2018-10-15 15:14:36 -04:00
|
|
|
<?php
|
|
|
|
/*
|
|
|
|
* Copyright (C) 2018 josh.north
|
|
|
|
*
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
*/
|
|
|
|
|
2018-10-19 19:00:44 -04:00
|
|
|
ini_set('session.gc_maxlifetime', 24*60*60); // MIN SESSION
|
|
|
|
ini_set('session.gc_probability', 1); // GC RATES
|
|
|
|
ini_set('session.gc_divisor', 100); // TIMES
|
2021-05-28 17:02:01 -04:00
|
|
|
ini_set('session.use_cookies', '1');
|
|
|
|
ini_set('session.use_only_cookies', '1');
|
2021-06-03 09:40:50 -04:00
|
|
|
ini_set('session.cookie_secure', '0');
|
|
|
|
ini_set('session.cookie_httponly', '0');
|
2021-06-01 10:52:51 -04:00
|
|
|
ini_set('session.cookie_samesite', 'Lax');
|
2018-10-19 19:00:44 -04:00
|
|
|
session_save_path('.tmp'); // TEMP
|
|
|
|
session_start(); // START
|
|
|
|
require_once __DIR__ . '/autoload.php'; // AUTOLOAD
|
2021-05-07 12:44:04 -04:00
|
|
|
use App\LobbySIO\Config\Registry;
|
|
|
|
$Users = new \App\LobbySIO\Database\Users();
|
|
|
|
if (Registry::AUTHMETHOD == 'SAML') {
|
|
|
|
//simplesaml
|
|
|
|
require_once('../simplesamlphp/lib/_autoload.php');
|
|
|
|
$auth = new \SimpleSAML\Auth\Simple(Registry::AUTHIDP);
|
|
|
|
//$auth->requireAuth();
|
|
|
|
$auth->isAuthenticated();
|
|
|
|
if (!$auth->isAuthenticated()) {
|
|
|
|
$attributes = 'none';
|
|
|
|
} else {
|
|
|
|
$attributes = $auth->getAttributes();
|
|
|
|
$saml_user_email = $attributes['http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress'][0];
|
|
|
|
$saml_user_info = $Users->getUserInfoByEmail($saml_user_email, "1", "0");
|
|
|
|
$saml_user_id = $saml_user_info["0"]["users_id"];
|
|
|
|
}
|
|
|
|
$session = \SimpleSAML\Session::getSessionFromRequest();
|
|
|
|
$session->cleanup();
|
|
|
|
}
|
2018-10-19 19:00:44 -04:00
|
|
|
$StaticFunctions = new \App\LobbySIO\Misc\StaticFunctions(); // DEFAULT CLASSES
|
|
|
|
$SiteInfo = new \App\LobbySIO\Database\SiteInfo();
|
|
|
|
if (isset($_SESSION['user_id'])) { // LOGGED IN? GET USER OBJECT
|
2021-05-07 12:44:04 -04:00
|
|
|
if (isset($saml_user_id)) {
|
|
|
|
$sessuserid=$saml_user_id;
|
|
|
|
} else {
|
|
|
|
$sessuserid=$_SESSION['user_id'];
|
|
|
|
}
|
|
|
|
} elseif (!isset($_SESSION['user_id'])) {
|
|
|
|
if (isset($saml_user_id)) {
|
|
|
|
$sessuserid=$saml_user_id;
|
|
|
|
} else {
|
2021-05-07 13:34:29 -04:00
|
|
|
$sessuserid='2';
|
2021-05-07 12:44:04 -04:00
|
|
|
}
|
|
|
|
$session_user = $Users->getUserInfo($sessuserid, "1", "0"); }
|
2018-10-19 19:00:44 -04:00
|
|
|
if (isset($session_user)) { // GET UID OR SET TO KIOSK
|
|
|
|
$uid = $session_user["0"]["users_id"];} else { $uid = "2"; }
|
|
|
|
$app_disp_lang = filter_input(INPUT_COOKIE, 'app_disp_lang'); // SETUP LANGUAGE
|
|
|
|
if(!isset($app_disp_lang)) {
|
|
|
|
$app_disp_lang=$StaticFunctions->getDefaultLanguage(); }
|
|
|
|
$siteidcookie = filter_input(INPUT_COOKIE, 'app_site'); // SETUP SITE
|
|
|
|
foreach($SiteInfo->getSite("0", $uid, "0", "0") as $arr) {
|
|
|
|
$lookup_array[$arr['sites_id']]=1; }
|
|
|
|
if(isset($lookup_array[$siteidcookie])) {
|
|
|
|
$siteid = $siteidcookie; } else { $siteid = "1"; }
|
|
|
|
if(!isset($siteid)) { $siteid="1"; }
|
|
|
|
$Translate = new \App\LobbySIO\Language\Translate($app_disp_lang); // SETUP TRANSLATOR
|
|
|
|
$transLang = $Translate->userLanguage();
|
|
|
|
$app_current_pagename = $transLang['ADMINISTRATION']; // PAGE SETUP
|
|
|
|
$app_current_pageicon = '<i class="fas fa-list"></i> ';
|
|
|
|
require_once("inc/header.inc.php");
|
2021-05-07 12:44:04 -04:00
|
|
|
if ($StaticFunctions->getUserSessionStatus() == false) { // CHECK STATUS
|
2018-10-19 19:00:44 -04:00
|
|
|
echo $StaticFunctions->killSession(); // ELSE DIE
|
2018-10-15 15:14:36 -04:00
|
|
|
} else { ?>
|
|
|
|
<!-- CONTENT START -->
|
|
|
|
|
|
|
|
