LobbySIO/users.php

623 lines
34 KiB
PHP
Raw Normal View History

2018-10-15 15:14:36 -04:00
<?php
/*
2021-06-12 09:29:10 -04:00
* Copyright (C) 2018 josh.north@point808.com
2018-10-15 15:14:36 -04:00
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
ini_set('session.gc_maxlifetime', 24*60*60); // MIN SESSION
ini_set('session.gc_probability', 1); // GC RATES
ini_set('session.gc_divisor', 100); // TIMES
2021-05-28 17:02:01 -04:00
ini_set('session.use_cookies', '1');
ini_set('session.use_only_cookies', '1');
2021-06-03 09:40:50 -04:00
ini_set('session.cookie_secure', '0');
ini_set('session.cookie_httponly', '0');
ini_set('session.cookie_samesite', 'Lax');
session_save_path('.tmp'); // TEMP
session_start(); // START
require_once __DIR__ . '/autoload.php'; // AUTOLOAD
2021-05-07 12:44:04 -04:00
use App\LobbySIO\Config\Registry;
$Users = new \App\LobbySIO\Database\Users();
if (Registry::AUTHMETHOD == 'SAML') {
//simplesaml
require_once('../simplesamlphp/lib/_autoload.php');
$auth = new \SimpleSAML\Auth\Simple(Registry::AUTHIDP);
//$auth->requireAuth();
$auth->isAuthenticated();
if (!$auth->isAuthenticated()) {
$attributes = 'none';
} else {
$attributes = $auth->getAttributes();
$saml_user_email = $attributes['http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress'][0];
$saml_user_info = $Users->getUserInfoByEmail($saml_user_email, "1", "0");
$saml_user_id = $saml_user_info["0"]["users_id"];
}
$session = \SimpleSAML\Session::getSessionFromRequest();
$session->cleanup();
}
$StaticFunctions = new \App\LobbySIO\Misc\StaticFunctions(); // DEFAULT CLASSES
$SiteInfo = new \App\LobbySIO\Database\SiteInfo();
if (isset($_SESSION['user_id'])) { // LOGGED IN? GET USER OBJECT
2021-05-07 12:44:04 -04:00
if (isset($saml_user_id)) {
$sessuserid=$saml_user_id;
} else {
$sessuserid=$_SESSION['user_id'];
}
} elseif (!isset($_SESSION['user_id'])) {
if (isset($saml_user_id)) {
$sessuserid=$saml_user_id;
} else {
2021-05-07 13:34:29 -04:00
$sessuserid='2';
2021-05-07 12:44:04 -04:00
}
$session_user = $Users->getUserInfo($sessuserid, "1", "0"); }
if (isset($session_user)) { // GET UID OR SET TO KIOSK
$uid = $session_user["0"]["users_id"];} else { $uid = "2"; }
$app_disp_lang = filter_input(INPUT_COOKIE, 'app_disp_lang'); // SETUP LANGUAGE
if(!isset($app_disp_lang)) {
$app_disp_lang=$StaticFunctions->getDefaultLanguage(); }
$siteidcookie = filter_input(INPUT_COOKIE, 'app_site'); // SETUP SITE
foreach($SiteInfo->getSite("0", $uid, "0", "0") as $arr) {
$lookup_array[$arr['sites_id']]=1; }
if(isset($lookup_array[$siteidcookie])) {
$siteid = $siteidcookie; } else { $siteid = "1"; }
if(!isset($siteid)) { $siteid="1"; }
$Translate = new \App\LobbySIO\Language\Translate($app_disp_lang); // SETUP TRANSLATOR
$transLang = $Translate->userLanguage();
$app_current_pagename = $transLang['ADMINISTRATION']; // PAGE SETUP
$app_current_pageicon = '<i class="fas fa-list"></i> ';
require_once("inc/header.inc.php");
2021-05-07 12:44:04 -04:00
if ($StaticFunctions->getUserSessionStatus() == false) { // CHECK STATUS
echo $StaticFunctions->killSession(); // ELSE DIE
2018-10-15 15:14:36 -04:00
} else { ?>
<!-- CONTENT START -->
<?php if (isset($session_user)) { if($session_user["0"]["users_usertype"] !== "USER-TYPES-ADMIN") { header("Location: index.php"); ?><h2 class="content-subhead"><?php echo $transLang['NOT_AUTHORIZED']; ?></h2><?php } } ?>
2018-10-15 15:14:36 -04:00
2021-06-21 11:13:02 -04:00
<?php // FILTER POSTED DATA
$form_data = filter_input_array(INPUT_POST, [
2021-06-22 17:41:41 -04:00
'fd_formAction' => (string)FILTER_SANITIZE_STRING,
