mail_templates = new Page_mail_templates(); /* different pages for different sections */ $section = Request::get('section', 'mailconfig', 'string'); if ($section == 'templates') { $this->mail_templates->doPreprocess(); return; } /* execute actions */ $action = Request::post('action'); if ($action === 'mail') { $this->mailHandler(); } if ($action === 'runtime') { $this->runtimeHandler(); } if ($action === 'delimages') { $result = $this->handleDeleteImages(); if (!empty($result)) { Message::addInfo('delete-images', $result); } Util::redirect('?do=DozMod'); } } protected function doRender() { /* different pages for different sections */ $section = Request::get('section', 'mailconfig', 'string'); if ($section == 'templates') { $this->mail_templates->doRender(); return; } $this->listDeletePendingImages(); if ($section === 'mailconfig') { // Mail config $mailConf = Database::queryFirst('SELECT value FROM sat.configuration WHERE parameter = :param', array('param' => 'mailconfig')); if ($mailConf != null) { $mailConf = @json_decode($mailConf['value'], true); if (is_array($mailConf)) { $mailConf['set_' . $mailConf['ssl']] = 'selected="selected"'; } } Render::addTemplate('mailconfig', $mailConf); } if ($section === 'runtimeconfig') { // Runtime config $runtimeConf = Database::queryFirst('SELECT value FROM sat.configuration WHERE parameter = :param', array('param' => 'runtimelimits')); if ($runtimeConf != null) { $runtimeConf = json_decode($runtimeConf['value'], true); /* convert some value to corresponding "selected" texts */ if ($runtimeConf['defaultLecturePermissions']['edit']) { $runtimeConf['defaultLecturePermissions']['edit'] = 'checked="checked"'; } if ($runtimeConf['defaultLecturePermissions']['admin']) { $runtimeConf['defaultLecturePermissions']['admin'] = 'checked="checked"'; } if ($runtimeConf['defaultImagePermissions']['edit']) { $runtimeConf['defaultImagePermissions']['edit'] = 'checked="checked"'; } if ($runtimeConf['defaultImagePermissions']['admin']) { $runtimeConf['defaultImagePermissions']['admin'] = 'checked="checked"'; } if ($runtimeConf['defaultImagePermissions']['link']) { $runtimeConf['defaultImagePermissions']['link'] = 'checked="checked"'; } if ($runtimeConf['defaultImagePermissions']['download']) { $runtimeConf['defaultImagePermissions']['download'] = 'checked="checked"'; } } Render::addTemplate('runtimeconfig', $runtimeConf); } // User list for making people admin if ($section === 'users') { $this->listUsers(); $this->listOrganizations(); } } private function listDeletePendingImages() { $res = Database::simpleQuery("SELECT b.displayname," . " own.firstname, own.lastname, own.email," . " v.imageversionid, v.createtime, v.filesize, v.deletestate," . " lat.expiretime AS latexptime, lat.deletestate AS latdelstate" . " FROM sat.imageversion v" . " INNER JOIN sat.imagebase b ON (b.imagebaseid = v.imagebaseid)" . " INNER JOIN sat.user own ON (b.ownerid = own.userid)" . " LEFT JOIN sat.imageversion lat ON (b.latestversionid = lat.imageversionid)" . " WHERE v.deletestate <> 'KEEP'" . " ORDER BY b.displayname ASC, v.createtime ASC"); $NOW = time(); $rows = array(); while ($row = $res->fetch(PDO::FETCH_ASSOC)) { if ($row['latexptime'] > $NOW && $row['latdelstate'] === 'KEEP') { $row['hasNewerClass'] = 'glyphicon-ok green'; $row['checked'] = 'checked'; } else { $row['hasNewerClass'] = 'glyphicon-remove red'; } if ($row['deletestate'] === 'WANT_DELETE') { $row['name_extra_class'] = 'slx-strike'; } $row['version'] = date('d.m.Y H:i:s', $row['createtime']); $row['filesize'] = Util::readableFileSize($row['filesize']); $rows[] = $row; } if (empty($rows)) return; Render::addTemplate('images-delete', array('images' => $rows)); } private function cleanMailArray() { $keys = array('host', 'port', 'ssl', 'senderAddress', 'replyTo', 'username', 'password', 'serverName'); $data = array(); foreach ($keys as $key) { $data[$key] = Request::post($key, ''); settype($data[$key], 'string'); if (is_numeric($data[$key])) { settype($data[$key], 'int'); } } return $data; } protected function doAjax() { if (!User::hasPermission('superadmin')) return; $action = Request::post('action'); if ($action === 'mail') { $this->handleTestMail(); } elseif ($action === 'setmail' || $action === 'setsu' || $action == 'setlogin') { $this->setUserOption($action); } elseif ($action === 'setorglogin') { $this->setOrgOption($action); } elseif ($action === 'delimages') { die($this->handleDeleteImages()); } } private function handleDeleteImages() { $images = Request::post('images', false); if (is_array($images)) { foreach ($images as $image => $val) { if (strtolower($val) !== 'on') continue; Database::exec("UPDATE sat.imageversion SET deletestate = 'WANT_DELETE'" . " WHERE deletestate = 'SHOULD_DELETE' AND imageversionid = :imageversionid", array( 'imageversionid' => $image )); } if (!empty($images)) { $ret = Download::asStringPost('http://127.0.0.1:9080/do/delete-images', false, 10, $code); if ($code == 999) { $ret .