413 lines
18 KiB
PHP
413 lines
18 KiB
PHP
<?php
|
|
|
|
use Engelsystem\Config\GoodieType;
|
|
use Engelsystem\Http\Validation\Rules\Username;
|
|
use Engelsystem\Models\Group;
|
|
use Engelsystem\Models\User\User;
|
|
use Illuminate\Database\Query\JoinClause;
|
|
use Illuminate\Support\Collection;
|
|
|
|
/**
|
|
* @return string
|
|
*/
|
|
function admin_user_title()
|
|
{
|
|
return __('All Angels');
|
|
}
|
|
|
|
/**
|
|
* @return string
|
|
*/
|
|
function admin_user()
|
|
{
|
|
$user = auth()->user();
|
|
$tshirt_sizes = config('tshirt_sizes');
|
|
$request = request();
|
|
$html = '';
|
|
$goodie = GoodieType::from(config('goodie_type'));
|
|
$goodie_enabled = $goodie !== GoodieType::None;
|
|
$goodie_tshirt = $goodie === GoodieType::Tshirt;
|
|
$user_info_edit = auth()->can('user.info.edit');
|
|
$user_goodie_edit = auth()->can('user.goodie.edit');
|
|
$user_edit = auth()->can('user.edit');
|
|
$admin_arrive = auth()->can('admin_arrive');
|
|
|
|
if (!$request->has('id')) {
|
|
throw_redirect(users_link());
|
|
}
|
|
|
|
$user_id = $request->input('id');
|
|
if (!$request->has('action')) {
|
|
$user_source = User::find($user_id);
|
|
if (!$user_source) {
|
|
error(__('This user does not exist.'));
|
|
throw_redirect(users_link());
|
|
}
|
|
|
|
$html .= __('Here you can change the user entry. Under the item \'Arrived\' the angel is marked as present, a yes at Active means that the angel was active.');
|
|
if ($goodie_enabled && $user_goodie_edit) {
|
|
if ($goodie_tshirt) {
|
|
$html .= ' ' . __('If the angel is active, it can claim a T-shirt. If T-shirt is set to \'Yes\', the angel already got their T-shirt.');
|
|
} else {
|
|
$html .= ' ' . __('If the angel is active, it can claim a goodie. If goodie is set to \'Yes\', the angel already got their goodie.');
|
|
}
|
|
}
|
|
$html .= '<br><br>';
|
|
$html .= '<form action="'
|
|
. url('/admin-user', ['action' => 'save', 'id' => $user_id])
|
|
. '" method="post">' . "\n";
|
|
$html .= form_csrf();
|
|
$html .= '<table>' . "\n";
|
|
$html .= '<input type="hidden" name="Type" value="Normal">' . "\n";
|
|
$html .= '<tr><td>' . "\n";
|
|
$html .= '<table>' . "\n";
|
|
$html .= ' <tr><td>' . __('general.nick') . '</td><td>'
|
|
. '<input size="40" name="eNick" value="' . htmlspecialchars($user_source->name)
|
|
. '" class="form-control" maxlength="24" ' . ($user_edit ? '' : 'disabled') . '>'
|
|
. '</td></tr>' . "\n";
|
|
$html .= ' <tr><td>' . __('Last login') . '</td><td><p class="help-block">'
|
|
. ($user_source->last_login_at ? $user_source->last_login_at->format(__('general.datetime')) : '-')
|
|
. '</p></td></tr>' . "\n";
|
|
if (config('enable_user_name')) {
|
|
$html .= ' <tr><td>' . __('settings.profile.firstname') . '</td><td>'
|
|
. '<input size="40" name="eName" value="' . htmlspecialchars((string) $user_source->personalData->last_name) . '" class="form-control" maxlength="64">'
|
|
. '</td></tr>' . "\n";
|
|
$html .= ' <tr><td>' . __('settings.profile.lastname') . '</td><td>'
|
|
. '<input size="40" name="eVorname" value="' . htmlspecialchars((string) $user_source->personalData->first_name) . '" class="form-control" maxlength="64">'
|
|
. '</td></tr>' . "\n";
|
|
}
|
|
$html .= ' <tr><td>' . __('settings.profile.mobile') . '</td><td>'
|
|
. '<input type= "tel" size="40" name="eHandy" value="' . htmlspecialchars((string) $user_source->contact->mobile) . '" class="form-control" maxlength="40">'
|
|
. '</td></tr>' . "\n";
|
|
if (config('enable_dect')) {
|
|
$html .= ' <tr><td>' . __('general.dect') . '</td><td>'
|
|
. '<input size="40" name="eDECT" value="' . htmlspecialchars((string) $user_source->contact->dect) . '" class="form-control" maxlength="40">'
|
|
. '</td></tr>' . "\n";
|
|