2021-06-23 10:06:26 -04:00
'fd_pgNumUsers' => (int)FILTER_VALIDATE_INT,
'fd_pgNumSites' => (int)FILTER_VALIDATE_INT,
2021-06-22 17:41:41 -04:00
'edituser' => (string)FILTER_SANITIZE_STRING,
'fd_editUserId' => (string)FILTER_SANITIZE_STRING,
'fd_initialPassword' => (string)FILTER_SANITIZE_STRING,
'fd_confirmPassword' => (string)FILTER_SANITIZE_STRING,
'fd_firstName' => (string)FILTER_SANITIZE_STRING,
'fd_lastName' => (string)FILTER_SANITIZE_STRING,
'fd_userEmail' => (string)FILTER_SANITIZE_STRING,
'fd_newSiteName' => (string)FILTER_SANITIZE_STRING,
'fd_newSiteTimezone' => (string)FILTER_SANITIZE_STRING,
'fd_newSiteRegion' => (string)FILTER_SANITIZE_STRING
]);
2021-06-23 10:06:26 -04:00
if(empty($form_data['fd_formAction'])){ // SET INITIAL STAGE
$form_data['fd_formAction'] = 'actionInitial';
}
2021-06-21 11:13:02 -04:00
?>
2018-10-22 13:15:17 -04:00
2021-06-21 11:13:02 -04:00
<?php // PAGE CONSTANTS
$selfName = (string)'users.php'; // PAGE URL
$minpasslength = $StaticFunctions->getMinPass(); // MINIMUM PASSWORD LENGTH
?>
2021-06-22 17:41:41 -04:00
<?php if(!empty($form_data['fd_formAction'])){ // ADD NEW SITE
if($form_data['fd_formAction']==='actionNewSite'){
ob_start();
$SiteInfo->addSite($form_data['fd_newSiteName'], $form_data['fd_newSiteTimezone'], $form_data['fd_newSiteRegion']);
$fd_newSiteId = $SiteInfo->getSiteByID($form_data['fd_newSiteName']);
$SiteInfo->grantSitePermissionBySiteAndUser($fd_newSiteId["0"]["id"], "1");
$SiteInfo->grantSitePermissionBySiteAndUser($fd_newSiteId["0"]["id"], "2");
header('Location: users.php');
ob_end_clean(); unset($form_data); } } ?>
2021-06-21 11:13:02 -04:00
<?php
if (!empty($form_data['edituser'])) { $edituser = $Users->getUserInfo($form_data['fd_editUserId'], "0", "0") ?>
<!-- USER EDIT SECTION -->
<div class="container-fluid">
<form method="post">
<input type="hidden" id="edituserid" name="edituserid" value="<?php echo $edituser["0"]["users_id"]; ?>" />
<div class="row row-cols-3 mb-2">
<div class="col d-grid gap-2">
2021-06-21 11:39:43 -04:00
<h2><i class="fas fa-user-edit"></i> <?php echo $transLang['STR_ACCOUNTINFO_EDITPROFILE_TITLE']; ?></h2>
</div>
<div class="col d-grid gap-2 text-center">
</div>
<div class="col text-end">
<button type="submit" class="btn btn-success btn-lg" value="Submit" name="editusercomplete"><i class="fas fa-save"></i> <?php echo $transLang['STR_COMMON_SAVE']; ?></button>
2021-06-22 17:41:41 -04:00
<a href="users.php" type="button" class="btn btn-primary btn-lg"><i class="fas fa-ban"></i> <?php echo $transLang['STR_COMMON_CANCEL']; ?></a>
</div>
</div>
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
2021-06-21 11:39:43 -04:00
<p class="lead"><?php echo $transLang['STR_ACCOUNTINFO_DESC'] . $minpasslength; ?></p>
</div>
</div>
<?php } elseif (Registry::AUTHMETHOD == 'SAML') { ?>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
2021-06-21 11:39:43 -04:00
<p class="lead"><?php echo $transLang['STR_ACCOUNTINFO_AUTHLOCKED']; ?></p>
</div>
</div>
<?php } ?>
<fieldset>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['USER-USERNAME']; ?></span>
<input type="text" class="form-control" id="username" name="username" value="<?php echo $edituser["0"]["users_username"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['CREATED']; ?></span>
<input type="text" class="form-control" id="created" name="created" value="<?php echo $edituser["0"]["users_created"]; ?>" readonly/>
</div>
</div>
</div>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['ACCESS_LEVEL']; ?></span>
<select class="form-select" id="usertype" aria-label="<?php echo $transLang['ACCESS_LEVEL']; ?>" name="usertype" required>
