# $Header: /raid/cvsroot/rt/lib/rt/database/admin.pm,v 1.17 1999/07/07 19:37:10 jesse Exp $ # (c) 1996-1999 Jesse Vincent # This software is redistributable under the terms of the GNU GPL # package rt; require rt::database; sub delete_user { my ($in_user_id,$in_current_user) = @_; my ($query_string,$update_clause, $user_id); if (!(&is_a_user($in_user_id))){ return(0,"User $in_user_id does not exist!"); } else { $user_id=$rt::dbh->quote($in_user_id); if ($users{$in_current_user}{admin_rt}) { if ($in_user_id ne $in_current_user) { $query_string = "DELETE FROM users WHERE user_id = $user_id"; $dbh->Query($query_string) or return (0, "[delete_user] Query had some problem: $Mysql::db_errstr\n$query_string\n"); $query_string = "DELETE FROM queue_acl WHERE user_id = $user_id"; $dbh->Query($query_string) or return (0, "[delete_user] Query had some problem: $Mysql::db_errstr\n$query_string\n"); delete $rt::users{$in_user_id}; while (($queue_id,$value)= each %rt::queues) { delete $rt::queues{$queue_id}{acls}{$in_user_id}; } return (1, "User $user_id deleted."); } else { return(0,"You may not delete yourself. (Do you know why?)"); } } else { return(0, "You do not have the privileges to delete user $in_user_id."); } } } sub delete_queue_area { # TODO: this function needs to move all requests into some other area! my ($in_queue_id,$in_area, $in_current_user) = @_; my ($query_string,$update_clause); if (!(&is_an_area($in_queue_id, $in_area))){ return(0,"Queue $in_queue_id doesn't have an area \"$in_area\""); } else { $queue_id=$rt::dbh->quote($in_queue_id); $area=$rt::dbh->quote($in_area); if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) { $query_string = "DELETE FROM queue_areas WHERE queue_id = $queue_id AND area = $area"; $dbh->Query($query_string) or return (0, "[delete_area] Query had some problem: $Mysql::db_errstr\n$query_string\n"); delete $rt::queues{$in_queue_id}{areas}{$in_area}; return (1, "Area $in_area in queue $in_queue_id deleted."); } else { return(0, "You do not have the privileges to delete areas in queue $in_queue_id."); } } } sub delete_queue { # this function needs to move all requests into some other queue! my ($in_queue_id,$in_current_user) = @_; my ($query_string,$update_clause); if (!(&is_a_queue($in_queue_id))){ return(0,"Queue $in_queue_id does not exist!"); } else { $queue_id=$rt::dbh->quote($in_queue_id); if (($users{$in_current_user}{'admin_rt'}) or ($queues{"$in_queue_id"}{'acls'}{"$in_current_user"}{'admin'})) { $query_string = "DELETE FROM queues WHERE queue_id = $queue_id"; $dbh->Query($query_string) or return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"); $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id"; $dbh->Query($query_string) or return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"); $query_string = "DELETE FROM queue_areas WHERE queue_id = $queue_id"; $dbh->Query($query_string) or return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"); delete $rt::queues{"$in_queue_id"}; return (1, "Queue $in_queue_id deleted."); } else { return(0, "You do not have the privileges to delete queue $in_queue_id."); } } } sub add_modify_queue_conf { my ( $in_queue_id, $in_mail_alias, $in_m_owner_trans, $in_m_members_trans, $in_m_user_trans, $in_m_user_create, $in_m_members_correspond, $in_m_members_comment, $in_allow_user_create, $in_default_prio, $in_default_final_prio,$in_current_user) = @_; my ($query_string,$mail_alias,$update_clause,$queue_id); if (! $in_queue_id) { return(0); } $queue_id=$rt::dbh->quote($in_queue_id); if ($in_mail_alias) { $mail_alias=$rt::dbh->quote($in_mail_alias); } else { $mail_alias="''"; } if (!&is_a_queue($in_queue_id)){ if ($users{$in_current_user}{admin_rt}) { $query_string="INSERT INTO queues (queue_id, mail_alias, m_owner_trans, m_members_trans, m_user_trans, m_user_create, m_members_corresp,m_members_comment, allow_user_create, default_prio, default_final_prio) VALUES ($queue_id, $mail_alias, $in_m_owner_trans, $in_m_members_trans, $in_m_user_trans, $in_m_user_create, $in_m_members_correspond, $in_m_members_comment, $in_allow_user_create, $in_default_prio, $in_default_final_prio)"; $dbh->Query($query_string) or return (0, "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string is query\n"); $< = $>; #set real to effective uid system("cp", "-rp", "$rt_dir/lib/generic_templates","$template_dir/queues/$in_queue_id"); &rt::load_queue_conf(); return(1,"Queue $in_queue_id sucessfully created."); } else { return(0,"You do not have permission to create RT queues"); } } else { if ($in_mail_alias ne $queues{$in_queue_id}{mail_alias}) {$update_clause = "mail_alias = $mail_alias, ";} if ($in_m_owner_trans ne $queues{$in_queue_id}{m_owner_trans}) {$update_clause .