}
|
|
if ($user_source->settings->email_human) {
|
|
$html .= ' <tr><td>' . __('general.email') . '</td><td>'
|
|
. '<input type="email" size="40" name="eemail" value="' . htmlspecialchars($user_source->email) . '" class="form-control" maxlength="254">'
|
|
. '</td></tr>' . "\n";
|
|
}
|
|
if ($goodie_tshirt && $user_goodie_edit) {
|
|
$html .= ' <tr><td>' . __('user.shirt_size') . '</td><td>'
|
|
. html_select_key(
|
|
'size',
|
|
'eSize',
|
|
$tshirt_sizes,
|
|
$user_source->personalData->shirt_size,
|
|
__('form.select_placeholder')
|
|
)
|
|
. '</td></tr>' . "\n";
|
|
}
|
|
|
|
// User info
|
|
if ($user_info_edit) {
|
|
$html .= ' <tr><td>'
|
|
. __('user.info')
|
|
. ' <span class="bi bi-info-circle-fill text-info" data-bs-toggle="tooltip" title="'
|
|
. __('user.info.hint')
|
|
. '"></span>'
|
|
. '</td><td>'
|
|
. '<textarea cols="40" rows="" name="userInfo" class="form-control">'
|
|
. htmlspecialchars((string) $user_source->state->user_info)
|
|
. '</textarea>'
|
|
. '</td></tr>' . "\n";
|
|
}
|
|
|
|
$options = [
|
|
'1' => __('Yes'),
|
|
'0' => __('No'),
|
|
];
|
|
|
|
// Arrived?
|
|
$html .= ' <tr><td>' . __('user.arrived') . '</td><td>' . "\n";
|
|
$html .= $admin_arrive
|
|
? html_options('arrive', $options, $user_source->state->arrived)
|
|
: icon_bool($user_source->state->arrived);
|
|
$html .= '</td></tr>' . "\n";
|
|
|
|
// Active?
|
|
$html .= ' <tr><td>' . __('user.active') . '</td><td>' . "\n";
|
|
$html .= $user_goodie_edit
|
|
? html_options('eAktiv', $options, $user_source->state->active)
|
|
: icon_bool($user_source->state->active);
|
|
$html .= '</td></tr>' . "\n";
|
|
|
|
// Forced active?
|
|
if (config('enable_force_active')) {
|
|
$html .= ' <tr><td>' . __('Force active') . '</td><td>' . "\n";
|
|
$html .= auth()->can('user.fa.edit')
|
|
? html_options('force_active', $options, $user_source->state->force_active)
|
|
: icon_bool($user_source->state->force_active);
|
|
$html .= '</td></tr>' . "\n";
|
|
}
|
|
|
|
if ($goodie_enabled) {
|
|
// got goodie?
|
|
$html .= ' <tr><td>'
|
|
. ($goodie_tshirt ? __('T-shirt') : __('Goodie'))
|
|
. '</td><td>' . "\n";
|
|
$html .= $user_goodie_edit
|
|
? html_options('eTshirt', $options, $user_source->state->got_goodie)
|
|
: icon_bool($user_source->state->got_goodie);
|
|
$html .= '</td></tr>' . "\n";
|
|
}
|
|
|
|
$html .= '</table>' . "\n" . '</td><td></td></tr>';
|
|
|
|
$html .= '</td></tr>' . "\n";
|
|
$html .= '</table>' . "\n" . '<br>' . "\n";
|
|
$html .= '<button type="submit" class="btn btn-primary">'
|
|
. icon('save') . __('form.save') . '</button>' . "\n";
|
|
$html .= '</form>';
|
|
|
|
$html .= '<hr>';
|
|
|
|
$html .= __('Here you can reset the password of this angel:');
|
|
|
|
$html .= '<form action="'
|
|
. url('/admin-user', ['action' => 'change_pw', 'id' => $user_id])
|
|
. '" method="post">' . "\n";
|
|
$html .= form_csrf();
|
|
$html .= '<table>' . "\n";
|
|
$html .= ' <tr><td>' . __('settings.password')
|
|
. ' <span class="bi bi-info-circle-fill text-info" data-bs-toggle="tooltip" title="'
|
|
. __('password.minimal_length', [config('min_password_length')]) . '"></span>'
|
|
. '</td><td>'
|
|
. '<input type="password" size="40" name="new_pw" value="" class="form-control" autocomplete="new-password">'
|
|
. '</td></tr>' . "\n";
|
|
$html .= ' <tr><td>' . __('password.reset.confirm') . '</td><td>'
|
|
. '<input type="password" size="40" name="new_pw2" value="" class="form-control" autocomplete="new-password">'
|
|
. '</td></tr>' . "\n";
|
|
|
|
$html .= '</table>' . "\n" . '<br>' . "\n";
|
|
$html .= '<button type="submit" class="btn btn-primary">'
|
|
. icon('save') . __('form.save') . '</button>' . "\n";
|
|
$html .= '</form>';
|
|
|
|
$html .= '<hr>';
|
|
|
