Changeset 19 for trunk/services/admins.php

Timestamp:

Nov 14, 2005 6:22:44 AM (19 years ago)

Author:

scdev

Message:

Rebuilt the services/admins.php script and templates. Fixes since v2 conversion. Lots of bugs and more to come!

File:

• trunk/services/admins.php (modified) (15 diffs)

trunk/services/admins.php

@@ -21 +21 @@
 
 /******************************************************************************
- * CODE CONFIG
+ * CONFIG
  *****************************************************************************/
  
@@ -31 +31 @@
 
 // Instantiate a sorting object with the default sort and order. Add SQL for each column.
-$so = new SortOrder('admin_id', 'DESC');
-$so->setColumn('admin_id', 'admin_id ASC', 'admin_id DESC');
-$so->setColumn('username', 'username ASC', 'username DESC');
-$so->setColumn('userpass', 'userpass ASC', 'userpass DESC');
-$so->setColumn('first_name', 'first_name ASC', 'first_name DESC');
-$so->setColumn('last_name', 'last_name ASC', 'last_name DESC');
-$so->setColumn('phone', 'phone ASC', 'phone DESC');
-$so->setColumn('email', 'email ASC', 'email DESC');
-$so->setColumn('priv', 'priv ASC', 'priv DESC');
-$so->setColumn('seconds_online', 'seconds_online ASC', 'seconds_online DESC');
-$so->setColumn('added_datetime', 'added_datetime ASC', 'added_datetime DESC');
-$so->setColumn('last_login_datetime', 'last_login_datetime ASC', 'last_login_datetime DESC');
-$so->setColumn('last_access_datetime', 'last_access_datetime ASC', 'last_access_datetime DESC');
-$so->setColumn('last_login_ip', 'last_login_ip ASC', 'last_login_ip DESC');
+$so = new SortOrder('admin_tbl.admin_id', 'DESC');
+$so->setColumn('admin_tbl.admin_id', 'admin_tbl.admin_id ASC', 'admin_tbl.admin_id DESC');
+$so->setColumn('admin_tbl.username', 'admin_tbl.username ASC', 'admin_tbl.username DESC');
+$so->setColumn('admin_tbl.userpass', 'admin_tbl.userpass ASC', 'admin_tbl.userpass DESC');
+$so->setColumn('admin_tbl.first_name', 'admin_tbl.first_name ASC', 'admin_tbl.first_name DESC');
+$so->setColumn('admin_tbl.last_name', 'admin_tbl.last_name ASC', 'admin_tbl.last_name DESC');
+$so->setColumn('admin_tbl.email', 'admin_tbl.email ASC', 'admin_tbl.email DESC');
+$so->setColumn('admin_tbl.user_type', 'admin_tbl.user_type ASC', 'admin_tbl.user_type DESC');
+$so->setColumn('admin_tbl.seconds_online', 'admin_tbl.seconds_online ASC', 'admin_tbl.seconds_online DESC');
+$so->setColumn('admin_tbl.last_login_datetime', 'admin_tbl.last_login_datetime ASC', 'admin_tbl.last_login_datetime DESC');
+$so->setColumn('admin_tbl.last_access_datetime', 'admin_tbl.last_access_datetime ASC', 'admin_tbl.last_access_datetime DESC');
+$so->setColumn('admin_tbl.last_login_ip', 'admin_tbl.last_login_ip ASC', 'admin_tbl.last_login_ip DESC');
+$so->setColumn('admin_tbl.added_by_user_id', 'admin_tbl.added_by_user_id ASC', 'admin_tbl.added_by_user_id DESC');
+$so->setColumn('admin_tbl.modified_by_user_id', 'admin_tbl.modified_by_user_id ASC', 'admin_tbl.modified_by_user_id DESC');
+$so->setColumn('admin_tbl.added_datetime', 'admin_tbl.added_datetime ASC', 'admin_tbl.added_datetime DESC');
+$so->setColumn('admin_tbl.modified_datetime', 'admin_tbl.modified_datetime ASC', 'admin_tbl.modified_datetime DESC');
 
 // Instantiate page numbers. Total items are set and calculation is done in the getRecordList function.
@@ -192 +194 @@
 