<?php foreach($Users->readUserTypeByUserTypeID("%") as $row): ?>
<option value="<?php echo $row['usertypes_id']; ?>"<?php if ($row['usertypes_id']==$edituser["0"]["users_usertypeid"]) { echo " selected"; } ?>><?php echo $transLang[$row['usertypes_name']]; ?></option>
<?php endforeach; ?>
</select>
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['EMAIL']; ?></span>
<input type="text" class="form-control" id="email" name="email" value="<?php echo $edituser["0"]["users_email"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
2018-10-22 13:15:17 -04:00
</div>
</div>
2018-10-22 13:15:17 -04:00
</div>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['FIRSTNAME']; ?></span>
<input type="text" class="form-control" id="firstname" name="firstname" value="<?php echo $edituser["0"]["users_firstname"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['LASTNAME']; ?></span>
<input type="text" class="form-control" id="lastname" name="lastname" value="<?php echo $edituser["0"]["users_lastname"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
</div>
</div>
</div>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['STR_COMMON_SITE']; ?></span>
<select id="sitepermissions" name="sitepermissions[]" class="form-select" multiple size="5">
<?php foreach($SiteInfo->listSite("0", "0") as $row): ?>
<option value="<?php echo $row['sites_id']; ?>"<?php if ($SiteInfo->readSitePermissionBySiteAndUser($row['sites_id'], $edituser["0"]["users_id"])=="1") { echo " selected"; } ?>><?php echo $row['sites_name']; ?></option>
<?php endforeach; ?>
</select>
</div>
</div>
</div>
</fieldset>
</form>
</div>
<!-- END USER EDIT SECTION -->
2018-10-22 09:59:34 -04:00
<?php } else { ?>
2018-10-22 09:59:34 -04:00
2021-06-21 12:18:37 -04:00
<?php
2021-05-07 14:40:05 -04:00
if (Registry::AUTHMETHOD == 'INTERNAL') {
if (!empty($_POST['newuser'])): // NEW USER INTERNAL
require_once("src/Misc/PasswordHash.php");
2021-06-10 05:20:29 -04:00
if (empty($_POST['username'])): $errors['username'] = $transLang['USER-USERNAMENOTEMPTY']; endif;
if (preg_match('/[^a-zA-Z0-9 .-_]/', $_POST['username'])): $errors['username'] = $transLang['ILLEGAL_CHARACTERS']; endif;
if (empty($_POST['password'])): $errors['password'] = $transLang['PASSWORD_NOTEMPTY']; endif;
if (strlen($_POST['password']) < $minpasslength): $errors['password'] = $transLang['MIN_PASSWORD_LENGTH'] . $minpasslength; endif;
if (empty($_POST['password_confirm'])): $errors['password_confirm'] = $transLang['PASSWORD_NOTCONFIRMED']; endif;
if ($_POST['password'] != $_POST['password_confirm']): $errors['password_confirm'] = $transLang['PASSWORD_NOTMATCH']; endif;
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
$existing = $Users->checkUser($_POST['username'], $email);
if ($existing):
2021-06-10 05:20:29 -04:00
if ($existing[0]["users_username"] == $_POST['username']): $errors['username'] = $transLang['USER-USERNAMEUSED']; endif;
if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
endif;
endif;
if (!empty($_POST['newuser']) && empty($errors)):
$hasher = new PasswordHash(8, FALSE);
$password = $hasher->HashPassword($_POST['password']);
$Users->addUser($_POST['firstname'], $_POST['lastname'], $_POST['username'], $timezone, $password, $_POST['email'], $_POST['usertype']);
2021-06-18 17:03:32 -04:00
header('Location: users.php');
endif;
2021-05-07 14:40:05 -04:00
} elseif (Registry::AUTHMETHOD == 'SAML') {
if (!empty($_POST['newuser'])): // NEW USER SAML
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
2021-05-07 16:57:59 -04:00
