source: trunk/Modules/User/User.php@ 594

Last change on this file since 594 was 594, checked in by chronos, 11 years ago
  • Upraveno: Vylepšena instalace modulu User.
  • Property svn:executable set to *
File size: 26.0 KB
Line 
1<?php
2
3include_once(dirname(__FILE__).'/UserList.php');
4
5define('LOGIN_USED', 'Přihlašovací jméno již použito.');
6define('NAME_USED', 'Jméno uživatele již použito');
7define('EMAIL_USED', 'Email je již použitý. Použijte jiný email nebo si můžete nechat zaslat nové heslo na email.');
8define('USER_REGISTRATED', 'Uživatel registrován. Na zadanou emailovou adresu byl poslán mail s odkazem pro aktivování účtu.');
9define('USER_REGISTRATION_CONFIRMED', 'Vaše registrace byla potvrzena.');
10define('DATA_MISSING', 'Chybí emailová adresa, přezdívka, nebo některé z hesel.');
11define('PASSWORDS_UNMATCHED', 'Hesla si neodpovídají.');
12define('ACCOUNT_LOCKED', 'Účet je uzamčen. Po registraci je nutné provést aktivaci účtu pomocí odkazu zaslaného v aktivačním emailu.');
13define('USER_NOT_LOGGED', 'Nejste přihlášen.');
14define('USER_LOGGED', 'Uživatel přihlášen.');
15define('USER_NOT_REGISTRED', 'Uživatel neregistrován.');
16define('USER_ALREADY_LOGGED', 'Uživatel již přihlášen.');
17define('USER_LOGGED_IN', 'Byl jste přihlášen.');
18define('USER_LOGGED_OUT', 'Byl jste odhlášen.');
19define('BAD_PASSWORD', 'Špatné heslo.');
20define('USER_NOT_FOUND', 'Uživatel nenalezen.');
21define('USER_PASSWORD_RECOVERY_SUCCESS', 'Přihlašovací údaje byly odeslány na zadanou emailovou adresu.');
22define('USER_PASSWORD_RECOVERY_FAIL', 'Podle zadaných údajů nebyl nalezen žádný uživatel.');
23define('USER_PASSWORD_RECOVERY_CONFIRMED', 'Nové heslo bylo aktivováno.');
24
25define('USER_EVENT_REGISTER', 1);
26define('USER_EVENT_LOGIN', 2);
27define('USER_EVENT_LOGOUT', 3);
28define('USER_EVENT_OPTIONS_CHANGED', 4);
29
30class PasswordHash
31{
32 function Hash($Password, $Salt)
33 {
34 return(sha1(sha1($Password).$Salt));
35 }
36
37 function Verify($Password, $Salt, $StoredHash)
38 {
39 return($this->Hash($Password, $Salt) == $StoredHash);
40 }
41
42 function GetSalt()
43 {
44 mt_srand(microtime(true)*100000 + memory_get_usage(true));
45 return sha1(uniqid(mt_rand(), true));
46 }
47}
48
49// TODO: Make User class more general without dependencies to System, Mail, Log
50
51class User extends Model
52{
53 var $Roles = array();
54 var $User = array();
55 var $OnlineStateTimeout = 600; // in seconds
56 var $PermissionCache = array();
57 var $PermissionGroupCache = array();
58 var $PermissionGroupCacheOp = array();
59 /** @var Password */
60 var $PasswordHash;
61
62 function __construct($System)
63 {
64 parent::__construct($System);
65 $this->PasswordHash = new PasswordHash();
66 }
67
68 function Check()
69 {
70 $SID = session_id();
71 // Lookup user record
72 $Query = $this->Database->select('UserOnline', '*', 'SessionId="'.$SID.'"');
73 if($Query->num_rows > 0)
74 {
75 // Refresh time of last access
76 $this->Database->update('UserOnline', 'SessionId="'.$SID.'"', array('ActivityTime' => 'NOW()'));
77 } else $this->Database->insert('UserOnline', array('SessionId' => $SID,