<?php if (isset($session_user)) { if($session_user["0"]["users_usertype"] !== "ADMIN") { header("Location: index.php"); ?><h2 class="content-subhead"><?php echo $transLang['NOT_AUTHORIZED']; ?></h2><?php }; }; ?>
|
|
|
|
|
2018-10-22 09:59:34 -04:00
|
|
|
|
|
|
|
<?php if (!empty($_POST['edituser'])): // NEW SITE
|
2021-04-20 17:55:40 -04:00
|
|
|
$edituser = $Users->getUserInfo($_POST['editid'], "0", "0")
|
2018-10-22 13:15:17 -04:00
|
|
|
//$SiteInfo->addSite($_POST['sitename'], $_POST['timezone'], $_POST['region']);
|
2018-10-22 09:59:34 -04:00
|
|
|
//header('Location: ' . $_SERVER['PHP_SELF']);
|
2018-10-22 13:15:17 -04:00
|
|
|
?>
|
|
|
|
|
|
|
|
<!-- USER EDIT START -->
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="container bg-info rounded">
|
2018-10-22 13:15:17 -04:00
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
|
|
|
<h2><?php echo $app_current_pageicon . $transLang['EDIT_PROFILE']; ?></h2>
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
<form class="form" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
|
2018-10-22 13:15:17 -04:00
|
|
|
<fieldset id="editor">
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="form-row">
|
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="firstname"><?php echo $transLang['FIRSTNAME']; ?></span>
|
|
|
|
</div>
|
2021-05-07 12:44:04 -04:00
|
|
|
<input type="text" class="form-control" id="firstname" name="firstname" value="<?php echo $edituser["0"]["users_firstname"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
|
2018-10-22 13:15:17 -04:00
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="lastname"><?php echo $transLang['LASTNAME']; ?></span>
|
|
|
|
</div>
|
2021-05-07 12:44:04 -04:00
|
|
|
<input type="text" class="form-control" id="lastname" name="lastname" value="<?php echo $edituser["0"]["users_lastname"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
|
2018-10-22 13:15:17 -04:00
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
</div>
|
|
|
|
<div class="form-row">
|
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="username"><?php echo $transLang['USERNAME']; ?></span>
|
|
|
|
</div>
|
2021-05-07 12:44:04 -04:00
|
|
|
<input type="text" class="form-control" id="username" name="username" value="<?php echo $edituser["0"]["users_username"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
|
2018-10-22 13:15:17 -04:00
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="email"><?php echo $transLang['EMAIL']; ?></span>
|
|
|
|
</div>
|
2021-05-07 12:44:04 -04:00
|
|
|
<input type="text" class="form-control" id="email" name="email" value="<?php echo $edituser["0"]["users_email"]; ?>" <?php if (Registry::AUTHMETHOD == 'SAML') { echo "readonly "; } else { echo "required "; } ?>/>
|
2018-10-22 13:15:17 -04:00
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
</div>
|
|
|
|
<div class="form-row">
|
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="username"><?php echo $transLang['ACCESS_LEVEL']; ?></span>
|
|
|
|
</div>
|
2021-05-28 11:33:45 -04:00
|
|
|
<select class="form-select" id="usertype" aria-label="<?php echo $transLang['ACCESS_LEVEL']; ?>" name="usertype" required>
|
2021-05-07 16:57:59 -04:00
|
|
|
<?php foreach($Users->readUserTypeByUserTypeID("%") as $row): ?>
|
2018-10-22 13:15:17 -04:00
|
|
|
<option value="<?php echo $row['usertypes_id']; ?>"<?php if ($row['usertypes_id']==$edituser["0"]["users_usertypeid"]) { echo " selected"; } ?>><?php echo $transLang[$row['usertypes_name']]; ?></option>
|
|
|
|
<?php endforeach; ?>
|
|
|
|
</select>
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="form-row">
|
|
|
|
<div class="col input-group">
|
2021-05-28 11:33:45 -04:00
|
|
|
<div class="input-group-text">
|
2021-04-21 12:07:02 -04:00
|
|
|
