egroupware_official/admin/inc/class.admin_cmd_edit_user.inc.php

<?php
/**
 * eGgroupWare admin - admin command: edit/add a user
 *
 * @link http://www.egroupware.org
 * @author Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @package admin
 * @copyright (c) 2007-13 by Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License
 * @version $Id$
 */

/**
 * admin command: edit/add a user
 */
class admin_cmd_edit_user extends admin_cmd_change_pw
{
	/**
	 * Constructor
	 *
	 * @param string/int/array $account account name or id (!$account to add a new account), or array with all parameters
	 * @param array $set=null array with all data to change
	 * @param string $password=null password
	 * @param boolean $run_addaccount_hook=null default run addaccount for new accounts and editaccount for existing ones
	 */
	function __construct($account,$set=null,$password=null,$run_addaccount_hook=null)
	{
		if (!is_array($account))
		{
			//error_log(__METHOD__."(".array2string($account).', '.array2string($set).", ...)");
			$account = array(
				'account' => $account,
				'set' => $set,
				'password' => is_null($password) ? $set['account_passwd'] : $password,
				'run_addaccount_hook' => $run_addaccount_hook,
			);
		}
		admin_cmd::__construct($account);
	}

	/**
	 * change the password of a given user
	 *
	 * @param boolean $check_only=false only run the checks (and throw the exceptions), but not the command itself
	 * @return string success message
	 * @throws egw_exception_no_admin
	 * @throws egw_exception_wrong_userinput(lang("Unknown account: %1 !!!",$this->account),15);
	 * @throws egw_exception_wrong_userinput(lang('Error changing the password for %1 !!!',$this->account),99);
	 */
	protected function exec($check_only=false)
	{
		// check creator is still admin and not explicitly forbidden to edit accounts/groups
		if ($this->creator) $this->_check_admin('account_access',$this->account ? 16 : 4);

		admin_cmd::_instanciate_accounts();

		$data = $this->set;
		$data['account_type'] = 'u';

		if ($this->account)	// existing account
		{
			$data['account_id'] = admin_cmd::parse_account($this->account);
			//error_log(__METHOD__."($check_only) this->account=".array2string($this->account).', data[account_id]='.array2string($data['account_id']).", ...)");

			$data['old_loginid'] = admin_cmd::$accounts->id2name($data['account_id']);
		}
		if (!$data['account_lid'] && (!$this->account || !is_null($data['account_lid'])))
		{
			throw new egw_exception_wrong_userinput(lang('You must enter a loginid'),9);
		}
		// Check if an account already exists as system user, and if it does deny creation
		if ($GLOBALS['egw_info']['server']['account_repository'] == 'ldap' &&
			!$GLOBALS['egw_info']['server']['ldap_allow_systemusernames'] && !$data['account_id'] &&
			function_exists('posix_getpwnam') && posix_getpwnam($data['account_lid']))
		{
			throw new egw_exception_wrong_userinput(lang('There already is a system-user with this name. User\'s should not have the same name as a systemuser'),99);
		}
		if (!$data['account_lastname'] && (!$this->account || !is_null($data['account_lastname'])))
		{
			throw new egw_exception_wrong_userinput(lang('You must enter a lastname'),9);
		}
		if (!is_null($data['account_lid']) && ($id = admin_cmd::$accounts->name2id($data['account_lid'],'account_lid','u')) &&
			(string)$id !== (string)$data['account_id'])
		{
			throw new egw_exception_wrong_userinput(lang('That loginid has already been taken'),999);
		}
		if (isset($data['account_passwd_2']) && $data['account_passwd'] != $data['account_passwd_2'])
		{
			throw new egw_exception_wrong_userinput(lang('The two passwords are not the same'),0);
		}
		$expires = self::_parse_expired($data['account_expires'],(boolean)$this->account);
		if ($expires === 0)	// deactivated
		{
			$data['account_expires'] = -1;
			$data['account_status'] = '';
		}
		else
		{
			$data['account_expires'] = $expires;
			$data['account_status'] = is_null($expires) ? null : ($expires == -1 || $expires > time() ? 'A' : '');
		}