$existing = $Users->lookupSamlUserByEmail($email);
if ($existing):
if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
endif;
endif;
if (!empty($_POST['newuser']) && empty($errors)):
$Users->addSAMLUser($timezone, $_POST['email'], $_POST['usertype']);
2021-06-18 17:03:32 -04:00
header('Location: users.php');
endif;
2021-06-18 17:03:32 -04:00
}
if (!empty($_POST['editusercomplete'])): // EDIT USER
if (Registry::AUTHMETHOD == 'INTERNAL') {
require_once("src/Misc/PasswordHash.php");
2021-06-10 05:20:29 -04:00
if (empty($_POST['username'])): $errors['username'] = $transLang['USER-USERNAMENOTEMPTY']; endif;
if (preg_match('/[^a-zA-Z0-9 .-_]/', $_POST['username'])): $errors['username'] = $transLang['ILLEGAL_CHARACTERS']; endif;
// if (empty($_POST['password'])): $errors['password'] = $transLang['PASSWORD_NOTEMPTY']; endif;
// if (strlen($_POST['password']) < $minpasslength): $errors['password'] = $transLang['MIN_PASSWORD_LENGTH'] . $minpasslength; endif;
// if (empty($_POST['password_confirm'])): $errors['password_confirm'] = $transLang['PASSWORD_NOTCONFIRMED']; endif;
// if ($_POST['password'] != $_POST['password_confirm']): $errors['password_confirm'] = $transLang['PASSWORD_NOTMATCH']; endif;
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
// $existing = $Users->checkUser($_POST['username'], $email);
// if ($existing):
2021-06-10 05:20:29 -04:00
// if ($existing[0]["users_username"] == $_POST['username']): $errors['username'] = $transLang['USER-USERNAMEUSED']; endif;
// if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
// endif;
}
endif;
if (!empty($_POST['editusercomplete']) && empty($errors)):
// $hasher = new PasswordHash(8, FALSE);
// $password = $hasher->HashPassword($_POST['password']);
if (Registry::AUTHMETHOD == 'INTERNAL') {
$editedusername=$_POST['username'];
} else {
$editedusername="SAML/SSO";
}
$Users->editUserInfo($_POST['edituserid'], $_POST['firstname'], $_POST['lastname'], $editedusername, $_POST['email'], $_POST['usertype']);
//foreach loop to check if exists, if new, delete or add as needed
2021-05-07 16:57:59 -04:00
$SiteInfo->deleteSitePermissionByUser($_POST['edituserid']);
foreach($_POST['sitepermissions'] as $editsitepermission) {
2021-05-07 16:57:59 -04:00
$SiteInfo->grantSitePermissionBySiteAndUser($editsitepermission, $_POST['edituserid']);
}
2021-06-18 17:03:32 -04:00
header('Location: users.php');
endif;
// DEL USER
if (!empty($_POST['deluser'])) {
if ($_SERVER['REQUEST_METHOD'] == 'DELETE' || ($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['_METHOD'] == 'DELETE')) {
$deleteid = (int) $_POST['deleteid'];
echo $Users->deleteUser($deleteid);
echo "user deleted!";
2021-06-18 17:03:32 -04:00
header('Location: users.php');
}
2018-10-15 15:14:36 -04:00
}
?>
2021-06-23 10:06:26 -04:00
<?php if ($form_data['fd_formAction'] == 'actionInitial') { // SHOW USERS LISTING
$pgNumUsers=(int)1; // PAGINATION LOGIC
if(!empty($form_data['fd_pgNumUsers'])){$pgNumUsers = $form_data['fd_pgNumUsers'];}
$pgOffsetUsers=(int)($pgNumUsers-1)*$StaticFunctions->getPageRows();
$pgRowCountUsers=(int)count($Users->getUserInfo("%", "%", "%"));
$pgCountUsers=(int)0;
if(0===$pgRowCountUsers){}else{$pgCountUsers=(int)ceil($pgRowCountUsers/$StaticFunctions->getPageRows());if($pgNumUsers>$pgCountUsers){$pgNumUsers=(int)1;}} ?>
<!-- USER MANAGEMENT -->
<div class="container-fluid">
<div class="row row-cols-3 mb-2">
<div class="col d-grid gap-2">
<h2><i class="fas fa-users"></i> <?php echo $transLang['USER-USERS']; ?></h2>
</div>
<div class="col d-grid gap-2 text-center">
2021-06-23 10:06:26 -04:00
<form method="post">
