egroupware_official/admin/inc/class.admin_config.inc.php
Ralf Becker 3128fa4761 * Admin: show "check ip address of all sessions": No (it was stored but always shown as Yes)
Caused by "" being deleted when stored and not set === null value picked first option Yes, now we send "" for a not set value to client-side
2016-10-04 14:30:51 +02:00

179 lines
5.1 KiB
PHP

<?php
/**
* EGgroupware admin - New et2 site configuration
*
* @link http://www.egroupware.org
* @author Ralf Becker <rb@stylite.de>
* @package admin
* @copyright (c) 2016 by Ralf Becker <rb@stylite.de>
* @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License
* @version $Id$
*/
use EGroupware\Api;
/**
* New site configuration for all apps using eTemplate2 $app/templates/default/config.xet
*/
class admin_config
{
var $public_functions = array('index' => True);
function index($_content=null)
{
if (is_array($_content))
{
$_appname = $_content['appname'];
}
elseif (!empty($_GET['appname']) && isset($GLOBALS['egw_info']['apps'][$_GET['appname']]))
{
$_appname = $_GET['appname'];
}
else
{
throw new Api\Exception\WrongParameter("Wrong or missing appname parameter!");
}
if ($GLOBALS['egw']->acl->check('site_config_acce',1,'admin'))
{
Api\Framework::redirect_link('/index.php');
}
// load the translations of the app we show too, so they dont need to be in admin!
if ($_appname != 'admin')
{
Api\Translation::add_app($_appname);
}
switch($_appname)
{
case 'admin':
case 'addressbook':
case 'calendar':
case 'preferences':
$appname = $_appname;
$config_appname = 'phpgwapi';
break;
case 'phpgwapi':
case '':
/* This keeps the admin from getting into what is a setup-only config */
Api\Framework::redirect_link('/admin/index.php');
break;
default:
$appname = $_appname;
$config_appname = $appname;
break;
}
$c = new Api\Config($config_appname);
$c->read_repository();
if ($_content['cancel'] || ($_content['save'] || $_content['apply']) && $GLOBALS['egw']->acl->check('site_config_acce',2,'admin'))
{
Api\Framework::redirect_link('/admin/index.php?ajax=true');
}
if ($_content['save'] || $_content['apply'])
{
// support old validation hooks
$_POST = array('newsettings' => &$_content['newsettings']);
/* Load hook file with functions to validate each config (one/none/all) */
Api\Hooks::single(array(
'location' => 'config_validate',
)+$_content['newsettings'], $appname);
foreach($_content['newsettings'] as $key => $config)
{
if ($config)
{
$c->config_data[$key] = $config;
if (in_array($key, (array)$GLOBALS['egw_info']['server']['found_validation_hook'], true) && function_exists($key))
{
call_user_func($key, $config, $c);
if($GLOBALS['config_error'])
{
$errors .= lang($GLOBALS['config_error']) . "\n";
$GLOBALS['config_error'] = False;
}
}
}
// don't erase passwords, since we also don't print them
elseif(strpos($key,'passwd') === false && strpos($key,'password') === false && strpos($key,'root_pw') === false)
{
unset($c->config_data[$key]);
}
}
if(in_array('final_validation', (array)$GLOBALS['egw_info']['server']['found_validation_hook']) &&
function_exists('final_validation'))
{
final_validation($_content['newsettings']);
if($GLOBALS['config_error'])
{
$errors .= lang($GLOBALS['config_error']) . "\n";
$GLOBALS['config_error'] = False;
}
unset($GLOBALS['egw_info']['server']['found_validation_hook']);
}
$c->save_repository();
if(!$errors && !$_content['apply'])
{
Api\Framework::message(lang('Configuration saved.'), 'success');
Api\Framework::redirect_link('/index.php', array(
'menuaction' => 'admin.admin_ui.index',
'ajax' => 'true'
), 'admin');
}
}
if($errors)
{
Api\Framework::message(lang('Error') . ': ' . $errors, 'error');
unset($errors);
unset($GLOBALS['config_error']);
}
elseif ($_content['apply'])
{
Api\Framework::message(lang('Configuration saved.'), 'success');
}
$sel_options = $readonlys = array();
$config = $c->read_repository();
// call "config" hook, allowing apps to overwrite config, eg. set default values,
// or return options in "sel_options" keys
$config['location'] = 'config';
$ret = Api\Hooks::single($config, $appname);
if (is_array($ret))
{
if (isset($ret['sel_options'])) $sel_options = $ret['sel_options'];
$config = array_merge($config, $ret);
}
$tmpl = new Api\Etemplate($appname.'.config');
$path = (parse_url($tmpl->rel_path, PHP_URL_SCHEME) !== 'vfs' ? EGW_SERVER_ROOT : '').$tmpl->rel_path;
$content = array(
'template' => $appname.'.config',
'newsettings' => array(),
);
// for security reasons we do not send all config to client-side, but only ones mentioned in templates
$matches = null;
preg_match_all('/id="newsettings\[([^]]+)\]"/', file_get_contents($path), $matches, PREG_PATTERN_ORDER);
foreach($matches[1] as $name)
{
$content['newsettings'][$name] = isset($config[$name]) ? $config[$name] : '';
}
// make everything readonly and remove save/apply button, if user has not rights to store config
if ($GLOBALS['egw']->acl->check('site_config_acce',2,'admin'))
{
$readonlys[__ALL__] = true;
$readonlys['cancel'] = false;
}
$tmpl->read('admin.site-config');
$tmpl->exec('admin.admin_config.index', $content, $sel_options, $readonlys, array('appname' => $appname));
}
}