     // If the username was changed during edit, verify.
-    if (getFormData('priv') == 'root' && 'root' != $auth->getVal('priv')) {
-        $fv->addError('priv', sprintf(_("You do not have clearance to create a user with root privileges."), null));
+    if (getFormData('user_type') == 'root' && 'root' != $auth->getVal('user_type')) {
+        $fv->addError('user_type', sprintf(_("You do not have clearance to create a user with root privileges."), null));
     }
 
@@ -207 +209 @@
     
     $fv->stringLength('last_name', 0, 255, _("<strong>Last name</strong> must contain less than 256 characters."));
-    
-    $fv->stringLength('phone', 0, 255, _("<strong>Phone</strong> must contain less than 256 characters."));
-    $fv->validatePhone('phone');
-    
+
+    $fv->isEmpty('email', _("<strong>Email</strong> cannot be blank."));
     $fv->stringLength('email', 0, 255, _("<strong>Email</strong> must contain less than 256 characters."));
     $fv->validateEmail('email');
     
-    $fv->stringLength('county', 0, 255, _("<strong>County</strong> has an invalid selection."));
-    
-    $fv->stringLength('priv', 0, 255, _("<strong>Priv</strong> has an invalid selection."));
+    $fv->isEmpty('user_type', _("<strong>User type</strong> cannot be blank."));
+    $fv->stringLength('user_type', 0, 255, _("<strong>User type</strong> has an invalid selection."));
 }
 
 function &addRecordForm()
 {
-    // set default values for the reset of the fields.
-    $frm['priv'] = 'admin';
-    $frm['new_op'] = 'insert';
-    $frm['submit_caption'] = _("Add admin");
-    $frm['repeat_caption'] = _("Add &amp; repeat");
-    $frm['cancel_caption'] = _("Cancel");
+    // Set default values for the reset of the fields.
+    $frm = array(
+        'admin_id' => '',
+        'username' => '',
+        'userpass' => '',
+        'first_name' => '',
+        'last_name' => '',
+        'email' => '',
+        'user_type' => '',
+        'seconds_online' => '0',
+        'last_login_datetime' => '0000-00-00 00:00:00',
+        'last_access_datetime' => '0000-00-00 00:00:00',
+        'last_login_ip' => '0.0.0.0',
+        'added_by_user_id' => '',
+        'modified_by_user_id' => '',
+        'added_datetime' => '0000-00-00 00:00:00',
+        'modified_datetime' => '0000-00-00 00:00:00',
+        'new_op' => 'insert',
+        'submit_buttons' => array(
+            'submit' => _("Add Admin"),
+            'repeat' => _("Add &amp; repeat"),
+            'cancel' => _("Cancel"),
+        ),
+    );
 
     return $frm;
@@ -237 +254 @@
     if ($lock->isLocked() && !$lock->isMine()) {
         $lock->dieErrorPage();
-    } else {
-        // Get the information for the form.
-        $qid = DB::query("
-            SELECT * from admin_tbl
-            WHERE admin_id = '" . addslashes($id) . "'
-        ");
-        if (!$frm = mysql_fetch_assoc($qid)) {
-            App::logMsg('Could not find record with admin_id: ' . $id, LOG_WARNING, __FILE__, __LINE__);
-            App::raiseMsg(sprintf(_("The requested record %s could not be found"), $id), MSG_ERR, __FILE__, __LINE__);
-            App::dieBoomerangURL();
-        }
-        
-        // Lock this record.
-        $lock->set('admin_tbl', 'admin_id', $id, $frm['address']);
-        
-        // Set misc values for the form.
-        $frm['old_username'] = $frm['username'];
-        $frm['userpass'] = '***************';
-        $frm['new_op'] = 'update';
-        $frm['submit_caption'] = _("Save changes");
-        $frm['repeat_caption'] = _("Save &amp; edit next");
-        $frm['reset_caption']  = _("Reset");
-        $frm['cancel_caption'] = _("Cancel");
-        $frm['admin_id'] = $id;
-    
-        return $frm;
-    }
+    }
+
+    // Get the information for the form.
+    $qid = DB::query("
+        SELECT * 
+        FROM admin_tbl
+        WHERE admin_id = '" . addslashes($id) . "'
+    ");
+    if (!$frm = mysql_fetch_assoc($qid)) {
+        App::logMsg('Could not find record with admin_id: ' . $id, LOG_WARNING, __FILE__, __LINE__);
+        App::raiseMsg(sprintf(_("The requested record %s could not be found"), $id), MSG_ERR, __FILE__, __LINE__);
+        App::dieBoomerangURL();
+    }
+    
+    // Lock this record.
+    $lock->set('admin_tbl', 'admin_id', $id, $frm['username']);
+    
+    // Set misc values for the form.
+    $frm = array_merge(array(
+        'admin_id' => '',
+        'old_username' => $frm['username'],
+        'username' => '',
+//         'userpass' => '****************',
+        'first_name' => '',
+        'last_name' => '',
+        'email' => '',
+        'user_type' => '',
+        'seconds_online' => '0',
+        'last_login_datetime' => '0000-00-00 00:00:00',
+        'last_access_datetime' => '0000-00-00 00:00:00',
+        'last_login_ip' => '0.0.0.0',
+        'added_by_user_id' => '',
+        'modified_by_user_id' => '',
+        'added_datetime' => '0000-00-00 00:00:00',
+        'modified_datetime' => '0000-00-00 00:00:00',
+        'new_op' => 'update',
+        'submit_buttons' => array(
+            'submit' => _("Save changes"),
+            'repeat' => _("Save &amp; edit next"),
+            'reset' => _("Reset"),
+            'cancel' => _("Cancel"),
+        ),
+    ), $frm, array('userpass' => '****************'));
+
+    return $frm;
 }
 