78 'User' => null, 'LoginTime' => 'NOW()', 'ActivityTime' => 'NOW()',
79 'IpAddress' => GetRemoteAddress(), 'HostName' => gethostbyaddr(GetRemoteAddress()),
80 'ScriptName' => $_SERVER['PHP_SELF']));
81
82 // Check login
83 $Query = $this->Database->select('UserOnline', '*', 'SessionId="'.$SID.'"');
84 $Row = $Query->fetch_assoc();
85 if($Row['User'] != '')
86 {
87 $Query = $this->Database->query('SELECT User.*, UserCustomerRel.Customer AS Member FROM User LEFT JOIN UserCustomerRel ON UserCustomerRel.User=User.Id WHERE User.Id='.$Row['User']);
88 $this->User = $Query->fetch_assoc();
89 $Result = USER_LOGGED;
90 } else
91 {
92 $Query = $this->Database->select('User', '*', 'Id IS NULL');
93 $this->User = array('Id' => null, 'Member' => null);
94 $Result = USER_NOT_LOGGED;
95 }
96
97 // Remove nonactive users
98 $DbResult = $this->Database->select('UserOnline', 'Id, User', 'ActivityTime < DATE_SUB(NOW(), INTERVAL '.$this->OnlineStateTimeout.' SECOND)');
99 while($DbRow = $DbResult->fetch_array())
100 {
101 $this->Database->delete('UserOnline', 'Id='.$DbRow['Id']);
102 if($DbRow['User'] != null) $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'Logout');
103 }
104 //$this->LoadPermission($this->User['Role']);
105
106 // Role and permission
107 //$this->LoadRoles();
108 }
109
110 function Register($Login, $Password, $Password2, $Email, $Name, $PhoneNumber, $ICQ)
111 {
112 if(($Email == '') || ($Login == '') || ($Password == '') || ($Password2 == '') || ($Name == '')) $Result = DATA_MISSING;
113 else if($Password != $Password2) $Result = PASSWORDS_UNMATCHED;
114 else
115 {
116 // Is user registred yet?
117 $Query = $this->Database->select('User', '*', 'Login = "'.$Login.'"');
118 if($Query->num_rows > 0) $Result = LOGIN_USED;
119 else
120 {
121 $Query = $this->Database->select('User', '*', 'Name = "'.$Name.'"');
122 if($Query->num_rows > 0) $Result = NAME_USED;
123 else
124 {
125 $Query = $this->Database->select('User', '*', 'Email = "'.$Email.'"');
126 if($Query->num_rows > 0) $Result = EMAIL_USED;
127 else
128 {
129 $PasswordHash = new PasswordHash();
130 $Salt = $PasswordHash->GetSalt();
131 $this->Database->insert('User', array('Name' => $Name, 'Login' => $Login,
132 'Password' => $PasswordHash->Hash($Password, $Salt), 'Salt' => $Salt,
133 'Email' => $Email, 'RegistrationTime' => 'NOW()',
134 'Locked' => 1, 'PhoneNumber' => $PhoneNumber, 'ICQ' => $ICQ));
135 $UserId = $this->Database->insert_id;
136 $this->Database->insert('PermissionUserAssignment', array('User' => $UserId,
137 'AssignedGroup' => 2));
138
139 $NewPassword = substr(sha1(strtoupper($Login)), 0, 7);
140
141 // Send activation mail to user email
142 $ServerURL = 'http://'.$this->System->Config['Web']['Host'].$this->System->Config['Web']['RootFolder'];
143 $Mail = new Mail();
144 $Mail->Subject = 'Registrace nového účtu';
145 $Mail->AddBody('Provedli jste registraci nového účtu na serveru <a href="'.$ServerURL.'">'.$ServerURL.'"</a>.'.
146 '<br/>\nPokud jste tak neučinili, měli by jste tento email ignorovat.<br/><br/>\n\n'.
147 'Váš účet je: '.$Login."\n<br/>Pro dokončení registrace klikněte na tento odkaz: ".'<a href="'.
