edit.php 12.4 KB
Newer Older
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
<?php
/**
 * This program is part of Mahara
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
 *
 * @package    mahara
 * @subpackage admin
 * @author     Richard Mansfield <richard.mansfield@catalyst.net.nz>
 * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL
 * @copyright  (C) 2006,2007 Catalyst IT Ltd http://catalyst.net.nz
 *
 */

define('INTERNAL', 1);
28
define('INSTITUTIONALADMIN', 1);
29
define('MENUITEM', 'configusers/usersearch');
30
require(dirname(dirname(dirname(__FILE__))) . '/init.php');
31
define('TITLE', get_string('accountsettings', 'admin'));
32
33
34
35
36
define('SECTION_PLUGINTYPE', 'core');
define('SECTION_PLUGINNAME', 'admin');
require_once('pieforms/pieform.php');

$id = param_integer('id');
37
38
$user = new User;
$user->find_by_id($id);
39

40
global $USER;
41
42
if (!$USER->is_admin_for_user($user)) {
    redirect(get_config('wwwroot').'user/view.php?id='.$id);
43
}
44

45
46
$suspended = $user->get('suspendedcusr');
if (empty($suspended)) {
47
    $suspendform = pieform(array(
Richard Mansfield's avatar
Richard Mansfield committed
48
        'name'       => 'edituser_suspend',
49
50
51
52
53
54
55
56
        'plugintype' => 'core',
        'pluginname' => 'admin',
        'elements'   => array(
            'id' => array(
                 'type'    => 'hidden',
                 'value'   => $id,
            ),
            'reason' => array(
57
58
59
                'type'        => 'textarea',
                'rows'        => 5,
                'cols'        => 60,
60
61
62
63
64
65
66
67
68
69
                'title'       => get_string('reason'),
            ),
            'submit' => array(
                'type'  => 'submit',
                'value' => get_string('suspenduser','admin'),
            ),
        )
    ));
} else {
    $suspendform = pieform(array(
Richard Mansfield's avatar
Richard Mansfield committed
70
        'name'       => 'edituser_unsuspend',
71
72
73
74
75
76
77
78
79
80
81
82
83
        'plugintype' => 'core',
        'pluginname' => 'admin',
        'elements'   => array(
            'id' => array(
                 'type'    => 'hidden',
                 'value'   => $id,
            ),
            'submit' => array(
                'type'  => 'submit',
                'value' => get_string('unsuspenduser','admin'),
            ),
        )
    ));
84
    $suspender = display_name(get_record('usr', 'id', $suspended));
85
86
}

Richard Mansfield's avatar
Richard Mansfield committed
87
function edituser_suspend_submit(Pieform $form, $values) {
88
89
90
91
92
93
    global $SESSION;
    suspend_user($values['id'], $values['reason']);
    $SESSION->add_ok_msg(get_string('usersuspended', 'admin'));
    redirect('/admin/users/edit.php?id=' . $values['id']);
}

Richard Mansfield's avatar
Richard Mansfield committed
94
function edituser_unsuspend_submit(Pieform $form, $values) {
95
96
97
98
99
100
101
102
    global $SESSION;
    unsuspend_user($values['id']);
    $SESSION->add_ok_msg(get_string('userunsuspended', 'admin'));
    redirect('/admin/users/edit.php?id=' . $values['id']);
}


// Site-wide account settings
Richard Mansfield's avatar
Richard Mansfield committed
103
$elements = array();
104
105
106
107
108
109
110
111
112
113
114
115
116
117
$elements['id'] = array(
    'type'    => 'hidden',
    'rules'   => array('integer' => true),
    'value'   => $id,
);
$elements['password'] = array(
    'type'         => 'text',
    'title'        => get_string('resetpassword','admin'),
);
$elements['passwordchange'] = array(
    'type'         => 'checkbox',
    'title'        => get_string('forcepasswordchange','admin'),
    'defaultvalue' => $user->passwordchange,
);
118
119
120
121
122
123
124
125
126
127
128
129
if ($USER->get('admin')) {
    $elements['staff'] = array(
        'type'         => 'checkbox',
        'title'        => get_string('sitestaff','admin'),
        'defaultvalue' => $user->staff,
    );
    $elements['admin'] = array(
        'type'         => 'checkbox',
        'title'        => get_string('siteadmin','admin'),
        'defaultvalue' => $user->admin,
    );
}
130
$elements['quota'] = array(
131
    'type'         => 'bytes',
132
    'title'        => get_string('filequota','admin'),
133
    'defaultvalue' => $user->quota,
134
);
135
136
137
138
139
140

