From f73a41753d2608187a0c85a28e419b8ea839d671 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Fri, 23 Feb 2018 15:26:17 +0100
Subject: [adduser] Extend module to simple user manager (add/edit/remove)

TODO: Assign roles
---
 modules-available/adduser/config.json              |   1 +
 modules-available/adduser/lang/de/messages.json    |   7 +-
 modules-available/adduser/lang/de/module.json      |   3 +
 .../adduser/lang/de/template-tags.json             |  14 +-
 modules-available/adduser/lang/en/messages.json    |   7 +-
 modules-available/adduser/lang/en/module.json      |   3 +
 .../adduser/lang/en/template-tags.json             |  14 +-
 modules-available/adduser/page.inc.php             | 198 +++++++++++++++++----
 .../adduser/permissions/permissions.json           |  14 ++
 modules-available/adduser/style.css                |  15 ++
 modules-available/adduser/templates/header.html    |   3 +
 .../adduser/templates/page-adduser.html            |  35 ++--
 .../adduser/templates/page-edituser.html           |  72 ++++++++
 .../adduser/templates/page-userlist.html           |  73 ++++++++
 14 files changed, 403 insertions(+), 56 deletions(-)
 create mode 100644 modules-available/adduser/lang/de/module.json
 create mode 100644 modules-available/adduser/lang/en/module.json
 create mode 100644 modules-available/adduser/permissions/permissions.json
 create mode 100644 modules-available/adduser/style.css
 create mode 100644 modules-available/adduser/templates/header.html
 create mode 100644 modules-available/adduser/templates/page-edituser.html
 create mode 100644 modules-available/adduser/templates/page-userlist.html

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/config.json b/modules-available/adduser/config.json
index 2c63c085..706412d0 100644
--- a/modules-available/adduser/config.json
+++ b/modules-available/adduser/config.json
@@ -1,2 +1,3 @@
 {
+	"category":"main.content"
 }
diff --git a/modules-available/adduser/lang/de/messages.json b/modules-available/adduser/lang/de/messages.json
index 4f62dcbf..0ab4571f 100644
--- a/modules-available/adduser/lang/de/messages.json
+++ b/modules-available/adduser/lang/de/messages.json
@@ -1,5 +1,8 @@
 {
+    "adduser-success": "Benutzer erfolgreich hinzugef\u00fcgt",
+    "db-error": "Datenbankfehler: {{0}}",
+    "password-changed": "Passwort ge\u00e4ndert",
     "password-mismatch": "Passwort und Passwortbest\u00e4tigung stimmen nicht \u00fcberein",
-    "adduser-disabled": "Keine ausreichenden Rechte, um weitere Benutzer hinzuzuf\u00fcgen",
-    "adduser-success": "Benutzer erfolgreich hinzugef\u00fcgt"
+    "user-edited": "Benutzerdaten wurden ge\u00e4ndert",
+    "user-not-found": "Benutzer mit ID {{0}} nicht gefunden"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/de/module.json b/modules-available/adduser/lang/de/module.json
new file mode 100644
index 00000000..e4c785b5
--- /dev/null
+++ b/modules-available/adduser/lang/de/module.json
@@ -0,0 +1,3 @@
+{
+    "module_name": "Nutzerverwaltung"
+}
\ No newline at end of file
diff --git a/modules-available/adduser/lang/de/template-tags.json b/modules-available/adduser/lang/de/template-tags.json
index 99d17947..0b6b2530 100644
--- a/modules-available/adduser/lang/de/template-tags.json
+++ b/modules-available/adduser/lang/de/template-tags.json
@@ -1,6 +1,16 @@
 {
+    "lang_addUser": "Nutzer hinzuf\u00fcgen",
+    "lang_changeLoginHint": "Sie k\u00f6nnen den Namen, den der Nutzer beim Login angeben muss, \u00e4ndern. Dies ist nur bei lokalen Nutzern m\u00f6glich, die nicht \u00fcber LDAP\/AD authentifiziert werden.",
+    "lang_changeOwnPasswordHint": "Ihr eigenes Passwort k\u00f6nnen Sie \u00fcber den Button \"Passwort \u00e4ndern\" im Men\u00fc \u00e4ndern.",
+    "lang_changePassword": "Neues Passwort",
     "lang_confirmation": "Wiederholen",
     "lang_createUser": "Benutzer anlegen",
+    "lang_editUser": "Benutzer bearbeiten",
+    "lang_email": "E-Mail",
     "lang_fullName": "Vollst\u00e4ndiger Name",
-    "lang_telephone": "Telefon"
-}
+    "lang_login": "Login",
+    "lang_name": "Name",
+    "lang_phone": "Telefon",
+    "lang_userManagement": "Benutzerverwaltung",
+    "lang_userlist": "Benutzerliste"
+}
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/messages.json b/modules-available/adduser/lang/en/messages.json
index 3a402278..69af3227 100644
--- a/modules-available/adduser/lang/en/messages.json
+++ b/modules-available/adduser/lang/en/messages.json
@@ -1,5 +1,8 @@
 {
+    "adduser-success": "User successfully added",
+    "db-error": "Database error: {{0}}",
+    "password-changed": "Password changed",
     "password-mismatch": "Password and password confirmation do not match",
-    "adduser-disabled": "Insufficient privileges to add more users",
-    "adduser-success": "User successfully added"
+    "user-edited": "User data has been updated",
+    "user-not-found": "User with ID {{0}} not found"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/module.json b/modules-available/adduser/lang/en/module.json
new file mode 100644
index 00000000..f376db34
--- /dev/null
+++ b/modules-available/adduser/lang/en/module.json
@@ -0,0 +1,3 @@
+{
+    "module_name": "User management"
+}
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/template-tags.json b/modules-available/adduser/lang/en/template-tags.json
index 24f8cd42..2c9b8b53 100644
--- a/modules-available/adduser/lang/en/template-tags.json
+++ b/modules-available/adduser/lang/en/template-tags.json
@@ -1,6 +1,16 @@
 {
+    "lang_addUser": "Add user",
+    "lang_changeLoginHint": "You can change the login identifier used for logging in. This is only enabled for local acounts that are not linked to LDAP\/AD servers.",
+    "lang_changeOwnPasswordHint": "You can change your own password by clicking the \"change password\" button in the menu.",
+    "lang_changePassword": "Change password",
     "lang_confirmation": "Confirm Password",
     "lang_createUser": "Create User",
+    "lang_editUser": "Edit user",
+    "lang_email": "Email",
     "lang_fullName": "Full Name",
-    "lang_telephone": "Telephone"
-}
+    "lang_login": "Login",
+    "lang_name": "Name",
+    "lang_phone": "Phone",
+    "lang_userManagement": "User management",
+    "lang_userlist": "User list"
+}
\ No newline at end of file
diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index 87aaeef1..a4edcf59 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -7,51 +7,177 @@ class Page_AddUser extends Page
 	{
 		User::load();
 
-		if (isset($_POST['action']) && $_POST['action'] === 'adduser') {
-			// Check required fields
-			if (empty($_POST['user']) || empty($_POST['pass1']) || empty($_POST['pass2']) || empty($_POST['fullname'])) {
-				Message::addError('main.empty-field');
-				Util::redirect('?do=AddUser');
-			} elseif ($_POST['pass1'] !== $_POST['pass2']) {
-				Message::addError('password-mismatch');
-				Util::redirect('?do=AddUser');
-			} elseif (!User::hasPermission('superadmin') && Database::queryFirst('SELECT userid FROM user LIMIT 1') !== false) {
-				Message::addError('adduser-disabled');
-				Util::redirect('?do=Session&action=login');
+		$action = Request::post(('action'), false, 'string');
+
+		if ($action === 'adduser') {
+			$this->addUser();
+		} elseif ($action === 'edituser') {
+			$this->editUser();
+		} elseif ($action === 'deleteuser') {
+			$this->deleteUser();
+		}
+		if (Request::isPost()) {
+			Util::redirect('?do=adduser');
+		}
+	}
+
+	private function addUser()
+	{
+		// Check required fields
+		$login = Request::post('login', '', 'string');
+		$pass1 = Request::post('pass1', '', 'string');
+		$pass2 = Request::post('pass2', '', 'string');
+		$fullname = Request::post('fullname', '', 'string');
+		$phone = Request::post('phone', '', 'string');
+		$email = Request::post('email', '', 'string');
+		if (empty($login) || empty($pass1) || empty($pass2) || empty($fullname)) {
+			Message::addError('main.empty-field');
+			return;
+		} elseif ($pass1 !== $pass2) {
+			Message::addError('password-mismatch');
+			return;
+		} else {
+			if (Database::queryFirst('SELECT userid FROM user LIMIT 1') !== false) {
+				User::assertPermission('user.add');
+			}
+			$data = array(
+				'login' => $login,
+				'pass' => Crypto::hash6($pass1),
+				'fullname' => $fullname,
+				'phone' => $phone,
+				'email' => $email,
+			);
+			Database::exec('INSERT INTO user SET login = :login, passwd = :pass, fullname = :fullname, phone = :phone, email = :email', $data);
+			$id = Database::lastInsertId();
+			// Make it superadmin if first user. This method sucks as it's a race condition but hey...
+			$ret = Database::queryFirst('SELECT Count(*) AS num FROM user');
+			if ($ret !== false && $ret['num'] == 1) {
+				$ret = Database::exec('UPDATE user SET permissions = 1, userid = 1 WHERE userid = :id', ['id' => $id], true);
+				if ($ret !== false) {
+					EventLog::clear();
+				}
+				EventLog::info('Created first user ' . $login);
+			} else {
+				EventLog::info(User::getName() . ' created user ' . $login);
+			}
+			Message::addInfo('adduser-success');
+			return;
+		}
+	}
+
+	private function editUser()
+	{
+		User::assertPermission('user.edit');
+		$userid = Request::post('userid', false, 'int');
+		if ($userid === false) {
+			Message::addError('main.parameter-missing', 'userid');
+			return;
+		}
+		$user = Database::queryFirst('SELECT userid, login, fullname, phone, email
+					FROM user WHERE userid = :userid', compact('userid'));
+		if ($user === false) {
+			Message::addError('user-not-found', $userid);
+			return;
+		}
+		// Check required fields
+		$login = Request::post('login', '', 'string');
+		$pass1 = Request::post('pass1', '', 'string');
+		$pass2 = Request::post('pass2', '', 'string');
+		$fullname = Request::post('fullname', '', 'string');
+		$phone = Request::post('phone', '', 'string');
+		$email = Request::post('email', '', 'string');
+		if (empty($login) || empty($fullname)) {
+			Message::addError('main.empty-field');
+		} elseif (!(empty($pass1) && empty($pass2)) && $pass1 !== $pass2) {
+			Message::addError('password-mismatch');
+		} else {
+			$data = array(
+				'login' => $login,
+				'fullname' => $fullname,
+				'phone' => $phone,
+				'email' => $email,
+				'userid' => $userid,
+			);
+			$ret = Database::exec('UPDATE user SET login = :login, fullname = :fullname, phone = :phone, email = :email WHERE userid = :userid', $data, true);
+			if ($ret === false) {
+				Message::addError('db-error', Database::lastError());
 			} else {
-				$data = array(
-					'user' => $_POST['user'],
-					'pass' => Crypto::hash6($_POST['pass1']),
-					'fullname' => $_POST['fullname'],
-					'phone' => $_POST['phone'],
-					'email' => $_POST['email'],
-				);
-				if (Database::exec('INSERT INTO user SET login = :user, passwd = :pass, fullname = :fullname, phone = :phone, email = :email', $data) != 1) {
-					Util::traceError('Could not create new user in DB');
+				if ($ret > 0) {
+					Message::addSuccess('user-edited');
 				}
-				// Make it superadmin if first user. This method sucks as it's a race condition but hey...
-				$ret = Database::queryFirst('SELECT Count(*) AS num FROM user');
-				if ($ret !== false && $ret['num'] == 1) {
-					Database::exec('UPDATE user SET permissions = 1');
-					EventLog::clear();
-					EventLog::info('Created first user ' . $_POST['user']);
-				} else {
-					EventLog::info(User::getName() . ' created user ' . $_POST['user']);
+				if (!empty($pass1)) {
+					$data = [
+						'pass' => Crypto::hash6($pass1),
+						'userid' => $userid,
+					];
+					Database::exec('UPDATE user SET passwd = :pass WHERE userid = :userid', $data);
+					Message::addSuccess('password-changed');
 				}
-				Message::addInfo('adduser-success');
-				Util::redirect('?do=Session&action=login');
 			}
 		}
+		Util::redirect('?do=adduser&show=edituser&userid=' . $userid);
+	}
+
+	private function deleteUser()
+	{
+		User::assertPermission('user.remove');
+		$userid = Request::post('userid', false, 'int');
+		if ($userid === false) {
+			Message::addError('main.parameter-missing', 'userid');
+			return;
+		}
+		//\\
+		$user = Database::queryFirst('SELECT userid, login, fullname, phone, email
+					FROM user WHERE userid = :userid', compact('userid'));
+		if ($user === false) {
+			Message::addError('user-not-found', $userid);
+			return;
+		}
+		if ($user['userid'] == 1 || $user['userid'] == User::getId()) {
+			Message::addError('cannot-delete-1-self');
+			return;
+		}
+		Database::exec('DELETE FROM user WHERE userid = :userid', compact('userid'));
+		Message::addSuccess('user-deleted', $userid);
 	}
 
 	protected function doRender()
 	{
-		// No user was added, check if current user is allowed to add a new user
-		// Currently you can only add users if there is no user yet. :)
-		if (!User::hasPermission('superadmin') && Database::queryFirst('SELECT userid FROM user LIMIT 1') !== false) {
-			Message::addError('adduser-disabled');
-		} else {
-			Render::addTemplate('page-adduser', $_POST);
+		Render::addTemplate('header');
+		$hasUsers = (Database::queryFirst('SELECT userid FROM user LIMIT 1') !== false);
+		$show = Request::get('show', ($hasUsers ? 'list' : 'adduser'), 'string');
+		if ($show === 'adduser') {
+			// Can add user if: - no user exists yet; - user has explicit permission to add users
+			if ($hasUsers) {
+				User::assertPermission('user.add');
+			}
+			Render::addTemplate('page-adduser');
+		} elseif ($show === 'edituser') {
+			User::assertPermission('user.edit');
+			$userid = Request::get('userid', false, 'int');
+			if ($userid === false) {
+				Message::addError('main.parameter-missing', 'userid');
+				Util::redirect('?do=adduser&show=list');
+			}
+			$user = Database::queryFirst('SELECT userid, login, fullname, phone, email
+					FROM user WHERE userid = :userid', compact('userid'));
+			if ($user === false) {
+				Message::addError('user-not-found', $userid);
+			} else {
+				// TODO: LDAP -> disallow pw change, maybe other fields too?
+				Render::addTemplate('page-edituser', $user);
+			}
+		} elseif ($show === 'list') {
+			User::assertPermission('list.view');
+			$page = new Paginate('SELECT userid, login, fullname, phone, email FROM user ORDER BY login', 50);
+			$data = ['list' => $page->exec()->fetchAll(PDO::FETCH_ASSOC)];
+			foreach ($data['list'] as &$u) {
+				// Don't allow deleting user 1 and self
+				$u['hide_delete'] = $u['userid'] == 1 || $u['userid'] == User::getId();
+			}
+			unset($u);
+			Permission::addGlobalTags($data['perms'], null, ['user.add', 'user.edit', 'user.remove']);
+			$page->render('page-userlist', $data);
 		}
 	}
 
