<?php
class Page_DozMod extends Page
{
/* sub page classes */
private $mail_templates;
protected function doPreprocess()
{
User::load();
if (!User::hasPermission('superadmin')) {
Message::addError('main.no-permission');
Util::redirect('?do=Main');
}
/* add sub-menus */
Dashboard::addSubmenu('?do=dozmod§ion=mailconfig', Dictionary::translate('submenu_mailconfig', true));
Dashboard::addSubmenu('?do=dozmod§ion=templates', Dictionary::translate('submenu_templates', true));
Dashboard::addSubmenu('?do=dozmod§ion=runtimeconfig', Dictionary::translate('submenu_runtime', true));
Dashboard::addSubmenu('?do=dozmod§ion=users', Dictionary::translate('submenu_users', true));
/* instantiate sub pages */
$this->mail_templates = new Page_mail_templates();
/* different pages for different sections */
$section = Request::get('section', 'mailconfig', 'string');
if ($section == 'templates') {
$this->mail_templates->doPreprocess();
return;
}
/* execute actions */
$action = Request::post('action');
if ($action === 'mail') {
$this->mailHandler();
}
if ($action === 'runtime') {
$this->runtimeHandler();
}
if ($action === 'delimages') {
$result = $this->handleDeleteImages();
if (!empty($result)) {
Message::addInfo('delete-images', $result);
}
Util::redirect('?do=DozMod');
}
}
protected function doRender()
{
/* different pages for different sections */
$section = Request::get('section', 'mailconfig', 'string');
if ($section == 'templates') {
$this->mail_templates->doRender();
return;
}
$this->listDeletePendingImages();
if ($section === 'mailconfig') {
// Mail config
$mailConf = Database::queryFirst('SELECT value FROM sat.configuration WHERE parameter = :param', array('param' => 'mailconfig'));
if ($mailConf != null) {
$mailConf = @json_decode($mailConf['value'], true);
if (is_array($mailConf)) {
$mailConf['set_' . $mailConf['ssl']] = 'selected="selected"';
}
}
Render::addTemplate('mailconfig', $mailConf);
}
if ($section === 'runtimeconfig') {
// Runtime config
$runtimeConf = Database::queryFirst('SELECT value FROM sat.configuration WHERE parameter = :param', array('param' => 'runtimelimits'));
if ($runtimeConf != null) {
$runtimeConf = json_decode($runtimeConf['value'], true);
/* convert some value to corresponding "selected" texts */
if ($runtimeConf['defaultLecturePermissions']['edit']) {
$runtimeConf['defaultLecturePermissions']['edit'] = 'checked="checked"';
}
if ($runtimeConf['defaultLecturePermissions']['admin']) {
$runtimeConf['defaultLecturePermissions']['admin'] = 'checked="checked"';
}
if ($runtimeConf['defaultImagePermissions']['edit']) {
$runtimeConf['defaultImagePermissions']['edit'] = 'checked="checked"';
}
if ($runtimeConf['defaultImagePermissions']['admin']) {
$runtimeConf['defaultImagePermissions']['admin'] = 'checked="checked"';
}
if ($runtimeConf['defaultImagePermissions']['link']) {
$runtimeConf['defaultImagePermissions']['link'] = 'checked="checked"';
}
if ($runtimeConf['defaultImagePermissions']['download']) {
$runtimeConf['defaultImagePermissions']['download'] = 'checked="checked"';
}
}
Render::addTemplate('runtimeconfig', $runtimeConf);
}
// User list for making people admin
if ($section === 'users') {
$this->listUsers();
$this->listOrganizations();
}
}
private function listDeletePendingImages()
{
$res = Database::simpleQuery("SELECT b.displayname,"
. " own.firstname, own.lastname, own.email,"
. " v.imageversionid, v.createtime, v.filesize, v.deletestate,"
. " lat.expiretime AS latexptime, lat.deletestate AS latdelstate"