		$data['changepassword'] = admin_cmd::parse_boolean($data['changepassword'],$this->account ? null : true);
		$data['anonymous'] = admin_cmd::parse_boolean($data['anonymous'],$this->account ? null : false);
		if ($data['mustchangepassword'] && $data['changepassword'])
		{
			$data['account_lastpwd_change']=0;
		}

		if (!$data['account_primary_group'] && $this->account)
		{
			$data['account_primary_group'] = null;	// dont change
		}
		else
		{
			if (!$data['account_primary_group'] && admin_cmd::$accounts->exists('Default') == 2)
			{
				$data['account_primary_group'] = 'Default';
			}
			$data['account_primary_group'] = admin_cmd::parse_account($data['account_primary_group'],false);
		}
		if (!$data['account_groups'] && $this->account)
		{
			$data['account_groups'] = null;	// dont change
		}
		else
		{
			if (!$data['account_groups'] && admin_cmd::$accounts->exists('Default') == 2)
			{
				$data['account_groups'] = array('Default');
			}
			$data['account_groups'] = admin_cmd::parse_accounts($data['account_groups'],false);
		}
		if ($check_only) return true;

		if ($this->account)
		{
			// invalidate account, before reading it, to code with changed to DB or LDAP outside EGw
			accounts::cache_invalidate($data['account_id']);
			if (!($old = admin_cmd::$accounts->read($data['account_id'])))
			{
				throw new egw_exception_wrong_userinput(lang("Unknown account: %1 !!!",$this->account),15);
			}
			// as the current account class always sets all values, we have to add the not specified ones
			foreach($data as $name => &$value)
			{
				if (is_null($value)) $value = $old[$name];
			}
		}
		// hook allowing apps to intercept adding/editing accounts before saving them
		$GLOBALS['egw']->hooks->process($data+array(
			'location' => $this->account ? 'pre_editaccount' : 'pre_addaccount',
		),False,True);	// called for every app now, not only enabled ones)

		if (!($data['account_id'] = admin_cmd::$accounts->save($data)))
		{
			//_debug_array($data);
			throw new egw_exception_db(lang("Error saving account!"),11);
		}
		// make new account_id available to caller
		$update = (boolean)$this->account;
		if (!$this->account) $this->account = $data['account_id'];

		if ($data['account_groups'])
		{
			admin_cmd::$accounts->set_memberships($data['account_groups'],$data['account_id']);
		}
		if (!is_null($data['anonymous']))
		{
			admin_cmd::_instanciate_acl();
			if ($data['anonymous'])
			{
				admin_cmd::$acl->add_repository('phpgwapi','anonymous',$data['account_id'],1);
			}
			else
			{
				admin_cmd::$acl->delete_repository('phpgwapi','anonymous',$data['account_id']);
			}
		}
		if (!is_null($data['changepassword']))
		{
			if (!$data['changepassword'])
			{
				admin_cmd::$acl->add_repository('preferences','nopasswordchange',$data['account_id'],1);
			}
			else
			{
				admin_cmd::$acl->delete_repository('preferences','nopasswordchange',$data['account_id']);
			}
		}
		// if we have a password and it's not a hash, and auth_type != account_repository
		if (!is_null($this->password) &&
			!preg_match('/^\\{[a-z5]{3,5}\\}.+/i',$this->password) &&
			!preg_match('/^[0-9a-f]{32}$/',$this->password) &&	// md5 hash
			admin_cmd::$accounts->config['auth_type'] != admin_cmd::$accounts->config['account_repository'])
		{
			admin_cmd_change_pw::exec();		// calling the exec method of the admin_cmd_change_pw
		}
		$data['account_passwd'] = $this->password;
		$GLOBALS['hook_values'] =& $data;
		$GLOBALS['egw']->hooks->process($GLOBALS['hook_values']+array(
			'location' => $update && $this->run_addaccount_hook !== true ? 'editaccount' : 'addaccount'
		),False,True);	// called for every app now, not only enabled ones)

		return lang("Account %1 %2", $data['account_lid'] ? $data['account_lid'] : accounts::id2name($this->account),
			$update ? lang('updated') : lang("created with id #%1", $this->account));
	}

	/**
	 * Return a title / string representation for a given command, eg. to display it
	 *
	 * @return string
	 */
	function __tostring()
	{
		return lang('%1 user %2',$this->account ? lang('Edit') : lang('Add'),
			admin_cmd::display_account($this->account ? $this->account : $this->set['account_lid']));
	}

