d3/d39/common-perms_8php_source.html

 <?php
 /***********************************************************
  Copyright (C) 2011-2013 Hewlett-Packard Development Company, L.P.

  This library is free software; you can redistribute it and/or
  modify it under the terms of the GNU Lesser General Public
  License version 2.1 as published by the Free Software Foundation.

  This library is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with this library; if not, write to the Free Software Foundation, Inc.0
  51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
  ***********************************************************/
 use Fossology\Lib\Auth\Auth;

 function GetUploadsFromFolder($folder_pk)
 {
   $uploads = array();
   if (empty($folder_pk)) {
     return $uploads;
   }
   GetUploadsFromFolder_recurse($folder_pk, $uploads);
   return $uploads;
 }  /* GetUploadsFromFolder */

 function GetUploadsFromFolder_recurse($folder_pk, &$uploads)
 {
   global $PG_CONN;

   $sql = "select * from foldercontents where parent_fk=$folder_pk";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   while ($row = pg_fetch_assoc($result)) {
     switch ($row["foldercontents_mode"]) {
       case 1:  // Child is folder
         GetUploadsFromFolder_recurse($row["child_id"], $uploads);
         break;
       case 2:  // Child is upload
         $uploads[] = $row["child_id"];
         break;
       default:
         // Other modes not used at this time
     }
   }
   pg_free_result($result);
 }  /* GetUploadsFromFolder_recurse */


 function AddUserToGroupArray($GroupRow, &$GroupArray)
 {
   /* loop throught $GroupArray to see if the user is already present */
   $found = false;
   foreach ($GroupArray as &$Grec) {
     if ($Grec['user_pk'] == $GroupRow['user_fk']) {
       /* user already exists in $GroupArray, so make sure they have the highest
        * permission granted to them.
        */
       if ($Grec['group_perm'] < $GroupRow['group_perm']) {
         $Grec['group_perm'] = $GroupRow['group_perm'];
       }
       $found = true;
       break;
     }
   }

   if (! $found) {
     $NewGroup = array();
     $NewGroup['user_pk'] = $GroupRow['user_fk'];
     $NewGroup['group_pk'] = $GroupRow['group_pk'];
     $NewGroup['group_name'] = $GroupRow['group_name'];
     $NewGroup['group_perm'] = $GroupRow['group_perm'];
     $GroupArray[] = $NewGroup;
   }
 }

 function GetGroupUsers($user_pk, $group_pk, &$GroupArray)
 {
   global $PG_CONN;
   $GroupArray = array();

   $user_pk = GetArrayVal("UserId", $_SESSION);
   if (empty($user_pk)) {
     return $GroupArray;
   }

   /****** For this group, get its users ******/
   if (empty($user_pk)) {
     $UserCondition = "";
   } else {
     $UserCondition = " and user_fk=$user_pk ";
   }

   $sql = "select group_pk, group_name, group_perm, user_fk from group_user_member, groups where group_pk=$group_pk and group_pk=group_fk $UserCondition";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   while ($row = pg_fetch_assoc($result)) {
     /* Add the user(s) to $GroupArray */
     AddUserToGroupArray($row, $GroupArray);
   }
 }

 function GetUsersGroups($user_pk='')
 {
   global $PG_CONN;

   $GroupArray = array();

   if (empty($user_pk)) {
     $user_pk = GetArrayVal("UserId", $_SESSION);
   }
   if (empty($user_pk)) {
     return $GroupArray; /* user has no groups */
   }
   /* find all groups with this user */
   $sql = "select group_fk as group_pk from group_user_member where user_fk=$user_pk";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   while ($row = pg_fetch_assoc($result)) {
     /* Now find all the groups that contain this group */
     GetGroupUsers($user_pk, $row['group_pk'], $GroupArray);
   }
   pg_free_result($result);
   return $GroupArray;
 }

 function GetGroupArray($user_pk)
 {
   global $PG_CONN;