. " FROM sat.imageversion v"
. " INNER JOIN sat.imagebase b ON (b.imagebaseid = v.imagebaseid)"
. " INNER JOIN sat.user own ON (b.ownerid = own.userid)"
. " LEFT JOIN sat.imageversion lat ON (b.latestversionid = lat.imageversionid)"
. " WHERE v.deletestate <> 'KEEP'"
. " ORDER BY b.displayname ASC, v.createtime ASC");
$NOW = time();
$rows = array();
while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
if ($row['latexptime'] > $NOW && $row['latdelstate'] === 'KEEP') {
$row['hasNewerClass'] = 'glyphicon-ok green';
$row['checked'] = 'checked';
} else {
$row['hasNewerClass'] = 'glyphicon-remove red';
}
if ($row['deletestate'] === 'WANT_DELETE') {
$row['name_extra_class'] = 'slx-strike';
}
$row['version'] = date('d.m.Y H:i:s', $row['createtime']);
$row['filesize'] = Util::readableFileSize($row['filesize']);
$rows[] = $row;
}
if (empty($rows))
return;
Render::addTemplate('images-delete', array('images' => $rows));
}
private function cleanMailArray()
{
$keys = array('host', 'port', 'ssl', 'senderAddress', 'replyTo', 'username', 'password', 'serverName');
$data = array();
foreach ($keys as $key) {
$data[$key] = Request::post($key, '');
settype($data[$key], 'string');
if (is_numeric($data[$key])) {
settype($data[$key], 'int');
}
}
return $data;
}
protected function doAjax()
{
if (!User::hasPermission('superadmin'))
return;
$action = Request::post('action');
if ($action === 'mail') {
$this->handleTestMail();
} elseif ($action === 'setmail' || $action === 'setsu' || $action == 'setlogin') {
$this->setUserOption($action);
} elseif ($action === 'setorglogin') {
$this->setOrgOption($action);
} elseif ($action === 'delimages') {
die($this->handleDeleteImages());
}
}
private function handleDeleteImages()
{
$images = Request::post('images', false);
if (is_array($images)) {
foreach ($images as $image => $val) {
if (strtolower($val) !== 'on')
continue;
Database::exec("UPDATE sat.imageversion SET deletestate = 'WANT_DELETE'"
. " WHERE deletestate = 'SHOULD_DELETE' AND imageversionid = :imageversionid", array(
'imageversionid' => $image
));
}
if (!empty($images)) {
$ret = Download::asStringPost('http://127.0.0.1:9080/do/delete-images', false, 10, $code);
if ($code == 999) {
$ret .= "\nConnection to DMSD failed.";
}
return $ret;
}
}
return false;
}
private function handleTestMail()
{
$do = Request::post('button');
if ($do === 'test') {
// Prepare array
$data = $this->cleanMailArray();
Header('Content-Type: text/plain; charset=utf-8');
$data['recipient'] = Request::post('recipient', '');
if (!preg_match('/.+@.+\..+/', $data['recipient'])) {
$result = 'No recipient given!';
} else {
$result = Download::asStringPost('http://127.0.0.1:9080/do/mailtest', $data, 10, $code);
if ($code == 999) {
$result .= "\nTimeout.";
} elseif ($code != 200) {
$result .= "\nReturn code $code";
}
}
die($result);
}
}
private function mailHandler()
{
// Check action
$do = Request::post('button');
if ($do === 'save') {
// Prepare array
$data = $this->cleanMailArray();
$data = json_encode($data);
Database::exec('INSERT INTO sat.configuration (parameter, value)'
. ' VALUES (:param, :value)'
. ' ON DUPLICATE KEY UPDATE value = VALUES(value)', array(
'param' => 'mailconfig',
'value' => $data
));
Message::addSuccess('mail-config-saved');
}
Util::redirect('?do=DozMod§ion=mailconfig');
}
private function runtimeHandler()
{
// Check action
$do = Request::post('button');
if ($do === 'save') {
$data = [];
$data['defaultLecturePermissions'] = Request::post('defaultLecturePermissions', NULL, "array");