diff --git a/modules-available/adduser/permissions/permissions.json b/modules-available/adduser/permissions/permissions.json
new file mode 100644
index 00000000..e778b893
--- /dev/null
+++ b/modules-available/adduser/permissions/permissions.json
@@ -0,0 +1,14 @@
+{
+	"user.add": {
+		"location-aware": false
+	},
+	"user.edit": {
+		"location-aware": false
+	},
+	"user.remove": {
+		"location-aware": false
+	},
+	"list.view": {
+		"location-aware": false
+	}
+}
\ No newline at end of file
diff --git a/modules-available/adduser/style.css b/modules-available/adduser/style.css
new file mode 100644
index 00000000..e459352b
--- /dev/null
+++ b/modules-available/adduser/style.css
@@ -0,0 +1,15 @@
+.form-adduser {
+    max-width: 600px;
+    padding: 10px;
+    margin: 0 auto;
+}
+
+.form-adduser .form-control {
+    position: relative;
+    font-size: 16px;
+    height: auto;
+    padding: 10px;
+    -webkit-box-sizing: border-box;
+    -moz-box-sizing: border-box;
+    box-sizing: border-box;
+}
diff --git a/modules-available/adduser/templates/header.html b/modules-available/adduser/templates/header.html
new file mode 100644
index 00000000..34011e29
--- /dev/null
+++ b/modules-available/adduser/templates/header.html
@@ -0,0 +1,3 @@
+<div class="page-header">
+	<h1>{{lang_userManagement}}</h1>
+</div>
\ No newline at end of file
diff --git a/modules-available/adduser/templates/page-adduser.html b/modules-available/adduser/templates/page-adduser.html
index deb911c0..58d705f8 100644
--- a/modules-available/adduser/templates/page-adduser.html
+++ b/modules-available/adduser/templates/page-adduser.html
@@ -1,28 +1,39 @@
 <form class="form-adduser" action="?do=AddUser" method="post">
 	<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
 	<input type="password" name="password_fake" id="password_fake" value=""  style="position:absolute;top:-2000px" tabindex="-1">
-	<h2 class="form-signin-heading">{{lang_createUser}}</h2>
+	<h2>{{lang_createUser}}</h2>
 	<div class="row">
-		<div class="col-md-4">{{lang_username}} *</div>
-		<div class="col-md-4"><input type="text" name="user" value="{{user}}" class="form-control" placeholder="{{lang_username}}" autofocus></div>
+		<div class="col-md-4"><label for="login">{{lang_login}} *</label></div>
+		<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control" placeholder="{{lang_username}}" autofocus></div>
 	</div>
+	<br>
 	<div class="row">
-		<div class="col-md-4">{{lang_password}} *</div>
-		<div class="col-md-4"><input type="password" name="pass1" class="form-control" placeholder="{{lang_password}}"></div>
+		<div class="col-md-4"><label for="pass1">{{lang_password}} *</label></div>
+		<div class="col-md-4"><input id="pass1" type="password" name="pass1" class="form-control" placeholder="{{lang_password}}"></div>
 		<div class="col-md-4"><input type="password" name="pass2" class="form-control" placeholder="{{lang_confirmation}}"></div>
 	</div>
+	<br>
 	<div class="row">
-		<div class="col-md-4">{{lang_fullName}} *</div>
-		<div class="col-md-4"><input type="text" name="fullname" value="{{fullname}}" class="form-control" placeholder="{{lang_fullName}}"></div>
+		<div class="col-md-4"><label for="fullname">{{lang_fullName}} *</label></div>
+		<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control" placeholder="{{lang_fullName}}"></div>
 	</div>
+	<br>
 	<div class="row">
-		<div class="col-md-4">{{lang_telephone}}</div>
-		<div class="col-md-4"><input type="text" name="phone" value="{{phone}}" class="form-control" placeholder="{{lang_telephone}}"></div>
+		<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
+		<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control" placeholder="{{lang_phone}}"></div>
 	</div>
+	<br>
 	<div class="row">
-		<div class="col-md-4">E-Mail</div>
-		<div class="col-md-4"><input type="text" name="email" value="{{email}}" class="form-control" placeholder="E-Mail"></div>
+		<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
+		<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}"></div>
+	</div>
+	<br>
+	<div class="row">
+		<div class="col-md-4"></div>
+		<div class="col-md-8">
+			<button class="btn btn-lg btn-primary btn-block" type="submit">{{lang_createUser}}</button>
+		</div>
 	</div>
-	<button class="btn btn-lg btn-primary btn-block" type="submit">{{lang_createUser}}</button>
 	<input type="hidden" name="action" value="adduser">
+	<input type="hidden" name="token" value="{{token}}">
 </form>
diff --git a/modules-available/adduser/templates/page-edituser.html b/modules-available/adduser/templates/page-edituser.html
new file mode 100644
index 00000000..b8e51b5c
--- /dev/null
+++ b/modules-available/adduser/templates/page-edituser.html
@@ -0,0 +1,72 @@
+<form class="form-adduser" action="?do=AddUser" method="post">
+	<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
+	<input type="password" name="password_fake" id="password_fake" value="" style="position:absolute;top:-2000px" tabindex="-1">
+	<h2>{{lang_editUser}}</h2>
+
+	<div class="row">
+		<div class="col-md-4"><label for="login">{{lang_login}}</label></div>
+		<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control"
+											  placeholder="{{lang_username}}" autofocus></div>
+	</div>
+	<div class="row">
+		<div class="col-md-4"></div>
+		<div class="col-md-8">
+			<p>
+				{{lang_changeLoginHint}}
+			</p>
+		</div>
+	</div>
+
+	<div class="row">
+		<div class="col-md-4"><label for="pass1">{{lang_changePassword}}</label></div>
+		<div class="col-md-4"><input id="pass1" {{password_disabled}} type="password" name="pass1" class="form-control" placeholder="{{lang_password}}">
+		</div>
+		<div class="col-md-4"><input {{password_disabled}} type="password" name="pass2" class="form-control"
+											  placeholder="{{lang_confirmation}}"></div>
+	</div>
+	{{#password_disabled}}
+	<div class="row">
+		<div class="col-md-4"></div>
+		<div class="col-md-8">
+			<p>
+				{{lang_changeOwnPasswordHint}}
+			</p>
+		</div>
+	</div>
+	{{/password_disabled}}
+	<br>
+
+	<div class="row">
+		<div class="col-md-4"><label for="fullname">{{lang_fullName}}</label></div>
+		<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control"
+											  placeholder="{{lang_fullName}}"></div>
+	</div>
+	<br>
+
+	<div class="row">
+		<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
+		<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control"
+											  placeholder="{{lang_phone}}"></div>
+	</div>
+	<br>
+
+	<div class="row">
+		<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
+		<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}">
+		</div>
+	</div>
+	<br>
+
+	<div class="row">
+		<div class="col-md-4"></div>
+		<div class="col-md-8">
+			<button class="btn btn-lg btn-primary btn-block" type="submit">
+				<span class="glyphicon glyphicon-floppy-disk"></span>
+				{{lang_save}}
+			</button>
+		</div>
+	</div>
+	<input type="hidden" name="action" value="edituser">
+	<input type="hidden" name="userid" value="{{userid}}">
+	<input type="hidden" name="token" value="{{token}}">
+</form>
diff --git a/modules-available/adduser/templates/page-userlist.html b/modules-available/adduser/templates/page-userlist.html
new file mode 100644
index 00000000..5b14f7e5
--- /dev/null
+++ b/modules-available/adduser/templates/page-userlist.html
@@ -0,0 +1,73 @@
+<h2>{{lang_userlist}}</h2>
+
+{{{pagenav}}}
+
+<form method="get">
+	<input type="hidden" name="do" value="adduser">
+	<input type="hidden" name="show" value="edituser">
+	<table class="table">
+		<thead>
+		<tr>
+			<th>{{lang_login}}</th>
+			<th>{{lang_name}}</th>
+			<th>{{lang_phone}}</th>
+			<th>{{lang_email}}</th>
+			<th width="1"></th>
+		</tr>
+		</thead>
+		<tbody>
+		{{#list}}
+			<tr>
+				<td>{{login}}</td>
+				<td>{{fullname}}</td>
+				<td>{{phone}}</td>
+				<td>{{email}}</td>
+				<td class="text-nowrap">
+					<button class="btn btn-primary btn-xs" {{perms.user.edit.disabled}} type="submit" name="userid" value="{{userid}}">
+						<span class="glyphicon glyphicon-edit"></span>
+					</button>
+					{{^hide_delete}}
+					<button type="button" {{perms.user.remove.disabled}} class="btn btn-danger btn-xs"
+							  data-target="#delete-modal" data-toggle="modal" onclick="$('#delete-userid').val({{userid}})">
+						<span class="glyphicon glyphicon-trash"></span>
+					</button>
+					{{/hide_delete}}
+				</td>
+			</tr>
+		{{/list}}
+		</tbody>
+	</table>
+	<div class="text-right">
+		<a class="btn btn-success {{perms.user.add.disabled}}" href="?do=adduser&amp;show=adduser">
+			<span class="glyphicon glyphicon-plus"></span>
+			{{lang_addUser}}
+		</a>
+	</div>
+</form>
+
+<!-- Modals -->
+<div class ="modal fade" id="delete-modal" tabindex="-1" role="dialog" aria-labelledby="myModalLabel">
+	<div class="modal-dialog" role="document">
+		<div class="modal-content">
+			<form method="post">
+				<div class="modal-header">
+					<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">&times;</span></button>
+					<h4 class="modal-title" id="myModalLabel">{{lang_confirmDelete}}</h4>
+				</div>
+				<div class="modal-body">
+					<p>{{lang_roleDeleteConfirm}}</p>
+					{{lang_numAssignedUsers}}: <span id="delete-role-users"></span>
+				</div>
+				<div class="modal-footer">
+					<input type="hidden" name="action" value="deleteuser">
+					<input type="hidden" name="token" value="{{token}}">
+					<button type="button" class="btn btn-default" data-dismiss="modal">{{lang_cancel}}</button>
+					<button type="submit" id="delete-userid" name="userid" value="" class="btn btn-danger">
+						<span class="glyphicon glyphicon-trash"></span>
+						{{lang_delete}}
+					</button>
+				</div>
+			</form>
+		</div>
+	</div>
+</div>
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 00851bd25e57938a79356d2efb36c2bea1697760 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Fri, 23 Feb 2018 18:41:49 +0100
Subject: [adduser] Support setting user's roles on add/edit

---
 modules-available/adduser/page.inc.php             |  33 ++++++
 .../adduser/templates/page-adduser.html            |  74 +++++++------
 .../adduser/templates/page-edituser.html           | 120 ++++++++++-----------
 .../adduser/templates/user-permissions.html        |  24 +++++
 .../inc/permissiondbupdate.inc.php                 |  28 ++++-
 .../permissionmanager/inc/permissionutil.inc.php   |  23 ++++
 6 files changed, 198 insertions(+), 104 deletions(-)
 create mode 100644 modules-available/adduser/templates/user-permissions.html

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index a4edcf59..d1615828 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -61,6 +61,7 @@ class Page_AddUser extends Page
 				EventLog::info(User::getName() . ' created user ' . $login);
 			}
 			Message::addInfo('adduser-success');
+			$this->saveRoles($id);
 			return;
 		}
 	}
@@ -113,6 +114,7 @@ class Page_AddUser extends Page
 					Database::exec('UPDATE user SET passwd = :pass WHERE userid = :userid', $data);
 					Message::addSuccess('password-changed');
 				}
+				$this->saveRoles($userid);
 			}
 		}
 		Util::redirect('?do=adduser&show=edituser&userid=' . $userid);
@@ -141,6 +143,19 @@ class Page_AddUser extends Page
 		Message::addSuccess('user-deleted', $userid);
 	}
 
+	private function saveRoles($userid)
+	{
+		if (!Module::isAvailable('permissionmanager'))
+			return;
+		if (!User::hasPermission('.permissionmanager.users.edit-roles'))
+			return;
+		$roles = Request::post('roles', [], 'array');
+		$ret = PermissionDbUpdate::setRolesForUser([$userid], $roles);
+		if ($ret > 0) {
+			Message::addSuccess('roles-updated');
+		}
+	}
+
 	protected function doRender()
 	{
 		Render::addTemplate('header');
@@ -151,7 +166,12 @@ class Page_AddUser extends Page
 			if ($hasUsers) {
 				User::assertPermission('user.add');
 			}
+			Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 			Render::addTemplate('page-adduser');
+			if ($hasUsers) {
+				$this->showPermissions();
+			}
+			Render::closeTag('form');
 		} elseif ($show === 'edituser') {
 			User::assertPermission('user.edit');
 			$userid = Request::get('userid', false, 'int');
@@ -165,7 +185,10 @@ class Page_AddUser extends Page
 				Message::addError('user-not-found', $userid);
 			} else {
 				// TODO: LDAP -> disallow pw change, maybe other fields too?
+				Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 				Render::addTemplate('page-edituser', $user);
+				$this->showPermissions($userid);
+				Render::closeTag('form');
 			}
 		} elseif ($show === 'list') {
 			User::assertPermission('list.view');
@@ -181,4 +204,14 @@ class Page_AddUser extends Page
 		}
 	}
 
+	private function showPermissions($userid = false)
+	{
+		if (!Module::isAvailable('permissionmanager'))
+			return;
+		if (!User::hasPermission('.permissionmanager.users.edit-roles'))
+			return;
+		$data = ['roles' => PermissionUtil::getRoles($userid, false)];
+		Render::addTemplate('user-permissions', $data);
+	}
+
 }
diff --git a/modules-available/adduser/templates/page-adduser.html b/modules-available/adduser/templates/page-adduser.html
index 58d705f8..bd16dbbf 100644
--- a/modules-available/adduser/templates/page-adduser.html
+++ b/modules-available/adduser/templates/page-adduser.html
@@ -1,39 +1,37 @@
-<form class="form-adduser" action="?do=AddUser" method="post">
-	<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
-	<input type="password" name="password_fake" id="password_fake" value=""  style="position:absolute;top:-2000px" tabindex="-1">
-	<h2>{{lang_createUser}}</h2>
-	<div class="row">
-		<div class="col-md-4"><label for="login">{{lang_login}} *</label></div>
-		<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control" placeholder="{{lang_username}}" autofocus></div>
+<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
+<input type="password" name="password_fake" id="password_fake" value=""  style="position:absolute;top:-2000px" tabindex="-1">
+<h2>{{lang_createUser}}</h2>
+<div class="row">
+	<div class="col-md-4"><label for="login">{{lang_login}} *</label></div>
+	<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control" placeholder="{{lang_username}}" autofocus></div>
+</div>
+<br>
+<div class="row">
+	<div class="col-md-4"><label for="pass1">{{lang_password}} *</label></div>
+	<div class="col-md-4"><input id="pass1" type="password" name="pass1" class="form-control" placeholder="{{lang_password}}"></div>
+	<div class="col-md-4"><input type="password" name="pass2" class="form-control" placeholder="{{lang_confirmation}}"></div>
+</div>
+<br>
+<div class="row">
+	<div class="col-md-4"><label for="fullname">{{lang_fullName}} *</label></div>
+	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control" placeholder="{{lang_fullName}}"></div>
+</div>
+<br>
+<div class="row">
+	<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
+	<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control" placeholder="{{lang_phone}}"></div>
+</div>
+<br>
+<div class="row">
+	<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
+	<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}"></div>
+</div>
+<br>
+<div class="row">
+	<div class="col-md-4"></div>
+	<div class="col-md-8">
+		<button class="btn btn-lg btn-primary btn-block" type="submit">{{lang_createUser}}</button>
 	</div>
-	<br>
-	<div class="row">
-		<div class="col-md-4"><label for="pass1">{{lang_password}} *</label></div>
-		<div class="col-md-4"><input id="pass1" type="password" name="pass1" class="form-control" placeholder="{{lang_password}}"></div>
-		<div class="col-md-4"><input type="password" name="pass2" class="form-control" placeholder="{{lang_confirmation}}"></div>
-	</div>
-	<br>
-	<div class="row">
-		<div class="col-md-4"><label for="fullname">{{lang_fullName}} *</label></div>
-		<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control" placeholder="{{lang_fullName}}"></div>
-	</div>
-	<br>
-	<div class="row">
-		<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
-		<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control" placeholder="{{lang_phone}}"></div>
-	</div>
-	<br>
-	<div class="row">
-		<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
-		<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}"></div>
-	</div>
-	<br>
-	<div class="row">
-		<div class="col-md-4"></div>
-		<div class="col-md-8">
-			<button class="btn btn-lg btn-primary btn-block" type="submit">{{lang_createUser}}</button>
-		</div>
-	</div>
-	<input type="hidden" name="action" value="adduser">
-	<input type="hidden" name="token" value="{{token}}">
-</form>
+</div>
+<input type="hidden" name="action" value="adduser">
+<input type="hidden" name="token" value="{{token}}">
diff --git a/modules-available/adduser/templates/page-edituser.html b/modules-available/adduser/templates/page-edituser.html
index b8e51b5c..36293b11 100644
--- a/modules-available/adduser/templates/page-edituser.html
+++ b/modules-available/adduser/templates/page-edituser.html
@@ -1,72 +1,70 @@
-<form class="form-adduser" action="?do=AddUser" method="post">
-	<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
-	<input type="password" name="password_fake" id="password_fake" value="" style="position:absolute;top:-2000px" tabindex="-1">
-	<h2>{{lang_editUser}}</h2>
+<input type="text" name="prevent_autofill" id="prevent_autofill" value="" style="position:absolute;top:-2000px" tabindex="-1">
+<input type="password" name="password_fake" id="password_fake" value="" style="position:absolute;top:-2000px" tabindex="-1">
+<h2>{{lang_editUser}}</h2>
 