	/**
	 * parse the expired string and return the expired date as timestamp
	 *
	 * @param string $str date, 'never', 'already' or '' (=dont change, or default of never of new accounts)
	 * @param boolean $exists
	 * @return int timestamp, 0 for already, -1 for never or null for dont change
	 * @throws egw_exception_wrong_userinput(lang('Invalid formated date "%1"!',$datein),6);
	 */
	private function _parse_expired($str,$existing)
	{
		switch($str)
		{
			case '':
				if ($existing) return null;
				// fall through --> default for new accounts is never
			case 'never':
				return -1;
			case 'already':
				return 0;
		}
		return admin_cmd::parse_date($str);
	}
}
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`<?php`
			`/**`
			`* eGgroupWare admin - admin command: edit/add a user`
			`*`
			`* @link http://www.egroupware.org`
			`* @author Ralf Becker <RalfBecker-AT-outdoor-training.de>`
			`* @package admin`
invalidate account, before reading it, to code with changed to DB or LDAP outside EGw 2013-04-23 15:47:20 +02:00			`* @copyright (c) 2007-13 by Ralf Becker <RalfBecker-AT-outdoor-training.de>`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`* @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`* @version $Id$`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`*/`

			`/**`
			`* admin command: edit/add a user`
			`*/`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`class admin_cmd_edit_user extends admin_cmd_change_pw`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`{`
			`/**`
			`* Constructor`
			`*`
			`* @param string/int/array $account account name or id (!$account to add a new account), or array with all parameters`
			`* @param array $set=null array with all data to change`
			`* @param string $password=null password`
- new admin-cli command --add-user like --edit-user, but runs addaccount hook for existing accounts too - using --add-user instead of --edit-user in setup_cmd_admin 2010-08-20 22:28:59 +02:00			`* @param boolean $run_addaccount_hook=null default run addaccount for new accounts and editaccount for existing ones`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`*/`
- new admin-cli command --add-user like --edit-user, but runs addaccount hook for existing accounts too - using --add-user instead of --edit-user in setup_cmd_admin 2010-08-20 22:28:59 +02:00			`function __construct($account,$set=null,$password=null,$run_addaccount_hook=null)`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`{`
			`if (!is_array($account))`
			`{`
add/edit accounts via extra tab in addressbook edit dialog 2014-03-18 16:10:57 +01:00			`//error_log(__METHOD__."(".array2string($account).', '.array2string($set).", ...)");`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`$account = array(`
			`'account' => $account,`
			`'set' => $set,`
			`'password' => is_null($password) ? $set['account_passwd'] : $password,`
- new admin-cli command --add-user like --edit-user, but runs addaccount hook for existing accounts too - using --add-user instead of --edit-user in setup_cmd_admin 2010-08-20 22:28:59 +02:00			`'run_addaccount_hook' => $run_addaccount_hook,`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`);`
			`}`
			`admin_cmd::__construct($account);`
			`}`

			`/**`
			`* change the password of a given user`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`*`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`* @param boolean $check_only=false only run the checks (and throw the exceptions), but not the command itself`
			`* @return string success message`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`* @throws egw_exception_no_admin`
			`* @throws egw_exception_wrong_userinput(lang("Unknown account: %1 !!!",$this->account),15);`
			`* @throws egw_exception_wrong_userinput(lang('Error changing the password for %1 !!!',$this->account),99);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`*/`
			`protected function exec($check_only=false)`
			`{`
			`// check creator is still admin and not explicitly forbidden to edit accounts/groups`
			`if ($this->creator) $this->_check_admin('account_access',$this->account ? 16 : 4);`

			`admin_cmd::_instanciate_accounts();`

			`$data = $this->set;`
			`$data['account_type'] = 'u';`

			`if ($this->account) // existing account`
			`{`
			`$data['account_id'] = admin_cmd::parse_account($this->account);`
add/edit accounts via extra tab in addressbook edit dialog 2014-03-18 16:10:57 +01:00			`//error_log(__METHOD__."($check_only) this->account=".array2string($this->account).', data[account_id]='.array2string($data['account_id']).", ...)");`

