File: admin.pm

package info (click to toggle)
webrt 1.0.1-4
links: PTS
area: contrib
in suites: potato
size: 652 kB
ctags: 324
sloc: perl: 5,541; makefile: 265; ansic: 28
file content (418 lines) | stat: -rwxr-xr-x 15,729 bytes
parent folder | download | duplicates (2)
# $Header: /raid/cvsroot/rt/lib/rt/database/admin.pm,v 1.17 1999/07/07 19:37:10 jesse Exp $
# (c) 1996-1999 Jesse Vincent <jesse@fsck.com>
# This software is redistributable under the terms of the GNU GPL
#


package rt;
require rt::database;
 
 
 
sub delete_user {
  
  my  ($in_user_id,$in_current_user) = @_;
  my ($query_string,$update_clause, $user_id);
  
  if (!(&is_a_user($in_user_id))){
    return(0,"User $in_user_id does not exist!");
  }
  else {
    $user_id=$rt::dbh->quote($in_user_id);
    
    if ($users{$in_current_user}{admin_rt}) {
      if ($in_user_id ne $in_current_user) {
	$query_string = "DELETE FROM users WHERE user_id = $user_id";
	$dbh->Query($query_string) or 
	  return (0, "[delete_user] Query had some problem: $Mysql::db_errstr\n$query_string\n");
	$query_string = "DELETE FROM queue_acl WHERE user_id = $user_id";
	$dbh->Query($query_string) or 
	  return (0, "[delete_user] Query had some problem: $Mysql::db_errstr\n$query_string\n");
	
	delete $rt::users{$in_user_id};
	while (($queue_id,$value)= each %rt::queues) {
	  delete $rt::queues{$queue_id}{acls}{$in_user_id};
	}
	return (1, "User $user_id deleted.");
	
      }
      else {
	return(0,"You may not delete yourself. (Do you know why?)");
      }
    }
    else {
       return(0, "You do not have the privileges to delete user $in_user_id.");
     }
  }
}

sub delete_queue_area {
  # TODO: this function needs to move all requests into some other area!
  my  ($in_queue_id,$in_area, $in_current_user) = @_;
  my ($query_string,$update_clause);
  
  
  if (!(&is_an_area($in_queue_id, $in_area))){
    return(0,"Queue $in_queue_id doesn't have an area \"$in_area\"");
  }
  else {
    
    $queue_id=$rt::dbh->quote($in_queue_id);
    $area=$rt::dbh->quote($in_area);
    if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) {
      $query_string = "DELETE FROM queue_areas WHERE queue_id = $queue_id AND area = $area";
      $dbh->Query($query_string) or
	return (0, "[delete_area] Query had some problem: $Mysql::db_errstr\n$query_string\n");
      
      delete $rt::queues{$in_queue_id}{areas}{$in_area};
      return (1, "Area $in_area in queue $in_queue_id deleted.");
    }
    else {
      return(0, "You do not have the privileges to delete areas in queue $in_queue_id.");
    }
  }
}          


sub delete_queue {
  # this function needs to move all requests into some other queue!
  my  ($in_queue_id,$in_current_user) = @_;
  my ($query_string,$update_clause);
  
  
  if (!(&is_a_queue($in_queue_id))){
    return(0,"Queue $in_queue_id does not exist!");
  }
  else {
    
    $queue_id=$rt::dbh->quote($in_queue_id);
    if (($users{$in_current_user}{'admin_rt'}) or ($queues{"$in_queue_id"}{'acls'}{"$in_current_user"}{'admin'})) {
      $query_string = "DELETE FROM queues WHERE queue_id = $queue_id";
      $dbh->Query($query_string) or 
	return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n");
      $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id";
      $dbh->Query($query_string) or 
	return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n");
      $query_string = "DELETE FROM queue_areas WHERE queue_id = $queue_id";
      $dbh->Query($query_string) or
	return (0, "[delete_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n");  
      delete $rt::queues{"$in_queue_id"};
      return (1, "Queue $in_queue_id deleted.");
    }
    else {
      return(0, "You do not have the privileges to delete queue $in_queue_id.");
    }
  }
}
 
sub add_modify_queue_conf {
  my  ( $in_queue_id, $in_mail_alias, $in_m_owner_trans, $in_m_members_trans, $in_m_user_trans, $in_m_user_create, $in_m_members_correspond, $in_m_members_comment, $in_allow_user_create, $in_default_prio, $in_default_final_prio,$in_current_user) = @_;
  my ($query_string,$mail_alias,$update_clause,$queue_id);
  
  if (! $in_queue_id) {
    return(0);
    }
  
  $queue_id=$rt::dbh->quote($in_queue_id);
  
  
  if ($in_mail_alias) {
    $mail_alias=$rt::dbh->quote($in_mail_alias);
  }
  else {
    $mail_alias="''";
    