$data['defaultImagePermissions'] = Request::post('defaultImagePermissions', NULL, "array");
foreach(['maxImageValidityDays', 'maxLectureValidityDays', 'maxTransfers'] as $field) {
$value = Request::post($field);
$data[$field] = $value;
}
/* ensure types */
settype($data['defaultLecturePermissions']['edit'], 'boolean');
settype($data['defaultLecturePermissions']['admin'], 'boolean');
settype($data['defaultImagePermissions']['edit'], 'boolean');
settype($data['defaultImagePermissions']['admin'], 'boolean');
settype($data['defaultImagePermissions']['link'], 'boolean');
settype($data['defaultImagePermissions']['download'], 'boolean');
settype($data['maxImageValidityDays'], 'int');
settype($data['maxLectureValidityDays'], 'int');
settype($data['maxTransfers'], 'int');
$data = json_encode($data);
Database::exec('INSERT INTO sat.configuration (parameter, value)'
. ' VALUES (:param, :value)'
. ' ON DUPLICATE KEY UPDATE value = VALUES(value)', array(
'param' => 'runtimelimits',
'value' => $data
));
Message::addSuccess('runtimelimits-config-saved');
}
Util::redirect('?do=DozMod§ion=runtimeconfig');
}
private function listUsers()
{
$res = Database::simpleQuery('SELECT userid, firstname, lastname, email, lastlogin, user.canlogin, issuperuser, emailnotifications,'
. ' organization.displayname AS orgname FROM sat.user'
. ' LEFT JOIN sat.organization USING (organizationid)'
. ' ORDER BY lastname ASC, firstname ASC');
$rows = array();
while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
$row['canlogin'] = $this->checked($row['canlogin']);
$row['issuperuser'] = $this->checked($row['issuperuser']);
$row['emailnotifications'] = $this->checked($row['emailnotifications']);
$row['lastlogin'] = date('d.m.Y', $row['lastlogin']);
$rows[] = $row;
}
Render::addTemplate('userlist', array('users' => $rows));
}
private function listOrganizations()
{
$res = Database::simpleQuery('SELECT organizationid, displayname, canlogin FROM sat.organization'
. ' ORDER BY displayname ASC');
$rows = array();
while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
$row['canlogin'] = $this->checked($row['canlogin']);
$rows[] = $row;
}
Render::addTemplate('orglist', array('organizations' => $rows));
}
private function checked($val)
{
if ($val)
return 'checked="checked"';
return '';
}
private function setUserOption($option)
{
$val = (string) Request::post('value', '-');
if ($val !== '1' && $val !== '0')
die('Nein');
if ($option === 'setmail') {
$field = 'emailnotifications';
} elseif ($option === 'setsu') {
$field = 'issuperuser';
} elseif ($option === 'setlogin') {
$field = 'canlogin';
} else {
die('Unknown');
}
$user = (string) Request::post('userid', '?');
$ret = Database::exec("UPDATE sat.user SET $field = :onoff WHERE userid = :userid", array(
'userid' => $user,
'onoff' => $val
));
error_log("Setting $field to $val for $user - affected: $ret");
if ($ret === false)
die('Error');
if ($ret == 0)
die(1 - $val);
die($val);
}
private function setOrgOption($option)
{
$val = (string) Request::post('value', '-');
if ($val !== '1' && $val !== '0')
die('Nein');
if ($option === 'setorglogin') {
$field = 'canlogin';
} else {
die('Unknown');
}
$ret = Database::exec("UPDATE sat.organization SET $field = :onoff WHERE organizationid = :organizationid", array(
'organizationid' => (string) Request::post('organizationid', ''),
'onoff' => $val
));
if ($ret === false)
die('Error');
if ($ret === 0)
die(1 - $val);
die($val);
}
}
