|
noalyss
Version-6.7.2
|
Data & function about connected users. More...
Public Member Functions | |
| Admin () | |
| Check if an user is an admin. | |
| audit ($action= 'AUDIT', $p_module="") | |
| can_print ($p_action, $p_js=0) | |
| Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit. | |
| can_read_action ($dtoc) | |
| Check if the profile of the user can write for this profile. | |
| can_read_repo ($p_repo) | |
| Check if the profile of the user can read for this repository. | |
| can_request ($p_action, $p_js=0) | |
| Check if the user can access otherwise warn and exit. | |
| can_write_action ($dtoc) | |
| Check if the profile of the user can write for this profile. | |
| can_write_repo ($p_repo) | |
| Check if the profile of the user can write for this repository. | |
| Check ($silent=false, $from= '') | |
| Check if user is active and exists in therepository Automatically redirect, it doesn't check if a user can access a folder. | |
| check_action ($p_action_id) | |
| Check if an user is allowed to do an action. | |
| check_dossier ($p_dossier_id, $silent=false) | |
| check if an user can access a folder, if he cannot display a dialog box and exit | |
| check_jrn ($p_jrn) | |
| check the access of an user on a ledger | |
| check_module ($p_module) | |
| Check if an user can access a module, return 1 if yes, otherwise 0 record in audit log. | |
| check_print ($p_action) | |
| ! | |
| get_available_folder ($p_filter="") | |
| Get all the available folders for the users, checked with the security. | |
| get_available_repository ($p_access='R') | |
| return array of available repository | |
| get_exercice () | |
| Return the year of current Periode it is the parm_periode.p_exercice col if an error occurs return 0. | |
| get_folder_access ($p_dossier=0) | |
| return the access to a folder, | |
| get_ledger ($p_type= 'ALL', $p_access=3) | |
| get all the available ledgers for the current user | |
| get_ledger_access ($p_ledger) | |
| check that a user is valid and the access to the folder | |
| get_ledger_sql ($p_type= 'ALL', $p_access=3) | |
| return an sql condition for filtering the permitted ledger | |
| get_limit_current_exercice () | |
| return the first date and the last date of the current exercice for the current user | |
| get_mini_report () | |
| return the mini rapport to display on the welcome page | |
| get_periode () | |
| Get the default periode from the user's preferences. | |
| get_preference () | |
| Get the default user's preferences. | |
| get_profile () | |
| return the profile (p_id) | |
| insert_default_global_pref ($p_type="", $p_value="") | |
| insert default pref if no parameter are given insert all the existing parameter otherwise only the requested | |
| is_local_admin ($p_dossier=-1) | |
| Check if an user is an local administrator. | |
| load () | |
| load data from database. | |
| load_global_pref () | |
| Get the global preferences from user_global_pref in the account_repository db. | |
| save () | |
| save_global_preference ($key, $value) | |
| save_password ($p_pass1, $p_pass2) | |
| save_profile ($p_id) | |
| set_folder_access ($db_id, $priv) | |
| set_mini_report ($p_id) | |
| set the mini rapport to display on the welcome page | |
| set_periode ($p_periode) | |
| Set the selected periode in the user's preferences. | |
| show_dossier ($p_filtre="") | |
| Show all the available folder for the users at the login page. | |
| update_global_pref ($p_type, $p_value="") | |
| update default pref if value is not given then use the default value | |
| User (&$p_cn, $p_id=-1) | |
Static Public Member Functions | |
| static | get_list ($p_dossier) |
| return an array with all the users who can access $p_dossier including the global admin. | |
Data Fields | |
| $admin | |
| $db | |
| $id | |
| $pass | |
| $valid | |
Private Member Functions | |
| set_default_periode () | |
Data & function about connected users.
Definition at line 35 of file class_user.php.
| User::Admin | ( | ) |
Check if an user is an admin.
Definition at line 355 of file class_user.php.
References $cn, $res, $sql, Database\fetch_result(), and Database\num_row().
Referenced by check_action(), check_dossier(), and check_print().