-	<div class="row">
-		<div class="col-md-4"><label for="login">{{lang_login}}</label></div>
-		<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control"
-											  placeholder="{{lang_username}}" autofocus></div>
-	</div>
-	<div class="row">
-		<div class="col-md-4"></div>
-		<div class="col-md-8">
-			<p>
-				{{lang_changeLoginHint}}
-			</p>
-		</div>
+<div class="row">
+	<div class="col-md-4"><label for="login">{{lang_login}}</label></div>
+	<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control"
+										  placeholder="{{lang_username}}" autofocus></div>
+</div>
+<div class="row">
+	<div class="col-md-4"></div>
+	<div class="col-md-8">
+		<p>
+			{{lang_changeLoginHint}}
+		</p>
 	</div>
+</div>
 
-	<div class="row">
-		<div class="col-md-4"><label for="pass1">{{lang_changePassword}}</label></div>
-		<div class="col-md-4"><input id="pass1" {{password_disabled}} type="password" name="pass1" class="form-control" placeholder="{{lang_password}}">
-		</div>
-		<div class="col-md-4"><input {{password_disabled}} type="password" name="pass2" class="form-control"
-											  placeholder="{{lang_confirmation}}"></div>
+<div class="row">
+	<div class="col-md-4"><label for="pass1">{{lang_changePassword}}</label></div>
+	<div class="col-md-4"><input id="pass1" {{password_disabled}} type="password" name="pass1" class="form-control" placeholder="{{lang_password}}">
 	</div>
-	{{#password_disabled}}
-	<div class="row">
-		<div class="col-md-4"></div>
-		<div class="col-md-8">
-			<p>
-				{{lang_changeOwnPasswordHint}}
-			</p>
-		</div>
+	<div class="col-md-4"><input {{password_disabled}} type="password" name="pass2" class="form-control"
+										  placeholder="{{lang_confirmation}}"></div>
+</div>
+{{#password_disabled}}
+<div class="row">
+	<div class="col-md-4"></div>
+	<div class="col-md-8">
+		<p>
+			{{lang_changeOwnPasswordHint}}
+		</p>
 	</div>
-	{{/password_disabled}}
-	<br>
+</div>
+{{/password_disabled}}
+<br>
 
-	<div class="row">
-		<div class="col-md-4"><label for="fullname">{{lang_fullName}}</label></div>
-		<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control"
-											  placeholder="{{lang_fullName}}"></div>
-	</div>
-	<br>
+<div class="row">
+	<div class="col-md-4"><label for="fullname">{{lang_fullName}}</label></div>
+	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control"
+										  placeholder="{{lang_fullName}}"></div>
+</div>
+<br>
 
-	<div class="row">
-		<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
-		<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control"
-											  placeholder="{{lang_phone}}"></div>
-	</div>
-	<br>
+<div class="row">
+	<div class="col-md-4"><label for="phone">{{lang_phone}}</label></div>
+	<div class="col-md-4"><input id=phone" type="text" name="phone" value="{{phone}}" class="form-control"
+										  placeholder="{{lang_phone}}"></div>
+</div>
+<br>
 
-	<div class="row">
-		<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
-		<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}">
-		</div>
+<div class="row">
+	<div class="col-md-4"><label for="email">{{lang_email}}</label></div>
+	<div class="col-md-4"><input id="email" type="text" name="email" value="{{email}}" class="form-control" placeholder="{{lang_email}}">
 	</div>
-	<br>
+</div>
+<br>
 
-	<div class="row">
-		<div class="col-md-4"></div>
-		<div class="col-md-8">
-			<button class="btn btn-lg btn-primary btn-block" type="submit">
-				<span class="glyphicon glyphicon-floppy-disk"></span>
-				{{lang_save}}
-			</button>
-		</div>
+<div class="row">
+	<div class="col-md-4"></div>
+	<div class="col-md-8">
+		<button class="btn btn-lg btn-primary btn-block" type="submit">
+			<span class="glyphicon glyphicon-floppy-disk"></span>
+			{{lang_save}}
+		</button>
 	</div>
-	<input type="hidden" name="action" value="edituser">
-	<input type="hidden" name="userid" value="{{userid}}">
-	<input type="hidden" name="token" value="{{token}}">
-</form>
+</div>
+<input type="hidden" name="action" value="edituser">
+<input type="hidden" name="userid" value="{{userid}}">
+<input type="hidden" name="token" value="{{token}}">
diff --git a/modules-available/adduser/templates/user-permissions.html b/modules-available/adduser/templates/user-permissions.html
new file mode 100644
index 00000000..ce51630f
--- /dev/null
+++ b/modules-available/adduser/templates/user-permissions.html
@@ -0,0 +1,24 @@
+<h3>{{lang_assignRoles}}</h3>
+
+<table class="table table-condensed table-hover">
+	<thead>
+	<tr>
+		<th data-sort="string">{{lang_role}}</th>
+		<th class="text-center slx-smallcol"></th>
+	</tr>
+	</thead>
+
+	<tbody>
+	{{#roles}}
+		<tr>
+			<td class="rolename">{{rolename}}</td>
+			<td class="text-center">
+				<div class="checkbox">
+					<input type="checkbox" name="roles[]" value="{{roleid}}" {{#hasRole}}checked{{/hasRole}}>
+					<label></label>
+				</div>
+			</td>
+		</tr>
+	{{/roles}}
+	</tbody>
+</table>
\ No newline at end of file
diff --git a/modules-available/permissionmanager/inc/permissiondbupdate.inc.php b/modules-available/permissionmanager/inc/permissiondbupdate.inc.php
index 1f56f4ea..5f528a37 100644
--- a/modules-available/permissionmanager/inc/permissiondbupdate.inc.php
+++ b/modules-available/permissionmanager/inc/permissiondbupdate.inc.php
@@ -7,17 +7,19 @@ class PermissionDbUpdate
 	 * Insert all user/role combinations into the role_x_user table.
 	 *
 	 * @param int[] $users userids
-	 * @param string[] $roles roleids
+	 * @param int[] $roles roleids
 	 */
 	public static function addRoleToUser($users, $roles)
 	{
+		if (empty($users) || empty($roles))
+			return 0;
 		$arg = array();
 		foreach ($users AS $userid) {
 			foreach ($roles AS $roleid) {
 				$arg[] = compact('userid', 'roleid');
 			}
 		}
-		Database::exec("INSERT IGNORE INTO role_x_user (userid, roleid) VALUES :arg",
+		return Database::exec("INSERT IGNORE INTO role_x_user (userid, roleid) VALUES :arg",
 			['arg' => $arg]);
 	}
 
@@ -25,12 +27,28 @@ class PermissionDbUpdate
 	 * Remove all user/role combinations from the role_x_user table.
 	 *
 	 * @param int[] $users userids
-	 * @param string[] $roles roleids
+	 * @param int[] $roles roleids
 	 */
 	public static function removeRoleFromUser($users, $roles)
 	{
+		if (empty($users) || empty($roles))
+			return 0;
 		$query = "DELETE FROM role_x_user WHERE userid IN (:users) AND roleid IN (:roles)";
-		Database::exec($query, array("users" => $users, "roles" => $roles));
+		return Database::exec($query, array("users" => $users, "roles" => $roles));
+	}
+
+	/**
+	 * Assign the specified roles to given users, removing any roles from the users
+	 * that are not in the given set.
+	 *
+	 * @param int[] $users list of user ids
+	 * @param int[] $roles list of role ids
+	 */
+	public static function setRolesForUser($users, $roles)
+	{
+		$count = Database::exec("DELETE FROM role_x_user WHERE userid in (:users) AND roleid NOT IN (:roles)",
+			compact('users', 'roles'));
+		return $count + self::addRoleToUser($users, $roles);
 	}
 
 	/**
@@ -40,7 +58,7 @@ class PermissionDbUpdate
 	 */
 	public static function deleteRole($roleid)
 	{
-		Database::exec("DELETE FROM role WHERE roleid = :roleid", array("roleid" => $roleid));
+		return Database::exec("DELETE FROM role WHERE roleid = :roleid", array("roleid" => $roleid));
 	}
 
 	/**
diff --git a/modules-available/permissionmanager/inc/permissionutil.inc.php b/modules-available/permissionmanager/inc/permissionutil.inc.php
index 29663ed9..a3a2b610 100644
--- a/modules-available/permissionmanager/inc/permissionutil.inc.php
+++ b/modules-available/permissionmanager/inc/permissionutil.inc.php
@@ -231,6 +231,28 @@ class PermissionUtil
 		return $permissions;
 	}
 
+	/**
+	 * Get all existing roles.
+	 *
+	 * @param int|false $userid Which user to consider, false = none
+	 * @param bool $onlyMatching true = filter roles the user doesn't have
+	 * @return array list of roles
+	 */
+	public static function getRoles($userid = false, $onlyMatching = true)
+	{
+		if ($userid === false) {
+			return Database::queryAll('SELECT roleid, rolename FROM role ORDER BY rolename ASC');
+		}
+		$ret = Database::queryAll('SELECT r.roleid, r.rolename, u.userid AS hasRole FROM role r
+				LEFT JOIN role_x_user u ON (r.roleid = u.roleid AND u.userid = :userid)
+				GROUP BY r.roleid
+				ORDER BY rolename ASC', ['userid' => $userid]);
+		foreach ($ret as &$role) {
+			settype($role['hasRole'], 'bool');
+		}
+		return $ret;
+	}
+
 	/**
 	 * Place a permission into the given permission tree.
 	 *
@@ -252,4 +274,5 @@ class PermissionUtil
 		}
 		$tree = array('description' => $description, 'location-aware' => $locationAware, 'isLeaf' => true);
 	}
+
 }
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 74dc127c932c8cf1c8d025b1134b21bd97587428 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Sat, 24 Feb 2018 12:47:20 +0100
Subject: [adduser] Consistent method naming

---
 modules-available/adduser/page.inc.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index d1615828..60785d6c 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -169,7 +169,7 @@ class Page_AddUser extends Page
 			Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 			Render::addTemplate('page-adduser');
 			if ($hasUsers) {
-				$this->showPermissions();
+				$this->showRoles();
 			}
 			Render::closeTag('form');
 		} elseif ($show === 'edituser') {
@@ -187,7 +187,7 @@ class Page_AddUser extends Page
 				// TODO: LDAP -> disallow pw change, maybe other fields too?
 				Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 				Render::addTemplate('page-edituser', $user);
-				$this->showPermissions($userid);
+				$this->showRoles($userid);
 				Render::closeTag('form');
 			}
 		} elseif ($show === 'list') {
@@ -204,7 +204,7 @@ class Page_AddUser extends Page
 		}
 	}
 
-	private function showPermissions($userid = false)
+	private function showRoles($userid = false)
 	{
 		if (!Module::isAvailable('permissionmanager'))
 			return;
-- 
cgit v1.2.3-55-g7522


From 3945fad76dc623e784cfb4fedee1978e99958a4e Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 20 Mar 2018 11:31:25 +0100
Subject: [adduser] Fix delete message, add translations

---
 modules-available/adduser/lang/de/messages.json    |  3 +++
 .../adduser/lang/de/template-tags.json             |  4 ++++
 modules-available/adduser/lang/en/messages.json    |  3 +++
 .../adduser/lang/en/template-tags.json             |  4 ++++
 .../adduser/templates/page-userlist.html           | 24 ++++++++++++++++------
 5 files changed, 32 insertions(+), 6 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/messages.json b/modules-available/adduser/lang/de/messages.json
index 0ab4571f..207e8056 100644
--- a/modules-available/adduser/lang/de/messages.json
+++ b/modules-available/adduser/lang/de/messages.json
@@ -1,8 +1,11 @@
 {
     "adduser-success": "Benutzer erfolgreich hinzugef\u00fcgt",
+    "cannot-delete-1-self": "Sie k\u00f6nnen nicht den Benutzer mit der ID 1 oder sich selbst l\u00f6schen",
     "db-error": "Datenbankfehler: {{0}}",
     "password-changed": "Passwort ge\u00e4ndert",
     "password-mismatch": "Passwort und Passwortbest\u00e4tigung stimmen nicht \u00fcberein",
+    "roles-updated": "Rollen aktualisiert",
+    "user-deleted": "Benutzer {{0}} gel\u00f6scht",
     "user-edited": "Benutzerdaten wurden ge\u00e4ndert",
     "user-not-found": "Benutzer mit ID {{0}} nicht gefunden"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/de/template-tags.json b/modules-available/adduser/lang/de/template-tags.json
index 0b6b2530..31a7871e 100644
--- a/modules-available/adduser/lang/de/template-tags.json
+++ b/modules-available/adduser/lang/de/template-tags.json
@@ -1,8 +1,10 @@
 {
     "lang_addUser": "Nutzer hinzuf\u00fcgen",
+    "lang_assignRoles": "Rollen zuweisen",
     "lang_changeLoginHint": "Sie k\u00f6nnen den Namen, den der Nutzer beim Login angeben muss, \u00e4ndern. Dies ist nur bei lokalen Nutzern m\u00f6glich, die nicht \u00fcber LDAP\/AD authentifiziert werden.",
     "lang_changeOwnPasswordHint": "Ihr eigenes Passwort k\u00f6nnen Sie \u00fcber den Button \"Passwort \u00e4ndern\" im Men\u00fc \u00e4ndern.",
     "lang_changePassword": "Neues Passwort",
+    "lang_confirmDelete": "L\u00f6schen best\u00e4tigen",
     "lang_confirmation": "Wiederholen",
     "lang_createUser": "Benutzer anlegen",
     "lang_editUser": "Benutzer bearbeiten",
@@ -11,6 +13,8 @@
     "lang_login": "Login",
     "lang_name": "Name",
     "lang_phone": "Telefon",
+    "lang_role": "Rolle",
+    "lang_userDeleteConfirm": "M\u00f6chten Sie diesen Benutzer wirklich l\u00f6schen?",
     "lang_userManagement": "Benutzerverwaltung",
     "lang_userlist": "Benutzerliste"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/messages.json b/modules-available/adduser/lang/en/messages.json
index 69af3227..d55e0ec6 100644
--- a/modules-available/adduser/lang/en/messages.json
+++ b/modules-available/adduser/lang/en/messages.json
@@ -1,8 +1,11 @@
 {
     "adduser-success": "User successfully added",
+    "cannot-delete-1-self": "Cannot delete user with ID 1 or yourself",
     "db-error": "Database error: {{0}}",
     "password-changed": "Password changed",
     "password-mismatch": "Password and password confirmation do not match",
+    "roles-updated": "Roles have been updated",
+    "user-deleted": "Deleted user {{0}}",
     "user-edited": "User data has been updated",
     "user-not-found": "User with ID {{0}} not found"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/template-tags.json b/modules-available/adduser/lang/en/template-tags.json
index 2c9b8b53..4fe03711 100644
--- a/modules-available/adduser/lang/en/template-tags.json
+++ b/modules-available/adduser/lang/en/template-tags.json
@@ -1,8 +1,10 @@
 {
     "lang_addUser": "Add user",
+    "lang_assignRoles": "Assign roles",
     "lang_changeLoginHint": "You can change the login identifier used for logging in. This is only enabled for local acounts that are not linked to LDAP\/AD servers.",
     "lang_changeOwnPasswordHint": "You can change your own password by clicking the \"change password\" button in the menu.",
     "lang_changePassword": "Change password",
+    "lang_confirmDelete": "Confirm delete",
     "lang_confirmation": "Confirm Password",
     "lang_createUser": "Create User",
     "lang_editUser": "Edit user",
@@ -11,6 +13,8 @@
     "lang_login": "Login",
     "lang_name": "Name",
     "lang_phone": "Phone",
+    "lang_role": "Role",
+    "lang_userDeleteConfirm": "Do you want to delete this user?",
     "lang_userManagement": "User management",
     "lang_userlist": "User list"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/templates/page-userlist.html b/modules-available/adduser/templates/page-userlist.html
index 5b14f7e5..8d9c6de0 100644
--- a/modules-available/adduser/templates/page-userlist.html
+++ b/modules-available/adduser/templates/page-userlist.html
@@ -18,7 +18,7 @@
 		<tbody>
 		{{#list}}
 			<tr>
-				<td>{{login}}</td>
+				<td id="user-{{userid}}">{{login}}</td>
 				<td>{{fullname}}</td>
 				<td>{{phone}}</td>
 				<td>{{email}}</td>
@@ -27,8 +27,8 @@
 						<span class="glyphicon glyphicon-edit"></span>
 					</button>
 					{{^hide_delete}}
-					<button type="button" {{perms.user.remove.disabled}} class="btn btn-danger btn-xs"
-							  data-target="#delete-modal" data-toggle="modal" onclick="$('#delete-userid').val({{userid}})">
+					<button type="button" {{perms.user.remove.disabled}} class="btn btn-danger btn-xs del-user-btn"
+							  data-target="#delete-modal" data-toggle="modal" data-user="{{userid}}">
 						<span class="glyphicon glyphicon-trash"></span>
 					</button>
 					{{/hide_delete}}
@@ -44,6 +44,19 @@
 		</a>
 	</div>
 </form>
+<script>
+	document.addEventListener('DOMContentLoaded', function() {
+		$('.del-user-btn').click(function (e) {
+			var uid = $(this).data('user');
+			if (!uid) {
+				alert('ERROR');
+				return false;
+			}
+			$('#delete-userid').val(uid);
+			$('#delete-user-field').text($('#user-' + uid).text());
+		});
+	});
+</script>
 