  }
  if (!&is_a_queue($in_queue_id)){
    
    if ($users{$in_current_user}{admin_rt}) {
      $query_string="INSERT INTO queues (queue_id, mail_alias, m_owner_trans,  m_members_trans, m_user_trans, m_user_create, m_members_corresp,m_members_comment, allow_user_create, default_prio, default_final_prio) VALUES ($queue_id, $mail_alias, $in_m_owner_trans, $in_m_members_trans, $in_m_user_trans, $in_m_user_create, $in_m_members_correspond, $in_m_members_comment, $in_allow_user_create, $in_default_prio, $in_default_final_prio)";
      $dbh->Query($query_string) or return (0, "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string is query\n");
      $< = $>;			#set real to effective uid
      system("cp", "-rp", "$rt_dir/lib/generic_templates","$template_dir/queues/$in_queue_id");
      &rt::load_queue_conf();
      return(1,"Queue $in_queue_id sucessfully created.");   
    }
    else {
      return(0,"You do not have permission to create RT queues");
    }
  }
  else {
    if ($in_mail_alias ne $queues{$in_queue_id}{mail_alias}) {$update_clause = "mail_alias = $mail_alias, ";}
    if ($in_m_owner_trans ne $queues{$in_queue_id}{m_owner_trans}) {$update_clause .= "m_owner_trans = $in_m_owner_trans, ";}
    if ($in_m_members_trans ne $queues{$in_queue_id}{m_members_trans}) {$update_clause .= "m_members_trans = $in_m_members_trans, ";}
    if ($in_m_user_trans ne $queues{$in_queue_id}{m_user_trans}) {$update_clause .= "m_user_trans = $in_m_user_trans, ";}
    if ($in_m_user_create ne $queues{$in_queue_id}{m_user_create}) {$update_clause .= "m_user_create = $in_m_user_create, ";}
    if ($in_m_members_correspond ne $queues{$in_queue_id}{m_members_correspond}) {$update_clause .= "m_members_corresp = $in_m_members_correspond, ";}
    if ($in_m_members_comment ne $queues{$in_queue_id}{m_members_comment}) {$update_clause .= "m_members_comment = $in_m_members_comment, ";}
    if ($in_allow_user_create ne $queues{$in_queue_id}{allow_user_create}) {$update_clause .= "allow_user_create = $in_allow_user_create, ";}
    if ($in_default_prio ne $queues{$in_queue_id}{default_prio}) {$update_clause .= "default_prio = $in_default_prio, ";}
    if ($in_default_final_prio ne $queues{$in_queue_id}{default_final_prio}) {$update_clause .= "default_final_prio = $in_default_final_prio, ";}
    if ($update_clause) {
      $update_clause =~ s/,(\s),/, /g;
      
      if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) {
	$query_string = "UPDATE queues SET $update_clause WHERE queue_id = $queue_id";
	
	$query_string =~ s/,(\s*)WHERE/ WHERE/g;
	$dbh->Query($query_string) or warn "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n";
	delete $rt::queues{$in_queue_id};
	&rt::load_queue_conf();
	&rt::load_queue_acls();
	&rt::load_queue_areas();
	return (1, "Queue $in_queue_id updated.");
	
      }
      else {
	return(0, "You do not have the privileges to modify queue $in_queue_id.");
      }
    }
  }
}


sub add_queue_area {
  my  ( $in_queue_id,$in_area,$in_current_user) = @_;
   my ($query_string,$update_clause, $queue_id, $area);
  
  
  if ((&is_an_area($in_queue_id, $in_area))){
    return(0,"Queue $in_queue_id already has an area \"$in_area\"");
  }
   
  if (!(&is_a_queue($in_queue_id))){
    return(0,"That queue does not exist");
  }
  
   $queue_id = $rt::dbh->quote($in_queue_id);
  $area = $rt::dbh->quote($in_area);
  
  if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) {
    $query_string="INSERT INTO queue_areas (queue_id, area) VALUES ($queue_id, $area)";
    
