empty($group->acl))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
|
|
if(!isset($group->acl['views']) || empty($group->acl['views']))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
|
|
if(in_array('program', $group->acl['views']))
|
|
{
|
|
$accessibleGroupID[] = $group->id;
|
|
continue;
|
|
}
|
|
}
|
|
return $accessibleGroupID;
|
|
}
|
|
|
|
/**
|
|
* Delete a group.
|
|
*
|
|
* @param int $groupID
|
|
* @param null $null compatible with that of model::delete()
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function delete($groupID, $null = null)
|
|
{
|
|
$this->dao->delete()->from(TABLE_GROUP)->where('id')->eq($groupID)->exec();
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->exec();
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->exec();
|
|
}
|
|
|
|
/**
|
|
* Update privilege of a group.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function updatePrivByGroup($groupID, $menu, $version)
|
|
{
|
|
/* Set priv when have version. */
|
|
if($version)
|
|
{
|
|
$noCheckeds = trim($this->post->noChecked, ',');
|
|
if($noCheckeds)
|
|
{
|
|
$noCheckeds = explode(',', $noCheckeds);
|
|
foreach($noCheckeds as $noChecked)
|
|
{
|
|
/* Delete no checked priv*/
|
|
list($module, $method) = explode('-', $noChecked);
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->andWhere('module')->eq($module)->andWhere('method')->eq($method)->exec();
|
|
}
|
|
}
|
|
|
|
/* Replace new. */
|
|
if($this->post->actions)
|
|
{
|
|
foreach($this->post->actions as $moduleName => $moduleActions)
|
|
{
|
|
foreach($moduleActions as $actionName)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->module = $moduleName;
|
|
$data->method = $actionName;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/* Delete old. */
|
|
$this->dao->delete()->from(TABLE_GROUPPRIV)->where('`group`')->eq($groupID)->andWhere('module')->in($this->getMenuModules($menu))->exec();
|
|
|
|
/* Insert new. */
|
|
if($this->post->actions)
|
|
{
|
|
foreach($this->post->actions as $moduleName => $moduleActions)
|
|
{
|
|
foreach($moduleActions as $actionName)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->module = $moduleName;
|
|
$data->method = $actionName;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Update view priv.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public function updateView($groupID)
|
|
{
|
|
$actions = $this->post->actions;
|
|
$oldGroup = $this->getByID($groupID);
|
|
if(isset($_POST['allchecker']))$actions['views'] = array();
|
|
if(!isset($actions['actions']))$actions['actions'] = array();
|
|
|
|
$dynamic = $actions['actions'];
|
|
if(!isset($_POST['allchecker']))
|
|
{
|
|
$dynamic = array();
|
|
foreach($actions['actions'] as $moduleName => $moduleActions)
|
|
{
|
|
$groupName = $moduleName;
|
|
if(isset($this->lang->navGroup->$moduleName)) $groupName = $this->lang->navGroup->$moduleName;
|
|
if($moduleName == 'case') $groupName = $this->lang->navGroup->testcase;
|
|
if($groupName != 'my' and isset($actions['views']) and !in_array($groupName, $actions['views'])) continue;
|
|
|
|
$dynamic[$moduleName] = $moduleActions;
|
|
}
|
|
}
|
|
$actions['actions'] = $dynamic;
|
|
|
|
/* Update whitelist. */
|
|
$this->loadModel('personnel');
|
|
$users = $this->getUserPairs($groupID);
|
|
$users = array_keys($users);
|
|
$objectTypes = array_reverse($this->config->group->acl->objectTypes); //Adjust the order of object types, because execution is subordinate to the whitelist of projects, as well as products to programs.
|
|
|
|
foreach($objectTypes as $key => $objectType)
|
|
{
|
|
$oldAcls = isset($oldGroup->acl[$key]) ? $oldGroup->acl[$key] : array();
|
|
$newAcls = isset($actions[$key]) ? $actions[$key] : array();
|
|
$needRemoveAcls = array_diff($oldAcls, $newAcls);
|
|
$needAddAcls = array_diff($newAcls, $oldAcls);
|
|
foreach($needAddAcls as $objectID) $this->personnel->updateWhitelist($users, $objectType, $objectID, 'whitelist', 'sync', 'increase');
|
|
foreach($needRemoveAcls as $objectID) $this->personnel->deleteWhitelist($users, $objectType, $objectID, $groupID);
|
|
}
|
|
|
|
|
|
$actions = empty($actions) ? '' : json_encode($actions);
|
|
$this->dao->update(TABLE_GROUP)->set('acl')->eq($actions)->where('id')->eq($groupID)->exec();
|
|
return dao::isError() ? false : true;
|
|
}
|
|
|
|
/**
|
|
* Update privilege by module.
|
|
*
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updatePrivByModule()
|
|
{
|
|
if($this->post->module == false or $this->post->actions == false or $this->post->groups == false) return false;
|
|
|
|
foreach($this->post->actions as $action)
|
|
{
|
|
foreach($this->post->groups as $group)
|
|
{
|
|
$data = new stdclass();
|
|
$data->group = $group;
|
|
$data->module = $this->post->module;
|
|
$data->method = $action;
|
|
$this->dao->replace(TABLE_GROUPPRIV)->data($data)->exec();
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Update users.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updateUser($groupID)
|
|
{
|
|
$members = $this->post->members ? $this->post->members : array();
|
|
$groupUsers = $this->dao->select('account')->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->fetchPairs('account');
|
|
$newUsers = array_diff($members, $groupUsers);
|
|
$delUsers = array_diff($groupUsers, $members);
|
|
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->andWhere('account')->in($delUsers)->exec();
|
|
|
|
if($newUsers)
|
|
{
|
|
foreach($newUsers as $account)
|
|
{
|
|
$data = new stdclass();
|
|
$data->account = $account;
|
|
$data->group = $groupID;
|
|
$this->dao->insert(TABLE_USERGROUP)->data($data)->exec();
|
|
}
|
|
}
|
|
|
|
/* Update whitelist. */
|
|
$acl = $this->dao->select('acl')->from(TABLE_GROUP)->where('id')->eq($groupID)->fetch('acl');
|
|
$acl = json_decode($acl);
|
|
|
|
$this->loadModel('personnel');
|
|
$objectTypes = array_reverse($this->config->group->acl->objectTypes); //Adjust the order of object types, because execution is subordinate to the whitelist of projects, as well as products to programs.