 <!-- Modals -->
 <div class ="modal fade" id="delete-modal" tabindex="-1" role="dialog" aria-labelledby="myModalLabel">
@@ -52,11 +65,10 @@
 			<form method="post">
 				<div class="modal-header">
 					<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">&times;</span></button>
-					<h4 class="modal-title" id="myModalLabel">{{lang_confirmDelete}}</h4>
+					<h4 class="modal-title" id="myModalLabel">{{lang_confirmDelete}}: <span id="delete-user-field"></span></h4>
 				</div>
 				<div class="modal-body">
-					<p>{{lang_roleDeleteConfirm}}</p>
-					{{lang_numAssignedUsers}}: <span id="delete-role-users"></span>
+					<p>{{lang_userDeleteConfirm}}</p>
 				</div>
 				<div class="modal-footer">
 					<input type="hidden" name="action" value="deleteuser">
-- 
cgit v1.2.3-55-g7522


From 662315be2b5f6153fda03e8ec48ea3f8b343f68b Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Wed, 21 Mar 2018 11:05:25 +0100
Subject: Update permission translations

---
 modules-available/adduser/lang/de/permissions.json        |  6 ++++++
 modules-available/adduser/lang/en/permissions.json        |  6 ++++++
 modules-available/baseconfig/lang/de/permissions.json     |  4 ++++
 modules-available/baseconfig/lang/en/permissions.json     |  4 ++++
 modules-available/dnbd3/lang/de/permissions.json          |  8 ++++++++
 modules-available/dnbd3/lang/en/permissions.json          |  8 ++++++++
 modules-available/locationinfo/lang/de/permissions.json   |  8 ++++++++
 modules-available/locationinfo/lang/en/permissions.json   |  8 ++++++++
 modules-available/runmode/lang/de/permissions.json        |  3 +++
 modules-available/runmode/lang/en/permissions.json        |  3 +++
 .../serversetup-bwlp/lang/de/permissions.json             |  6 +++---
 modules-available/statistics/lang/de/permissions.json     | 15 +++++++++++----
 modules-available/statistics/lang/en/permissions.json     | 15 +++++++++++----
 modules-available/sysconfig/lang/de/permissions.json      |  8 ++++++++
 modules-available/sysconfig/lang/en/permissions.json      |  8 ++++++++
 modules-available/systemstatus/lang/de/permissions.json   |  2 +-
 16 files changed, 100 insertions(+), 12 deletions(-)
 create mode 100644 modules-available/adduser/lang/de/permissions.json
 create mode 100644 modules-available/adduser/lang/en/permissions.json
 create mode 100644 modules-available/baseconfig/lang/de/permissions.json
 create mode 100644 modules-available/baseconfig/lang/en/permissions.json
 create mode 100644 modules-available/dnbd3/lang/de/permissions.json
 create mode 100644 modules-available/dnbd3/lang/en/permissions.json
 create mode 100644 modules-available/locationinfo/lang/de/permissions.json
 create mode 100644 modules-available/locationinfo/lang/en/permissions.json
 create mode 100644 modules-available/runmode/lang/de/permissions.json
 create mode 100644 modules-available/runmode/lang/en/permissions.json
 create mode 100644 modules-available/sysconfig/lang/de/permissions.json
 create mode 100644 modules-available/sysconfig/lang/en/permissions.json

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/permissions.json b/modules-available/adduser/lang/de/permissions.json
new file mode 100644
index 00000000..636b73ff
--- /dev/null
+++ b/modules-available/adduser/lang/de/permissions.json
@@ -0,0 +1,6 @@
+{
+    "list.view": "Nutzerliste anzeigen",
+    "user.add": "Neuen Nutzer hinzuf\u00fcgen",
+    "user.edit": "Nutzer bearbeiten",
+    "user.remove": "Nutzer l\u00f6schen"
+}
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/permissions.json b/modules-available/adduser/lang/en/permissions.json
new file mode 100644
index 00000000..d12d100e
--- /dev/null
+++ b/modules-available/adduser/lang/en/permissions.json
@@ -0,0 +1,6 @@
+{
+    "list.view": "Show userlist",
+    "user.add": "Add new user",
+    "user.edit": "Edit user",
+    "user.remove": "Remove user"
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig/lang/de/permissions.json b/modules-available/baseconfig/lang/de/permissions.json
new file mode 100644
index 00000000..a010cebe
--- /dev/null
+++ b/modules-available/baseconfig/lang/de/permissions.json
@@ -0,0 +1,4 @@
+{
+    "edit": "Konfigurationsvariablen bearbeiten",
+    "view": "Konfigurationsvariablen anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig/lang/en/permissions.json b/modules-available/baseconfig/lang/en/permissions.json
new file mode 100644
index 00000000..9fe69752
--- /dev/null
+++ b/modules-available/baseconfig/lang/en/permissions.json
@@ -0,0 +1,4 @@
+{
+    "edit": "Edit config variables",
+    "view": "Show config variables"
+}
\ No newline at end of file
diff --git a/modules-available/dnbd3/lang/de/permissions.json b/modules-available/dnbd3/lang/de/permissions.json
new file mode 100644
index 00000000..9229d6d9
--- /dev/null
+++ b/modules-available/dnbd3/lang/de/permissions.json
@@ -0,0 +1,8 @@
+{
+    "configure.external": "Externen Proxy bearbeiten",
+    "configure.proxy": "Automatischen Proxy bearbeiten",
+    "refresh": "Serverliste aktualisieren",
+    "toggle-usage": "Aktivieren\/Deaktivieren",
+    "view.details": "Proxydetails anzeigen",
+    "view.list": "Proxyliste anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/dnbd3/lang/en/permissions.json b/modules-available/dnbd3/lang/en/permissions.json
new file mode 100644
index 00000000..0762af2c
--- /dev/null
+++ b/modules-available/dnbd3/lang/en/permissions.json
@@ -0,0 +1,8 @@
+{
+    "configure.external": "Edit external proxy",
+    "configure.proxy": "Edit automatic proxy",
+    "refresh": "Refresh server list",
+    "toggle-usage": "Activate\/Deactivate",
+    "view.details": "Show proxy details",
+    "view.list": "Show proxy list"
+}
\ No newline at end of file
diff --git a/modules-available/locationinfo/lang/de/permissions.json b/modules-available/locationinfo/lang/de/permissions.json
new file mode 100644
index 00000000..1cd78eab
--- /dev/null
+++ b/modules-available/locationinfo/lang/de/permissions.json
@@ -0,0 +1,8 @@
+{
+    "backend.check": "Backend Verbindung pr\u00fcfen",
+    "backend.edit": "Backend bearbeiten",
+    "location.edit": "Raum\/Ort Einstellungen bearbeiten",
+    "panel.assign-client": "Client als Infoscreen festlegen",
+    "panel.edit": "Panel bearbeiten",
+    "panel.list": "Panel anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/locationinfo/lang/en/permissions.json b/modules-available/locationinfo/lang/en/permissions.json
new file mode 100644
index 00000000..4b620b04
--- /dev/null
+++ b/modules-available/locationinfo/lang/en/permissions.json
@@ -0,0 +1,8 @@
+{
+    "backend.check": "Test backend connection",
+    "backend.edit": "Edit backend",
+    "location.edit": "Edit location settings",
+    "panel.assign-client": "Set client as infoscreen",
+    "panel.edit": "Edit panel",
+    "panel.list": "List panels"
+}
\ No newline at end of file
diff --git a/modules-available/runmode/lang/de/permissions.json b/modules-available/runmode/lang/de/permissions.json
new file mode 100644
index 00000000..0a89e027
--- /dev/null
+++ b/modules-available/runmode/lang/de/permissions.json
@@ -0,0 +1,3 @@
+{
+    "list-all": "Betriebsmodi anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/runmode/lang/en/permissions.json b/modules-available/runmode/lang/en/permissions.json
new file mode 100644
index 00000000..8b3a6e62
--- /dev/null
+++ b/modules-available/runmode/lang/en/permissions.json
@@ -0,0 +1,3 @@
+{
+    "list-all": "Show runmodes"
+}
\ No newline at end of file
diff --git a/modules-available/serversetup-bwlp/lang/de/permissions.json b/modules-available/serversetup-bwlp/lang/de/permissions.json
index 673bf153..65367c51 100644
--- a/modules-available/serversetup-bwlp/lang/de/permissions.json
+++ b/modules-available/serversetup-bwlp/lang/de/permissions.json
@@ -1,5 +1,5 @@
 {
-	"edit.address": "Boot-Adresse des Servers auswählen.",
-	"edit.menu": "Bootmenü anpassen.",
-	"download": "USB-Image herunteladen."
+    "download": "USB-Image herunterladen.",
+    "edit.address": "Boot-Adresse des Servers ausw\u00e4hlen.",
+    "edit.menu": "Bootmen\u00fc anpassen."
 }
\ No newline at end of file
diff --git a/modules-available/statistics/lang/de/permissions.json b/modules-available/statistics/lang/de/permissions.json
index 7b7db89a..8579b28f 100644
--- a/modules-available/statistics/lang/de/permissions.json
+++ b/modules-available/statistics/lang/de/permissions.json
@@ -1,5 +1,12 @@
 {
-	"view": "Statistiken anschauen.",
-	"machine.note": "Anmerkungen zu einem Rechner speichern.",
-	"machine.delete": "Rechner löschen."
-}
+    "hardware.projectors.edit": "Beamerzuweisung bearbeiten",
+    "hardware.projectors.view": "Beamerzuweisung anzeigen",
+    "machine.delete": "Rechner l\u00f6schen.",
+    "machine.note": "Anmerkungen zu einem Rechner speichern.",
+    "machine.note.edit": "Anmerkungen bearbeiten",
+    "machine.note.view": "Anmerkungen anzeigen",
+    "machine.view-details": "Clientinformationen anzeigen",
+    "view": "Statistiken anschauen.",
+    "view.list": "Clientliste anzeigen",
+    "view.summary": "Visualisierung anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/statistics/lang/en/permissions.json b/modules-available/statistics/lang/en/permissions.json
index 01acdb8a..445f96b8 100644
--- a/modules-available/statistics/lang/en/permissions.json
+++ b/modules-available/statistics/lang/en/permissions.json
@@ -1,5 +1,12 @@
 {
-	"view": "View statistics.",
-	"machine.note": "Save client notes.",
-	"machine.delete": "Delete clients."
-}
+    "hardware.projectors.edit": "Edit beamer assignment",
+    "hardware.projectors.view": "Show beamer assignment",
+    "machine.delete": "Delete clients.",
+    "machine.note": "Save client notes.",
+    "machine.note.edit": "Edit notes",
+    "machine.note.view": "Show notes",
+    "machine.view-details": "Show client details",
+    "view": "View statistics.",
+    "view.list": "Show client list",
+    "view.summary": "Show visualization"
+}
\ No newline at end of file
diff --git a/modules-available/sysconfig/lang/de/permissions.json b/modules-available/sysconfig/lang/de/permissions.json
new file mode 100644
index 00000000..c32c488b
--- /dev/null
+++ b/modules-available/sysconfig/lang/de/permissions.json
@@ -0,0 +1,8 @@
+{
+    "config.assign": "Systemkonfiguration zuweisen",
+    "config.edit": "Systemkonfiguration bearbeiten",
+    "config.view-list": "Systemkonfigurationen anzeigen",
+    "module.download": "Konfigurationsmodul herunterladen",
+    "module.edit": "Konfigurationsmodul bearbeiten",
+    "module.view-list": "Konfigurationsmodule anzeigen"
+}
\ No newline at end of file
diff --git a/modules-available/sysconfig/lang/en/permissions.json b/modules-available/sysconfig/lang/en/permissions.json
new file mode 100644
index 00000000..14757383
--- /dev/null
+++ b/modules-available/sysconfig/lang/en/permissions.json
@@ -0,0 +1,8 @@
+{
+    "config.assign": "Assign system configuration",
+    "config.edit": "Edit system configuration",
+    "config.view-list": "Show system configurations",
+    "module.download": "Download configuration module",
+    "module.edit": "Edit configuration module",
+    "module.view-list": "Show configuration modules"
+}
\ No newline at end of file
diff --git a/modules-available/systemstatus/lang/de/permissions.json b/modules-available/systemstatus/lang/de/permissions.json
index 5508beb5..a3041fbc 100644
--- a/modules-available/systemstatus/lang/de/permissions.json
+++ b/modules-available/systemstatus/lang/de/permissions.json
@@ -8,6 +8,6 @@
     "tab.dmsdlog": "Zugriff auf bwLehrpool-Suite-Server Statusausgabe.",
     "tab.ldadplog": "Zugriff auf LDAP\/AD-Proxy Logs.",
     "tab.lighttpdlog": "Zugriff auf Webserver-Logs.",
-    "tab.netstat": "Zeige Aufgabe von netstat.",
+    "tab.netstat": "Zeige Ausgabe von netstat.",
     "tab.pslist": "Zeige Prozessliste."
 }
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 4bc146d5e2bf3dfcddf674aa366bdebd1c1e2a4a Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 27 Mar 2018 10:35:05 +0200
Subject: [adduser] Show name of deleted user in confirmation message

Refs #3344
---
 modules-available/adduser/lang/de/messages.json | 2 +-
 modules-available/adduser/lang/en/messages.json | 2 +-
 modules-available/adduser/page.inc.php          | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/messages.json b/modules-available/adduser/lang/de/messages.json
index 207e8056..a744ae5f 100644
--- a/modules-available/adduser/lang/de/messages.json
+++ b/modules-available/adduser/lang/de/messages.json
@@ -5,7 +5,7 @@
     "password-changed": "Passwort ge\u00e4ndert",
     "password-mismatch": "Passwort und Passwortbest\u00e4tigung stimmen nicht \u00fcberein",
     "roles-updated": "Rollen aktualisiert",
-    "user-deleted": "Benutzer {{0}} gel\u00f6scht",
+    "user-deleted": "Benutzer {{0}} (ID={1}}) gel\u00f6scht",
     "user-edited": "Benutzerdaten wurden ge\u00e4ndert",
     "user-not-found": "Benutzer mit ID {{0}} nicht gefunden"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/messages.json b/modules-available/adduser/lang/en/messages.json
index d55e0ec6..67bca6f9 100644
--- a/modules-available/adduser/lang/en/messages.json
+++ b/modules-available/adduser/lang/en/messages.json
@@ -5,7 +5,7 @@
     "password-changed": "Password changed",
     "password-mismatch": "Password and password confirmation do not match",
     "roles-updated": "Roles have been updated",
-    "user-deleted": "Deleted user {{0}}",
+    "user-deleted": "Deleted user {{0}} (ID={{1}})",
     "user-edited": "User data has been updated",
     "user-not-found": "User with ID {{0}} not found"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index 60785d6c..c43a04e6 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -129,7 +129,7 @@ class Page_AddUser extends Page
 			return;
 		}
 		//\\
-		$user = Database::queryFirst('SELECT userid, login, fullname, phone, email
+		$user = Database::queryFirst('SELECT userid, login
 					FROM user WHERE userid = :userid', compact('userid'));
 		if ($user === false) {
 			Message::addError('user-not-found', $userid);
@@ -140,7 +140,7 @@ class Page_AddUser extends Page
 			return;
 		}
 		Database::exec('DELETE FROM user WHERE userid = :userid', compact('userid'));
-		Message::addSuccess('user-deleted', $userid);
+		Message::addSuccess('user-deleted', $user['login'], $userid);
 	}
 
 	private function saveRoles($userid)
-- 
cgit v1.2.3-55-g7522


From 2abf30cf3d1f007690ab3c17c3d2ecd453f1fb23 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 27 Mar 2018 10:56:14 +0200
Subject: [adduser] add user: Check various input fields via js for immediate
 feedback