@@ -280 +315 @@
         // Get the information for this object.
         $qid = DB::query("
-            SELECT username, priv from admin_tbl
+            SELECT username, user_type from admin_tbl
             WHERE admin_id = '" . addslashes($id) . "'
         ");
-        if (! list($name, $priv) = mysql_fetch_row($qid)) {
+        if (! list($name, $user_type) = mysql_fetch_row($qid)) {
             App::logMsg('Could not find record with admin_id: ' . $id, LOG_WARNING, __FILE__, __LINE__);
             App::raiseMsg(sprintf(_("The requested record %s could not be found"), $id), MSG_ERR, __FILE__, __LINE__);
@@ -292 +327 @@
         $qid = DB::query("SELECT COUNT(*) from admin_tbl");
         list($num_admins) = mysql_fetch_row($qid);
-        if ('root' == $priv && 'root' != $auth->getVal('priv')) {
+        if ('root' == $user_type && 'root' != $auth->getVal('user_type')) {
             // Only root users can delete root users!
             App::raiseMsg(_("You do not have clearance to delete a root administrator."), MSG_NOTICE, __FILE__, __LINE__);
@@ -325 +360 @@
             first_name,
             last_name,
-            phone,
             email,
-            priv,
+            user_type,
+            added_by_user_id,
             added_datetime
         ) VALUES (
@@ -333 +368 @@
             '" . addslashes($frm['first_name']) . "',
             '" . addslashes($frm['last_name']) . "',
-            '" . addslashes($frm['phone']) . "',
             '" . addslashes($frm['email']) . "',
-            '" . addslashes($frm['priv']) . "',
+            '" . addslashes($frm['user_type']) . "',
+            '" . addslashes($auth->getVal('user_id')) . "',
             NOW()
         )
@@ -344 +379 @@
     $auth->setPassword($last_insert_id, $frm['userpass']);
     
-    App::raiseMsg(sprintf(_("The admin <strong>%s</strong> has been added."), $frm['username']), MSG_SUCCESS, __FILE__, __LINE__);
+    // Create version.
+    $version = new RecordVersion($GLOBALS['auth']);
+    $version->create('admin_tbl', 'admin_id', $last_insert_id, $frm['username']);
+    
+    App::raiseMsg(sprintf(_("The Admin <strong>%s</strong> has been added."), $frm['username']), MSG_SUCCESS, __FILE__, __LINE__);
     
     return $last_insert_id;
@@ -373 +412 @@
                 first_name = '" . addslashes($frm['first_name']) . "',
                 last_name = '" . addslashes($frm['last_name']) . "',
-                phone = '" . addslashes($frm['phone']) . "',
                 email = '" . addslashes($frm['email']) . "',
-                priv = '" . addslashes($frm['priv']) . "'
+                user_type = '" . addslashes($frm['user_type']) . "',
+                modified_by_user_id = '" . addslashes($auth->getVal('user_id')) . "',
+                modified_datetime = NOW()
             WHERE admin_id = '" . addslashes($frm['admin_id']) . "'
         ");
 