148 $ServerURL.'/?Action=UserRegisterConfirm&User='.
149 $UserId.'&H='.$NewPassword.'">'.$ServerURL.'/?Action=UserRegisterConfirm&User='.
150 $UserId.'&H='.$NewPassword.'</a>.'."\n<br> \n\n'.
151 '<br/><br/>Na tento email neodpovídejte.", 'text/html');
152 $Mail->AddTo($Email, $Name);
153 $Mail->From = $this->System->Config['Web']['Title'].' <noreplay@zdechov.net>';
154 $Mail->Send();
155
156 $Result = USER_REGISTRATED;
157 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'NewRegistration', $Login);
158 }
159 }
160 }
161 }
162 return($Result);
163 }
164
165 function RegisterConfirm($Id, $Hash)
166 {
167 $DbResult = $this->Database->select('User', 'Id, Login, Password', 'Id = '.$Id);
168 if($DbResult->num_rows > 0)
169 {
170 $Row = $DbResult->fetch_array();
171 $NewPassword = substr(sha1(strtoupper($Row['Login'])), 0, 7);
172 if($Hash == $NewPassword)
173 {
174 $this->Database->update('User', 'Id='.$Row['Id'], array('Locked' => 0));
175 $Output = USER_REGISTRATION_CONFIRMED;
176 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'RegisterConfirm', 'Login='.
177 $Row['Login'].', Id='.$Row['Id']);
178 } else $Output = PASSWORDS_UNMATCHED;
179 } else $Output = USER_NOT_FOUND;
180 return($Output);
181 }
182
183 function Login($Login, $Password)
184 {
185 $SID = session_id();
186 $Query = $this->Database->select('User', '*', 'Login="'.$Login.'"');
187 if($Query->num_rows > 0)
188 {
189 $Row = $Query->fetch_assoc();
190 $PasswordHash = new PasswordHash();
191 if(!$PasswordHash->Verify($Password, $Row['Salt'], $Row['Password'])) $Result = BAD_PASSWORD;
192 else if($Row['Locked'] == 1) $Result = ACCOUNT_LOCKED;
193 else
194 {
195 $this->Database->update('User', 'Id='.$Row['Id'], array('LastLoginTime' => 'NOW()', 'LastIpAddress' => GetRemoteAddress()));
196 $this->Database->update('UserOnline', 'SessionId="'.$SID.'"', array('User' => $Row['Id']));
197
198 $Result = USER_LOGGED_IN;
199 $this->Check();
200 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'Login', 'Login='.$Login.',Host='.gethostbyaddr(GetRemoteAddress()));
201 }
202 } else $Result = USER_NOT_REGISTRED;
203 return($Result);
204 }
205
206 function Logout()
207 {
208 $SID = session_id();
209 $this->Database->update('UserOnline', 'SessionId="'.$SID.'"', array('User' => null));
210 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'Logout', $this->User['Login']);
211 $this->Check();
212 return(USER_LOGGED_OUT);
213 }
214
215 function LoadRoles()
216 {
217 $this->Roles = array();
218 $DbResult = $this->Database->select('UserRole', '*');
219 while($DbRow = $DbResult->fetch_array())
220 $this->Roles[] = $DbRow;
221 }
222
223 function LoadPermission($Role)
224 {
225 $this->User['Permission'] = array();
226 $DbResult = $this->Database->query('SELECT `UserRolePermission`.*, `PermissionOperation`.`Description` FROM `UserRolePermission` JOIN `PermissionOperation` ON `PermissionOperation`.`Id` = `UserRolePermission`.`Operation` WHERE `UserRolePermission`.`Role` = '.$Role);
227 if($DbResult->num_rows > 0)
228 while($DbRow = $DbResult->fetch_array())
229 $this->User['Permission'][$DbRow['Operation']] = $DbRow;
230 }
231