Refs #3344
---
 .../adduser/lang/de/template-tags.json             |  4 +++
 .../adduser/lang/en/template-tags.json             |  4 +++
 modules-available/adduser/style.css                |  4 +++
 .../adduser/templates/page-adduser.html            | 36 +++++++++++++++++++---
 4 files changed, 43 insertions(+), 5 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/template-tags.json b/modules-available/adduser/lang/de/template-tags.json
index 31a7871e..e13c3876 100644
--- a/modules-available/adduser/lang/de/template-tags.json
+++ b/modules-available/adduser/lang/de/template-tags.json
@@ -10,8 +10,12 @@
     "lang_editUser": "Benutzer bearbeiten",
     "lang_email": "E-Mail",
     "lang_fullName": "Vollst\u00e4ndiger Name",
+    "lang_fullnameMissing": "Kein Name angegeben",
     "lang_login": "Login",
+    "lang_loginTooShort": "Login zu kurz",
     "lang_name": "Name",
+    "lang_passwordTooShort": "Passwort zu kurz",
+    "lang_passwordsDontMatch": "Passworte stimmen nicht \u00fcberein",
     "lang_phone": "Telefon",
     "lang_role": "Rolle",
     "lang_userDeleteConfirm": "M\u00f6chten Sie diesen Benutzer wirklich l\u00f6schen?",
diff --git a/modules-available/adduser/lang/en/template-tags.json b/modules-available/adduser/lang/en/template-tags.json
index 4fe03711..de57b385 100644
--- a/modules-available/adduser/lang/en/template-tags.json
+++ b/modules-available/adduser/lang/en/template-tags.json
@@ -10,8 +10,12 @@
     "lang_editUser": "Edit user",
     "lang_email": "Email",
     "lang_fullName": "Full Name",
+    "lang_fullnameMissing": "Full name missing",
     "lang_login": "Login",
+    "lang_loginTooShort": "Login too short",
     "lang_name": "Name",
+    "lang_passwordTooShort": "Password too short",
+    "lang_passwordsDontMatch": "Passwords don't match",
     "lang_phone": "Phone",
     "lang_role": "Role",
     "lang_userDeleteConfirm": "Do you want to delete this user?",
diff --git a/modules-available/adduser/style.css b/modules-available/adduser/style.css
index e459352b..15f04b80 100644
--- a/modules-available/adduser/style.css
+++ b/modules-available/adduser/style.css
@@ -13,3 +13,7 @@
     -moz-box-sizing: border-box;
     box-sizing: border-box;
 }
+
+#add-msg {
+    height: 1em;
+}
\ No newline at end of file
diff --git a/modules-available/adduser/templates/page-adduser.html b/modules-available/adduser/templates/page-adduser.html
index bd16dbbf..18d79a3b 100644
--- a/modules-available/adduser/templates/page-adduser.html
+++ b/modules-available/adduser/templates/page-adduser.html
@@ -3,18 +3,18 @@
 <h2>{{lang_createUser}}</h2>
 <div class="row">
 	<div class="col-md-4"><label for="login">{{lang_login}} *</label></div>
-	<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control" placeholder="{{lang_username}}" autofocus></div>
+	<div class="col-md-4"><input id="login" type="text" name="login" value="{{login}}" class="form-control event-box" placeholder="{{lang_username}}" autofocus></div>
 </div>
 <br>
 <div class="row">
 	<div class="col-md-4"><label for="pass1">{{lang_password}} *</label></div>
-	<div class="col-md-4"><input id="pass1" type="password" name="pass1" class="form-control" placeholder="{{lang_password}}"></div>
-	<div class="col-md-4"><input type="password" name="pass2" class="form-control" placeholder="{{lang_confirmation}}"></div>
+	<div class="col-md-4"><input id="pass1" type="password" name="pass1" class="form-control event-box" placeholder="{{lang_password}}"></div>
+	<div class="col-md-4"><input id="pass2" type="password" name="pass2" class="form-control event-box" placeholder="{{lang_confirmation}}"></div>
 </div>
 <br>
 <div class="row">
 	<div class="col-md-4"><label for="fullname">{{lang_fullName}} *</label></div>
-	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control" placeholder="{{lang_fullName}}"></div>
+	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control event-box" placeholder="{{lang_fullName}}"></div>
 </div>
 <br>
 <div class="row">
@@ -30,8 +30,34 @@
 <div class="row">
 	<div class="col-md-4"></div>
 	<div class="col-md-8">
-		<button class="btn btn-lg btn-primary btn-block" type="submit">{{lang_createUser}}</button>
+		<button id="add-btn" class="btn btn-lg btn-primary btn-block" type="submit" disabled>{{lang_createUser}}</button>
+		<div id="add-msg" class="text-danger slx-bold"></div>
 	</div>
 </div>
 <input type="hidden" name="action" value="adduser">
 <input type="hidden" name="token" value="{{token}}">
+<script><!--
+document.addEventListener('DOMContentLoaded', function() {
+	var $login = $('#login');
+	var $pass1 = $('#pass1');
+	var $pass2 = $('#pass2');
+	var $fullname = $('#fullname');
+	var $msg = $('#add-msg');
+	var $btn = $('#add-btn');
+	var ev = function() {
+		var msg = '';
+		if ($login.val().length < 2) {
+			msg = '{{lang_loginTooShort}}';
+		} else if ($pass1.val() !== $pass2.val()) {
+			msg = '{{lang_passwordsDontMatch}}';
+		} else if ($pass1.val().length < 2) {
+			msg = '{{lang_passwordTooShort}}';
+		} else if ($fullname.val().length < 1) {
+			msg = '{{lang_fullnameMissing}}';
+		}
+		$msg.text(msg);
+		$btn.prop('disabled', !!msg);
+	};
+	$('.event-box').change(ev).keyup(ev);
+});
+//--></script>
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 018339a07bd6511275b6a780cd9a2b54eb319414 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Mon, 9 Apr 2018 17:04:38 +0200
Subject: [adduser] Rename permission to view-list

---
 modules-available/adduser/page.inc.php                 | 2 +-
 modules-available/adduser/permissions/permissions.json | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index c43a04e6..3af4ea6d 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -191,7 +191,7 @@ class Page_AddUser extends Page
 				Render::closeTag('form');
 			}
 		} elseif ($show === 'list') {
-			User::assertPermission('list.view');
+			User::assertPermission('user.view-list');
 			$page = new Paginate('SELECT userid, login, fullname, phone, email FROM user ORDER BY login', 50);
 			$data = ['list' => $page->exec()->fetchAll(PDO::FETCH_ASSOC)];
 			foreach ($data['list'] as &$u) {
diff --git a/modules-available/adduser/permissions/permissions.json b/modules-available/adduser/permissions/permissions.json
index e778b893..e8fd0a5e 100644
--- a/modules-available/adduser/permissions/permissions.json
+++ b/modules-available/adduser/permissions/permissions.json
@@ -8,7 +8,7 @@
 	"user.remove": {
 		"location-aware": false
 	},
-	"list.view": {
+	"user.view-list": {
 		"location-aware": false
 	}
 }
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 1a4c38fddc0003ca36e2c3838b5a4c9233d51a35 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Mon, 9 Apr 2018 18:09:07 +0200
Subject: [adduser] JS checks while editing user; second save button below role
 list

---
 modules-available/adduser/page.inc.php             |  5 +++-
 .../adduser/templates/js-add-edit.html             | 26 ++++++++++++++++++
 .../adduser/templates/page-adduser.html            | 32 ++++------------------
 .../adduser/templates/page-edituser.html           | 14 ++++++----
 .../adduser/templates/user-permissions.html        | 12 +++++++-
 5 files changed, 55 insertions(+), 34 deletions(-)
 create mode 100644 modules-available/adduser/templates/js-add-edit.html

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index 3af4ea6d..e95cb78a 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -106,7 +106,7 @@ class Page_AddUser extends Page
 				if ($ret > 0) {
 					Message::addSuccess('user-edited');
 				}
-				if (!empty($pass1)) {
+				if (!empty($pass1) && $userid !== User::getId()) {
 					$data = [
 						'pass' => Crypto::hash6($pass1),
 						'userid' => $userid,
@@ -168,6 +168,7 @@ class Page_AddUser extends Page
 			}
 			Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 			Render::addTemplate('page-adduser');
+			Render::addTemplate('js-add-edit');
 			if ($hasUsers) {
 				$this->showRoles();
 			}
@@ -184,9 +185,11 @@ class Page_AddUser extends Page
 			if ($user === false) {
 				Message::addError('user-not-found', $userid);
 			} else {
+				$user['password_disabled'] = User::getId() === $userid ? 'disabled' : false;
 				// TODO: LDAP -> disallow pw change, maybe other fields too?
 				Render::openTag('form', ['class' => 'form-adduser', 'action' => '?do=adduser', 'method' => 'post']);
 				Render::addTemplate('page-edituser', $user);
+				Render::addTemplate('js-add-edit');
 				$this->showRoles($userid);
 				Render::closeTag('form');
 			}
diff --git a/modules-available/adduser/templates/js-add-edit.html b/modules-available/adduser/templates/js-add-edit.html
new file mode 100644
index 00000000..95454c22
--- /dev/null
+++ b/modules-available/adduser/templates/js-add-edit.html
@@ -0,0 +1,26 @@
+<script><!--
+document.addEventListener('DOMContentLoaded', function() {
+	var $login = $('#login');
+	var $pass1 = $('#pass1');
+	var $pass2 = $('#pass2');
+	var $fullname = $('#fullname');
+	var $msg = $('#add-msg');
+	var $btn = $('.save-btn');
+	var ev = function() {
+		var msg = '';
+		if ($login.val().length < 2) {
+			msg = '{{lang_loginTooShort}}';
+		} else if ($pass1.val() !== $pass2.val()) {
+			msg = '{{lang_passwordsDontMatch}}';
+		} else if ((!SLX_EDITUSER || $pass1.val().length > 0) && $pass1.val().length < 2) {
+			msg = '{{lang_passwordTooShort}}';
+		} else if ($fullname.val().length < 1) {
+			msg = '{{lang_fullnameMissing}}';
+		}
+		$msg.text(msg);
+		$btn.prop('disabled', !!msg);
+	};
+	$('.event-box').change(ev).keyup(ev);
+	if (SLX_EDITUSER)	ev();
+});
+//--></script>
\ No newline at end of file
diff --git a/modules-available/adduser/templates/page-adduser.html b/modules-available/adduser/templates/page-adduser.html
index 18d79a3b..08587373 100644
--- a/modules-available/adduser/templates/page-adduser.html
+++ b/modules-available/adduser/templates/page-adduser.html
@@ -30,34 +30,12 @@
 <div class="row">
 	<div class="col-md-4"></div>
 	<div class="col-md-8">
-		<button id="add-btn" class="btn btn-lg btn-primary btn-block" type="submit" disabled>{{lang_createUser}}</button>
+		<button class="btn btn-lg btn-primary btn-block save-btn" type="submit" disabled>
+			<span class="glyphicon glyphicon-floppy-disk"></span>
+			{{lang_createUser}}
+		</button>
 		<div id="add-msg" class="text-danger slx-bold"></div>
 	</div>
 </div>
 <input type="hidden" name="action" value="adduser">
-<input type="hidden" name="token" value="{{token}}">
-<script><!--
-document.addEventListener('DOMContentLoaded', function() {
-	var $login = $('#login');
-	var $pass1 = $('#pass1');
-	var $pass2 = $('#pass2');
-	var $fullname = $('#fullname');
-	var $msg = $('#add-msg');
-	var $btn = $('#add-btn');
-	var ev = function() {
-		var msg = '';
-		if ($login.val().length < 2) {
-			msg = '{{lang_loginTooShort}}';
-		} else if ($pass1.val() !== $pass2.val()) {
-			msg = '{{lang_passwordsDontMatch}}';
-		} else if ($pass1.val().length < 2) {
-			msg = '{{lang_passwordTooShort}}';
-		} else if ($fullname.val().length < 1) {
-			msg = '{{lang_fullnameMissing}}';
-		}
-		$msg.text(msg);
-		$btn.prop('disabled', !!msg);
-	};
-	$('.event-box').change(ev).keyup(ev);
-});
-//--></script>
\ No newline at end of file
+<input type="hidden" name="token" value="{{token}}">
\ No newline at end of file
diff --git a/modules-available/adduser/templates/page-edituser.html b/modules-available/adduser/templates/page-edituser.html
index 36293b11..68376213 100644
--- a/modules-available/adduser/templates/page-edituser.html
+++ b/modules-available/adduser/templates/page-edituser.html
@@ -4,7 +4,7 @@
 
 <div class="row">
 	<div class="col-md-4"><label for="login">{{lang_login}}</label></div>
-	<div class="col-md-4"><input id="label" type="text" name="login" value="{{login}}" class="form-control"
+	<div class="col-md-4"><input id="login" type="text" name="login" value="{{login}}" class="form-control event-box"
 										  placeholder="{{lang_username}}" autofocus></div>
 </div>
 <div class="row">
@@ -18,9 +18,9 @@
 
 <div class="row">
 	<div class="col-md-4"><label for="pass1">{{lang_changePassword}}</label></div>
-	<div class="col-md-4"><input id="pass1" {{password_disabled}} type="password" name="pass1" class="form-control" placeholder="{{lang_password}}">
+	<div class="col-md-4"><input id="pass1" {{password_disabled}} type="password" name="pass1" class="form-control event-box" placeholder="{{lang_password}}">
 	</div>
-	<div class="col-md-4"><input {{password_disabled}} type="password" name="pass2" class="form-control"
+	<div class="col-md-4"><input id="pass2" {{password_disabled}} type="password" name="pass2" class="form-control event-box"
 										  placeholder="{{lang_confirmation}}"></div>
 </div>
 {{#password_disabled}}
@@ -37,7 +37,7 @@
 
 <div class="row">
 	<div class="col-md-4"><label for="fullname">{{lang_fullName}}</label></div>
-	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control"
+	<div class="col-md-4"><input id="fullname" type="text" name="fullname" value="{{fullname}}" class="form-control event-box"
 										  placeholder="{{lang_fullName}}"></div>
 </div>
 <br>
@@ -59,12 +59,16 @@
 <div class="row">
 	<div class="col-md-4"></div>
 	<div class="col-md-8">
-		<button class="btn btn-lg btn-primary btn-block" type="submit">
+		<button class="btn btn-lg btn-primary btn-block save-btn" type="submit">
 			<span class="glyphicon glyphicon-floppy-disk"></span>
 			{{lang_save}}
 		</button>
+		<div id="add-msg" class="text-danger slx-bold"></div>
 	</div>
 </div>
 <input type="hidden" name="action" value="edituser">
 <input type="hidden" name="userid" value="{{userid}}">
 <input type="hidden" name="token" value="{{token}}">
+<script>
+	const SLX_EDITUSER = true;
+</script>
diff --git a/modules-available/adduser/templates/user-permissions.html b/modules-available/adduser/templates/user-permissions.html
index ce51630f..11ebd77a 100644
--- a/modules-available/adduser/templates/user-permissions.html
+++ b/modules-available/adduser/templates/user-permissions.html
@@ -21,4 +21,14 @@
 		</tr>
 	{{/roles}}
 	</tbody>
-</table>
\ No newline at end of file
+</table>
+
+<div class="row">
+	<div class="col-md-4"></div>
+	<div class="col-md-8">
+		<button class="btn btn-lg btn-primary btn-block save-btn" type="submit">
+			<span class="glyphicon glyphicon-floppy-disk"></span>
+			{{lang_save}}
+		</button>
+	</div>
+</div>
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 0610a9adf881d594447ba7076839310602081f25 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 10 Apr 2018 12:58:39 +0200
Subject: [adduser] Fix JS checks on add page