    $dbh->Query($query_string) or return (0, "[add_modify_queue_areas] Query had some problem: $Mysql::db_errstr\n");
    $rt::queues{$in_queue_id}{areas}{$in_area}=1;
    return(1,"Area $area has been added to queue $in_queue_id");
  }
  else {
    return(0, "You do not have the privileges to add areas to queue $in_queue_id.");
  }
}       


sub add_modify_queue_acl {
  my  ( $in_queue_id,$in_user_id,$in_display,$in_manipulate,$in_admin,$in_current_user) = @_;
  my ($query_string,$update_clause);
  
  
  if (!(&is_a_queue($in_queue_id))){
    return(0,"That queue does not exist");
  }
  if (!(&is_a_user($in_user_id))){
    return(0,"That user does not exist");
  }
  
  $queue_id = $rt::dbh->quote($in_queue_id);
  $user_id = $rt::dbh->quote($in_user_id);
  
  
  if (($users{$in_current_user}{admin_rt}) or ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) {
    # don't lock yourself out
    
    if (($in_user_id eq $in_current_user) && (! $in_admin) && ($queues{$in_queue_id}{acls}{$in_current_user}{admin})) {
      $in_admin = 1;
      
    }
    
    #if the user can't display this queue
    if (!($queues{"$in_queue_id"}{'acls'}{"$in_user_id"}{'display'})){
      
      #clear the acl
      $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id AND user_id = $user_id";
      $dbh->Query($query_string) or 
	return (0,"[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n");
      
      # if we're not granting anything
      if( ! (($in_admin == 0) and ($in_display == 0) and ($in_manipulate == 0)) ) {
	$query_string="INSERT INTO queue_acl (queue_id, user_id, display, manipulate, admin) VALUES ($queue_id, $user_id, $in_display, $in_manipulate, $in_admin)";
	$dbh->Query($query_string) or 
	  return (0, "[add_modify_queue_acl] Query had some problem: $Mysql::db_errstr\n");
	
       }
      
      $queues{$in_queue_id}{acls}{$in_user_id}{display}=$in_display;
      $queues{$in_queue_id}{acls}{$in_user_id}{manipulate}=$in_manipulate;
      $queues{$in_queue_id}{acls}{$in_user_id}{admin}=$in_admin;
      return(1,"User $user_id has been granted permissions to queue $in_queue_id");   
    }
    
    elsif (($in_admin == 0) and ($in_display == 0) and ($in_manipulate == 0)) {
      $query_string = "DELETE FROM queue_acl WHERE queue_id = $queue_id AND user_id = $user_id";
      $dbh->Query($query_string) or return (0,"[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n");
      delete $rt::queues{$in_queue_id}{acls}{$in_user_id};
      return (1, "User $in_user_id\'s credentials for queue $queue_id have been revoked.");
    }
    else {
      
      if ($in_display ne $queues{$in_queue_id}{acls}{$in_user_id}{display}) {
	$update_clause = "display = $in_display, ";
	$queues{$in_queue_id}{acls}{$in_user_id}{display}=$in_display;
      }
      if ($in_manipulate ne $queues{$in_queue_id}{acls}{$in_user_id}{manipulate}) {
	$update_clause .= "manipulate = $in_manipulate, ";
	$queues{$in_queue_id}{acls}{$in_user_id}{manipulate}=$in_manipulate;
      }
      
      if ($in_admin ne $queues{$in_queue_id}{acls}{$in_user_id}{admin}) {
	$update_clause .= "admin = $in_admin, ";
	$queues{$in_queue_id}{acls}{$in_user_id}{admin}=$in_admin;
      }
      
      if ($update_clause) {
	$update_clause =~ s/,(\s),/, /g;
	$query_string = "UPDATE queue_acl SET $update_clause WHERE queue_id = $queue_id AND user_id = $user_id";
	$query_string =~ s/,(\s*)WHERE/ WHERE/g;
	#  print "UPDATING WITH QUERY $query_string\n";	
	$dbh->Query($query_string) or warn "[add_modify_queue] Query had some problem: $Mysql::db_errstr\n$query_string\n";
	delete $rt::queues{$in_queue_id}{acls}{$in_user_id};
	&rt::load_queue_acls();
	return (1, "User $in_user_id\'s ACLs for queue $queue_id updated.");
      }
    }
  }
  
  else {
    
    
    return(0, "You do not have the privileges to modify users' ACLs for queue $in_queue_id.");
  }
 }

sub add_modify_user_info {
  my  $in_user_id = shift;
  my $in_real_name = shift;
  my $in_password = shift;
  my $in_email = shift;
  my $in_phone = shift;
  my $in_office = shift; 
  my $in_comments = shift;
  my $in_admin_rt = shift;
  my $in_current_user = shift;
  
  my ($query_string,$update_clause, $new_user_id, $new_password, $new_email, $new_phone, $new_office, $new_comments);
  
  my $passwd_err = "User create/modify failed: Use longer password ($user_passwd_min chars minimum)";
  