fixed not working rename of account_lid with admin/admin-cli.php, corrupted sqlfs (overwrite /home) 2010-04-21 14:28:27 +02:00			`$data['old_loginid'] = admin_cmd::$accounts->id2name($data['account_id']);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
			`if (!$data['account_lid'] && (!$this->account \|\| !is_null($data['account_lid'])))`
			`{`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_wrong_userinput(lang('You must enter a loginid'),9);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`// Check if an account already exists as system user, and if it does deny creation`
			`if ($GLOBALS['egw_info']['server']['account_repository'] == 'ldap' &&`
2 more cases for r42550: only check for matching system users, if a new account get added, as existing accounts can be reported - depending on configuration - as system users too 2013-05-27 16:30:22 +02:00			`!$GLOBALS['egw_info']['server']['ldap_allow_systemusernames'] && !$data['account_id'] &&`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`function_exists('posix_getpwnam') && posix_getpwnam($data['account_lid']))`
			`{`
			`throw new egw_exception_wrong_userinput(lang('There already is a system-user with this name. User\'s should not have the same name as a systemuser'),99);`
			`}`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if (!$data['account_lastname'] && (!$this->account \|\| !is_null($data['account_lastname'])))`
			`{`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_wrong_userinput(lang('You must enter a lastname'),9);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`if (!is_null($data['account_lid']) && ($id = admin_cmd::$accounts->name2id($data['account_lid'],'account_lid','u')) &&`
add/edit accounts via extra tab in addressbook edit dialog 2014-03-18 16:10:57 +01:00			`(string)$id !== (string)$data['account_id'])`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`{`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_wrong_userinput(lang('That loginid has already been taken'),999);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
			`if (isset($data['account_passwd_2']) && $data['account_passwd'] != $data['account_passwd_2'])`
			`{`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_wrong_userinput(lang('The two passwords are not the same'),0);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
* Admin: accounts could not be deactivated 2014-06-04 22:02:01 +02:00			`$expires = self::_parse_expired($data['account_expires'],(boolean)$this->account);`
			`if ($expires === 0) // deactivated`
			`{`
			`$data['account_expires'] = -1;`
			`$data['account_status'] = '';`
			`}`
			`else`
			`{`
			`$data['account_expires'] = $expires;`
			`$data['account_status'] = is_null($expires) ? null : ($expires == -1 \|\| $expires > time() ? 'A' : '');`
			`}`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`$data['changepassword'] = admin_cmd::parse_boolean($data['changepassword'],$this->account ? null : true);`
			`$data['anonymous'] = admin_cmd::parse_boolean($data['anonymous'],$this->account ? null : false);`
allow the option mustchangepassword to be set via admin_cmd_edit_user 2010-10-18 15:09:38 +02:00			`if ($data['mustchangepassword'] && $data['changepassword'])`
			`{`
			`$data['account_lastpwd_change']=0;`
			`}`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if (!$data['account_primary_group'] && $this->account)`
			`{`
			`$data['account_primary_group'] = null; // dont change`
			`}`
			`else`
			`{`
			`if (!$data['account_primary_group'] && admin_cmd::$accounts->exists('Default') == 2)`
			`{`
			`$data['account_primary_group'] = 'Default';`
			`}`
			`$data['account_primary_group'] = admin_cmd::parse_account($data['account_primary_group'],false);`
			`}`
			`if (!$data['account_groups'] && $this->account)`
			`{`
			`$data['account_groups'] = null; // dont change`
			`}`
			`else`
			`{`
			`if (!$data['account_groups'] && admin_cmd::$accounts->exists('Default') == 2)`
			`{`
			`$data['account_groups'] = array('Default');`
			`}`
			`$data['account_groups'] = admin_cmd::parse_accounts($data['account_groups'],false);`
			`}`
			`if ($check_only) return true;`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if ($this->account)`
			`{`
invalidate account, before reading it, to code with changed to DB or LDAP outside EGw 2013-04-23 15:47:20 +02:00			`// invalidate account, before reading it, to code with changed to DB or LDAP outside EGw`
			`accounts::cache_invalidate($data['account_id']);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if (!($old = admin_cmd::$accounts->read($data['account_id'])))`
			`{`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_wrong_userinput(lang("Unknown account: %1 !!!",$this->account),15);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
			`// as the current account class always sets all values, we have to add the not specified ones`
			`foreach($data as $name => &$value)`
			`{`
			`if (is_null($value)) $value = $old[$name];`
			`}`
			`}`
* Admin: accounts could not be deactivated 2014-06-04 22:02:01 +02:00			`// hook allowing apps to intercept adding/editing accounts before saving them`
			`$GLOBALS['egw']->hooks->process($data+array(`
			`'location' => $this->account ? 'pre_editaccount' : 'pre_addaccount',`
			`),False,True); // called for every app now, not only enabled ones)`