-        App::raiseMsg(sprintf(_("The admin <strong>%s</strong> has been updated."), $frm['username']), MSG_SUCCESS, __FILE__, __LINE__);
+        // Create version.
+        $version = new RecordVersion($GLOBALS['auth']);
+        $version->create('admin_tbl', 'admin_id', $frm['admin_id'], $frm['username']);
+    
+        App::raiseMsg(sprintf(_("The Admin <strong>%s</strong> has been updated."), $frm['username']), MSG_SUCCESS, __FILE__, __LINE__);
 
         // Unlock record.
@@ -391 +435 @@
     global $so;
     
-    // Build search query if $qry is not empty.
-    $sql_delim = 'WHERE';
-    $search_where_clause = '';
-    $qry = getFormData('search_query');
-    if (!empty($qry)) {
-        $qry_words = preg_split('/[^\w]/', $qry);
+    $where_clause = '';
+    
+    // Build search query if available.
+    if (getFormData('search_query', false)) {
+        $qry_words = preg_split('/[^\w]/', getFormData('search_query'));
         for ($i=0; $i<sizeof($qry_words); $i++) {
-            $search_where_clause .= "
-                $sql_delim (
-                    username LIKE '%" . addslashes($qry_words[$i]) . "%'
-                    OR first_name LIKE '%" . addslashes($qry_words[$i]) . "%'
-                    OR last_name LIKE '%" . addslashes($qry_words[$i]) . "%'
-                    OR phone LIKE '%" . addslashes($qry_words[$i]) . "%'
-                    OR email LIKE '%" . addslashes($qry_words[$i]) . "%'
-                    OR priv LIKE '%" . addslashes($qry_words[$i]) . "%'
+            $where_clause .= (empty($where_clause) ? 'WHERE' : 'AND') . "
+                (
+                    admin_tbl.username LIKE '%" . addslashes($qry_words[$i]) . "%'
+                    OR admin_tbl.first_name LIKE '%" . addslashes($qry_words[$i]) . "%'
+                    OR admin_tbl.last_name LIKE '%" . addslashes($qry_words[$i]) . "%'
+                    OR admin_tbl.email LIKE '%" . addslashes($qry_words[$i]) . "%'
                 )
             ";
-            $sql_delim = 'AND';
-        }
-    }
-    
-    $where_clause = '';
+        }
+    }
+
     if (getFormData('search_query', false)) {
         // Search query.
         $where_clause = $search_where_clause;
     }
-    if (getFormData('filter_admin_priv', false)) {
+    if (getFormData('filter_admin_user_type', false)) {
         // Limit by filter.
-        $where_clause .= (empty($where_clause) ? 'WHERE' : 'AND') . " priv = '" . addslashes(getFormData('filter_admin_priv')) . "'";
+        $where_clause .= (empty($where_clause) ? 'WHERE' : 'AND') . " user_type = '" . addslashes(getFormData('filter_admin_user_type')) . "'";
     }
 
     // Count the total number of records so we can do something about the page numbers.
-    $qid = DB::query("SELECT COUNT(*) FROM admin_tbl $where_clause");
+    $qid = DB::query("
+        SELECT COUNT(*) 
+        FROM admin_tbl 
+        $where_clause
+    ");
     list($num_results) = mysql_fetch_row($qid);
     
@@ -432 +475 @@
     // Final SQL, with sort and page limiters.
     $sql = "
-        SELECT * FROM admin_tbl
+        SELECT 
+            admin_tbl.*, 
+            a1.username AS added_admin_username,
+            a2.username AS modified_admin_username
+        FROM admin_tbl
+        LEFT JOIN admin_tbl a1 ON (admin_tbl.added_by_user_id = a1.admin_id)
+        LEFT JOIN admin_tbl a2 ON (admin_tbl.modified_by_user_id = a2.admin_id)
         $where_clause
         " . $so->getSortOrderSQL() . "
@@ -449 +498 @@
     }
     
-    if (SessionCache::isCached($_SERVER['PHP_SELF']) && FALSE) { ///
+    if (SessionCache::isCached($_SERVER['PHP_SELF']) && false) {
         // Get the cached results.
         $list = SessionCache::getCache($_SERVER['PHP_SELF']);
@@ -460 +509 @@
         }
             
-        // Cache the results.
-        SessionCache::putCache($list, $_SERVER['PHP_SELF']);
+        if (isset($list) && !empty($list)) {
+            // Cache the results.
+            SessionCache::putCache($list, $_SERVER['PHP_SELF']);
+        }
     }