---
 modules-available/adduser/templates/js-add-edit.html | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/templates/js-add-edit.html b/modules-available/adduser/templates/js-add-edit.html
index 95454c22..db8d435a 100644
--- a/modules-available/adduser/templates/js-add-edit.html
+++ b/modules-available/adduser/templates/js-add-edit.html
@@ -6,6 +6,9 @@ document.addEventListener('DOMContentLoaded', function() {
 	var $fullname = $('#fullname');
 	var $msg = $('#add-msg');
 	var $btn = $('.save-btn');
+	if (typeof SLX_EDITUSER === 'undefined') {
+		SLX_EDITUSER = false;
+	}
 	var ev = function() {
 		var msg = '';
 		if ($login.val().length < 2) {
-- 
cgit v1.2.3-55-g7522


From a7198124169059d32da12487a067a05c8507ef3c Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 10 Apr 2018 13:02:50 +0200
Subject: Update translations

---
 modules-available/adduser/lang/de/permissions.json         |  4 ++--
 modules-available/adduser/lang/en/permissions.json         |  4 ++--
 .../locationinfo/lang/de/backend-exchange.json             | 14 ++++++++++++++
 .../locationinfo/lang/en/backend-exchange.json             | 14 ++++++++++++++
 modules-available/news/lang/de/permissions.json            |  9 +++++----
 modules-available/news/lang/en/permissions.json            |  9 +++++----
 .../serversetup-bwlp/lang/de/permissions.json              |  1 +
 .../serversetup-bwlp/lang/en/permissions.json              |  7 ++++---
 modules-available/webinterface/lang/de/permissions.json    |  7 ++++---
 modules-available/webinterface/lang/en/permissions.json    |  7 ++++---
 10 files changed, 55 insertions(+), 21 deletions(-)
 create mode 100644 modules-available/locationinfo/lang/de/backend-exchange.json
 create mode 100644 modules-available/locationinfo/lang/en/backend-exchange.json

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/permissions.json b/modules-available/adduser/lang/de/permissions.json
index 636b73ff..8792ac14 100644
--- a/modules-available/adduser/lang/de/permissions.json
+++ b/modules-available/adduser/lang/de/permissions.json
@@ -1,6 +1,6 @@
 {
-    "list.view": "Nutzerliste anzeigen",
     "user.add": "Neuen Nutzer hinzuf\u00fcgen",
     "user.edit": "Nutzer bearbeiten",
-    "user.remove": "Nutzer l\u00f6schen"
+    "user.remove": "Nutzer l\u00f6schen",
+    "user.view-list": "Nutzerliste anzeigen"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/permissions.json b/modules-available/adduser/lang/en/permissions.json
index d12d100e..ed3d8ee3 100644
--- a/modules-available/adduser/lang/en/permissions.json
+++ b/modules-available/adduser/lang/en/permissions.json
@@ -1,6 +1,6 @@
 {
-    "list.view": "Show userlist",
     "user.add": "Add new user",
     "user.edit": "Edit user",
-    "user.remove": "Remove user"
+    "user.remove": "Remove user",
+    "user.view-list": "Show userlist"
 }
\ No newline at end of file
diff --git a/modules-available/locationinfo/lang/de/backend-exchange.json b/modules-available/locationinfo/lang/de/backend-exchange.json
new file mode 100644
index 00000000..51b4ed37
--- /dev/null
+++ b/modules-available/locationinfo/lang/de/backend-exchange.json
@@ -0,0 +1,14 @@
+{
+    "clientVersion": "Version",
+    "clientVersion_helptext": "Eingesetzte Exchange Version",
+    "password": "Passwort",
+    "password_helptext": "Passwort des Nutzers in Exchange",
+    "serverAddress": "Server-IP",
+    "serverAddress_helptext": "IP-Adresse des Exchange Servers",
+    "username": "Benutzername",
+    "username_helptext": "Benutzer muss mind. Reviewer Rechte auf Kalender besitzen",
+    "verifyCert": "Zertifikat pr\u00fcfen",
+    "verifyCert_helptext": "Wenn das Zertifikat abgelaufen ist, oder von keiner bekannten CA ausgestellt wurde, wird die Verbindung abgelehnt.",
+    "verifyHostname": "Hostnamen pr\u00fcfen",
+    "verifyHostname_helptext": "Der im Zertifikat angegebene Hostname muss mit dem Hostnamen aus der URL \u00fcbereinstimmen, sonst wird die Verbindung abgelehnt."
+}
\ No newline at end of file
diff --git a/modules-available/locationinfo/lang/en/backend-exchange.json b/modules-available/locationinfo/lang/en/backend-exchange.json
new file mode 100644
index 00000000..b3025d88
--- /dev/null
+++ b/modules-available/locationinfo/lang/en/backend-exchange.json
@@ -0,0 +1,14 @@
+{
+    "clientVersion": "Version",
+    "clientVersion_helptext": "Used exchange version",
+    "password": "Password",
+    "password_helptext": "User password in exchange",
+    "serverAddress": "Server-IP",
+    "serverAddress_helptext": "IP of the exchange server",
+    "username": "Username",
+    "username_helptext": "User needs at least reviewer rights on calendar",
+    "verifyCert": "Verify certificate",
+    "verifyCert_helptext": "If the certificate expired or was not signed by a known CA, the connection will be aborted",
+    "verifyHostname": "Verify host name",
+    "verifyHostname_helptext": "The certificate's host name must match the host name given in the URL, otherwise the connection will be aborted."
+}
\ No newline at end of file
diff --git a/modules-available/news/lang/de/permissions.json b/modules-available/news/lang/de/permissions.json
index b2c6fb1b..888bb4a7 100644
--- a/modules-available/news/lang/de/permissions.json
+++ b/modules-available/news/lang/de/permissions.json
@@ -1,6 +1,7 @@
 {
-	"news.save": "Änderungen am News Text speichern.",
-	"news.delete": "Alte News Texte löschen.",
-	"help.save": "Änderungen am Hilfe Text speichern.",
-	"help.delete": "Alte Hilfe Texte löschen."
+    "access-page": "Seite sehen.",
+    "help.delete": "Alte Hilfe Texte l\u00f6schen.",
+    "help.save": "\u00c4nderungen am Hilfe Text speichern.",
+    "news.delete": "Alte News Texte l\u00f6schen.",
+    "news.save": "\u00c4nderungen am News Text speichern."
 }
\ No newline at end of file
diff --git a/modules-available/news/lang/en/permissions.json b/modules-available/news/lang/en/permissions.json
index 90d07aef..37fc7a8e 100644
--- a/modules-available/news/lang/en/permissions.json
+++ b/modules-available/news/lang/en/permissions.json
@@ -1,6 +1,7 @@
 {
-	"news.save": "Save new news.",
-	"news.delete": "Delete old news.",
-	"help.save": "Save new help texts.",
-	"help.delete": "Delete old help texts"
+    "access-page": "View page.",
+    "help.delete": "Delete old help texts.",
+    "help.save": "Save new help texts.",
+    "news.delete": "Delete old news.",
+    "news.save": "Save new news."
 }
\ No newline at end of file
diff --git a/modules-available/serversetup-bwlp/lang/de/permissions.json b/modules-available/serversetup-bwlp/lang/de/permissions.json
index 65367c51..98baec3c 100644
--- a/modules-available/serversetup-bwlp/lang/de/permissions.json
+++ b/modules-available/serversetup-bwlp/lang/de/permissions.json
@@ -1,4 +1,5 @@
 {
+    "access-page": "Seite sehen.",
     "download": "USB-Image herunterladen.",
     "edit.address": "Boot-Adresse des Servers ausw\u00e4hlen.",
     "edit.menu": "Bootmen\u00fc anpassen."
diff --git a/modules-available/serversetup-bwlp/lang/en/permissions.json b/modules-available/serversetup-bwlp/lang/en/permissions.json
index c04f09f7..44d1c519 100644
--- a/modules-available/serversetup-bwlp/lang/en/permissions.json
+++ b/modules-available/serversetup-bwlp/lang/en/permissions.json
@@ -1,5 +1,6 @@
 {
-	"edit.address": "Choose boot address of the server.",
-	"edit.menu": "Customize boot menu.",
-	"download": "Download USB Image."
+    "access-page": "View page.",
+    "download": "Download USB Image.",
+    "edit.address": "Choose boot address of the server.",
+    "edit.menu": "Customize boot menu."
 }
\ No newline at end of file
diff --git a/modules-available/webinterface/lang/de/permissions.json b/modules-available/webinterface/lang/de/permissions.json
index ee96810a..213ebd8f 100644
--- a/modules-available/webinterface/lang/de/permissions.json
+++ b/modules-available/webinterface/lang/de/permissions.json
@@ -1,5 +1,6 @@
 {
-	"edit.https": "HTTPS Einstellungen bearbeiten.",
-	"edit.password": "Ändern, ob Passwortfelder in der Web-Schnittstelle maskiert werden sollen.",
-	"edit.design": "Seitentitel und Hintergrundfarbe des Logos bearbeiten."
+    "access-page": "Seite sehen.",
+    "edit.design": "Seitentitel und Hintergrundfarbe des Logos bearbeiten.",
+    "edit.https": "HTTPS Einstellungen bearbeiten.",
+    "edit.password": "\u00c4ndern, ob Passwortfelder in der Web-Schnittstelle maskiert werden sollen."
 }
\ No newline at end of file
diff --git a/modules-available/webinterface/lang/en/permissions.json b/modules-available/webinterface/lang/en/permissions.json
index caf6d0cb..8ebb2830 100644
--- a/modules-available/webinterface/lang/en/permissions.json
+++ b/modules-available/webinterface/lang/en/permissions.json
@@ -1,5 +1,6 @@
 {
-	"edit.https": "Edit HTTPS settings.",
-	"edit.password": "Change whether password fields should be masked or not.",
-	"edit.design": "Edit page title and logo background color."
+    "access-page": "View page.",
+    "edit.design": "Edit page title and logo background color.",
+    "edit.https": "Edit HTTPS settings.",
+    "edit.password": "Change whether password fields should be masked or not."
 }
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 5370b98936418b2b548c023813039b8bf2074a55 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Fri, 13 Apr 2018 17:31:56 +0200
Subject: [inc/Module] Overhaul dependency loading and handling of js/css

This is supposed to prevent unneeded js/css from being pulled in
---
 inc/module.inc.php                                 | 63 ++++++++++++++--------
 inc/render.inc.php                                 |  4 +-
 index.php                                          |  2 +-
 modules-available/adduser/config.json              |  4 +-
 modules-available/backup/config.json               |  4 +-
 modules-available/baseconfig/config.json           |  7 ++-
 modules-available/baseconfig_bwidm/config.json     |  6 ++-
 modules-available/baseconfig_bwlp/config.json      |  6 ++-
 .../baseconfig_partitions_cdn/config.json          |  8 +--
 modules-available/bootstrap_datepicker/config.json | 17 +++---
 modules-available/bootstrap_dialog/config.json     | 17 +++---
 .../bootstrap_multiselect/config.json              | 17 +++---
 modules-available/bootstrap_switch/config.json     | 13 ++---
 modules-available/bootstrap_timepicker/config.json | 17 +++---
 modules-available/citymanagement/config.json       |  6 +--
 modules-available/dnbd3/config.json                |  9 ++--
 modules-available/dozmod/config.json               |  4 +-
 modules-available/eventlog/config.json             |  4 +-
 modules-available/exams/config.json                | 13 +++--
 modules-available/imgmanagement/config.json        |  6 +--
 modules-available/internetaccess/config.json       |  4 +-
 modules-available/js_chart/config.json             | 13 ++---
 modules-available/js_circles/config.json           | 13 ++---
 modules-available/js_jqueryui/config.json          | 17 +++---
 modules-available/js_moment/config.json            | 17 +++---
 modules-available/js_selectize/config.json         | 17 +++---
 modules-available/js_stupidtable/config.json       | 13 ++---
 modules-available/js_vis/config.json               | 19 ++++---
 modules-available/locationinfo/config.json         | 11 ++--
 modules-available/locations/config.json            |  4 +-
 modules-available/main/config.json                 |  3 +-
 modules-available/minilinux/config.json            |  4 +-
 modules-available/news/config.json                 |  8 +--
 modules-available/permissionmanager/config.json    | 10 ++--
 modules-available/rebootcontrol/config.json        |  9 ++--
 modules-available/roomplanner/config.json          | 11 +++-
 modules-available/runmode/config.json              |  9 ++--
 modules-available/serversetup-bwlp/config.json     |  4 +-
 modules-available/session/config.json              |  3 +-
 modules-available/statistics/config.json           | 12 +++--
 modules-available/statistics_reporting/config.json |  9 +++-
 modules-available/summernote/config.json           | 17 +++---
 modules-available/support/config.json              |  4 +-
 modules-available/sysconfig/config.json            |  4 +-
 modules-available/sysconfignew/config.json         |  4 +-
 modules-available/syslog/config.json               |  8 +--
 modules-available/systemstatus/config.json         |  8 +--
 modules-available/translation/config.json          |  4 +-
 modules-available/usermanagement/config.json       |  6 +--
 modules-available/vmstore/config.json              |  4 +-
 modules-available/webinterface/config.json         |  4 +-
 51 files changed, 293 insertions(+), 207 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/inc/module.inc.php b/inc/module.inc.php
index 7610c720..fa2c4b98 100644
--- a/inc/module.inc.php
+++ b/inc/module.inc.php
@@ -35,7 +35,7 @@ class Module
 		if ($module === false)
 			return false;
 		if ($activate) {
-			$module->activate();
+			$module->activate(1, true);
 		}
 		return !$module->hasMissingDependencies();
 	}
@@ -139,9 +139,11 @@ class Module
 	 */
 
 	private $category = false;
+	private $clientPlugin = false;
 	private $depsMissing = false;
 	private $depsChecked = false;
 	private $activated = false;
+	private $directActivation = false;
 	private $dependencies = array();
 	private $name;
 	/**
@@ -165,6 +167,9 @@ class Module
 		if (isset($json['category']) && is_string($json['category'])) {
 			$this->category = $json['category'];
 		}
+		if (isset($json['client-plugin'])) {
+			$this->clientPlugin = (bool)$json['client-plugin'];
+		}
 		$this->name = $name;
 	}
 	
@@ -184,21 +189,33 @@ class Module
 		return new $class();
 	}
 
-	public function activate($depth = 1)
+	public function activate($depth, $direct)
 	{
-		if ($this->activated !== false || $this->depsMissing)
-			return $this->activated !== false;
+		if ($this->depsMissing)
+			return false;
+		if ($this->activated !== false && ($this->directActivation || !$direct))
+			return true;
+		if ($depth === null && $direct === null) {
+			// This is the current page, always load its scripts
+			$this->clientPlugin = true;
+			$direct = true;
+		}
+		if ($this->activated === false) {
+			spl_autoload_register(function ($class) {
+				$file = 'modules/' . $this->name . '/inc/' . preg_replace('/[^a-z0-9]/', '', strtolower($class)) . '.inc.php';
+				if (!file_exists($file))
+					return;
+				require_once $file;
+			});
+		}
 		$this->activated = $depth;
-		spl_autoload_register(function($class) {
-			$file = 'modules/' . $this->name . '/inc/' . preg_replace('/[^a-z0-9]/', '', strtolower($class)) . '.inc.php';
-			if (!file_exists($file))
-				return;
-			require_once $file;
-		});
+		if ($direct) {
+			$this->directActivation = true;
+		}
 		foreach ($this->dependencies as $dep) {
 			$get = self::get($dep);
 			if ($get !== false) {
-				$get->activate($depth + 1);
+				$get->activate($depth + 1, $direct && $this->clientPlugin);
 			}
 		}
 		return true;
@@ -263,26 +280,26 @@ class Module
 		return 'modules/' . $this->name;
 	}
 