<span class="input-group-text" id="username"><?php echo $transLang['SITE']; ?></span>
|
|
|
|
</div>
|
2021-05-28 11:33:45 -04:00
|
|
|
<select id="sitepermissions" name="sitepermissions[]" class="form-select" multiple size="5">
|
2021-04-21 12:07:02 -04:00
|
|
|
<?php foreach($SiteInfo->listSite("0", "0") as $row): ?>
|
2021-05-07 16:57:59 -04:00
|
|
|
<option value="<?php echo $row['sites_id']; ?>"<?php if ($SiteInfo->readSitePermissionBySiteAndUser($row['sites_id'], $edituser["0"]["users_id"])=="1") { echo " selected"; } ?>><?php echo $row['sites_name']; ?></option>
|
2018-10-22 13:15:17 -04:00
|
|
|
<?php endforeach; ?>
|
|
|
|
</select>
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-04-21 12:07:02 -04:00
|
|
|
<div class="form-row">
|
|
|
|
<div class="col input-group">
|
|
|
|
<input type="hidden" id="edituserid" name="edituserid" value="<?php echo $edituser["0"]["users_id"]; ?>" />
|
|
|
|
<button type="submit" class="form-control btn btn-block btn-success" value="Submit" name="editusercomplete"><i class="fa fa-user-plus"></i> <?php echo $transLang['SAVE']; ?></button>
|
2018-10-22 13:15:17 -04:00
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</fieldset>
|
|
|
|
</form>
|
|
|
|
</div>
|
|
|
|
<?php
|
|
|
|
$minpasslength = $StaticFunctions->getMinPass();
|
|
|
|
?>
|
2018-10-22 09:59:34 -04:00
|
|
|
|
2018-10-22 13:15:17 -04:00
|
|
|
<!-- USER EDIT END -->
|
|
|
|
<?php
|
2018-10-22 09:59:34 -04:00
|
|
|
endif;
|
|
|
|
?>
|
|
|
|
|
|
|
|
|
|
|
|
|
2018-10-19 19:00:44 -04:00
|
|
|
<?php // POST ACTIONS
|
2018-10-15 15:14:36 -04:00
|
|
|
|
2018-10-19 19:00:44 -04:00
|
|
|
if (!empty($_POST['newsite'])): // NEW SITE
|
|
|
|
$SiteInfo->addSite($_POST['sitename'], $_POST['timezone'], $_POST['region']);
|
2021-04-21 20:05:47 -04:00
|
|
|
$newsiteid = $SiteInfo->getSiteByID($_POST['sitename']);
|
2021-05-07 16:57:59 -04:00
|
|
|
$SiteInfo->grantSitePermissionBySiteAndUser($newsiteid["0"]["id"], "1");
|
|
|
|
$SiteInfo->grantSitePermissionBySiteAndUser($newsiteid["0"]["id"], "2");
|
2018-10-19 19:00:44 -04:00
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
|
|
|
endif;
|
|
|
|
|
2021-05-07 14:40:05 -04:00
|
|
|
|
|
|
|
if (Registry::AUTHMETHOD == 'INTERNAL') {
|
2021-05-07 14:36:00 -04:00
|
|
|
if (!empty($_POST['newuser'])): // NEW USER INTERNAL
|
2018-10-19 19:00:44 -04:00
|
|
|
require_once("src/Misc/PasswordHash.php");
|
|
|
|
if (empty($_POST['username'])): $errors['username'] = $transLang['USERNAME_NOTEMPTY']; endif;
|
|
|
|
if (preg_match('/[^a-zA-Z0-9 .-_]/', $_POST['username'])): $errors['username'] = $transLang['ILLEGAL_CHARACTERS']; endif;
|
|
|
|
if (empty($_POST['password'])): $errors['password'] = $transLang['PASSWORD_NOTEMPTY']; endif;
|
|
|
|
if (strlen($_POST['password']) < $minpasslength): $errors['password'] = $transLang['MIN_PASSWORD_LENGTH'] . $minpasslength; endif;
|
|
|
|
if (empty($_POST['password_confirm'])): $errors['password_confirm'] = $transLang['PASSWORD_NOTCONFIRMED']; endif;
|
|
|
|
if ($_POST['password'] != $_POST['password_confirm']): $errors['password_confirm'] = $transLang['PASSWORD_NOTMATCH']; endif;
|
|
|
|
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
|
|
|
|
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
|
|
|
|
$existing = $Users->checkUser($_POST['username'], $email);
|
|
|
|
if ($existing):
|
|
|
|
if ($existing[0]["users_username"] == $_POST['username']): $errors['username'] = $transLang['USERNAME_USED']; endif;
|
|
|
|
if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
|
|
|
|
endif;
|
|
|
|
endif;
|
|
|
|
if (!empty($_POST['newuser']) && empty($errors)):
|
|
|
|
$hasher = new PasswordHash(8, FALSE);
|
|
|
|
$password = $hasher->HashPassword($_POST['password']);
|
|
|
|
$Users->addUser($_POST['firstname'], $_POST['lastname'], $_POST['username'], $timezone, $password, $_POST['email'], $_POST['usertype']);