 

  
  #   print STDERR "in add_mod_user_info\n";
  
  if ($in_user_id) {
    $new_user_id = $rt::dbh->quote($in_user_id);
  }
  if ($in_real_name) {
    
    $new_real_name = $rt::dbh->quote($in_real_name);
  }   
  else {
    $new_real_name="''";
    
  }
  
  $in_password =~ s/\s//g;
  if ($in_password) {
    $in_password =~ s/\s//g;
    $new_password =$rt::dbh->quote($in_password);
  }   
  else {
    $new_password="''";
  }
  
    
  if ($in_email) {
     
     $new_email = $rt::dbh->quote($in_email);
   } 
   else {
     $new_email="''";
     
   }
   if ($in_phone) {
     
     $new_phone = $rt::dbh->quote($in_phone);
   }
   else {
     $new_phone="''";
     
   }

   if ($in_office) {
     
     $new_office = $rt::dbh->quote ($in_office);
   } 
   else {
     $new_office="''";
     
   }
   if ($in_comments) {
     
     $new_comments = $rt::dbh->quote ($in_comments);
   }
   else {
     $new_comments="''";
     
   }
  
   
  if (!(&is_a_user($in_user_id))){
    # make sure one didn't specify too short password
    
    if ($users{$in_current_user}{admin_rt}){
      #if the password length is too short and we're creating a user
      return (0,$passwd_err) if length($in_password) < $user_passwd_min;
      
      $query_string="INSERT INTO users (user_id, real_name, password, email, phone,  office, comments, admin_rt) VALUES ($new_user_id, $new_real_name, $new_password, $new_email, $new_phone, $new_office, $new_comments, $in_admin_rt)";
       
      $dbh->Query($query_string) or warn "[add_modify_user_info] Query had some problem: $Mysql::db_errstr\n";
      
      &rt::load_user_info();
      return(1,"User $in_user_id created");
    }
    else {
      return (0, "You do not have privileges to add users to RT");
    }
  }
  elsif (($in_current_user eq $in_user_id) and ($in_admin_rt ne $users{$in_user_id}{admin_rt})){
    return(0,"A user may not modify his or her own admin status");
  }
  else {
    if ($users{$in_current_user}{admin_rt} or ($in_current_user eq $in_user_id)) {
      if ($in_real_name ne $users{$in_user_id}{'real_name'}) {$update_clause .= "real_name = $new_real_name, ";}
      if ($in_email ne $users{$in_user_id}{'email'}) {$update_clause .= "email = $new_email, ";}
      if ($in_user_id ne $users{$in_user_id}{'user_id'}) {$update_clause .= "user_id = $new_user_id, ";}
      if ($in_phone ne $users{$in_user_id}{'phone'}) {$update_clause .= "phone = $new_phone, ";}
      if ($in_office ne $users{$in_user_id}{'office'}) {$update_clause .= "office = $new_office, ";}
      if ($in_comments ne $users{$in_user_id}{'comments'}) {$update_clause .= "comments = $new_comments, ";}
      if ($in_admin_rt ne $users{$in_user_id}{'admin_rt'}) {$update_clause .= "admin_rt = $in_admin_rt, ";}
      if (($in_password ne $users{$in_user_id}{'password'}) && ($in_password ne '')) {
	 #if the password is too short, return,
	return (0,$passwd_err) if length($in_password) < $user_passwd_min;
	$update_clause .= "password = $new_password ";
      }
      if ($update_clause) {
	$query_string = "UPDATE users SET $update_clause WHERE user_id = $new_user_id";
	$query_string =~ s/,(\s*)WHERE/ WHERE/g;
	$dbh->Query($query_string) or warn "[add_modify_user] Query had some problem: $Mysql::db_errstr\n$query_string";
	&rt::load_user_info();
	return(1, "User record updated");
      }
      return(0,"No updates needed to be performed");
    }
    else {
      return(0,"You do not have privileges to modify this user's vital info");
    }
  }
} 
1;