From 50404f3b23b7fd6aeae4c9d2f6df0ea25e984e66 Mon Sep 17 00:00:00 2001
From: Simon Rettberg
Date: Tue, 3 May 2016 19:03:09 +0200
Subject: WIP

---
 modules-available/dozmod/page.inc.php | 252 ++++++++++++++++++++++++++++++++++
 1 file changed, 252 insertions(+)
 create mode 100644 modules-available/dozmod/page.inc.php

(limited to 'modules-available/dozmod/page.inc.php')

diff --git a/modules-available/dozmod/page.inc.php b/modules-available/dozmod/page.inc.php
new file mode 100644
index 00000000..f98d8952
--- /dev/null
+++ b/modules-available/dozmod/page.inc.php
@@ -0,0 +1,252 @@
+<?php
+
+class Page_DozMod extends Page
+{
+
+	protected function doPreprocess()
+	{
+		User::load();
+
+		if (!User::hasPermission('superadmin')) {
+			Message::addError('no-permission');
+			Util::redirect('?do=Main');
+		}
+
+		$action = Request::post('action');
+
+		if ($action === 'mail') {
+			$this->mailHandler();
+		}
+		if ($action === 'delimages') {
+			$result = $this->handleDeleteImages();
+			if (!empty($result)) {
+				Message::addInfo('delete-images', $result);
+			}
+			Util::redirect('?do=DozMod');
+		}
+	}
+
+	protected function doRender()
+	{
+		$this->listDeletePendingImages();
+		// Mail config
+		$conf = Database::queryFirst('SELECT value FROM sat.configuration WHERE parameter = :param', array('param' => 'mailconfig'));
+		if ($conf != null) {
+			$conf = @json_decode($conf['value'], true);
+			if (is_array($conf)) {
+				$conf['set_' . $conf['ssl']] = 'selected="selected"';
+			}
+		}
+		Render::addTemplate('mailconfig', $conf);
+		// User list for making people admin
+		$this->listUsers();
+		$this->listOrganizations();
+	}
+
+	private function listDeletePendingImages()
+	{
+		$res = Database::simpleQuery("SELECT b.displayname,"
+				. " own.firstname, own.lastname, own.email,"
+				. " v.imageversionid, v.createtime, v.filesize, v.deletestate,"
+				. " lat.expiretime AS latexptime, lat.deletestate AS latdelstate"
+				. " FROM sat.imageversion v"
+				. " INNER JOIN sat.imagebase b ON (b.imagebaseid = v.imagebaseid)"
+				. " INNER JOIN sat.user own ON (b.ownerid = own.userid)"
+				. " LEFT JOIN sat.imageversion lat ON (b.latestversionid = lat.imageversionid)"
+				. " WHERE v.deletestate <> 'KEEP'"
+				. " ORDER BY b.displayname ASC, v.createtime ASC");
+		$NOW = time();
+		$rows = array();
+		while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
+			if ($row['latexptime'] > $NOW && $row['latdelstate'] === 'KEEP') {
+				$row['hasNewerClass'] = 'glyphicon-ok green';
+			} else {
+				$row['hasNewerClass'] = 'glyphicon-remove red';
+			}
+			if ($row['deletestate'] === 'WANT_DELETE') {
+				$row['name_extra_class'] = 'slx-strike';
+			}
+			$row['version'] = date('d.m.Y H:i:s', $row['createtime']);
+			$row['filesize'] = Util::readableFileSize($row['filesize']);
+			$rows[] = $row;
+		}
+		if (empty($rows))
+			return;
+		Render::addTemplate('images-delete', array('images' => $rows));
+	}
+
+	private function cleanMailArray()
+	{
+		$keys = array('host', 'port', 'ssl', 'senderAddress', 'replyTo', 'username', 'password', 'serverName');
+		$data = array();
+		foreach ($keys as $key) {
+			$data[$key] = Request::post($key, '');
+			settype($data[$key], 'string');
+			if (is_numeric($data[$key])) {
+				settype($data[$key], 'int');
+			}
+		}
+		return $data;
+	}
+
+	protected function doAjax()
+	{
+		if (!User::hasPermission('superadmin'))
+			return;
+
+		$action = Request::post('action');
+		if ($action === 'mail') {
+			$this->handleTestMail();
+		} elseif ($action === 'setmail' || $action === 'setsu' || $action == 'setlogin') {
+			$this->setUserOption($action);
+		} elseif ($action === 'setorglogin') {
+			$this->setOrgOption($action);
+		} elseif ($action === 'delimages') {
+			die($this->handleDeleteImages());
+		}
+	}
+
+	private function handleDeleteImages()
+	{
+		$images = Request::post('images', false);
+		if (is_array($images)) {
+			foreach ($images as $image => $val) {
+				if (strtolower($val) !== 'on')
+					continue;
+				Database::exec("UPDATE sat.imageversion SET deletestate = 'WANT_DELETE'"