|
2018-10-15 15:14:36 -04:00
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
2018-10-19 19:00:44 -04:00
|
|
|
endif;
|
2021-05-07 14:40:05 -04:00
|
|
|
} elseif (Registry::AUTHMETHOD == 'SAML') {
|
|
|
|
|
2021-05-07 14:36:00 -04:00
|
|
|
|
|
|
|
if (!empty($_POST['newuser'])): // NEW USER SAML
|
|
|
|
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
|
|
|
|
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
|
2021-05-07 16:57:59 -04:00
|
|
|
$existing = $Users->lookupSamlUserByEmail($email);
|
2021-05-07 14:36:00 -04:00
|
|
|
if ($existing):
|
|
|
|
if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
|
|
|
|
endif;
|
|
|
|
endif;
|
|
|
|
if (!empty($_POST['newuser']) && empty($errors)):
|
|
|
|
$Users->addSAMLUser($timezone, $_POST['email'], $_POST['usertype']);
|
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
|
|
|
endif;
|
2021-05-07 14:40:05 -04:00
|
|
|
};
|
2018-10-19 19:00:44 -04:00
|
|
|
|
2021-04-21 12:07:02 -04:00
|
|
|
if (!empty($_POST['editusercomplete'])): // EDIT USER
|
2021-05-07 15:57:31 -04:00
|
|
|
if (Registry::AUTHMETHOD == 'INTERNAL') {
|
2021-04-21 12:07:02 -04:00
|
|
|
require_once("src/Misc/PasswordHash.php");
|
|
|
|
if (empty($_POST['username'])): $errors['username'] = $transLang['USERNAME_NOTEMPTY']; endif;
|
|
|
|
if (preg_match('/[^a-zA-Z0-9 .-_]/', $_POST['username'])): $errors['username'] = $transLang['ILLEGAL_CHARACTERS']; endif;
|
|
|
|
// if (empty($_POST['password'])): $errors['password'] = $transLang['PASSWORD_NOTEMPTY']; endif;
|
|
|
|
// if (strlen($_POST['password']) < $minpasslength): $errors['password'] = $transLang['MIN_PASSWORD_LENGTH'] . $minpasslength; endif;
|
|
|
|
// if (empty($_POST['password_confirm'])): $errors['password_confirm'] = $transLang['PASSWORD_NOTCONFIRMED']; endif;
|
|
|
|
// if ($_POST['password'] != $_POST['password_confirm']): $errors['password_confirm'] = $transLang['PASSWORD_NOTMATCH']; endif;
|
|
|
|
$email = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
|
|
|
|
if (!$email): $errors['email'] = $transLang['EMAIL_NOTVALID']; endif;
|
|
|
|
// $existing = $Users->checkUser($_POST['username'], $email);
|
|
|
|
// if ($existing):
|
|
|
|
// if ($existing[0]["users_username"] == $_POST['username']): $errors['username'] = $transLang['USERNAME_USED']; endif;
|
|
|
|
// if ($existing[0]["users_email"] == $email): $errors['email'] = $transLang['PASSWORD_USED']; endif;
|
|
|
|
// endif;
|
2021-05-07 15:57:31 -04:00
|
|
|
}
|
2021-04-21 12:07:02 -04:00
|
|
|
endif;
|
|
|
|
if (!empty($_POST['editusercomplete']) && empty($errors)):
|
|
|
|
// $hasher = new PasswordHash(8, FALSE);
|
|
|
|
// $password = $hasher->HashPassword($_POST['password']);
|
2021-05-07 15:57:31 -04:00
|
|
|
if (Registry::AUTHMETHOD == 'INTERNAL') {
|
|
|
|
$editedusername=$_POST['username'];
|
|
|
|
} else {
|
|
|
|
$editedusername="SAML/SSO";
|
|
|
|
}
|
|
|
|
$Users->editUserInfo($_POST['edituserid'], $_POST['firstname'], $_POST['lastname'], $editedusername, $_POST['email'], $_POST['usertype']);
|
2021-04-21 12:07:02 -04:00
|
|
|
//foreach loop to check if exists, if new, delete or add as needed
|
2021-05-07 16:57:59 -04:00
|
|
|
$SiteInfo->deleteSitePermissionByUser($_POST['edituserid']);
|
2021-04-21 12:07:02 -04:00
|
|
|
foreach($_POST['sitepermissions'] as $editsitepermission) {
|
2021-05-07 16:57:59 -04:00
|
|
|
$SiteInfo->grantSitePermissionBySiteAndUser($editsitepermission, $_POST['edituserid']);
|
2021-04-21 12:07:02 -04:00
|
|
|
}
|
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
|
|
|
endif;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// DEL USER
|
2018-10-19 19:00:44 -04:00
|
|
|
if (!empty($_POST['deluser'])) {