-	public function getScripts($externalOnly)
+	public function getScripts()
 	{
-		if (!$externalOnly) {
-			if (!isset($this->scripts['clientscript.js']) && file_exists($this->getDir() . '/clientscript.js')) {
-				$this->scripts['clientscript.js'] = false;
+		if ($this->directActivation && $this->clientPlugin) {
+			if (!in_array('clientscript.js', $this->scripts)) {
+				$this->scripts[] = 'clientscript.js';
 			}
-			return array_keys($this->scripts);
+			return $this->scripts;
 		}
-		return array_keys(array_filter($this->scripts));
+		return [];
 	}
 
-	public function getCss($externalOnly)
+	public function getCss()
 	{
-		if (!$externalOnly) {
-			if (!isset($this->css['style.css']) && file_exists($this->getDir() . '/style.css')) {
-				$this->css['style.css'] = false;
+		if ($this->directActivation && $this->clientPlugin) {
+			if (!in_array('style.css', $this->css)) {
+				$this->css[] = 'style.css';
 			}
-			return array_keys($this->css);
+			return $this->css;
 		}
-		return array_keys(array_filter($this->css));
+		return [];
 	}
 
 }
diff --git a/inc/render.inc.php b/inc/render.inc.php
index 0ce39dbe..4b1d3643 100644
--- a/inc/render.inc.php
+++ b/inc/render.inc.php
@@ -84,7 +84,7 @@ class Render
 	';
 		// Include any module specific styles
 		foreach ($modules as $module) {
-			$files = $module->getCss($module !== $pageModule);
+			$files = $module->getCss();
 			foreach ($files as $file) {
 				echo '<link href="', $module->getDir(), '/', $file, '" rel="stylesheet" media="screen">';
 			}
@@ -113,7 +113,7 @@ class Render
 		<script src="script/slx-fixes.js"></script>
 	';
 		foreach ($modules as $module) {
-			$files = $module->getScripts($module !== $pageModule);
+			$files = $module->getScripts();
 			foreach ($files as $file) {
 				echo '<script src="', $module->getDir(), '/', $file, '"></script>';
 			}
diff --git a/index.php b/index.php
index 4816ef42..1ecd2109 100644
--- a/index.php
+++ b/index.php
@@ -79,7 +79,7 @@ abstract class Page
 		if (self::$module === false) {
 			Util::traceError('Invalid Module: ' . $name);
 		}
-		self::$module->activate();
+		self::$module->activate(null, null);
 		self::$instance = self::$module->newPage();
 	}
 
diff --git a/modules-available/adduser/config.json b/modules-available/adduser/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/adduser/config.json
+++ b/modules-available/adduser/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/backup/config.json b/modules-available/backup/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/backup/config.json
+++ b/modules-available/backup/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig/config.json b/modules-available/baseconfig/config.json
index e4d906e1..357a117e 100644
--- a/modules-available/baseconfig/config.json
+++ b/modules-available/baseconfig/config.json
@@ -1,4 +1,7 @@
 {
 	"category": "main.settings-client",
-	"dependencies" : ["js_selectize", "bootstrap_multiselect"]
-}
+	"dependencies": [
+	    "js_selectize",
+	    "bootstrap_multiselect"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig_bwidm/config.json b/modules-available/baseconfig_bwidm/config.json
index af67a188..7e6cf06a 100644
--- a/modules-available/baseconfig_bwidm/config.json
+++ b/modules-available/baseconfig_bwidm/config.json
@@ -1,3 +1,5 @@
 {
-	"dependencies": ["baseconfig"]
-}
+	"dependencies": [
+	    "baseconfig"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig_bwlp/config.json b/modules-available/baseconfig_bwlp/config.json
index af67a188..7e6cf06a 100644
--- a/modules-available/baseconfig_bwlp/config.json
+++ b/modules-available/baseconfig_bwlp/config.json
@@ -1,3 +1,5 @@
 {
-	"dependencies": ["baseconfig"]
-}
+	"dependencies": [
+	    "baseconfig"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/baseconfig_partitions_cdn/config.json b/modules-available/baseconfig_partitions_cdn/config.json
index a355eef3..fd4c6f4b 100644
--- a/modules-available/baseconfig_partitions_cdn/config.json
+++ b/modules-available/baseconfig_partitions_cdn/config.json
@@ -1,4 +1,6 @@
 {
-    "category": "main.settings-client",
-    "dependencies": [ "baseconfig" ]
-}
+	"category": "main.settings-client",
+	"dependencies": [
+	    "baseconfig"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/bootstrap_datepicker/config.json b/modules-available/bootstrap_datepicker/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/bootstrap_datepicker/config.json
+++ b/modules-available/bootstrap_datepicker/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/bootstrap_dialog/config.json b/modules-available/bootstrap_dialog/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/bootstrap_dialog/config.json
+++ b/modules-available/bootstrap_dialog/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/bootstrap_multiselect/config.json b/modules-available/bootstrap_multiselect/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/bootstrap_multiselect/config.json
+++ b/modules-available/bootstrap_multiselect/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/bootstrap_switch/config.json b/modules-available/bootstrap_switch/config.json
index de4d37b4..3cf0d162 100644
--- a/modules-available/bootstrap_switch/config.json
+++ b/modules-available/bootstrap_switch/config.json
@@ -1,8 +1,9 @@
 {
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
 }
\ No newline at end of file
diff --git a/modules-available/bootstrap_timepicker/config.json b/modules-available/bootstrap_timepicker/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/bootstrap_timepicker/config.json
+++ b/modules-available/bootstrap_timepicker/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/citymanagement/config.json b/modules-available/citymanagement/config.json
index e87cbf7d..b356dfc6 100644
--- a/modules-available/citymanagement/config.json
+++ b/modules-available/citymanagement/config.json
@@ -1,4 +1,4 @@
 {
-	"category":"citymanagement.cities",
-	"permission":"0"
-}
+	"category": "citymanagement.cities",
+	"permission": "0"
+}
\ No newline at end of file
diff --git a/modules-available/dnbd3/config.json b/modules-available/dnbd3/config.json
index f84a4170..9670ded9 100644
--- a/modules-available/dnbd3/config.json
+++ b/modules-available/dnbd3/config.json
@@ -1,4 +1,7 @@
 {
-	"category":"main.settings-server",
-	"dependencies":["locations","runmode"]
-}
+	"category": "main.settings-server",
+	"dependencies": [
+	    "locations",
+	    "runmode"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/dozmod/config.json b/modules-available/dozmod/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/dozmod/config.json
+++ b/modules-available/dozmod/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/eventlog/config.json b/modules-available/eventlog/config.json
index 6778348d..aa23adb5 100644
--- a/modules-available/eventlog/config.json
+++ b/modules-available/eventlog/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.status"
-}
+	"category": "main.status"
+}
\ No newline at end of file
diff --git a/modules-available/exams/config.json b/modules-available/exams/config.json
index 0780ebef..a99d1c1a 100644
--- a/modules-available/exams/config.json
+++ b/modules-available/exams/config.json
@@ -1,5 +1,12 @@
 {
-	"category":"main.content",
-	"dependencies": [ "locations", "js_vis", "js_stupidtable", "bootstrap_datepicker", "bootstrap_timepicker", "bootstrap_multiselect"],
+	"category": "main.content",
+	"dependencies": [
+	    "locations",
+	    "js_vis",
+	    "js_stupidtable",
+	    "bootstrap_datepicker",
+	    "bootstrap_timepicker",
+	    "bootstrap_multiselect"
+	],
 	"permission": "0"
-}
+}
\ No newline at end of file
diff --git a/modules-available/imgmanagement/config.json b/modules-available/imgmanagement/config.json
index 6454d96f..2fbb822f 100644
--- a/modules-available/imgmanagement/config.json
+++ b/modules-available/imgmanagement/config.json
@@ -1,4 +1,4 @@
 {
-	"category":"main.content",
-	"permission":"1"
-}
+	"category": "main.content",
+	"permission": "1"
+}
\ No newline at end of file
diff --git a/modules-available/internetaccess/config.json b/modules-available/internetaccess/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/internetaccess/config.json
+++ b/modules-available/internetaccess/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/js_chart/config.json b/modules-available/js_chart/config.json
index de4d37b4..3cf0d162 100644
--- a/modules-available/js_chart/config.json
+++ b/modules-available/js_chart/config.json
@@ -1,8 +1,9 @@
 {
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
 }
\ No newline at end of file
diff --git a/modules-available/js_circles/config.json b/modules-available/js_circles/config.json
index de4d37b4..3cf0d162 100644
--- a/modules-available/js_circles/config.json
+++ b/modules-available/js_circles/config.json
@@ -1,8 +1,9 @@
 {
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
 }
\ No newline at end of file
diff --git a/modules-available/js_jqueryui/config.json b/modules-available/js_jqueryui/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/js_jqueryui/config.json
+++ b/modules-available/js_jqueryui/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/js_moment/config.json b/modules-available/js_moment/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/js_moment/config.json
+++ b/modules-available/js_moment/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/js_selectize/config.json b/modules-available/js_selectize/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/js_selectize/config.json
+++ b/modules-available/js_selectize/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/js_stupidtable/config.json b/modules-available/js_stupidtable/config.json
index cf932d7e..3cf0d162 100644
--- a/modules-available/js_stupidtable/config.json
+++ b/modules-available/js_stupidtable/config.json
@@ -1,8 +1,9 @@
 {
-	"css": {
-	"style.css": true
-	},
-	"scripts": {
-	"clientscript.js": true
-	}
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
 }
\ No newline at end of file
diff --git a/modules-available/js_vis/config.json b/modules-available/js_vis/config.json
index 3b027d31..4c870a22 100644
--- a/modules-available/js_vis/config.json
+++ b/modules-available/js_vis/config.json
@@ -1,9 +1,12 @@
 {
-	"dependencies" : ["js_moment"],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [
+	    "js_moment"
+	],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/locationinfo/config.json b/modules-available/locationinfo/config.json
index 87825809..837acfcf 100644
--- a/modules-available/locationinfo/config.json
+++ b/modules-available/locationinfo/config.json
@@ -1,4 +1,9 @@
 {
-	"category":"main.beta",
-	"dependencies": ["js_jqueryui", "bootstrap_timepicker", "locations", "bootstrap_switch"]
-}
+	"category": "main.beta",
+	"dependencies": [
+	    "js_jqueryui",
+	    "bootstrap_timepicker",
+	    "locations",
+	    "bootstrap_switch"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/locations/config.json b/modules-available/locations/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/locations/config.json
+++ b/modules-available/locations/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/main/config.json b/modules-available/main/config.json
index 2c63c085..0637a088 100644
--- a/modules-available/main/config.json
+++ b/modules-available/main/config.json
@@ -1,2 +1 @@
-{
-}
+[]
\ No newline at end of file
diff --git a/modules-available/minilinux/config.json b/modules-available/minilinux/config.json
index 28d71577..6c7b7146 100644
--- a/modules-available/minilinux/config.json
+++ b/modules-available/minilinux/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-client"
-}
+	"category": "main.settings-client"
+}
\ No newline at end of file
diff --git a/modules-available/news/config.json b/modules-available/news/config.json
index e076ea5c..23cd1443 100644
--- a/modules-available/news/config.json
+++ b/modules-available/news/config.json
@@ -1,4 +1,6 @@
 {
-	"category":"main.content",
-	"dependencies": [ "js_stupidtable" ]
-}
+	"category": "main.content",
+	"dependencies": [
+	    "js_stupidtable"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/permissionmanager/config.json b/modules-available/permissionmanager/config.json
index d2071984..25b61de3 100644
--- a/modules-available/permissionmanager/config.json
+++ b/modules-available/permissionmanager/config.json
@@ -1,4 +1,8 @@
 {
-	"category":"main.content",
-	"dependencies": [ "locations", "js_stupidtable", "js_selectize" ]
-}
+	"category": "main.content",
+	"dependencies": [
+	    "locations",
+	    "js_stupidtable",
+	    "js_selectize"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/rebootcontrol/config.json b/modules-available/rebootcontrol/config.json
index d8ab5868..43d2c28f 100644
--- a/modules-available/rebootcontrol/config.json
+++ b/modules-available/rebootcontrol/config.json
@@ -1,4 +1,7 @@
 {
-	"category":"main.beta",
-	"dependencies": [ "locations", "js_stupidtable" ]
-}
+	"category": "main.beta",
+	"dependencies": [
+	    "locations",
+	    "js_stupidtable"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/roomplanner/config.json b/modules-available/roomplanner/config.json
index 537714c3..62f38773 100644
--- a/modules-available/roomplanner/config.json
+++ b/modules-available/roomplanner/config.json
@@ -1,3 +1,10 @@
 {
-	"dependencies": ["js_jqueryui", "js_selectize", "bootstrap_dialog", "statistics", "locations", "runmode"]
-}
+	"dependencies": [
+	    "js_jqueryui",
+	    "js_selectize",
+	    "bootstrap_dialog",
+	    "statistics",
+	    "locations",
+	    "runmode"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/runmode/config.json b/modules-available/runmode/config.json
index e3c07d48..84e044ce 100644
--- a/modules-available/runmode/config.json
+++ b/modules-available/runmode/config.json
@@ -1,4 +1,7 @@
 {
-	"dependencies": [ "statistics", "js_selectize" ],
-	"permission":"0"
-}
+	"dependencies": [
+	    "statistics",
+	    "js_selectize"
+	],
+	"permission": "0"
+}
\ No newline at end of file
diff --git a/modules-available/serversetup-bwlp/config.json b/modules-available/serversetup-bwlp/config.json
index 7205d70a..36268c6a 100644
--- a/modules-available/serversetup-bwlp/config.json
+++ b/modules-available/serversetup-bwlp/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-server"
-}
+	"category": "main.settings-server"
+}
\ No newline at end of file
diff --git a/modules-available/session/config.json b/modules-available/session/config.json
index 2c63c085..0637a088 100644
--- a/modules-available/session/config.json
+++ b/modules-available/session/config.json
@@ -1,2 +1 @@
-{
-}
+[]
\ No newline at end of file
diff --git a/modules-available/statistics/config.json b/modules-available/statistics/config.json
index 333f881a..412dc3cb 100644
--- a/modules-available/statistics/config.json
+++ b/modules-available/statistics/config.json
@@ -1,5 +1,9 @@
 {
-	"category":"main.status",
-	"dependencies": [ "js_chart", "js_selectize", "bootstrap_datepicker"],
-	"permission":"0"
-}
+	"category": "main.status",
+	"dependencies": [
+	    "js_chart",
+	    "js_selectize",
+	    "bootstrap_datepicker"
+	],
+	"permission": "0"
+}
\ No newline at end of file
diff --git a/modules-available/statistics_reporting/config.json b/modules-available/statistics_reporting/config.json
index 78ca35ba..c439efa8 100644
--- a/modules-available/statistics_reporting/config.json
+++ b/modules-available/statistics_reporting/config.json
@@ -1,4 +1,9 @@
 {
 	"category": "main.status",
-	"dependencies": [ "statistics", "locations", "js_stupidtable", "js_jqueryui" ]
-}
+	"dependencies": [
+	    "statistics",
+	    "locations",
+	    "js_stupidtable",
+	    "js_jqueryui"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/summernote/config.json b/modules-available/summernote/config.json
index 5a0c7960..69bb0aa9 100644
--- a/modules-available/summernote/config.json
+++ b/modules-available/summernote/config.json
@@ -1,9 +1,10 @@
 {
-	"dependencies" : [],
-	"css": {
-		"style.css": true
-	},
-	"scripts": {
-		"clientscript.js": true
-	}
-}
+	"dependencies": [],
+	"css": [
+	    "style.css"
+	],
+	"scripts": [
+	    "clientscript.js"
+	],
+	"client-plugin": true
+}
\ No newline at end of file
diff --git a/modules-available/support/config.json b/modules-available/support/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/support/config.json
+++ b/modules-available/support/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/sysconfig/config.json b/modules-available/sysconfig/config.json
index 28d71577..6c7b7146 100644
--- a/modules-available/sysconfig/config.json
+++ b/modules-available/sysconfig/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-client"
-}
+	"category": "main.settings-client"
+}
\ No newline at end of file
diff --git a/modules-available/sysconfignew/config.json b/modules-available/sysconfignew/config.json
index 28d71577..6c7b7146 100644
--- a/modules-available/sysconfignew/config.json
+++ b/modules-available/sysconfignew/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-client"
-}
+	"category": "main.settings-client"
+}
\ No newline at end of file
diff --git a/modules-available/syslog/config.json b/modules-available/syslog/config.json
index 2b718a8e..691bd4df 100644
--- a/modules-available/syslog/config.json
+++ b/modules-available/syslog/config.json
@@ -1,4 +1,6 @@
 {
-	"category":"main.status",
-	"dependencies":["js_selectize"]
-}
+	"category": "main.status",
+	"dependencies": [
+	    "js_selectize"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/systemstatus/config.json b/modules-available/systemstatus/config.json
index 3c2efce7..cf774d1b 100644
--- a/modules-available/systemstatus/config.json
+++ b/modules-available/systemstatus/config.json
@@ -1,4 +1,6 @@
 {
-	"category":"main.status",
-	"dependencies": [ "js_circles" ]
-}
+	"category": "main.status",
+	"dependencies": [
+	    "js_circles"
+	]
+}
\ No newline at end of file
diff --git a/modules-available/translation/config.json b/modules-available/translation/config.json
index 706412d0..110f8b67 100644
--- a/modules-available/translation/config.json
+++ b/modules-available/translation/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.content"
-}
+	"category": "main.content"
+}
\ No newline at end of file
diff --git a/modules-available/usermanagement/config.json b/modules-available/usermanagement/config.json
index 9c66d6bf..428315ba 100644
--- a/modules-available/usermanagement/config.json
+++ b/modules-available/usermanagement/config.json
@@ -1,4 +1,4 @@
 {
-	"category":"main.users",
-	"permission":"0"
-}
+	"category": "main.users",
+	"permission": "0"
+}
\ No newline at end of file
diff --git a/modules-available/vmstore/config.json b/modules-available/vmstore/config.json
index 7205d70a..36268c6a 100644
--- a/modules-available/vmstore/config.json
+++ b/modules-available/vmstore/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-server"
-}
+	"category": "main.settings-server"
+}
\ No newline at end of file
diff --git a/modules-available/webinterface/config.json b/modules-available/webinterface/config.json
index 7205d70a..36268c6a 100644
--- a/modules-available/webinterface/config.json
+++ b/modules-available/webinterface/config.json
@@ -1,3 +1,3 @@
 {
-	"category":"main.settings-server"
-}
+	"category": "main.settings-server"
+}
\ No newline at end of file
-- 
cgit v1.2.3-55-g7522