232 function PermissionMatrix()
233 {
234 $Result = array();
235 $DbResult = $this->Database->query('SELECT `UserRolePermission`.*, `PermissionOperation`.`Description`, `UserRole`.`Title` FROM `UserRolePermission` LEFT JOIN `PermissionOperation` ON `PermissionOperation`.`Id` = `UserRolePermission`.`Operation` LEFT JOIN `UserRole` ON `UserRole`.`Id` = `UserRolePermission`.`Role`');
236 while($DbRow = $DbResult->fetch_array())
237 {
238 $Value = '';
239 if($DbRow['Read']) $Value .= 'R';
240 if($DbRow['Write']) $Value .= 'W';
241 $Result[$DbRow['Description']][$DbRow['Title']] = $Value;
242 }
243 return($Result);
244 }
245
246 function CheckGroupPermission($GroupId, $OperationId)
247 {
248 $PermissionExists = false;
249 // First try to check cache group-group relation
250 if(array_key_exists($GroupId, $this->PermissionGroupCache))
251 {
252 $PermissionExists = true;
253 } else
254 {
255 // If no permission combination exists in cache, do new check of database items
256 $DbResult = $this->Database->select('PermissionGroupAssignment', '*', '`Group`="'.$GroupId.'" AND `AssignedGroup` IS NOT NULL');
257 $DbRow = array();
258 while($DbRow[] = $DbResult->fetch_array());
259 $this->PermissionGroupCache[$GroupId] = $DbRow;
260 $PermissionExists = true;
261 }
262 if($PermissionExists)
263 {
264 foreach($this->PermissionGroupCache[$GroupId] as $DbRow)
265 {
266 if($DbRow['AssignedGroup'] != '')
267 if($this->CheckGroupPermission($DbRow['AssignedGroup'], $OperationId) == true) return(true);
268 }
269 }
270
271 // Check group-operation relation
272 if(array_key_exists($GroupId.','.$OperationId, $this->PermissionGroupCacheOp))
273 {
274 $PermissionExists = true;
275 } else
276 {
277 // If no permission combination exists in cache, do new check of database items
278 $DbResult = $this->Database->select('PermissionGroupAssignment', '*', '`Group`="'.$GroupId.'" AND `AssignedOperation`="'.$OperationId.'"');
279 if($DbResult->num_rows > 0) $this->PermissionGroupCacheOp[$GroupId.','.$OperationId] = true;
280 else $this->PermissionGroupCacheOp[$GroupId.','.$OperationId] = false;
281 $PermissionExists = true;
282 }
283 if($PermissionExists)
284 {
285 return($this->PermissionGroupCacheOp[$GroupId.','.$OperationId]);
286 }
287 return(false);
288 }
289
290 function CheckPermission($Module, $Operation, $ItemType = '', $ItemIndex = 0)
291 {
292 // Get module id
293 $DbResult = $this->Database->select('Module', 'Id', '`Name`="'.$Module.'"');
294 if($DbResult->num_rows > 0)
295 {
296 $DbRow = $DbResult->fetch_assoc();
297 $ModuleId = $DbRow['Id'];
298 } else return(false);
299
300 // First try to check cache
301 if(in_array(array($Module, $Operation, $ItemType, $ItemType), $this->PermissionCache))
302 {
303 $OperationId = array_search(array($Module, $Operation, $ItemType, $ItemIndex), $this->PermissionCache);
304 $PermissionExists = is_numeric($OperationId);
305 } else
306 {
307 // If no permission combination exists in cache, do new check of database items
308 $DbResult = $this->Database->select('PermissionOperation', 'Id', '`Module`="'.$ModuleId.'" AND `Item`="'.$ItemType.'" AND `ItemId`='.$ItemIndex.' AND `Operation`="'.$Operation.'"');