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] == 'DELETE' || ($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['_METHOD'] == 'DELETE')) {
|
|
|
|
$deleteid = (int) $_POST['deleteid'];
|
|
|
|
echo $Users->deleteUser($deleteid);
|
|
|
|
echo "user deleted!";
|
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
|
|
|
}
|
2018-10-15 15:14:36 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
// Set up pagination
|
|
|
|
$page_num = 1;
|
|
|
|
if(!empty($_GET['pnum'])):
|
|
|
|
$page_num = filter_input(INPUT_GET, 'pnum', FILTER_VALIDATE_INT);
|
|
|
|
if(false === $page_num):
|
|
|
|
$page_num = 1;
|
|
|
|
endif;
|
|
|
|
endif;
|
|
|
|
$offset = ($page_num - 1) * $StaticFunctions->getPageRows();
|
|
|
|
$row_count = count($Users->getUserInfo("%", "%", "%"));
|
|
|
|
$page_count = 0;
|
|
|
|
if (0 === $row_count): else: $page_count = (int)ceil($row_count / $StaticFunctions->getPageRows()); if($page_num > $page_count): $page_num = 1; endif; endif;
|
|
|
|
?>
|
|
|
|
|
|
|
|
|
|
|
|
|
2018-10-19 19:00:44 -04:00
|
|
|
<!-- USER MGMT START -->
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="container">
|
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
|
|
|
<h2><?php echo $app_current_pageicon . $transLang['USERS']; ?></h2>
|
|
|
|
</div>
|
|
|
|
<div class="col-sm">
|
2021-06-01 10:52:51 -04:00
|
|
|
<button type="button" class="btn btn-block btn-lg btn-success" data-bs-toggle="modal" data-bs-target="#addUserModal"><?php echo $transLang['ADD_USER']; ?></button>
|
2018-10-15 15:14:36 -04:00
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<?php echo '<ul class="pagination pagination-sm"><li class="page-item disabled"><a class="page-link" href="#" tabindex="-1">' . $transLang['PAGE'] . '</a></li>'; for ($i = 1; $i <= $page_count; $i++): echo '<li class="page-item'; if ($i === $page_num): echo ' active'; else: echo ' '; endif; echo '"><a class="page-link" href="' . $_SERVER['PHP_SELF'] . '?pnum=' . $i . '">' . $i . '</a></li>'; endfor; echo '</ul>'; ?>
|
|
|
|
<table class="table">
|
|
|
|
<thead class="thead-dark">
|
|
|
|
<tr>
|
|
|
|
<th><?php echo $transLang['NAME']; ?></th><th><?php echo $transLang['USERNAME']; ?></th><th><?php echo $transLang['EMAIL']; ?></th><th><?php echo $transLang['CREATED']; ?></th><th><?php echo $transLang['USERTYPE']; ?></th><th><?php echo $transLang['ACTIONS']; ?></th>
|
|
|
|
</tr>
|
|
|
|
</thead>
|
|
|
|
<tbody>
|
|
|
|
<?php foreach($Users->getUserInfo("%", $StaticFunctions->getPageRows(), $offset) as $row): ?>
|
2021-04-21 20:05:47 -04:00
|
|
|
<?php if ($row['users_id'] == "1"): echo " "; else: ?>
|
|
|
|
<?php if ($row['users_id'] == "2"): echo " "; else: ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<tr>
|
2021-04-20 17:55:40 -04:00
|
|
|
<td><?php echo $row['users_lastname'] . ", " . $row['users_firstname']; ?></td>
|
|
|
|
<td><?php echo $row['users_username']; ?></td>
|
|
|
|
<td><?php echo $row['users_email']; ?></td>
|
|
|
|
<td><?php echo $row['users_created']; ?></td>
|
|
|
|
<td><?php echo $transLang[$row['users_usertype']]; ?></td>
|
|
|
|
<td>
|
|
|
|
<form method="post">
|
|
|
|
<input type="hidden" id="_METHOD" name="_METHOD" value="EDITUSER" />
|
|
|
|
<input type="hidden" id="editid" name="editid" value="<?php echo $row['users_id']; ?>" />
|
|
|
|
<button class="btn btn-primary btn-sm" id="edituser" name="edituser" value="edituser" type="submit" <?php if ($row['users_username'] == "admin"): echo "disabled"; endif; if ($row['users_username'] == "KIOSK"): echo "disabled"; endif; ?>><i class="fa fa-edit"></i> </button>
|
|
|
|
</form>
|
|
|
|
<form method="post" onsubmit="return confirm('<?php echo $transLang['DELETE_WARNING']; ?>')">
|
|
|
|
<input type="hidden" id="_METHOD" name="_METHOD" value="DELETE" />
|
|
|
|