|
/** @var Group $my_highest_group */
|
|
$my_highest_group = $user->groups()->orderByDesc('id')->first();
|
|
if (!empty($my_highest_group)) {
|
|
$my_highest_group = $my_highest_group->id;
|
|
}
|
|
|
|
$angel_highest_group = $user_source->groups()->orderByDesc('id')->first();
|
|
if (!empty($angel_highest_group)) {
|
|
$angel_highest_group = $angel_highest_group->id;
|
|
}
|
|
|
|
if (
|
|
($user_id != $user->id || auth()->can('admin_groups'))
|
|
&& ($my_highest_group >= $angel_highest_group || is_null($angel_highest_group))
|
|
) {
|
|
$html .= __('Here you can define the user groups of the angel:') . '<form action="'
|
|
. url('/admin-user', ['action' => 'save_groups', 'id' => $user_id])
|
|
. '" method="post">' . "\n";
|
|
$html .= form_csrf();
|
|
$html .= '<div>';
|
|
|
|
$groups = changeableGroups($my_highest_group, $user_id);
|
|
foreach ($groups as $group) {
|
|
$html .= '<div class="form-check">'
|
|
. '<input class="form-check-input" type="checkbox" id="' . $group->id . '" name="groups[]" value="' . $group->id . '" '
|
|
. ($group->selected ? ' checked="checked"' : '')
|
|
. ' /><label class="form-check-label" for="' . $group->id . '">'
|
|
. htmlspecialchars($group->name)
|
|
. '</label></div>';
|
|
}
|
|
|
|
$html .= '</div><br>';
|
|
|
|
$html .= '<button type="submit" class="btn btn-primary">'
|
|
. icon('save') . __('form.save') . '</button>' . "\n";
|
|
$html .= '</form>';
|
|
|
|
$html .= '<hr>';
|
|
}
|
|
|
|
$html .= buttons([
|
|
button(user_delete_link($user_source->id), icon('trash') . __('form.delete'), 'btn-danger'),
|
|
]);
|
|
|
|
$html .= '<hr>';
|
|
} else {
|
|
switch ($request->input('action')) {
|
|
case 'save_groups':
|
|
$angel = User::findOrFail($user_id);
|
|
if ($angel->id != $user->id || auth()->can('admin_groups')) {
|
|
/** @var Group $my_highest_group */
|
|
$my_highest_group = $user->groups()->orderByDesc('id')->first();
|
|
/** @var Group $angel_highest_group */
|
|
$angel_highest_group = $angel->groups()->orderByDesc('id')->first();
|
|
|
|
if (
|
|
$my_highest_group
|
|
&& (
|
|
empty($angel_highest_group)
|
|
|| ($my_highest_group->id >= $angel_highest_group->id)
|
|
)
|
|
) {
|
|
$groups_source = changeableGroups($my_highest_group->id, $angel->id);
|
|
$groups = [];
|
|
$groupList = [];
|
|
foreach ($groups_source as $group) {
|
|
$groups[$group->id] = $group;
|
|
$groupList[] = $group->id;
|
|
}
|
|
|
|
$groupsRequest = $request->input('groups');
|
|
if (!is_array($groupsRequest)) {
|
|
$groupsRequest = [];
|
|
}
|
|
|
|
$angel->groups()->detach();
|
|
$user_groups_info = [];
|
|
foreach ($groupsRequest as $group) {
|
|
if (in_array($group, $groupList)) {
|
|
$group = $groups[$group];
|
|
$angel->groups()->attach($group);
|
|
$user_groups_info[] = $group->name;
|
|
}
|
|
}
|
|
engelsystem_log(
|
|
'Set groups of ' . User_Nick_render($angel, true) . ' to: '
|
|
. join(', ', $user_groups_info)
|
|
);
|
|
$html .= success(__('User groups saved.'), true);
|
|
} else {
|
|
$html .= error(__('You cannot edit angels with more rights.'), true);
|
|
}
|
|
} else {
|
|
$html .= error(__('You cannot edit your own rights.'), true);
|
|
}
|
|
break;
|
|
|
|
case 'save':
|
|
$user_source = User::find($user_id);
|
|
|
|
$changed_email = false;
|
|
$email = $request->postData('eemail');
|
|
if (($user_source->email !== $email) && User::whereEmail($email)->exists()) {
|
|
$html .= error(__('settings.profile.email.already-taken') . "\n", true);
|
|
break;
|
|
}
|
|
if ($user_source->settings->email_human) {
|
|
$changed_email = $user_source->email !== $email;
|
|
$user_source->email = $email;
|
|
}
|
|
|
|
$changed_nick = false;
|
|
$nick = trim((string) $request->get('eNick'));
|
|
$nickValid = (new Username())->validate($nick);