309 if($DbResult->num_rows > 0)
310 {
311 $DbRow = $DbResult->fetch_array();
312 $OperationId = $DbRow['Id'];
313 $this->PermissionCache[$DbRow['Id']] = array($Module, $Operation, $ItemType, $ItemIndex);
314 $PermissionExists = true;
315 } else
316 {
317 $this->PermissionCache[count($this->PermissionCache).'_'] = array($Module, $Operation, $ItemType, $ItemIndex);
318 $PermissionExists = false;
319 }
320 }
321
322 if($PermissionExists)
323 {
324 if($this->User['Id'] == null) $UserCondition = '(`User` IS NULL)';
325 else $UserCondition = '(`User`="'.$this->User['Id'].'")';
326 // Check user-operation relation
327 $DbResult = $this->Database->select('PermissionUserAssignment', '*', $UserCondition.' AND (`AssignedOperation`="'.$OperationId.'")');
328 if($DbResult->num_rows > 0) return(true);
329
330 // Check user-group relation
331 $DbResult = $this->Database->select('PermissionUserAssignment', 'AssignedGroup', $UserCondition);
332 while($DbRow = $DbResult->fetch_array())
333 {
334 if($this->CheckGroupPermission($DbRow['AssignedGroup'], $OperationId) == true) return(true);
335 }
336 return(false);
337 } else return(false);
338 }
339
340 function PasswordRecoveryRequest($Login, $Email)
341 {
342 $DbResult = $this->Database->select('User', 'Login, Name, Id, Email, Password', '`Login`="'.$Login.'" AND `Email`="'.$Email.'"');
343 if($DbResult->num_rows > 0)
344 {
345 $Row = $DbResult->fetch_array();
346 $NewPassword = substr(sha1(strtoupper($Row['Login'])), 0, 7);
347
348 $ServerURL = 'http://'.$this->System->Config['Web']['Host'].$this->Config['Web']['RootFolder'];
349 $Mail = new Mail();
350 $Mail->Subject = 'Obnova hesla';
351 $Mail->From = $this->Config['Web']['Title'].' <noreplay@zdechov.net>';
352 $Mail->AddTo($Row['Email'], $Row['Name']);
353 $Mail->AddBody('Požádali jste o zaslání nového hesla na serveru <a href="'.$ServerURL.'">'.$ServerURL.'"</a>.<br />\n'.
354 "Pokud jste tak neučinili, měli by jste tento email ignorovat.<br /><br />\n\nVaše nové heslo k účtu ".
355 $Row['Login'].' je: '.$NewPassword."\n<br/>".
356 'Pro aktivaci tohoto hesla klikněte na <a href="'.$ServerURL.'/?Action=PasswordRecoveryConfirm&User='.
357 $Row['Id'].'&H='.$Row['Password'].'&P='.$NewPassword.'">tento odkaz</a>.'."\n<br />".
358 "Po přihlášení si prosím změňte heslo na nové.\n\n<br><br>Na tento email neodpovídejte.", 'text/html');
359 $Mail->Send();
360
361 $Output = USER_PASSWORD_RECOVERY_SUCCESS;
362 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'PasswordRecoveryRequest', 'Login='.$Login.',Email='.$Email);
363 } else $Output = USER_PASSWORD_RECOVERY_FAIL;
364 return($Output);
365 }
366
367 function PasswordRecoveryConfirm($Id, $Hash, $NewPassword)
368 {
369 $DbResult = $this->Database->select('User', 'Id, Login, Password', 'Id = '.$Id);
370 if($DbResult->num_rows > 0)
371 {
372 $Row = $DbResult->fetch_array();
373 $NewPassword2 = substr(sha1(strtoupper($Row['Login'])), 0, 7);
374 if(($NewPassword == $NewPassword2) and ($Hash == $Row['Password']))
375 {
376 $PasswordHash = new PasswordHash();
377 $Salt = $PasswordHash->GetSalt();
378 $this->Database->update('User', 'Id='.$Row['Id'], array('Password' => $PasswordHash->Hash($NewPassword, $Salt),
