stian/gallery3
1
0
Fork 0
mirror of https://github.com/Pathduck/gallery3.git synced 2026-04-18 11:39:19 -04:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
Files
eb56ee821f0261c0106252c561e314b753b4cbb5
gallery3/modules/user/controllers/admin_users.php
Tim Almdal eb56ee821f Add a confirmation password input field that must match the primary 
password field in order for the update to succeed.  If there is no
data entered in the primary password field, the confirmation field is
ignored.

Addresses Trac Ticket #4
2009-02-03 00:17:40 +00:00

265 lines
8.1 KiB
PHP
Raw Blame History

<?php defined("SYSPATH") or die("No direct script access.");
/**
* Gallery - a web based photo album viewer and editor
* Copyright (C) 2000-2008 Bharat Mediratta
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or (at
* your option) any later version.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA 02110-1301, USA.
*/
class Admin_Users_Controller extends Controller {
public function index() {
$view = new Admin_View("admin.html");
$view->content = new View("admin_users.html");
$view->content->users = ORM::factory("user")->orderby("name")->find_all();
$view->content->groups = ORM::factory("group")->orderby("name")->find_all();
print $view;
}
public function add_user() {
access::verify_csrf();
$form = user::get_add_form_admin();
$valid = $form->validate();
$name = $form->add_user->inputs["name"]->value;
$user = ORM::factory("user")->where("name", $name)->find();
if ($user->loaded) {
$form->add_user->inputs["name"]->add_error("in_use", 1);
$valid = false;
}
if ($form->add_user->password->value &&
$form->add_user->password->value != $form->add_user->password2->value) {
$form->add_user->password2->add_error("mistyped", 1);
$valid = false;
}
if ($valid) {
$user = user::create(
$name, $form->add_user->full_name->value, $form->add_user->password->value);
$user->email = $form->add_user->email->value;
$user->save();
message::success(t("Created user %user_name", array("user_name" => $user->name)));
print json_encode(array("result" => "success"));
} else {
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
}
public function add_user_form() {
print user::get_add_form_admin();
}
public function delete_user($id) {
access::verify_csrf();
$user = ORM::factory("user", $id);
if (!$user->loaded) {
kohana::show_404();
}
$form = user::get_delete_form_admin($user);
if($form->validate()) {
$name = $user->name;
$user->delete();
} else {
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
$message = t("Deleted user %user_name", array("user_name" => $name));
log::success("user", $message);
message::success($message);
print json_encode(array("result" => "success"));
}
public function delete_user_form($id) {
$user = ORM::factory("user", $id);
if (!$user->loaded) {
kohana::show_404();
}
print user::get_delete_form_admin($user);
}
public function edit_user($id) {
access::verify_csrf();
$user = ORM::factory("user", $id);
if (!$user->loaded) {
kohana::show_404();
}
$form = user::get_edit_form_admin($user);
$form->edit_user->password->rules("-required");
$valid = $form->validate();
if ($valid) {
$new_name = $form->edit_user->inputs["name"]->value;
if (ORM::factory("user")
->where("name", $new_name)
->where("id !=", $id)
->find()
->loaded) {
$form->edit_user->inputs["name"]->add_error("in_use", 1);
$valid = false;
}
}
if ($form->edit_user->password->value &&
$form->edit_user->password->value != $form->edit_user->password2->value) {
$form->edit_user->password2->add_error("mistyped", 1);
$valid = false;
}
if ($valid) {
$user->name = $new_name;
$user->full_name = $form->edit_user->full_name->value;
$user->password = $form->edit_user->password->value;
$user->email = $form->edit_user->email->value;
$user->save();
message::success(t("Changed user %user_name", array("user_name" => $user->name)));
print json_encode(array("result" => "success"));
} else {
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
}
public function edit_user_form($id) {
$user = ORM::factory("user", $id);
if (!$user->loaded) {
kohana::show_404();
}
print user::get_edit_form_admin($user);
}
public function add_user_to_group($user_id, $group_id) {
access::verify_csrf();
$group = ORM::factory("group", $group_id);
$user = ORM::factory("user", $user_id);
$group->add($user);
$group->save();
}
public function remove_user_from_group($user_id, $group_id) {
access::verify_csrf();
$group = ORM::factory("group", $group_id);
$user = ORM::factory("user", $user_id);
$group->remove($user);
$group->save();
}
public function group($group_id) {
$view = new View("admin_users_group.html");
$view->group = ORM::factory("group", $group_id);
print $view;
}
public function add_group() {
access::verify_csrf();
$form = group::get_add_form_admin();
$valid = $form->validate();
if ($valid) {
$new_name = $form->add_group->inputs["name"]->value;
$group = ORM::factory("group")->where("name", $new_name)->find();
if ($group->loaded) {
$form->add_group->inputs["name"]->add_error("in_use", 1);
$valid = false;
}
}
if ($valid) {
$group = group::create($new_name);
$group->save();
message::success(t("Created group %group_name", array("group_name" => $group->name)));
print json_encode(array("result" => "success"));
} else {
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
}
public function add_group_form() {
print group::get_add_form_admin();
}
public function delete_group($id) {
access::verify_csrf();
$group = ORM::factory("group", $id);
if (!$group->loaded) {
kohana::show_404();
}
$form = group::get_delete_form_admin($group);
if($form->validate()) {
$name = $group->name;
$group->delete();
} else {
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
$message = t("Deleted group %group_name", array("group_name" => $name));
log::success("group", $message);
message::success($message);
print json_encode(array("result" => "success"));
}
public function delete_group_form($id) {
$group = ORM::factory("group", $id);
if (!$group->loaded) {
kohana::show_404();
}
print group::get_delete_form_admin($group);
}
public function edit_group($id) {
access::verify_csrf();
$group = ORM::factory("group", $id);
if (!$group->loaded) {
kohana::show_404();
}
$form = group::get_edit_form_admin($group);
$valid = $form->validate();
if ($valid) {
$new_name = $form->edit_group->inputs["name"]->value;
$group = ORM::factory("group")->where("name", $new_name)->find();
if ($group->loaded) {
$form->edit_group->inputs["name"]->add_error("in_use", 1);
$valid = false;
}
}
if ($valid) {
$group->name = $form->edit_group->inputs["name"]->value;
$group->save();
message::success(t("Changed group %group_name", array("group_name" => $group->name)));
print json_encode(array("result" => "success"));
} else {
message::error(t("Failed to change group %group_name", array("group_name" => $group->name)));
print json_encode(array("result" => "error",
"form" => $form->__toString()));
}
}
public function edit_group_form($id) {
$group = ORM::factory("group", $id);
if (!$group->loaded) {
kohana::show_404();
}
print group::get_edit_form_admin($group);
}
}
Reference in New Issue View Git Blame Copy Permalink