= "m_owner_trans = $in_m_owner_trans, ";} if ($in_m_members_trans ne $queues{$in_queue_id}{m_members_trans}) {$update_clause .= "m_members_trans = $in_m_members_trans, ";} if ($in_m_user_trans ne $queues{$in_queue_id}{m_user_trans}) {$update_clause .= "m_user_trans = $in_m_user_trans, ";} if ($in_m_user_create ne $queues{$in_queue_id}{m_user_create}) {$update_clause .= "m_user_create = $in_m_user_create, ";} if ($in_m_members_correspond ne $queues{$in_queue_id}{m_members_correspond}) {$update_clause .= "m_members_corresp = $in_m_members_correspond, ";} if ($in_m_members_comment ne $queues{$in_queue_id}{m_members_comment}) {$update_clause .= "m_members_comment = $in_m_members_comment, ";} if ($in_allow_user_create ne $queues{$in_queue_id}{allow_user_create}) {$update_clause .= "allow_user_create = $in_allow_user_create, ";} if ($in_default_prio ne $queues{$in_queue_id}{default_prio}) {$update_clause .= "default_prio = $in_default_prio, ";} if ($in_default_final_prio ne $queues{$in_queue_id}{default_final_prio}) {$update_clause .= "default_final_prio = $in_default_final_prio, ";} if ($update_clause) { $update_clause =~ s/,(\s),/, /g; if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) { $query_string = "UPDATE queues SET $update_clause WHERE queue_id = $queue_id"; $query_string =~ s/,(\s*)WHERE/ WHERE/g; $dbh->Query($query_string) or warn "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"; delete $rt::queues{$in_queue_id}; &rt::load_queue_conf(); &rt::load_queue_acls(); &rt::load_queue_areas(); return (1, "Queue $in_queue_id updated."); } else { return(0, "You do not have the privileges to modify queue $in_queue_id."); } } } } sub add_queue_area { my ( $in_queue_id,$in_area,$in_current_user) = @_; my ($query_string,$update_clause, $queue_id, $area); if ((&is_an_area($in_queue_id, $in_area))){ return(0,"Queue $in_queue_id already has an area \"$in_area\""); } if (!(&is_a_queue($in_queue_id))){ return(0,"That queue does not exist"); } $queue_id = $rt::dbh->quote($in_queue_id); $area = $rt::dbh->quote($in_area); if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) { $query_string="INSERT INTO queue_areas (queue_id, area) VALUES ($queue_id, $area)"; $dbh->Query($query_string) or return (0, "[add_modify_queue_areas] Query had some problem: $Mysql::db_errstr\n"); $rt::queues{$in_queue_id}{areas}{$in_area}=1; return(1,"Area $area has been added to queue $in_queue_id"); } else { return(0, "You do not have the privileges to add areas to queue $in_queue_id."); } } sub add_modify_queue_acl { my ( $in_queue_id,$in_user_id,$in_display,$in_manipulate,$in_admin,$in_current_user) = @_; my ($query_string,$update_clause); if (!(&is_a_queue($in_queue_id))){ return(0,"That queue does not exist"); } if (!(&is_a_user($in_user_id))){ return(0,"That user does not exist"); } $queue_id = $rt::dbh->quote($in_queue_id); $user_id = $rt::dbh->quote($in_user_id); if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) { # don't lock yourself out if (($in_user_id eq $in_current_user) && (! $in_admin) && ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) { $in_admin = 1; } #if the user can't display this queue if (!($queues{"$in_queue_id"}{'acls'}{"$in_user_id"}{'display'})){ #clear the acl $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id AND user_id = $user_id"; $dbh->Query($query_string) or return (0,"[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"); # if we're not granting anything if( ! (($in_admin == 0) and ($in_display == 0) and ($in_manipulate == 0)) ) { $query_string="INSERT INTO queue_acl (queue_id, user_id, display, manipulate, admin) VALUES ($queue_id, $user_id, $in_display, $in_manipulate, $in_admin)"; $dbh->Query($query_string) or return (0, "[add_modify_queue_acl] Query had some problem: $Mysql::db_errstr\n"); } $queues{$in_queue_id}{acls}{$in_user_id}{display}=$in_display; $queues{$in_queue_id}{acls}{$in_user_id}{manipulate}=$in_manipulate; $queues{$in_queue_id}{acls}{$in_user_id}{admin}=$in_admin; return(1,"User $user_id has been granted permissions to queue $in_queue_id"); } elsif (($in_admin == 0) and ($in_display == 0) and ($in_manipulate == 0)) { $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id AND user_id = $user_id"; $dbh->Query($query_string) or return (0,"[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"); delete $rt::queues{$in_queue_id}{acls}{$in_user_id}; return (1, "User $in_user_id\'s credentials for queue $queue_id have been revoked."); } else { if ($in_display ne $queues{$in_queue_id}{acls}{$in_user_id}{display}) { $update_clause = "display = $in_display, "; $queues{$in_queue_id}{acls}{$in_user_id}{display}=$in_display; } if ($in_manipulate ne $queues{$in_queue_id}{acls}{$in_user_id}{manipulate}) { $update_clause .