379 'Salt' => $Salt, 'Locked' => 0));
380 $Output = USER_PASSWORD_RECOVERY_CONFIRMED;
381 $this->System->ModuleManager->Modules['Log']->NewRecord('User', 'PasswordRecoveryConfirm', 'Login='.$Row['Login']);
382 } else $Output = PASSWORDS_UNMATCHED;
383 } else $Output = USER_NOT_FOUND;
384 return($Output);
385 }
386}
387
388class ModuleUser extends AppModule
389{
390 function __construct($System)
391 {
392 parent::__construct($System);
393 $this->Name = 'User';
394 $this->Version = '1.0';
395 $this->Creator = 'Chronos';
396 $this->License = 'GNU/GPLv3';
397 $this->Description = 'User management';
398 $this->Dependencies = array();
399 }
400
401 function DoInstall()
402 {
403 $this->Database->query("CREATE TABLE IF NOT EXISTS `User` (
404 `Id` int(11) NOT NULL AUTO_INCREMENT,
405 `Login` varchar(64) NOT NULL,
406 `Name` varchar(128) NOT NULL,
407 `Password` varchar(255) NOT NULL,
408 `Salt` varchar(255) NOT NULL,
409 `Email` varchar(128) NOT NULL DEFAULT '',
410 `LastIpAddress` varchar(16) NOT NULL DEFAULT '',
411 `LastLoginTime` datetime NOT NULL DEFAULT '0000-00-00 00:00:00',
412 `RegistrationTime` datetime NOT NULL DEFAULT '0000-00-00 00:00:00',
413 `Locked` tinyint(1) NOT NULL DEFAULT '0',
414 `ICQ` int(11) NOT NULL DEFAULT '0',
415 `PhoneNumber` varchar(32) NOT NULL DEFAULT '',
416 `InitPassword` varchar(255) NOT NULL,
417 PRIMARY KEY (`Id`),
418 UNIQUE KEY `Name` (`Login`),
419 UNIQUE KEY `Nick` (`Name`)
420) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
421 $this->Database->query("CREATE TABLE IF NOT EXISTS `UserOnline` (
422 `Id` int(11) NOT NULL AUTO_INCREMENT,
423 `User` int(11) DEFAULT NULL COMMENT 'User.Id',
424 `ActivityTime` datetime NOT NULL DEFAULT '0000-00-00 00:00:00',
425 `LoginTime` datetime NOT NULL DEFAULT '0000-00-00 00:00:00',
426 `SessionId` varchar(255) NOT NULL DEFAULT '',
427 `IpAddress` varchar(16) NOT NULL DEFAULT '',
428 `HostName` varchar(255) NOT NULL DEFAULT '',
429 `ScriptName` varchar(255) NOT NULL,
430 PRIMARY KEY (`Id`),
431 KEY `User` (`User`)
432) ENGINE=MEMORY DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
433 $this->Database->query("CREATE TABLE IF NOT EXISTS `PermissionGroup` (
434 `Id` int(11) NOT NULL AUTO_INCREMENT,
435 `Description` varchar(255) NOT NULL DEFAULT '',
436 PRIMARY KEY (`Id`)
437 ) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
438
439 $this->Database->query("CREATE TABLE IF NOT EXISTS `PermissionGroupAssignment` (
440 `Id` int(11) NOT NULL AUTO_INCREMENT,
441 `Group` int(11) NOT NULL DEFAULT '0',
442 `AssignedGroup` int(11) DEFAULT NULL,
443 `AssignedOperation` int(11) DEFAULT NULL,
444 PRIMARY KEY (`Id`),
445 KEY `Group` (`Group`),
446 KEY `AssignedGroup` (`AssignedGroup`),
447 KEY `AssignedOperation` (`AssignedOperation`)
448 ) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
449
450 $this->Database->query("CREATE TABLE IF NOT EXISTS `PermissionOperation` (
451 `Id` int(11) NOT NULL AUTO_INCREMENT,
452 `Module` int(11) NOT NULL,
453 `Operation` varchar(128) NOT NULL DEFAULT '',
454 `Item` varchar(64) NOT NULL DEFAULT '',
455 `ItemId` int(11) NOT NULL DEFAULT '0',