|
|
|
|
foreach($objectTypes as $key => $objectType)
|
|
{
|
|
if(!isset($acl->{$key})) continue;
|
|
foreach($acl->{$key} as $objectID)
|
|
{
|
|
$this->personnel->updateWhitelist($newUsers, $objectType, $objectID, 'whitelist', 'sync', 'increase');
|
|
$this->personnel->deleteWhitelist($delUsers, $objectType, $objectID, $groupID);
|
|
}
|
|
}
|
|
|
|
/* Adjust user view. */
|
|
$changedUsers = array_merge($newUsers, $delUsers);
|
|
if(!empty($changedUsers))
|
|
{
|
|
$this->loadModel('user');
|
|
foreach($changedUsers as $account) $this->user->computeUserView($account, true);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Update project admins.
|
|
*
|
|
* @param int $groupID
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function updateProjectAdmin($groupID)
|
|
{
|
|
$this->loadModel('user');
|
|
$this->dao->delete()->from(TABLE_USERGROUP)->where('`group`')->eq($groupID)->exec();
|
|
|
|
$members = $this->post->members ? $this->post->members : array();
|
|
$programs = $this->post->program ? $this->post->program : array();
|
|
foreach($members as $id => $account)
|
|
{
|
|
if(!$account) continue;
|
|
$data = new stdclass();
|
|
$data->group = $groupID;
|
|
$data->account = $account;
|
|
$data->project = implode($programs[$account], ',');
|
|
|
|
$this->dao->replace(TABLE_USERGROUP)->data($data)->exec();
|
|
foreach($programs[$account] as $programID)
|
|
{
|
|
if(!$programID) continue;
|
|
$this->user->updateUserView($programID, 'program');
|
|
}
|
|
}
|
|
|
|
if(!dao::isError()) return true;
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Sort resource.
|
|
*
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function sortResource()
|
|
{
|
|
$resources = $this->lang->resource;
|
|
$this->lang->resource = new stdclass();
|
|
|
|
/* sort moduleOrder. */
|
|
ksort($this->lang->moduleOrder, SORT_ASC);
|
|
foreach($this->lang->moduleOrder as $moduleName)
|
|
{
|
|
if(!isset($resources->$moduleName)) continue;
|
|
|
|
$resource = $resources->$moduleName;
|
|
unset($resources->$moduleName);
|
|
$this->lang->resource->$moduleName = $resource;
|
|
}
|
|
foreach($resources as $key => $resource)
|
|
{
|
|
$this->lang->resource->$key = $resource;
|
|
}
|
|
|
|
/* sort methodOrder. */
|
|
foreach($this->lang->resource as $moduleName => $resources)
|
|
{
|
|
$resources = (array)$resources;
|
|
$tmpResources = new stdclass();
|
|
|
|
if(isset($this->lang->$moduleName->methodOrder))
|
|
{
|
|
ksort($this->lang->$moduleName->methodOrder, SORT_ASC);
|
|
foreach($this->lang->$moduleName->methodOrder as $key)
|
|
{
|
|
if(isset($resources[$key]))
|
|
{
|
|
$tmpResources->$key = $resources[$key];
|
|
unset($resources[$key]);
|
|
}
|
|
}
|
|
if($resources)
|
|
{
|
|
foreach($resources as $key => $resource)
|
|
{
|
|
$tmpResources->$key = $resource;
|
|
}
|
|
}
|
|
$this->lang->resource->$moduleName = $tmpResources;
|
|
unset($tmpResources);
|
|
}
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Check menu have module
|
|
*
|
|
* @param string $menu
|
|
* @param string $moduleName
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function checkMenuModule($menu, $moduleName)
|
|
{
|
|
if(empty($menu)) return true;
|
|
if($menu == 'other' and (isset($this->lang->navGroup->$moduleName) or isset($this->lang->mainNav->$moduleName))) return false;
|
|
if($menu != 'other' and !($moduleName == $menu or (isset($this->lang->navGroup->$moduleName) and $this->lang->navGroup->$moduleName == $menu))) return false;
|
|
if($menu == 'project' and strpos('caselib|testsuite|report', $moduleName) !== false) return false;
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Get modules in menu
|
|
*
|
|
* @param string $menu
|
|
* @access public
|
|
* @return void
|
|
*/
|
|
public function getMenuModules($menu)
|
|
{
|
|
$modules = array();
|
|
foreach($this->lang->resource as $moduleName => $action)
|
|
{
|
|
if($this->checkMenuModule($menu, $moduleName)) $modules[] = $moduleName;
|
|
}
|
|
return $modules;
|
|
}
|
|
|
|
/**
|
|
* Judge an action is clickable or not.
|
|
*
|
|
* @param object $group
|
|
* @param string $action
|
|
* @static
|
|
* @access public
|
|
* @return bool
|
|
*/
|
|
public static function isClickable($group, $action)
|
|
{
|
|
$action = strtolower($action);
|
|
|
|
if($action == 'manageview' and $group->role == 'limited') return false;
|
|
if($action == 'copy' and $group->role == 'limited') return false;
|
|
|
|
return true;
|
|
}
|
|
}
|