   $GroupArray = array();

   if ($_SESSION[Auth::USER_LEVEL] == PLUGIN_DB_ADMIN) {
     $sql = "select group_pk, group_name from groups";
   } else {
     $sql = "select group_pk, group_name from groups, group_user_member
                   where group_pk=group_fk and user_fk='$user_pk' and group_perm=1";
   }
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   if (pg_num_rows($result) > 0) {
     while ($row = pg_fetch_assoc($result)) {
       $GroupArray[$row['group_pk']] = $row['group_name'];
     }
   }
   pg_free_result($result);

   natcasesort($GroupArray);
   return $GroupArray;
 }


 function DeleteGroup($group_pk)
 {
   global $PG_CONN;

   $user_pk = Auth::getUserId();

   /* Make sure groupname looks valid */
   if (empty($group_pk)) {
     $text = _("Error: Group name must be specified.");
     return ($text);
   }

   /* See if the group already exists */
   $sql = "SELECT group_pk FROM groups WHERE group_pk = '$group_pk'";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   if (pg_num_rows($result) < 1) {
     pg_free_result($result);
     $text = _("Group does not exist.  Not deleted.");
     return ($text);
   }
   pg_free_result($result);

   /* Make sure the user has permission to delete this group
    * Look through all the group users (table group_user_member)
    * and make sure the user has admin access.
    */
   if ($_SESSION[Auth::USER_LEVEL] != PLUGIN_DB_ADMIN) {
     $sql = "SELECT *  FROM group_user_member WHERE group_fk = '$group_pk' and user_fk='$user_pk' and group_perm=1";
     $result = pg_query($PG_CONN, $sql);
     DBCheckResult($result, $sql, __FILE__, __LINE__);
     if (pg_num_rows($result) < 1) {
       pg_free_result($result);
       $text = _("Permission Denied.");
       return ($text);
     }
     pg_free_result($result);
   }

   /* Start transaction */
   $sql = "begin";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   /* Delete group records from perm_upload */
   $sql = "delete from perm_upload where group_fk='$group_pk'";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   /* Delete group records from group_user_member */
   $sql = "delete from group_user_member where group_fk='$group_pk'";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   /* Update new_upload_group_fk and new_upload_perm in users table */
   $sql = "update users set new_upload_group_fk=NULL, new_upload_perm=NULL where new_upload_group_fk='$group_pk'";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   /* Delete group records from groups table */
   $sql = "delete from groups where group_pk='$group_pk'";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   /* End transaction */
   $sql = "commit";
   $result = pg_query($PG_CONN, $sql);
   DBCheckResult($result, $sql, __FILE__, __LINE__);
   pg_free_result($result);

   return (null);
 }
AddUserToGroupArray
AddUserToGroupArray($GroupRow, &$GroupArray)
Check if User is already in the $GroupArray.
Definition: common-perms.php:86

PLUGIN_DB_ADMIN
#define PLUGIN_DB_ADMIN
Plugin requires admin level permission on DB.
Definition: libfossology.h:51

GetUsersGroups
GetUsersGroups($user_pk='')
Find all the groups a user belongs to.
Definition: common-perms.php:160

GetGroupArray
GetGroupArray($user_pk)
Get array of groups that this user has admin access to  use UserDao::getAdminGroupMap() ...
Definition: common-perms.php:192

GetGroupUsers
GetGroupUsers($user_pk, $group_pk, &$GroupArray)
Get all the users users of this group.
Definition: common-perms.php:124

GetUploadsFromFolder_recurse
GetUploadsFromFolder_recurse($folder_pk, &$uploads)
Definition: common-perms.php:53

Auth

GetUploadsFromFolder
GetUploadsFromFolder($folder_pk)
Definition: common-perms.php:32

$PG_CONN
foreach($Options as $Option=> $OptVal) if(0==$reference_flag &&0==$nomos_flag) $PG_CONN
Definition: list_license.php:62

DBCheckResult
DBCheckResult($result, $sql, $filenm, $lineno)
Check the postgres result for unexpected errors. If found, treat them as fatal.
Definition: common-db.php:198

GetArrayVal
GetArrayVal($Key, $Arr)
Get the value from a array(map)
Definition: common-ui.php:143

DeleteGroup
DeleteGroup($group_pk)
Delete a group.
Definition: common-perms.php:223