<input type="hidden" id="deleteid" name="deleteid" value="<?php echo $row['users_id']; ?>" />
|
|
|
|
<button class="btn btn-danger btn-sm" id="deluser" name="deluser" value="deluser" type="submit" <?php if ($row['users_username'] == "admin"): echo "disabled"; endif; if ($row['users_username'] == "KIOSK"): echo "disabled"; endif; ?>><i class="fa fa-trash"></i> </button>
|
|
|
|
</form>
|
|
|
|
</td>
|
2018-10-15 15:14:36 -04:00
|
|
|
</tr>
|
2021-04-21 20:05:47 -04:00
|
|
|
<?php endif; ?>
|
|
|
|
<?php endif; ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<?php endforeach; ?>
|
|
|
|
</tbody>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<?php
|
|
|
|
$minpasslength = $StaticFunctions->getMinPass();
|
|
|
|
?>
|
|
|
|
|
2021-06-01 10:52:51 -04:00
|
|
|
|
|
|
|
|
2018-10-15 15:14:36 -04:00
|
|
|
<!-- MODAL START -->
|
|
|
|
<div class="modal fade" id="addUserModal" tabindex="-1" role="dialog" aria-labelledby="Site" aria-hidden="true">
|
|
|
|
<div class="modal-dialog" role="document">
|
|
|
|
<div class="modal-content">
|
|
|
|
<div class="modal-header">
|
|
|
|
<h5 class="modal-title" id="AddUser"><?php echo $transLang['ADD_USER']; ?></h5>
|
|
|
|
<button type="button" class="close" data-dismiss="modal" aria-label="Close">
|
|
|
|
<span aria-hidden="true">×</span>
|
|
|
|
</button>
|
|
|
|
</div>
|
|
|
|
<div class="modal-body">
|
|
|
|
<form class="form-inline my-2 my-lg-0" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
|
|
|
|
<div class="row">
|
2021-05-07 15:57:31 -04:00
|
|
|
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="col-sm">
|
|
|
|
<p class="lead"><?php echo $transLang['ADD_USER_DESC'] . $minpasslength; ?></p>
|
|
|
|
</div>
|
2021-05-07 15:57:31 -04:00
|
|
|
<?php } ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
</div>
|
|
|
|
<fieldset id="registration">
|
|
|
|
<div class="form-group">
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
|
|
|
<input type="text" class="form-control" id="firstname" name="firstname" placeholder="First Name" required />
|
|
|
|
</div>
|
|
|
|
<div class="col-sm">
|
|
|
|
<input type="text" class="form-control" id="lastname" name="lastname" placeholder="Last Name" required />
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php } ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="row">
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="col-sm">
|
|
|
|
<input type="text" class="form-control" id="username" name="username" placeholder="Username" required />
|
|
|
|
</div>
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php } ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="col-sm">
|
|
|
|
<input type="text" class="form-control" id="email" name="email" placeholder="Email" />
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php if (Registry::AUTHMETHOD == 'INTERNAL') { ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
|
|
|
<input type="password" class="form-control" id="password" name="password" placeholder="Password" required />
|
|
|
|
</div>
|
|
|
|
<div class="col-sm">
|
|
|
|
<input type="password" class="form-control" id="password_confirm" name="password_confirm" placeholder="Confirm Password" required />
|
|
|
|
</div>
|
|
|
|
</div>
|
2021-05-07 14:36:00 -04:00
|
|
|
<?php } ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
2021-05-28 11:33:45 -04:00
|
|
|
<select class="form-select" id="usertype" aria-label="<?php echo $transLang['ACCESS_LEVEL']; ?>" name="usertype" required>
|
2021-05-07 16:57:59 -04:00
|
|
|
<option value="" selected><?php echo $transLang['CHOOSE']; ?> <?php echo $transLang['ACCESS_LEVEL']; ?></option><?php foreach($Users->readUserTypeByUserTypeID("%") as $row): ?>
|
2018-10-15 15:14:36 -04:00
|
|
|
<option value="<?php echo $row['usertypes_id']; ?>"><?php echo $transLang[$row['usertypes_name']]; ?></option><?php endforeach; ?>