next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if (!($data['account_id'] = admin_cmd::$accounts->save($data)))`
			`{`
			`//_debug_array($data);`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`throw new egw_exception_db(lang("Error saving account!"),11);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`
add/edit accounts via extra tab in addressbook edit dialog 2014-03-18 16:10:57 +01:00			`// make new account_id available to caller`
added several checks for account editing in addressbook: doublicate account name, passwords match, set email for new accounts according to policy 2014-03-28 17:56:35 +01:00			`$update = (boolean)$this->account;`
add/edit accounts via extra tab in addressbook edit dialog 2014-03-18 16:10:57 +01:00			`if (!$this->account) $this->account = $data['account_id'];`

next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`if ($data['account_groups'])`
			`{`
			`admin_cmd::$accounts->set_memberships($data['account_groups'],$data['account_id']);`
			`}`
			`if (!is_null($data['anonymous']))`
			`{`
			`admin_cmd::_instanciate_acl();`
			`if ($data['anonymous'])`
			`{`
			`admin_cmd::$acl->add_repository('phpgwapi','anonymous',$data['account_id'],1);`
			`}`
			`else`
			`{`
			`admin_cmd::$acl->delete_repository('phpgwapi','anonymous',$data['account_id']);`
			`}`
			`}`
			`if (!is_null($data['changepassword']))`
			`{`
			`if (!$data['changepassword'])`
			`{`
			`admin_cmd::$acl->add_repository('preferences','nopasswordchange',$data['account_id'],1);`
			`}`
			`else`
			`{`
			`admin_cmd::$acl->delete_repository('preferences','nopasswordchange',$data['account_id']);`
			`}`
			`}`
* Admin/ImportExport: fixed import of already hashed passwords 2012-03-29 20:33:33 +02:00			`// if we have a password and it's not a hash, and auth_type != account_repository`
			`if (!is_null($this->password) &&`
			`!preg_match('/^\\{[a-z5]{3,5}\\}.+/i',$this->password) &&`
			`!preg_match('/^[0-9a-f]{32}$/',$this->password) && // md5 hash`
			`admin_cmd::$accounts->config['auth_type'] != admin_cmd::$accounts->config['account_repository'])`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`{`
			`admin_cmd_change_pw::exec(); // calling the exec method of the admin_cmd_change_pw`
			`}`
			`$data['account_passwd'] = $this->password;`
			`$GLOBALS['hook_values'] =& $data;`
			`$GLOBALS['egw']->hooks->process($GLOBALS['hook_values']+array(`
added several checks for account editing in addressbook: doublicate account name, passwords match, set email for new accounts according to policy 2014-03-28 17:56:35 +01:00			`'location' => $update && $this->run_addaccount_hook !== true ? 'editaccount' : 'addaccount'`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`),False,True); // called for every app now, not only enabled ones)`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00
added several checks for account editing in addressbook: doublicate account name, passwords match, set email for new accounts according to policy 2014-03-28 17:56:35 +01:00			`return lang("Account %1 %2", $data['account_lid'] ? $data['account_lid'] : accounts::id2name($this->account),`
			`$update ? lang('updated') : lang("created with id #%1", $this->account));`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`}`

			`/**`
			`* Return a title / string representation for a given command, eg. to display it`
			`*`
			`* @return string`
			`*/`
			`function __tostring()`
			`{`
			`return lang('%1 user %2',$this->account ? lang('Edit') : lang('Add'),`
			`admin_cmd::display_account($this->account ? $this->account : $this->set['account_lid']));`
			`}`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`/**`
			`* parse the expired string and return the expired date as timestamp`
			`*`
			`* @param string $str date, 'never', 'already' or '' (=dont change, or default of never of new accounts)`
			`* @param boolean $exists`
			`* @return int timestamp, 0 for already, -1 for never or null for dont change`
added draft of an exception class for eGW, plus a global exception handler and replaced the fatal errors in the db-class plus the application rights check in the egw object with exceptions, modified the exceptions in admin_cmd* to use egw_excpetion*, instead just Exception 2007-12-06 09:00:41 +01:00			`* @throws egw_exception_wrong_userinput(lang('Invalid formated date "%1"!',$datein),6);`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`*/`
			`private function _parse_expired($str,$existing)`
			`{`
			`switch($str)`
			`{`
			`case '':`
new setup config denying (default) or allowing user names identical to system users (ldap only) 2010-03-16 17:33:28 +01:00			`if ($existing) return null;`
next step: all admin-cli commands are implemented now in the new structure, exist codes need to be reworked 2007-11-27 04:20:28 +01:00			`// fall through --> default for new accounts is never`
			`case 'never':`
			`return -1;`
			`case 'already':`
			`return 0;`
			`}`
			`return admin_cmd::parse_date($str);`
			`}`
			`}`