456 PRIMARY KEY (`Id`),
457 KEY `Module` (`Module`),
458 KEY `Operation` (`Operation`),
459 KEY `Item` (`Item`),
460 KEY `ItemId` (`ItemId`)
461 ) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
462
463 $this->Database->query("CREATE TABLE IF NOT EXISTS `PermissionUserAssignment` (
464 `Id` int(11) NOT NULL AUTO_INCREMENT,
465 `User` int(11) DEFAULT NULL,
466 `AssignedGroup` int(11) DEFAULT NULL,
467 `AssignedOperation` int(11) DEFAULT NULL,
468 PRIMARY KEY (`Id`),
469 KEY `User` (`User`),
470 KEY `AssignedGroup` (`AssignedGroup`),
471 KEY `AssignedOperation` (`AssignedOperation`)
472 ) ENGINE=InnoDB DEFAULT CHARSET=utf8 AUTO_INCREMENT=1 ;");
473
474 $this->Database->query("ALTER TABLE `PermissionGroupAssignment`
475 ADD CONSTRAINT `PermissionGroupAssignment_ibfk_1` FOREIGN KEY (`Group`) REFERENCES `PermissionGroup` (`Id`),
476 ADD CONSTRAINT `PermissionGroupAssignment_ibfk_2` FOREIGN KEY (`AssignedGroup`) REFERENCES `PermissionGroup` (`Id`),
477 ADD CONSTRAINT `PermissionGroupAssignment_ibfk_3` FOREIGN KEY (`AssignedOperation`) REFERENCES `PermissionOperation` (`Id`);");
478
479 $this->Database->query("ALTER TABLE `PermissionOperation`
480 ADD CONSTRAINT `PermissionOperation_ibfk_1` FOREIGN KEY (`Module`) REFERENCES `Module` (`Id`);");
481
482 $this->Database->query("ALTER TABLE `PermissionUserAssignment`
483 ADD CONSTRAINT `PermissionUserAssignment_ibfk_2` FOREIGN KEY (`AssignedGroup`) REFERENCES `PermissionGroup` (`Id`),
484 ADD CONSTRAINT `PermissionUserAssignment_ibfk_3` FOREIGN KEY (`AssignedOperation`) REFERENCES `PermissionOperation` (`Id`),
485 ADD CONSTRAINT `PermissionUserAssignment_ibfk_4` FOREIGN KEY (`User`) REFERENCES `User` (`Id`);");
486 }
487
488 function DoUninstall()
489 {
490 $this->Database->query('DROP TABLE `PermissionUserAssignment`');
491 $this->Database->query('DROP TABLE `PermissionGroupAssignment`');
492 $this->Database->query('DROP TABLE `PermissionGroup`');
493 $this->Database->query('DROP TABLE `PermissionOperation`');
494 $this->Database->query('DROP TABLE `UserOnline`');
495 $this->Database->query('DROP TABLE `User`');
496 }
497
498 function DoStart()
499 {
500 $this->System->User = new User($this->System);
501 if(isset($_SERVER['REMOTE_ADDR'])) $this->System->User->Check();
502 $this->System->RegisterPage('userlist', 'PageUserList');
503 $this->System->FormManager->RegisterClass('User', array(
504 'Title' => 'Uživatelé',
505 'Table' => 'User',
506 'DefaultSortColumn' => 'Name',
507 'Items' => array(
508 'Login' => array('Type' => 'String', 'Caption' => 'Přihlašovací jméno', 'Default' => ''),
509 'Name' => array('Type' => 'String', 'Caption' => 'Celé jméno', 'Default' => ''),
510 'Salt' => array('Type' => 'RandomHash', 'Caption' => 'Sůl', 'Default' => ''),
511 'Password' => array('Type' => 'Password', 'Caption' => 'Heslo', 'Default' => '', 'Method' => 'DoubleSHA1'),
512 'Email' => array('Type' => 'String', 'Caption' => 'E-mail', 'Default' => ''),
513 'LastIpAddress' => array('Type' => 'String', 'Caption' => 'Poslední IP adresa', 'Default' => '', 'ReadOnly' => true),
514 'LastLoginTime' => array('Type' => 'DateTime', 'Caption' => 'Poslední čas přihlášení', 'Default' => '', 'ReadOnly' => true),