From 8fd7ce430269d2999dcba3696ab6557fa59a4e94 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Thu, 19 Apr 2018 16:12:57 +0200
Subject: [adduser] Assign first created user role "Super-Admin"

---
 modules-available/adduser/page.inc.php | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index e95cb78a..a841f251 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -56,6 +56,8 @@ class Page_AddUser extends Page
 				if ($ret !== false) {
 					EventLog::clear();
 				}
+				// same for permissionmanager
+				Database::exec("INSERT INTO `role_x_user` (userid, roleid) VALUES (:id, 1)", ['id' => $id], true);
 				EventLog::info('Created first user ' . $login);
 			} else {
 				EventLog::info(User::getName() . ' created user ' . $login);
-- 
cgit v1.2.3-55-g7522


From 27e7c658d12384d15b4c47483a181b6912f21b36 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Fri, 27 Apr 2018 14:46:20 +0200
Subject: [adduser] Print userid=1 bold in userlist

---
 modules-available/adduser/page.inc.php                 |  4 ++++
 modules-available/adduser/templates/page-userlist.html | 14 ++++++++------
 2 files changed, 12 insertions(+), 6 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/page.inc.php b/modules-available/adduser/page.inc.php
index a841f251..cffe33f9 100644
--- a/modules-available/adduser/page.inc.php
+++ b/modules-available/adduser/page.inc.php
@@ -202,9 +202,13 @@ class Page_AddUser extends Page
 			foreach ($data['list'] as &$u) {
 				// Don't allow deleting user 1 and self
 				$u['hide_delete'] = $u['userid'] == 1 || $u['userid'] == User::getId();
+				if ($u['userid'] == 1) {
+					$u['userClass'] = 'slx-bold';
+				}
 			}
 			unset($u);
 			Permission::addGlobalTags($data['perms'], null, ['user.add', 'user.edit', 'user.remove']);
+			Module::isAvailable('js_stupidtable');
 			$page->render('page-userlist', $data);
 		}
 	}
diff --git a/modules-available/adduser/templates/page-userlist.html b/modules-available/adduser/templates/page-userlist.html
index 8d9c6de0..262553f6 100644
--- a/modules-available/adduser/templates/page-userlist.html
+++ b/modules-available/adduser/templates/page-userlist.html
@@ -5,20 +5,22 @@
 <form method="get">
 	<input type="hidden" name="do" value="adduser">
 	<input type="hidden" name="show" value="edituser">
-	<table class="table">
+	<table class="table stupidtable">
 		<thead>
 		<tr>
-			<th>{{lang_login}}</th>
-			<th>{{lang_name}}</th>
-			<th>{{lang_phone}}</th>
-			<th>{{lang_email}}</th>
+			<th data-sort="int" class="slx-smallcol">{{lang_userIdCol}}</th>
+			<th data-sort="string">{{lang_login}}</th>
+			<th data-sort="string">{{lang_name}}</th>
+			<th data-sort="string">{{lang_phone}}</th>
+			<th data-sort="string">{{lang_email}}</th>
 			<th width="1"></th>
 		</tr>
 		</thead>
 		<tbody>
 		{{#list}}
 			<tr>
-				<td id="user-{{userid}}">{{login}}</td>
+				<td class="text-right {{userClass}}">{{userid}}</td>
+				<td id="user-{{userid}}" class="{{userClass}}">{{login}}</td>
 				<td>{{fullname}}</td>
 				<td>{{phone}}</td>
 				<td>{{email}}</td>
-- 
cgit v1.2.3-55-g7522


From 00e9c52f86310876e6a08fee6d53c6cb4e21878c Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Mon, 7 May 2018 17:36:17 +0200
Subject: Update translations

---
 modules-available/adduser/lang/de/template-tags.json            | 1 +
 modules-available/adduser/lang/en/template-tags.json            | 1 +
 modules-available/baseconfig_bwlp/lang/de/config-variables.json | 2 +-
 modules-available/baseconfig_bwlp/lang/en/config-variables.json | 4 ++--
 4 files changed, 5 insertions(+), 3 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/de/template-tags.json b/modules-available/adduser/lang/de/template-tags.json
index e13c3876..419d0e1a 100644
--- a/modules-available/adduser/lang/de/template-tags.json
+++ b/modules-available/adduser/lang/de/template-tags.json
@@ -19,6 +19,7 @@
     "lang_phone": "Telefon",
     "lang_role": "Rolle",
     "lang_userDeleteConfirm": "M\u00f6chten Sie diesen Benutzer wirklich l\u00f6schen?",
+    "lang_userIdCol": "ID",
     "lang_userManagement": "Benutzerverwaltung",
     "lang_userlist": "Benutzerliste"
 }
\ No newline at end of file
diff --git a/modules-available/adduser/lang/en/template-tags.json b/modules-available/adduser/lang/en/template-tags.json
index de57b385..b86f6cfb 100644
--- a/modules-available/adduser/lang/en/template-tags.json
+++ b/modules-available/adduser/lang/en/template-tags.json
@@ -19,6 +19,7 @@
     "lang_phone": "Phone",
     "lang_role": "Role",
     "lang_userDeleteConfirm": "Do you want to delete this user?",
+    "lang_userIdCol": "ID",
     "lang_userManagement": "User management",
     "lang_userlist": "User list"
 }
\ No newline at end of file
diff --git a/modules-available/baseconfig_bwlp/lang/de/config-variables.json b/modules-available/baseconfig_bwlp/lang/de/config-variables.json
index ad2abc8d..e997b66f 100644
--- a/modules-available/baseconfig_bwlp/lang/de/config-variables.json
+++ b/modules-available/baseconfig_bwlp/lang/de/config-variables.json
@@ -4,7 +4,7 @@
     "SLX_AUTOSTART_UUID": "ID einer Veranstaltung die automatisch gestartet werden soll. Die Veranstaltungs-ID finden Sie im Detailfenster innerhalb der bwLehrpool-Suite.\r\n\r\n*Hinweis: Diese Option ist eine tempor\u00e4re \u00dcbergangsl\u00f6sung. In sp\u00e4teren Versionen wird die Funktionalit\u00e4t einfacher erreichbar sein.*",
     "SLX_BIOS_CLOCK": "Legt fest, ob und wie die interne Uhr des Rechners im Bezug auf die Systemzeit des \/MiniLinux\/ gesetzt werden soll.\r\n*off* = Die interne Uhr des Rechners wird nicht ver\u00e4ndert.\r\n*local* = Die interne Uhr wird auf die Lokalzeit gesetzt. Bevorzugt wenn z.B. noch eine native Windows-Installation auf dem PC vorhanden ist.\r\n*utc* = Die interne Uhr wird auf die \/Koordinierte Weltzeit\/ gesetzt. Dies ist die g\u00e4ngige Einstellung in einem reinen Linux-Umfeld.",
     "SLX_BRIDGE_OTHER_NICS": "Sofern ein Client mehrere Netzwerkkarten besitzt, k\u00f6nnen Sie mittels dieser Option alle weiteren gefundenen Karten in die VM durchreichen.",
-    "SLX_DEMO_PASS": "Passwort f\u00fcr den eingebauten *demo*-Account. Leer lassen, um das Einloggen zu verbieten.\r\nDas Passwort wird wie das root-Passwort nur gehasht an den Client \u00fcbertragen.",
+    "SLX_DEMO_PASS": "Passwort f\u00fcr den eingebauten *demo*-Account. Leer lassen, um das Einloggen zu verbieten.\r\n\/Hinweis\/: Das Passwort wird im Klartext in der lokalen Datenbank hinterlegt, jedoch immer gehasht an die Clients \u00fcbermittelt (SHA-512 mit Salt). Wenn Sie das Passwort auch im Satelliten nicht im Klartext speichern wollen, k\u00f6nnen Sie hier auch ein vorgehashtes Passwort eintragen (im *$6$....*-Format).",
     "SLX_JUMBO_FRAMES": "Setzt die MTU auf den Clients auf 9000, statt wie \u00fcblich 1500. Da dies mit alten\/schlechten Routern oder Switches zu Problemen f\u00fchren k\u00f6nnte, ist diese Option standardm\u00e4\u00dfig deaktiviert.",
     "SLX_LOGOUT_TIMEOUT": "Zeit in Sekunden, die eine Benutzersitzung ohne Aktion sein darf, bevor sie beendet wird.Feld leer lassen, um die Funktion zu deaktivieren.",
     "SLX_NET_DOMAIN": "DNS-Dom\u00e4ne, in die sich die Clients eingliedern, sofern der DHCP Server keine solche vorgibt.",
diff --git a/modules-available/baseconfig_bwlp/lang/en/config-variables.json b/modules-available/baseconfig_bwlp/lang/en/config-variables.json
index c56f171d..e8849382 100644
--- a/modules-available/baseconfig_bwlp/lang/en/config-variables.json
+++ b/modules-available/baseconfig_bwlp/lang/en/config-variables.json
@@ -4,7 +4,7 @@
     "SLX_AUTOSTART_UUID": "ID of a lecture which is automatically started. The lecture-ID is found in the detail window of a lecture in the bwLehrpool-Suite. \r\n\r\n*This solution is only temporary. In later versions this feature will probably be moved to another section*",
     "SLX_BIOS_CLOCK": "Specifies whether and how the internal clock of the computer should be set in relation to the system time of the \/MiniLinux\/.\r\n*off* = The internal clock of the computer is not changed.\r\n*local* = The internal clock is set to local time. Preferably if, for example, there is still a native Windows installation available on the PC.\r\n*utc* = The internal clock is set to the \/Coordinated Universal Time\/. This is the most common setup in a pure Linux environment.",
     "SLX_BRIDGE_OTHER_NICS": "If enabled, additional network cards installed in the Client will be bridged to the VM. ",
-    "SLX_DEMO_PASS": "Password for the *demo* account. Leave empty to disallow logging in as the demo user.\r\nLike the root password, the demo user's password will be sent to the client in its hashed form.",
+    "SLX_DEMO_PASS": "Password for the *demo* account. Leave empty to disallow logging in as the demo user.\r\n\/Hint\/: The password SHA-512-with-salt hashed before it's being sent to the client. It's only stored in clear text on the Satellite Server. If you want to have it hashed on the server too, you can supply a pre-hashed password in \/$6$...$...\/-format.",
     "SLX_JUMBO_FRAMES": "Increases the MTU on the clients from 1500 to 9000. As this can lead to issues with old\/bad routers and switches, this option is disabled by default.",
     "SLX_LOGOUT_TIMEOUT": "Time in seconds, in which a user session may remain without action before it is terminated.Leave field blank to disable the function.",
     "SLX_NET_DOMAIN": "DNS domain in which the client integrate, provided the DHCP server does not specifies such.",
@@ -20,7 +20,7 @@
     "SLX_PVS_DEFAULT": "Set whether the \"Join PVS\" checkbox in vmChooser is checked by default.",
     "SLX_REBOOT_SCHEDULE": "Fixed time to reboot the computer, even if there is a user active.\r\nSeveral times can be specified, separated by spaces.",
     "SLX_REMOTE_LOG_SESSIONS": "Determines whether logins and logouts of the users should be reported to the satellite.\r\n*yes* = log with user ID\r\n*anonymous* = anonymous logging\r\n*no* = no logging",
-    "SLX_ROOT_PASS": "The root password of the client system. Only required for diagnostic purposes on the client.Leave field blank to disallow root logins.\r\n\/Hint\/: The password SHA-512-with-salt hashed before it's being sent to the client. It's only stored in clear text on the Satellite Server. If you want to have it hashed on the server too, you can supply a pre-hashed passoword in \/$6$...$...\/-format.",
+    "SLX_ROOT_PASS": "The root password of the client system. Only required for diagnostic purposes on the client.Leave field blank to disallow root logins.\r\n\/Hint\/: The password SHA-512-with-salt hashed before it's being sent to the client. It's only stored in clear text on the Satellite Server. If you want to have it hashed on the server too, you can supply a pre-hashed password in \/$6$...$...\/-format.",
     "SLX_SCREEN_STANDBY_TIMEOUT": "Time in seconds after which the screen will enter power saving mode, if the client is not in use.",
     "SLX_SHUTDOWN_SCHEDULE": "Fixed time to turn off the computer, even if there is a user active.\r\nSeveral times can be specified, separated by spaces.",
     "SLX_SHUTDOWN_TIMEOUT": "Time in seconds after which a computer is switched off, if no user is logged on.\r\nLeave blank to disable the function.",
-- 
cgit v1.2.3-55-g7522


From 478c36e072ec829b1e39a1d924b7d9540869d2e6 Mon Sep 17 00:00:00 2001
From: Jonathan Bauer
Date: Tue, 16 Oct 2018 12:04:27 +0200
Subject: [adduser] remove bad use of "'" in template-tags

this led to js errors and prevented any user to register
---
 modules-available/adduser/lang/en/template-tags.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'modules-available/adduser')

diff --git a/modules-available/adduser/lang/en/template-tags.json b/modules-available/adduser/lang/en/template-tags.json
index b86f6cfb..d927964e 100644
--- a/modules-available/adduser/lang/en/template-tags.json
+++ b/modules-available/adduser/lang/en/template-tags.json
@@ -15,11 +15,11 @@
     "lang_loginTooShort": "Login too short",
     "lang_name": "Name",
     "lang_passwordTooShort": "Password too short",
-    "lang_passwordsDontMatch": "Passwords don't match",
+    "lang_passwordsDontMatch": "Passwords do not match",
     "lang_phone": "Phone",
     "lang_role": "Role",
     "lang_userDeleteConfirm": "Do you want to delete this user?",
     "lang_userIdCol": "ID",
     "lang_userManagement": "User management",
     "lang_userlist": "User list"
-}
\ No newline at end of file
+}
-- 
cgit v1.2.3-55-g7522