|
|
|
|
</select>
|
|
|
|
</div>
|
|
|
|
<div class="col-sm">
|
|
|
|
<button type="submit" class="form-control btn btn-block btn-primary" value="Submit" name="newuser"><i class="fa fa-user-plus"></i> <?php echo $transLang['ADD_USER']; ?></button>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</fieldset>
|
|
|
|
</form>
|
|
|
|
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<!-- MODAL END -->
|
2018-10-19 19:00:44 -04:00
|
|
|
<!-- USER MGMT END -->
|
2018-10-15 15:14:36 -04:00
|
|
|
|
2018-10-19 19:00:44 -04:00
|
|
|
<?php
|
|
|
|
|
2021-04-21 12:07:02 -04:00
|
|
|
// delete site only if submitted by button
|
2018-10-19 19:00:44 -04:00
|
|
|
if (!empty($_POST['delsite'])) {
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] == 'DELETE' || ($_SERVER['REQUEST_METHOD'] == 'POST' && $_POST['_METHOD'] == 'DELETE')) {
|
|
|
|
$deleteid = (int) $_POST['deleteid'];
|
2021-05-07 16:57:59 -04:00
|
|
|
$SiteInfo->deleteSitePermissionByUserAndSite ('0', $deleteid);
|
|
|
|
$SiteInfo->deleteSitePermissionByUserAndSite ('1', $deleteid);
|
|
|
|
$SiteInfo->deleteSitePermissionByUserAndSite ('2', $deleteid);
|
2018-10-19 19:00:44 -04:00
|
|
|
echo $SiteInfo->deleteSite($deleteid);
|
|
|
|
echo "site deleted!";
|
|
|
|
header('Location: ' . $_SERVER['PHP_SELF']);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Set up pagination
|
|
|
|
$page_num1 = 1;
|
|
|
|
if(!empty($_GET['pnum1'])):
|
|
|
|
$page_num1 = filter_input(INPUT_GET, 'pnum1', FILTER_VALIDATE_INT);
|
|
|
|
if(false === $page_num1):
|
|
|
|
$page_num1 = 1;
|
|
|
|
endif;
|
|
|
|
endif;
|
|
|
|
$offset1 = ($page_num1 - 1) * $StaticFunctions->getPageRows();
|
2021-04-15 03:51:34 -04:00
|
|
|
$row_count1 = count($SiteInfo->listSite("0", "0"));
|
2018-10-19 19:00:44 -04:00
|
|
|
$page_count1 = 0;
|
|
|
|
if (0 === $row_count1): else: $page_count1 = (int)ceil($row_count1 / $StaticFunctions->getPageRows()); if($page_num1 > $page_count1): $page_num1 = 1; endif; endif;
|
|
|
|
?>
|
|
|
|
|
|
|
|
<!-- SITE MGMT START -->
|
2018-10-16 11:07:32 -04:00
|
|
|
<div class="container">
|
|
|
|
<div class="row">
|
|
|
|
<div class="col-sm">
|
2018-10-19 19:00:44 -04:00
|
|
|
<h2><?php echo $app_current_pageicon . $transLang['SITE']; ?></h2>
|
2018-10-16 11:07:32 -04:00
|
|
|
</div>
|
|
|
|
<div class="col-sm">
|
2021-06-01 10:52:51 -04:00
|
|
|
<button type="button" class="btn btn-success btn-lg" data-bs-toggle="modal" data-bs-target="#addSiteModal"><?php echo $transLang['ADD_SITE']; ?></button>
|
2018-10-16 11:07:32 -04:00
|
|
|
</div>
|
|
|
|
</div>
|
2018-10-19 19:00:44 -04:00
|
|
|
<?php echo '<ul class="pagination pagination-sm"><li class="page-item disabled"><a class="page-link" href="#" tabindex="-1">' . $transLang['PAGE'] . '</a></li>'; for ($i1 = 1; $i1 <= $page_count1; $i1++): echo '<li class="page-item'; if ($i1 === $page_num1): echo ' active'; else: echo ' '; endif; echo '"><a class="page-link" href="' . $_SERVER['PHP_SELF'] . '?pnum1=' . $i1 . '">' . $i1 . '</a></li>'; endfor; echo '</ul>'; ?>
|
2018-10-16 11:07:32 -04:00
|
|
|
<table class="table">
|
|
|
|
<thead class="thead-dark">
|
|
|
|
<tr>
|
2018-10-19 19:00:44 -04:00
|
|
|
<th><?php echo $transLang['NAME']; ?></th><th><?php echo $transLang['TIMEZONE']; ?></th><th><?php echo $transLang['REGION']; ?></th><th><?php echo $transLang['ACTIONS']; ?></th>
|
2018-10-16 11:07:32 -04:00
|
|
|
</tr>
|
|
|
|
</thead>
|
|
|
|
<tbody>
|
2021-04-15 03:51:34 -04:00
|
|
|
<?php foreach($SiteInfo->listSite($StaticFunctions->getPageRows(), $offset1) as $row1): ?>
|
2021-04-21 20:05:47 -04:00
|
|
|
<?php if ($row1['sites_name'] === "NOSITE"): echo " "; else: ?>
|
2018-10-16 11:07:32 -04:00
|
|
|
<tr>
|
2018-10-19 19:00:44 -04:00
|
|
|