515 'RegistrationTime' => array('Type' => 'DateTime', 'Caption' => 'Čas registrace', 'Default' => ''),
516 'Locked' => array('Type' => 'Boolean', 'Caption' => 'Uzamčen', 'Default' => ''),
517 'ICQ' => array('Type' => 'String', 'Caption' => 'ICQ', 'Default' => ''),
518 'PhoneNumber' => array('Type' => 'String', 'Caption' => 'Telefon', 'Default' => ''),
519 'UserRel' => array('Type' => 'TUserCustomerRelListUser', 'Caption' => 'Přístup k zákazníkům', 'Default' => ''),
520 'Permission' => array('Type' => 'TPermissionUserAssignmentListUser', 'Caption' => 'Oprávnění', 'Default' => ''),
521 ),
522 ));
523 $this->System->FormManager->RegisterClass('PermissionUserAssignment', array(
524 'Title' => 'Oprávnění uživatelů',
525 'Table' => 'PermissionUserAssignment',
526 'Items' => array(
527 'User' => array('Type' => 'TUser', 'Caption' => 'Uživatel', 'Default' => ''),
528 'AssignedGroup' => array('Type' => 'TPermissionGroup', 'Caption' => 'Přiřazené skupiny', 'Default' => '', 'Null' => true),
529 'AssignedOperation' => array('Type' => 'TPermissionOperation', 'Caption' => 'Přiřazené operace', 'Default' => '', 'Null' => true),
530 ),
531 ));
532 $this->System->FormManager->RegisterClass('PermissionGroup', array(
533 'Title' => 'Skupiny oprávnění',
534 'Table' => 'PermissionGroup',
535 'Items' => array(
536 'Description' => array('Type' => 'String', 'Caption' => 'Název', 'Default' => ''),
537 'AssignedGroup' => array('Type' => 'TPermissionGroupAssignmentListGroup', 'Caption' => 'Přiřazené skupiny a operace', 'Default' => '', 'Null' => true),
538 'AssignedGroup2' => array('Type' => 'TPermissionGroupAssignmentListAssignedGroup', 'Caption' => 'Použito ve skupinách', 'Default' => '', 'Null' => true),
539 ),
540 ));
541 $this->System->FormManager->RegisterClass('PermissionGroupAssignment', array(
542 'Title' => 'Přiřazení skupin oprávnění',
543 'Table' => 'PermissionGroupAssignment',
544 'Items' => array(
545 'Group' => array('Type' => 'TPermissionGroup', 'Caption' => 'Skupina', 'Default' => ''),
546 'AssignedGroup' => array('Type' => 'TPermissionGroup', 'Caption' => 'Přiřazené skupiny', 'Default' => '', 'Null' => true),
547 'AssignedOperation' => array('Type' => 'TPermissionOperation', 'Caption' => 'Přiřazené operace', 'Default' => '', 'Null' => true),
548 ),
549 ));
550 $this->System->FormManager->RegisterClass('PermissionOperation', array(
551 'Title' => 'Operace oprávnění',
552 'Table' => 'PermissionOperation',
553 'Items' => array(
554 'Module' => array('Type' => 'TModule', 'Caption' => 'Modul', 'Default' => ''),
555 'Operation' => array('Type' => 'String', 'Caption' => 'Operace', 'Default' => ''),
556 'Item' => array('Type' => 'String', 'Caption' => 'Položka', 'Default' => ''),
557 'ItemId' => array('Type' => 'Integer', 'Caption' => 'Index položky', 'Default' => ''),
558 'AssignedGroup' => array('Type' => 'TPermissionGroupAssignmentListOperation', 'Caption' => 'Použito ve skupinách', 'Default' => '', 'Null' => true),
559 ),
560 ));
561
562 }
563
564 function DoStop()
565 {
566 }
567}
Note: See TracBrowser for help on using the repository browser.