+					. " WHERE deletestate = 'SHOULD_DELETE' AND imageversionid = :imageversionid", array(
+					'imageversionid' => $image
+				));
+			}
+			if (!empty($images)) {
+				$ret = Download::asStringPost('http://127.0.0.1:9080/do/delete-images', false, 2, $code);
+				if ($code == 999) {
+					$ret .= "\nConnection to DMSD failed.";
+				}
+				return $ret;
+			}
+		}
+		return false;
+	}
+
+	private function handleTestMail()
+	{
+		$do = Request::post('button');
+		if ($do === 'test') {
+			// Prepare array
+			$data = $this->cleanMailArray();
+			Header('Content-Type: text/plain; charset=utf-8');
+			$data['recipient'] = Request::post('recipient', '');
+			if (!preg_match('/.+@.+\..+/', $data['recipient'])) {
+				$result = 'No recipient given!';
+			} else {
+				$result = Download::asStringPost('http://127.0.0.1:9080/do/mailtest', $data, 2, $code);
+			}
+			die($result);
+		}
+	}
+
+	private function mailHandler()
+	{
+		// Check action
+		$do = Request::post('button');
+		if ($do === 'save') {
+			// Prepare array
+			$data = $this->cleanMailArray();
+			$data = json_encode($data);
+			Database::exec('INSERT INTO sat.configuration (parameter, value)'
+				. ' VALUES (:param, :value)'
+				. ' ON DUPLICATE KEY UPDATE value = VALUES(value)', array(
+				'param' => 'mailconfig',
+				'value' => $data
+			));
+			Message::addSuccess('mail-config-saved');
+		}
+		Util::redirect('?do=DozMod');
+	}
+
+	private function listUsers()
+	{
+		$res = Database::simpleQuery('SELECT userid, firstname, lastname, email, lastlogin, user.canlogin, issuperuser, emailnotifications,'
+				. ' organization.displayname AS orgname FROM sat.user'
+				. ' LEFT JOIN sat.organization USING (organizationid)'
+				. ' ORDER BY lastname ASC, firstname ASC');
+		$rows = array();
+		while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
+			$row['canlogin'] = $this->checked($row['canlogin']);
+			$row['issuperuser'] = $this->checked($row['issuperuser']);
+			$row['emailnotifications'] = $this->checked($row['emailnotifications']);
+			$row['lastlogin'] = date('d.m.Y', $row['lastlogin']);
+			$rows[] = $row;
+		}
+		Render::addTemplate('userlist', array('users' => $rows));
+	}
+
+	private function listOrganizations()
+	{
+		$res = Database::simpleQuery('SELECT organizationid, displayname, canlogin FROM sat.organization'
+				. ' ORDER BY displayname ASC');
+		$rows = array();
+		while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
+			$row['canlogin'] = $this->checked($row['canlogin']);
+			$rows[] = $row;
+		}
+		Render::addTemplate('orglist', array('organizations' => $rows));
+	}
+
+	private function checked($val)
+	{
+		if ($val)
+			return 'checked="checked"';
+		return '';
+	}
+
+	private function setUserOption($option)
+	{
+		$val = (string) Request::post('value', '-');
+		if ($val !== '1' && $val !== '0')
+			die('Nein');
+		if ($option === 'setmail') {
+			$field = 'emailnotifications';
+		} elseif ($option === 'setsu') {
+			$field = 'issuperuser';
+		} elseif ($option === 'setlogin') {
+			$field = 'canlogin';
+		} else {
+			die('Unknown');
+		}
+		$user = (string) Request::post('userid', '?');
+		$ret = Database::exec("UPDATE sat.user SET $field = :onoff WHERE userid = :userid", array(
+				'userid' => $user,
+				'onoff' => $val
+		));
+		error_log("Setting $field to $val for $user - affected: $ret");
+		if ($ret === false)
+			die('Error');
+		if ($ret == 0)
+			die(1 - $val);
+		die($val);
+	}
+
+	private function setOrgOption($option)
+	{
+		$val = (string) Request::post('value', '-');
+		if ($val !== '1' && $val !== '0')
+			die('Nein');
+		if ($option === 'setorglogin') {
+			$field = 'canlogin';
+		} else {
+			die('Unknown');
+		}
+		$ret = Database::exec("UPDATE sat.organization SET $field = :onoff WHERE organizationid = :organizationid", array(
+				'organizationid' => (string) Request::post('organizationid', ''),
+				'onoff' => $val
+		));
+		if ($ret === false)
+			die('Error');
+		if ($ret === 0)
+			die(1 - $val);
+		die($val);
+	}
+
+}
-- 
cgit v1.2.3-55-g7522