$authinstances = auth_get_auth_instances();
if (count($authinstances) > 1) {
    $options = array();

    foreach ($authinstances as $authinstance) {
Richard Mansfield's avatar
Richard Mansfield committed
141
        if ($USER->can_edit_institution($authinstance->name)) {
142
143
            $options[$authinstance->id] = $authinstance->displayname. ': '.$authinstance->instancename;
        }
144
145
    }

146
147
148
149
150
151
152
153
    if (isset($options[$user->authinstance])) {
        $elements['authinstance'] = array(
            'type' => 'select',
            'title' => get_string('authenticatedby', 'admin'),
            'options' => $options,
            'defaultvalue' => $user->authinstance,
        );
    }
154
155
}

156
157
158
159
160
$elements['submit'] = array(
    'type'  => 'submit',
    'value' => get_string('savechanges','admin'),
);

Richard Mansfield's avatar
Richard Mansfield committed
161
162
$siteform = pieform(array(
    'name'       => 'edituser_site',
163
164
165
166
167
168
169
    'renderer'   => 'table',
    'plugintype' => 'core',
    'pluginname' => 'admin',
    'elements'   => $elements,
));


Richard Mansfield's avatar
Richard Mansfield committed
170
function edituser_site_submit(Pieform $form, $values) {
171
172
173
174
175
176
177
178
    if (!$user = get_record('usr', 'id', $values['id'])) {
        return false;
    }

    if (isset($values['password']) && $values['password'] !== '') {
        $user->password = $values['password'];
    }
    $user->passwordchange = (int) ($values['passwordchange'] == 'on');
179
    $user->quota = $values['quota'];
180
181
182
183
184
185
186
187
188
189
190
191
192

    global $USER;
    if ($USER->get('admin')) {  // Not editable by institutional admins
        $user->staff = (int) ($values['staff'] == 'on');
        $user->admin = (int) ($values['admin'] == 'on');
    }

    // Authinstance can be changed by institutional admins if both the
    // old and new authinstances belong to the admin's institutions
    if (isset($values['authinstance']) &&
        ($USER->get('admin') || 
         ($USER->is_institutional_admin(get_field('auth_instance', 'institution', 'id', $values['authinstance'])) &&
          $USER->is_institutional_admin(get_field('auth_instance', 'institution', 'id', $user->authinstance))))) {
193
194
        $user->authinstance = $values['authinstance'];
    }
195
196
197
198
199
200
201

    update_record('usr', $user);

    redirect('/admin/users/edit.php?id='.$user->id);
}


202
// Institution settings form
Richard Mansfield's avatar
Richard Mansfield committed
203
204
205
206
207
208
209
210

$elements = array(
    'id' => array(
         'type'    => 'hidden',
         'value'   => $id,
     ),
);

211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
$allinstitutions = get_records_assoc('institution');
$currentdate = getdate();
foreach ($user->get('institutions') as $i) {
    $elements[$i->institution.'_settings'] = array(
        'type' => 'fieldset',
        'legend' => $allinstitutions[$i->institution]->displayname,
        'elements' => array(
            $i->institution.'_expiry' => array(
                'type'         => 'date',
                'title'        => get_string('membershipexpiry'),
                'minyear'      => $currentdate['year'],
                'maxyear'      => $currentdate['year'] + 20,
                'defaultvalue' => $i->expiry
            ),
            $i->institution.'_studentid' => array(
                'type'         => 'text',
                'title'        => get_string('studentid'),
                'defaultvalue' => $i->studentid,
            ),
            $i->institution.'_staff' => array(
                'type'         => 'checkbox',
                'title'        => get_string('institutionstaff','admin'),
                'defaultvalue' => $i->staff,
            ),
            $i->institution.'_admin' => array(
                'type'         => 'checkbox',
                'title'        => get_string('institutionadmin','admin'),
                'defaultvalue' => $i->admin,
            ),
            $i->institution.'_submit' => array(
                'type'  => 'submit',
                'value' => get_string('update'),
            ),
        ),
Richard Mansfield's avatar
Richard Mansfield committed
245
    );
246
    $elements[$i->institution.'_remove'] = array(
Richard Mansfield's avatar
Richard Mansfield committed
247
        'type'  => 'submit',
248
        'value' => get_string('remove'),
249
        'confirm' => get_string('confirmremoveuserfrominstitution', 'admin'),
Richard Mansfield's avatar
Richard Mansfield committed
250
251
    );
}
252