<ul class="pagination pagination-sm">
2021-06-23 10:06:26 -04:00
<li class="page-item disabled"><a class="page-link" href="#" tabindex="-1"><?=$transLang['STR_COMMON_PAGE']?></a></li>
<?php for($i=1; $i<=$pgCountUsers; $i++){ ?>
<li class="page-item<?php if($i===$pgNumUsers){echo ' active';} ?>"><button type="submit" class="page-link<?php if($i===$pgNumUsers){echo ' active';} ?>" id="fd_pgNumUsers" name="fd_pgNumUsers" value="<?php echo $i; ?>"><?php echo $i; ?></button></li>
<?php } ?>
</ul>
2021-06-23 10:06:26 -04:00
</form>
</div>
<div class="col text-end">
2021-06-23 10:06:26 -04:00
<a data-bs-toggle="modal" data-bs-target="#modalAddUser" href="#modalAddUser" name="modalAddUser" type="button" class="btn btn-info btn-lg open-modalAddUser"><i class="fas fa-user-plus"></i> <?php echo $transLang['STR_ACCOUNTINFO_ADDUSER_TITLE']; ?></a>
<a href="users.php" type="button" class="btn btn-primary btn-lg"><i class="fa fa-redo"></i> <?php echo $transLang['REFRESH']; ?></a>
</div>
</div>
2021-06-23 10:06:26 -04:00
<div class="row row-cols-1">
<div class="col d-grid gap-2">
2021-06-23 10:06:26 -04:00
<table class="table table-striped table-sm table-responsive-sm text-nowrap">
<thead class="thead-dark">
<tr>
<th class="small col-xs-1"><?php echo $transLang['NAME']; ?></th><th class="small col-xs-1"><?php echo $transLang['USER-USERNAME']; ?></th><th class="small col-xs-1"><?php echo $transLang['EMAIL']; ?></th><th class="small col-xs-1"><?php echo $transLang['CREATED']; ?></th><th class="small col-xs-1"><?php echo $transLang['USER-TYPE']; ?></th><th class="small col-xs-1"><?php echo $transLang['STR_COMMON_SITE']; ?></th><th class="small col-xs-1"><?php echo $transLang['ACTIONS']; ?></th>
</tr>
</thead>
<tbody>
<?php foreach($Users->getUserInfo("%", $StaticFunctions->getPageRows(), $pgOffsetUsers) as $rowUsers): ?>
<?php if ($rowUsers['users_id'] == "1"): echo " "; else: ?>
<?php if ($rowUsers['users_id'] == "2"): echo " "; else: ?>
<tr>
<td class="small"><?php echo $rowUsers['users_lastname'] . ", " . $rowUsers['users_firstname']; ?></td>
<td class="small"><?php echo $rowUsers['users_username']; ?></td>
<td class="small"><?php echo $rowUsers['users_email']; ?></td>
<td class="small"><?php echo $rowUsers['users_created']; ?></td>
<td class="small"><?php echo $transLang[$rowUsers['users_usertype']]; ?></td>
<td class="small">
<?php $sidrowcount=0; foreach($SiteInfo->getSite("0", $rowUsers['users_id'], "0", "0") as $sidrow) { ?>
<span class="badge rounded-pill bg-info text-dark"><?php echo $sidrow['sites_name']; ?></span>
<?php ++$sidrowcount; if($sidrowcount==3) { echo "<br>"; } elseif($sidrowcount==5) {echo '<span class="badge rounded-pill bg-danger">...</span>'; break; } } ?>
2021-06-23 10:06:26 -04:00
</td>
<td class="small" class="nowrap">
<div class="btn-group">
<form method="post">
<input type="hidden" id="_METHOD" name="_METHOD" value="EDITUSER" />
<input type="hidden" id="fd_editUserId" name="fd_editUserId" value="<?php echo $rowUsers['users_id']; ?>" />
<button class="btn btn-primary btn-sm" id="edituser" name="edituser" value="edituser" type="submit" <?php if ($rowUsers['users_username'] == "admin"): echo "disabled"; endif; if ($rowUsers['users_username'] == "KIOSK"): echo "disabled"; endif; ?>><i class="fa fa-edit"></i> </button>
</form>
<form method="post" onsubmit="return confirm('<?php echo $transLang['DELETE_WARNING']; ?>')">
<input type="hidden" id="_METHOD" name="_METHOD" value="DELETE" />
<input type="hidden" id="deleteid" name="deleteid" value="<?php echo $rowUsers['users_id']; ?>" />