|
|
if (($user_source->name !== $nick) && User::whereName($nick)->exists()) {
|
|
$html .= error(__('settings.profile.nick.already-taken') . "\n", true);
|
|
break;
|
|
}
|
|
$old_nick = $user_source->name;
|
|
if ($nickValid && $user_edit) {
|
|
$changed_nick = ($user_source->name !== $nick) || User::whereName($nick)->exists();
|
|
$user_source->name = $nick;
|
|
}
|
|
$user_source->save();
|
|
|
|
if (config('enable_user_name')) {
|
|
$user_source->personalData->first_name = $request->postData('eVorname');
|
|
$user_source->personalData->last_name = $request->postData('eName');
|
|
}
|
|
if ($goodie_tshirt && $user_goodie_edit) {
|
|
$user_source->personalData->shirt_size = $request->postData('eSize');
|
|
}
|
|
$user_source->personalData->save();
|
|
|
|
$user_source->contact->mobile = $request->postData('eHandy');
|
|
if (config('enable_dect')) {
|
|
$user_source->contact->dect = $request->postData('eDECT');
|
|
}
|
|
$user_source->contact->save();
|
|
|
|
if ($goodie_enabled && $user_goodie_edit) {
|
|
$user_source->state->got_goodie = $request->postData('eTshirt');
|
|
}
|
|
if ($user_info_edit) {
|
|
$user_source->state->user_info = $request->postData('userInfo');
|
|
}
|
|
if ($admin_arrive) {
|
|
$user_source->state->arrived = $request->postData('arrive');
|
|
}
|
|
|
|
if ($user_goodie_edit) {
|
|
$user_source->state->active = $request->postData('eAktiv');
|
|
}
|
|
if (auth()->can('user.fa.edit') && config('enable_force_active')) {
|
|
$user_source->state->force_active = $request->input('force_active');
|
|
}
|
|
$user_source->state->save();
|
|
|
|
engelsystem_log(
|
|
'Updated user: ' . ($changed_nick
|
|
? ('nick modified form ' . $old_nick . ' to ' . $user_source->name)
|
|
: $user_source->name)
|
|
. ' (' . $user_source->id . ')'
|
|
. ($changed_email ? ', email modified' : '')
|
|
. ($goodie_tshirt ? ', t-shirt-size: ' . $user_source->personalData->shirt_size : '')
|
|
. ', arrived: ' . $user_source->state->arrived
|
|
. ', active: ' . $user_source->state->active
|
|
. ', force-active: ' . $user_source->state->force_active
|
|
. ($goodie_tshirt ? ', t-shirt: ' : ', goodie: ' . $user_source->state->got_goodie)
|
|
. ($user_info_edit ? ', user-info: ' . $user_source->state->user_info : '')
|
|
);
|
|
$html .= success(__('Changes were saved.') . "\n", true);
|
|
break;
|
|
|
|
case 'change_pw':
|
|
if (
|
|
$request->postData('new_pw') != ''
|
|
&& $request->postData('new_pw') == $request->postData('new_pw2')
|
|
) {
|
|
$user_source = User::find($user_id);
|
|
auth()->setPassword($user_source, $request->postData('new_pw'));
|
|
engelsystem_log('Set new password for ' . User_Nick_render($user_source, true));
|
|
$html .= success(__('Password reset done.'), true);
|
|
} else {
|
|
$html .= error(
|
|
__('The entries must match and must not be empty!'),
|
|
true
|
|
);
|
|
}
|
|
break;
|
|
}
|
|
}
|
|
|
|
$link = button(url('/users', ['action' => 'view', 'user_id' => $user_id]), icon('chevron-left'), 'btn-sm', '', __('general.back'));
|
|
return page_with_title(
|
|
$link . ' ' . __('Edit user'),
|
|
[
|
|
$html,
|
|
]
|
|
);
|
|
}
|
|
|
|
/**
|
|
* @param $myHighestGroup
|
|
* @param $angelId
|
|
* @return Collection|Group[]
|
|
*/
|
|
function changeableGroups($myHighestGroup, $angelId): Collection
|
|
{
|
|
return Group::query()
|
|
->where('groups.id', '<=', $myHighestGroup)
|
|
->join('users_groups', function ($query) use ($angelId) {
|
|
/** @var JoinClause $query */
|
|
$query->where('users_groups.group_id', '=', $query->raw('groups.id'))
|
|
->where('users_groups.user_id', $angelId);
|
|
}, null, null, 'left outer')
|
|
->orderBy('name')
|
|
->get([
|
|
'groups.*',
|
|
'users_groups.group_id as selected',
|
|
]);
|
|
}
|