253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
// Only site admins can add institutions; institutional admins must invite
if ($USER->get('admin') 
    && (get_config('usersallowedmultipleinstitutions') || count($user->institutions) == 0)) {
    $options = array();
    foreach ($allinstitutions as $i) {
        if (!$user->in_institution($i->name) && $i->name != 'mahara') {
            $options[$i->name] = $i->displayname;
        }
    }
    if (!empty($options)) {
        $elements['addinstitution'] = array(
            'type'         => 'select',
            'title'        => get_string('addinstitution', 'admin'),
            'options'      => $options,
        );
        $elements['add'] = array(
            'type'  => 'submit',
            'value' => get_string('addinstitution','admin'),
        );
    }
}

Richard Mansfield's avatar
Richard Mansfield committed
275
276
277
278
279
280
281
282
283
$institutionform = pieform(array(
    'name'       => 'edituser_institution',
    'renderer'   => 'table',
    'plugintype' => 'core',
    'pluginname' => 'admin',
    'elements'   => $elements,
));

function edituser_institution_submit(Pieform $form, $values) {
284
285
    $user = new User;
    if (!$user->find_by_id($values['id'])) {
Richard Mansfield's avatar
Richard Mansfield committed
286
287
        return false;
    }
288
    $userinstitutions = $user->get('institutions');
Richard Mansfield's avatar
Richard Mansfield committed
289

290
    global $USER;
291
    foreach ($userinstitutions as $i) {
Richard Mansfield's avatar
Richard Mansfield committed
292
        if ($USER->can_edit_institution($i->institution)) {
293
294
295
296
            if (isset($values[$i->institution.'_submit'])) {
                $newuser = (object) array(
                    'usr'         => $user->id,
                    'institution' => $i->institution,
297
                    'ctime'       => db_format_timestamp($i->ctime),
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
                    'studentid'   => $values[$i->institution . '_studentid'],
                    'staff'       => (int) ($values[$i->institution . '_staff'] == 'on'),
                    'admin'       => (int) ($values[$i->institution . '_admin'] == 'on'),
                );
                if ($values[$i->institution . '_expiry']) {
                    $newuser->expiry = db_format_timestamp($values[$i->institution . '_expiry']);
                }
                db_begin();
                delete_records('usr_institution', 'usr', $user->id, 'institution', $i->institution);
                insert_record('usr_institution', $newuser);
                handle_event('updateuser', $user->id);
                db_commit();
                break;
            } else if (isset($values[$i->institution.'_remove'])) {
                db_begin();
                delete_records('usr_institution', 'usr', $user->id, 'institution', $i->institution);
                handle_event('updateuser', $user->id);
                db_commit();
                // Institutional admins can no longer access this page
                // if they remove the user from the institution, so
                // send them back to user search.
                if (!$USER->get('admin')) {
                    redirect('/admin/users/search.php');
                }
                break;
            }
        }
325
326
    }

327
328
329
330
331
332
    if (isset($values['add']) && $USER->get('admin')
        && (empty($userinstitutions) || get_config('usersallowedmultipleinstitutions'))) {
        // Do nothing if the user is already in the institution
        $addinstitution = get_record('institution', 'name', $values['addinstitution']);
        if (!$addinstitution || $addinstitution->name == 'mahara'
            || $user->in_institution($addinstitution->name)) {
Richard Mansfield's avatar
Richard Mansfield committed
333
334
            redirect('/admin/users/edit.php?id='.$user->id);
        }
335
336
337
338
339
        $now = time();
        if (!empty($addinstitution->defaultmembershipperiod)) {
            $expiry = db_format_timestamp($now + $addinstitution->defaultmembershipperiod);
        } else {
            $expiry = null;
Richard Mansfield's avatar
Richard Mansfield committed
340
        }
341
342
343
344
345
346
347
        db_begin();
        insert_record('usr_institution', (object) array(
            'usr' => $user->id,
            'institution' => $addinstitution->name,
            'ctime' => db_format_timestamp($now),
            'expiry' => $expiry,
        ));
348
        handle_event('updateuser', $user->id);
349
        db_commit();
Richard Mansfield's avatar
Richard Mansfield committed
350
351
352
353
    }

    redirect('/admin/users/edit.php?id='.$user->id);
}
354
355
356

$smarty = smarty();
$smarty->assign('user', $user);
357
358
359
360
$smarty->assign('suspended', $suspended);
if ($suspended) {
    $smarty->assign('suspendedby', get_string('suspendedby', 'admin', $suspender));
}
361
$smarty->assign('suspendform', $suspendform);
Richard Mansfield's avatar
Richard Mansfield committed
362
363
$smarty->assign('siteform', $siteform);
$smarty->assign('institutionform', $institutionform);
364
365
366
$smarty->display('admin/users/edit.tpl');

?>