<button class="btn btn-danger btn-sm" id="deluser" name="deluser" value="deluser" type="submit" <?php if ($rowUsers['users_username'] == "admin"): echo "disabled"; endif; if ($rowUsers['users_username'] == "KIOSK"): echo "disabled"; endif; ?>><i class="fa fa-trash"></i> </button>
</form>
</div>
</td>
</tr>
<?php endif; ?>
<?php endif; ?>
<?php endforeach; ?>
</tbody>
</table>
</div>
</div>
</div>
2021-06-23 10:06:26 -04:00
<!-- USER MANAGEMENT END -->
<?php } ?>
<!-- ADD USER FORM MODAL -->
2021-06-23 10:06:26 -04:00
<div class="modal fade" id="modalAddUser" tabindex="-1" role="dialog">
<div class="modal-dialog modal-lg" role="document">
<div class="modal-content">
<div class="modal-header text-light bg-secondary">
2021-06-21 11:39:43 -04:00
<h5 class="modal-title"><?php echo $transLang['STR_ACCOUNTINFO_ADDUSER_TITLE']; ?></h5>
<button type="button" class="btn-close" data-bs-dismiss="modal"></button>
</div>
<div class="modal-body">
<form method="post">
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
2021-06-21 11:39:43 -04:00
<p><?php echo $transLang['STR_ACCOUNTINFO_ADDUSER_DESC'] . $minpasslength; ?></p>
<?php } elseif (Registry::AUTHMETHOD == 'SAML') { ?>
2021-06-21 11:39:43 -04:00
<p><?php echo $transLang['STR_ACCOUNTINFO_AUTHLOCKED']; ?></p>
<?php } ?>
</div>
</div>
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['FIRSTNAME']; ?></span>
<input type="text" class="form-control" id="firstname" name="firstname" required />
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['LASTNAME']; ?></span>
<input type="text" class="form-control" id="lastname" name="lastname" required />
2018-10-15 15:14:36 -04:00
</div>
</div>
</div>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['USER-USERNAME']; ?></span>
<input type="text" class="form-control" id="username" name="username" required />
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['EMAIL']; ?></span>
<input type="text" class="form-control" id="email" name="email" required />
2018-10-15 15:14:36 -04:00
</div>
</div>
2018-10-15 15:14:36 -04:00
</div>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['NEW'] . " " . $transLang['PASSWORD']; ?></span>
<input type="password" class="form-control" id="password" name="password" required />
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['STR_COMMON_CONFIRM'] . " " . $transLang['NEW'] . " " . $transLang['PASSWORD']; ?></span>
<input type="password" class="form-control" id="password_confirm" name="password_confirm" required />
</div>
</div>
</div>
<?php }elseif (Registry::AUTHMETHOD == 'SAML') { ?>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['EMAIL']; ?></span>
<input type="text" class="form-control" id="email" name="email" required />
</div>
</div>
</div>
<?php } ?>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<div class="input-group">
<span class="input-group-text"><?php echo $transLang['ACCESS_LEVEL']; ?></span>
<select class="form-select" id="usertype" name="usertype" required >
<option value="" selected><?php echo $transLang['STR_COMMON_CHOOSE'] . " " . $transLang['ACCESS_LEVEL']; ?></option>
<?php foreach($Users->readUserTypeByUserTypeID("%") as $row): ?>
<option value="<?php echo $row['usertypes_id']; ?>"><?php echo $transLang[$row['usertypes_name']]; ?></option>
2018-10-15 15:14:36 -04:00
<?php endforeach; ?>
</select>
2018-10-15 15:14:36 -04:00
</div>
</div>
<div class="col d-grid gap-2">
<div class="input-group input-group-sm mb-0 d-grid gap-2">
<button type="submit" class="btn btn-success btn-lg" value="Submit" name="newuser"><i class="fas fa-save"></i> <?php echo $transLang['STR_COMMON_SAVE']; ?></button>