= "manipulate = $in_manipulate, "; $queues{$in_queue_id}{acls}{$in_user_id}{manipulate}=$in_manipulate; } if ($in_admin ne $queues{$in_queue_id}{acls}{$in_user_id}{admin}) { $update_clause .= "admin = $in_admin, "; $queues{$in_queue_id}{acls}{$in_user_id}{admin}=$in_admin; } if ($update_clause) { $update_clause =~ s/,(\s),/, /g; $query_string = "UPDATE queue_acl SET $update_clause WHERE queue_id = $queue_id AND user_id = $user_id"; $query_string =~ s/,(\s*)WHERE/ WHERE/g; # print "UPDATING WITH QUERY $query_string\n"; $dbh->Query($query_string) or warn "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n"; delete $rt::queues{$in_queue_id}{acls}{$in_user_id}; &rt::load_queue_acls(); return (1, "User $in_user_id\'s ACLs for queue $queue_id updated."); } } } else { return(0, "You do not have the privileges to modify users' ACLs for queue $in_queue_id."); } } sub add_modify_user_info { my $in_user_id = shift; my $in_real_name = shift; my $in_password = shift; my $in_email = shift; my $in_phone = shift; my $in_office = shift; my $in_comments = shift; my $in_admin_rt = shift; my $in_current_user = shift; my ($query_string,$update_clause, $new_user_id, $new_password, $new_email, $new_phone, $new_office, $new_comments); my $passwd_err = "User create/modify failed: Use longer password ($user_passwd_min chars minimum)"; # print STDERR "in add_mod_user_info\n"; if ($in_user_id) { $new_user_id = $rt::dbh->quote($in_user_id); } if ($in_real_name) { $new_real_name = $rt::dbh->quote($in_real_name); } else { $new_real_name="''"; } $in_password =~ s/\s//g; if ($in_password) { $in_password =~ s/\s//g; $new_password =$rt::dbh->quote($in_password); } else { $new_password="''"; } if ($in_email) { $new_email = $rt::dbh->quote($in_email); } else { $new_email="''"; } if ($in_phone) { $new_phone = $rt::dbh->quote($in_phone); } else { $new_phone="''"; } if ($in_office) { $new_office = $rt::dbh->quote ($in_office); } else { $new_office="''"; } if ($in_comments) { $new_comments = $rt::dbh->quote ($in_comments); } else { $new_comments="''"; } if (!(&is_a_user($in_user_id))){ # make sure one didn't specify too short password if ($users{$in_current_user}{admin_rt}){ #if the password length is too short and we're creating a user return (0,$passwd_err) if length($in_password) < $user_passwd_min; $query_string="INSERT INTO users (user_id, real_name, password, email, phone, office, comments, admin_rt) VALUES ($new_user_id, $new_real_name, $new_password, $new_email, $new_phone, $new_office, $new_comments, $in_admin_rt)"; $dbh->Query($query_string) or warn "[add_modify_user_info] Query had some problem: $Mysql::db_errstr\n"; &rt::load_user_info(); return(1,"User $in_user_id created"); } else { return (0, "You do not have privileges to add users to RT"); } } elsif (($in_current_user eq $in_user_id) and ($in_admin_rt ne $users{$in_user_id}{admin_rt})){ return(0,"A user may not modify his or her own admin status"); } else { if ($users{$in_current_user}{admin_rt} or ($in_current_user eq $in_user_id)) { if ($in_real_name ne $users{$in_user_id}{'real_name'}) {$update_clause .= "real_name = $new_real_name, ";} if ($in_email ne $users{$in_user_id}{'email'}) {$update_clause .= "email = $new_email, ";} if ($in_user_id ne $users{$in_user_id}{'user_id'}) {$update_clause .= "user_id = $new_user_id, ";} if ($in_phone ne $users{$in_user_id}{'phone'}) {$update_clause .= "phone = $new_phone, ";} if ($in_office ne $users{$in_user_id}{'office'}) {$update_clause .= "office = $new_office, ";} if ($in_comments ne $users{$in_user_id}{'comments'}) {$update_clause .= "comments = $new_comments, ";} if ($in_admin_rt ne $users{$in_user_id}{'admin_rt'}) {$update_clause .= "admin_rt = $in_admin_rt, ";} if (($in_password ne $users{$in_user_id}{'password'}) && ($in_password ne '')) { #if the password is too short, return, return (0,$passwd_err) if length($in_password) < $user_passwd_min; $update_clause .= "password = $new_password "; } if ($update_clause) { $query_string = "UPDATE users SET $update_clause WHERE user_id = $new_user_id"; $query_string =~ s/,(\s*)WHERE/ WHERE/g; $dbh->Query($query_string) or warn "[add_modify_user] Query had some problem: $Mysql::db_errstr\n$query_string"; &rt::load_user_info(); return(1, "User record updated"); } return(0,"No updates needed to be performed"); } else { return(0,"You do not have privileges to modify this user's vital info"); } } } 1;