= "\nConnection to DMSD failed."; } return $ret; } } return false; } private function handleTestMail() { $do = Request::post('button'); if ($do === 'test') { // Prepare array $data = $this->cleanMailArray(); Header('Content-Type: text/plain; charset=utf-8'); $data['recipient'] = Request::post('recipient', ''); if (!preg_match('/.+@.+\..+/', $data['recipient'])) { $result = 'No recipient given!'; } else { $result = Download::asStringPost('http://127.0.0.1:9080/do/mailtest', $data, 10, $code); if ($code == 999) { $result .= "\nTimeout."; } elseif ($code != 200) { $result .= "\nReturn code $code"; } } die($result); } } private function mailHandler() { // Check action $do = Request::post('button'); if ($do === 'save') { // Prepare array $data = $this->cleanMailArray(); $data = json_encode($data); Database::exec('INSERT INTO sat.configuration (parameter, value)' . ' VALUES (:param, :value)' . ' ON DUPLICATE KEY UPDATE value = VALUES(value)', array( 'param' => 'mailconfig', 'value' => $data )); Message::addSuccess('mail-config-saved'); } Util::redirect('?do=DozMod§ion=mailconfig'); } private function runtimeHandler() { // Check action $do = Request::post('button'); if ($do === 'save') { $data = []; $data['defaultLecturePermissions'] = Request::post('defaultLecturePermissions', NULL, "array"); $data['defaultImagePermissions'] = Request::post('defaultImagePermissions', NULL, "array"); foreach(['maxImageValidityDays', 'maxLectureValidityDays', 'maxTransfers'] as $field) { $value = Request::post($field); $data[$field] = $value; } /* ensure types */ settype($data['defaultLecturePermissions']['edit'], 'boolean'); settype($data['defaultLecturePermissions']['admin'], 'boolean'); settype($data['defaultImagePermissions']['edit'], 'boolean'); settype($data['defaultImagePermissions']['admin'], 'boolean'); settype($data['defaultImagePermissions']['link'], 'boolean'); settype($data['defaultImagePermissions']['download'], 'boolean'); settype($data['maxImageValidityDays'], 'int'); settype($data['maxLectureValidityDays'], 'int'); settype($data['maxTransfers'], 'int'); $data = json_encode($data); Database::exec('INSERT INTO sat.configuration (parameter, value)' . ' VALUES (:param, :value)' . ' ON DUPLICATE KEY UPDATE value = VALUES(value)', array( 'param' => 'runtimelimits', 'value' => $data )); Message::addSuccess('runtimelimits-config-saved'); } Util::redirect('?do=DozMod§ion=runtimeconfig'); } private function listUsers() { $res = Database::simpleQuery('SELECT userid, firstname, lastname, email, lastlogin, user.canlogin, issuperuser, emailnotifications,' . ' organization.displayname AS orgname FROM sat.user' . ' LEFT JOIN sat.organization USING (organizationid)' . ' ORDER BY lastname ASC, firstname ASC'); $rows = array(); while ($row = $res->fetch(PDO::FETCH_ASSOC)) { $row['canlogin'] = $this->checked($row['canlogin']); $row['issuperuser'] = $this->checked($row['issuperuser']); $row['emailnotifications'] = $this->checked($row['emailnotifications']); $row['lastlogin'] = date('d.m.Y', $row['lastlogin']); $rows[] = $row; } Render::addTemplate('userlist', array('users' => $rows)); } private function listOrganizations() { $res = Database::simpleQuery('SELECT organizationid, displayname, canlogin FROM sat.organization' . ' ORDER BY displayname ASC'); $rows = array(); while ($row = $res->fetch(PDO::FETCH_ASSOC)) { $row['canlogin'] = $this->checked($row['canlogin']); $rows[] = $row; } Render::addTemplate('orglist', array('organizations' => $rows)); } private function checked($val) { if ($val) return 'checked="checked"'; return ''; } private function setUserOption($option) { $val = (string) Request::post('value', '-'); if ($val !== '1' && $val !== '0') die('Nein'); if ($option === 'setmail') { $field = 'emailnotifications'; } elseif ($option === 'setsu') { $field = 'issuperuser'; } elseif ($option === 'setlogin') { $field = 'canlogin'; } else { die('Unknown'); } $user = (string) Request::post('userid', '?'); $ret = Database::exec("UPDATE sat.user SET $field = :onoff WHERE userid = :userid", array( 'userid' => $user, 'onoff' => $val )); error_log("Setting $field to $val for $user - affected: $ret"); if ($ret === false) die('Error'); if ($ret == 0) die(1 - $val); die($val); } private function setOrgOption($option) { $val = (string) Request::post('value', '-'); if ($val !== '1' && $val !== '0') die('Nein'); if ($option === 'setorglogin') { $field = 'canlogin'; } else { die('Unknown'); } $ret = Database::exec("UPDATE sat.organization SET $field = :onoff WHERE organizationid = :organizationid", array( 'organizationid' => (string) Request::post('organizationid', ''), 'onoff' => $val )); if ($ret === false) die('Error'); if ($ret === 0) die(1 - $val); die($val); } }