</div>
</div>
2018-10-15 15:14:36 -04:00
</div>
</form>
2018-10-15 15:14:36 -04:00
</div>
</div>
</div>
</div>
<!-- END ADD USER FORM MODAL -->
2018-10-15 15:14:36 -04:00
<?php
// delete site only if submitted by button
if (!empty($_POST['delsite'])) {
if ($_SERVER['REQUEST_METHOD'] == 'DELETE' || ($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['_METHOD'] == 'DELETE')) {
$deleteid = (int) $_POST['deleteid'];
2021-05-07 16:57:59 -04:00
$SiteInfo->deleteSitePermissionByUserAndSite ('0', $deleteid);
$SiteInfo->deleteSitePermissionByUserAndSite ('1', $deleteid);
$SiteInfo->deleteSitePermissionByUserAndSite ('2', $deleteid);
echo $SiteInfo->deleteSite($deleteid);
echo "site deleted!";
2021-06-18 17:03:32 -04:00
header('Location: users.php');
}
}
?>
2021-06-23 10:06:26 -04:00
<?php if ($form_data['fd_formAction'] == 'actionInitial') { // SHOW SITES LISTING
$pgNumSites=(int)1; // PAGINATION LOGIC
if(!empty($form_data['fd_pgNumSites'])){$pgNumSites = $form_data['fd_pgNumSites'];}
$pgOffsetSites=(int)($pgNumSites-1)*$StaticFunctions->getPageRows();
$pgRowCountSites=(int)count($SiteInfo->listSite("0", "0"));
$pgCountSites=(int)0;
if(0===$pgRowCountSites){}else{$pgCountSites=(int)ceil($pgRowCountSites/$StaticFunctions->getPageRows());if($pgNumSites>$pgCountSites){$pgNumSites=(int)1;}} ?>
<!-- SITE MANAGEMENT -->
<div class="container-fluid">
<div class="row row-cols-3 mb-2">
<div class="col d-grid gap-2">
<h2><i class="fas fa-globe-americas"></i> <?php echo $transLang['USER-SITES']; ?></h2>
</div>
<div class="col d-grid gap-2 text-center">
2021-06-23 10:06:26 -04:00
<form method="post">
<ul class="pagination pagination-sm">
2021-06-23 10:06:26 -04:00
<li class="page-item disabled"><a class="page-link" href="#" tabindex="-1"><?=$transLang['STR_COMMON_PAGE']?></a></li>
<?php for($i=1; $i<=$pgCountSites; $i++){ ?>
<li class="page-item<?php if($i===$pgNumSites){echo ' active';} ?>"><button type="submit" class="page-link<?php if($i===$pgNumSites){echo ' active';} ?>" id="fd_pgNumSites" name="fd_pgNumSites" value="<?php echo $i; ?>"><?php echo $i; ?></button></li>
<?php } ?>
</ul>
2021-06-23 10:06:26 -04:00
</form>
</div>
<div class="col text-end">
2021-06-22 17:41:41 -04:00
<a data-bs-toggle="modal" data-bs-target="#modalAddSite" href="#modalAddSite" name="modalAddSite" type="button" class="btn btn-info btn-lg open-modalAddSite"><i class="fas fa-map-marker-alt"></i> <?php echo $transLang['ADD_SITE']; ?></a>
<a href="users.php" type="button" class="btn btn-primary btn-lg"><i class="fa fa-redo"></i> <?php echo $transLang['REFRESH']; ?></a>
</div>
</div>
2021-06-23 10:06:26 -04:00
<div class="row row-cols-1">
<div class="col d-grid gap-2">
2021-06-23 10:06:26 -04:00
<table class="table table-striped table-sm table-responsive-sm text-nowrap">
<thead class="thead-dark">
<tr>
<th class="small col-xs-1"><?php echo $transLang['NAME']; ?></th><th class="small col-xs-1"><?php echo $transLang['STR_COMMON_TIMEZONE']; ?></th><th class="small col-xs-1"><?php echo $transLang['STR_COMMON_REGION']; ?></th><th class="small col-xs-1"><?php echo $transLang['STR_COMMON_USERCOUNT']; ?></th><th class="small col-xs-1"><?php echo $transLang['ACTIONS']; ?></th>
</tr>
</thead>
<tbody>
2021-06-23 10:06:26 -04:00
<?php foreach($SiteInfo->listSite($StaticFunctions->getPageRows(), $pgOffsetSites) as $rowSites): ?>
<?php if ($rowSites['sites_name'] === "NOSITE"): echo " "; else: ?>
<tr>
2021-06-23 10:06:26 -04:00