<td><?php echo $row1['sites_name']; ?></td><td><?php echo $row1['sites_timezone']; ?></td><td><?php echo $row1['sites_region']; ?></td><td><form method="post" onsubmit="return confirm('<?php echo $transLang['DELETE_WARNING']; ?>')"><input type="hidden" id="_METHOD" name="_METHOD" value="DELETE" /><input type="hidden" id="deleteid" name="deleteid" value="<?php echo $row1['sites_id']; ?>" /><button class="btn btn-danger btn-sm" id="deluser" name="delsite" value="delsite" type="submit"><i class="fa fa-trash"></i> </button></form></td>
|
2018-10-16 11:07:32 -04:00
|
|
|
</tr>
|
2021-04-21 20:05:47 -04:00
|
|
|
<?php endif; ?>
|
2018-10-16 11:07:32 -04:00
|
|
|
<?php endforeach; ?>
|
|
|
|
</tbody>
|
|
|
|
</table>
|
|
|
|
</div>
|
|
|
|
<?php
|
|
|
|
$minpasslength = $StaticFunctions->getMinPass();
|
|
|
|
?>
|
|
|
|
|
|
|
|
|
2021-06-01 10:52:51 -04:00
|
|
|
|
|
|
|
<!-- START ADDSITE MODAL -->
|
|
|
|
<div class="modal fade" id="addSiteModal" tabindex="-1" role="dialog">
|
|
|
|
<div class="modal-dialog" role="document">
|
|
|
|
<div class="modal-content">
|
|
|
|
<div class="modal-header">
|
|
|
|
<h5 class="modal-title" id="AddSite"><?php echo $transLang['ADD_SITE']; ?></h5>
|
|
|
|
<button type="button" class="btn-close" data-bs-dismiss="modal"></button>
|
|
|
|
</div>
|
|
|
|
<div class="modal-body">
|
|
|
|
<form class="form form-approve" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
|
|
|
|
<div class="row row-cols-1">
|
|
|
|
<div class="col d-grid gap-2">
|
|
|
|
<div class="input-group input-group-sm mb-0">
|
|
|
|
<span class="input-group-text"><?php echo $transLang['NAME']; ?></span>
|
|
|
|
<input type="text" class="form-control" id="sitename" name="sitename" required />
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<div class="row row-cols-1">
|
|
|
|
<div class="col d-grid gap-2">
|
|
|
|
<div class="input-group input-group-sm mb-0">
|
|
|
|
<span class="input-group-text"><?php echo $transLang['TIMEZONE']; ?></span>
|
|
|
|
<select class="form-control" id="timezone" name="timezone" required>
|
|
|
|
<option value=""><?php echo $transLang['TIMEZONE']; ?></option>
|
|
|
|
<?php foreach(DateTimeZone::listIdentifiers(DateTimeZone::ALL) as $row2) { ?>
|
|
|
|
<option><?php echo $row2; ?></option>
|
|
|
|
<?php }; ?>
|
|
|
|
</select>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<div class="row row-cols-1">
|
|
|
|
<div class="col d-grid gap-2">
|
|
|
|
<div class="input-group input-group-sm mb-0">
|
|
|
|
<span class="input-group-text"><?php echo $transLang['NAME']; ?></span>
|
|
|
|
<select class="form-control" id="region" name="region" required>
|
|
|
|
<option value=""><?php echo $transLang['REGION']; ?></option>
|
|
|
|
<option>CAN</option>
|
|
|
|
<option>EMEA</option>
|
|
|
|
<option>US</option>
|
|
|
|
</select>
|
2018-10-16 11:07:32 -04:00
|
|
|
</div>
|
2021-06-01 10:52:51 -04:00
|
|
|
</div>
|
2018-10-16 11:07:32 -04:00
|
|
|
</div>
|
2021-06-01 10:52:51 -04:00
|
|
|
<div class="row row-cols-1">
|
|
|
|
<div class="col d-grid gap-2">
|
|
|
|
<button type="button" class="btn btn-secondary btn-sm" data-dismiss="modal"><?php echo $transLang['CANCEL']; ?></button>
|
|
|
|
<button type="submit" class="btn btn-success btn-sm" value="Submit" name="newsite"><i class="fas fa-user-plus"></i> <?php echo $transLang['ADD_SITE']; ?></button>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</form>
|
2018-10-16 11:07:32 -04:00
|
|
|
</div>
|
2021-06-01 10:52:51 -04:00
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
</div>
|
|
|
|
<!-- END ADDSITE MODAL -->
|
2018-10-16 11:07:32 -04:00
|
|
|
|
2021-06-01 10:52:51 -04:00
|
|
|
<!-- END PAGE -->
|
2018-10-16 11:07:32 -04:00
|
|
|
|
2021-06-01 10:52:51 -04:00
|
|
|
<?php }; require_once("inc/footer.inc.php"); ?>
|