<td class="small"><?php echo $rowSites['sites_name']; ?></td><td class="small"><?php echo $rowSites['sites_timezone']; ?></td><td class="small"><?php echo $rowSites['sites_region']; ?></td><td class="small"><?=$SiteInfo->countSiteUsers($rowSites['sites_id'])?></td><td class="small"><form method="post" onsubmit="return confirm('<?php echo $transLang['DELETE_WARNING']; ?>')"><input type="hidden" id="_METHOD" name="_METHOD" value="DELETE" /><input type="hidden" id="deleteid" name="deleteid" value="<?php echo $rowSites['sites_id']; ?>" /><button class="btn btn-danger btn-sm" id="deluser" name="delsite" value="delsite" type="submit"><i class="fa fa-trash"></i> </button></form></td>
</tr>
<?php endif; ?>
<?php endforeach; ?>
</tbody>
</table>
</div>
</div>
</div>
2021-06-23 10:06:26 -04:00
<!-- SITE MANAGEMENT END -->
<?php } ?>
2018-10-16 11:07:32 -04:00
2021-06-23 10:06:26 -04:00
<!-- SITE ADD MODAL -->
2021-06-22 17:41:41 -04:00
<form class="form form-approve" method="post">
<input type="hidden" name="fd_formAction" id="fd_formAction" value="actionNewSite" />
<div class="modal fade" id="modalAddSite" data-bs-backdrop="static" data-bs-keyboard="false" tabindex="-1" role="dialog">
<div class="modal-dialog modal-dialog-scrollable modal-lg">
<div class="modal-content">
2021-06-22 17:41:41 -04:00
<div class="modal-header text-light bg-secondary">
<h5 class="modal-title"><?php echo $transLang['ADD_SITE']; ?></h5>
<button type="button" class="btn-close" data-bs-dismiss="modal"></button>
</div>
<div class="modal-body">
2021-06-22 17:41:41 -04:00
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<div class="input-group input-group-sm mb-0">
<span class="input-group-text"><?php echo $transLang['NAME']; ?></span>
<input type="text" class="form-control form-control-lg" id="fd_newSiteName" name="fd_newSiteName" required />
</div>
</div>
2021-06-22 17:41:41 -04:00
</div>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<div class="input-group input-group-sm mb-0">
<span class="input-group-text"><?php echo $transLang['STR_COMMON_TIMEZONE']; ?></span>
<select class="form-control form-select form-control-lg" id="fd_newSiteTimezone" name="fd_newSiteTimezone" required>
<option value=""><?php echo $transLang['STR_COMMON_TIMEZONE']; ?></option>
<?php foreach(DateTimeZone::listIdentifiers(DateTimeZone::ALL) as $row2) { ?>
<option><?php echo $row2; ?></option>
<?php } ?>
</select>
</div>
</div>
2021-06-22 17:41:41 -04:00
</div>
<div class="row row-cols-1 mb-2">
<div class="col d-grid gap-2">
<div class="input-group input-group-sm mb-0">
<span class="input-group-text"><?php echo $transLang['NAME']; ?></span>
<select class="form-control form-select form-control-lg" id="fd_newSiteRegion" name="fd_newSiteRegion" required>
<option value=""><?php echo $transLang['STR_COMMON_REGION']; ?></option>
<option>CAN</option>
<option>EMEA</option>
<option>US</option>
</select>
</div>
2018-10-16 11:07:32 -04:00
</div>
2021-06-22 17:41:41 -04:00
</div>
<div class="row row-cols-2 mb-2">
<div class="col d-grid gap-2">
<button type="button" class="btn btn-secondary form-control form-control-lg" data-bs-dismiss="modal"><i class="fas fa-ban"></i>&nbsp;<?php echo $transLang['STR_COMMON_CANCEL']; ?></button>
</div>
2021-06-22 17:41:41 -04:00
<div class="col d-grid gap-2">
<button type="submit" class="btn btn-success form-control form-control-lg"><i class="fas fa-save"></i>&nbsp;<?php echo $transLang['ADD_SITE']; ?></button>
</div>
</div>
2018-10-16 11:07:32 -04:00
</div>
</div>
</div>
</div>
2021-06-22 17:41:41 -04:00
</form>
2021-06-23 10:06:26 -04:00
<!-- SITE ADD MODAL END -->
<?php } ?>
2018-10-16 11:07:32 -04:00
2021-06-18 17:03:32 -04:00
<?php } require_once("inc/footer.inc.php");