{
$this->admin = 0;
if ($this->login != 'phpcompta')
{
$pass5 = md5($this->pass);
$sql = "select use_admin from ac_users where use_login=$1
and use_active=1 ";
$cn = new Database();
$res = $cn->exec_sql($sql, array($this->login));
if (Database::num_row($res) == 0)
throw new Exception(__FILE__ . " " . __LINE__ . " aucun resultat");
$this->admin = Database::fetch_result($res, 0);
}
else
$this->admin = 1;
return $this->admin;
}
| User::audit | ( | $ | action = 'AUDIT', |
| $ | p_module = "" |
||
| ) |
Definition at line 1023 of file class_user.php.
References $_REQUEST, $action, $audit, $cn, and $sql.
Referenced by can_print(), can_request(), check_dossier(), check_module(), and check_print().
{
global $audit;
if ($audit)
{
if ($p_module == "" && isset($_REQUEST['ac']))
{
$p_module = $_REQUEST['ac'];
}
$cn = new Database();
if (isset($_REQUEST['gDossier']))
$p_module.= " dossier : " . $_REQUEST['gDossier'];
$sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";
$cn->exec_sql($sql, array(
$_SESSION['g_user'],
$_SERVER["REMOTE_ADDR"],
$p_module,
$_SERVER['REQUEST_URI'],
$action));
}
}
| User::can_print | ( | $ | p_action, |
| $ | p_js = 0 |
||
| ) |
Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit.
| $p_action | requested action |
Definition at line 737 of file class_user.php.
References $p_action, audit(), check_print(), echo, and exit.
{
if ($this->check_print($p_action) == 0)
{
$this->audit('FAIL');
if ($p_js == 1)
{
echo "<script>";
echo "alert ('Cette action ne vous est pas autorisée. Contactez votre responsable');";
echo "</script>";
}
else
{
echo '<div class="redcontent">';
echo '<h2 class="error"> Cette action ne vous est pas autorisée Contactez votre responsable</h2>';
echo '</div>';
}
exit(-1);
}
}
| User::can_read_action | ( | $ | dtoc | ) |
Check if the profile of the user can write for this profile.
| $dtoc | action_gestion.ag_id |
Definition at line 1089 of file class_user.php.
References $profile, $r, db, and get_profile().
| User::can_read_repo | ( | $ | p_repo | ) |
Check if the profile of the user can read for this repository.
| $p_repo | stock_repository.r_id |
Definition at line 1121 of file class_user.php.
References $profile, $r, db, and get_profile().
| User::can_request | ( | $ | p_action, |
| $ | p_js = 0 |
||
| ) |
Check if the user can access otherwise warn and exit.
| $p_action | requested action |
| $p_js | = 1 javascript, or 0 just a text |
Definition at line 690 of file class_user.php.
References $p_action, audit(), check_action(), echo, and exit.
{
if ($this->check_action($p_action) == 0)
{
$this->audit('FAIL');
if ($p_js == 1)
{
echo "<script>";
echo "alert ('Cette action ne vous est pas autorisée. Contactez votre responsable');";
echo "</script>";
}
else
{
echo '<div class="redcontent">';
echo '<h2 class="error"> Cette action ne vous est pas autorisée Contactez votre responsable</h2>';
echo '</div>';
}
exit(-1);
}
}
| User::can_write_action | ( | $ | dtoc | ) |
Check if the profile of the user can write for this profile.
| $dtoc | action_gestion.ag_id |
Definition at line 1074 of file class_user.php.
References $profile, $r, db, and get_profile().
| User::can_write_repo | ( | $ | p_repo | ) |
Check if the profile of the user can write for this repository.
| $p_repo | stock_repository.r_id |
Definition at line 1103 of file class_user.php.
References $profile, $r, db, and get_profile().
| User::Check | ( | $ | silent = false, |
| $ | from = '' |
||
| ) |
Check if user is active and exists in therepository Automatically redirect, it doesn't check if a user can access a folder.
| $silent | false, echo an error message and exit, true : exit without warning default is false |
++
Definition at line 140 of file class_user.php.
References $cn, $from, $r, $res, $ret, $sql, alert(), exit, Database\fetch_array(), load_global_pref(), name, Database\num_row(), and redirect().
{
$res = 0;
$pass5 = md5($this->pass);
$cn = new Database();
$sql = "select ac_users.use_login,ac_users.use_active, ac_users.use_pass,
use_admin,use_first_name,use_name
from ac_users
where ac_users.use_id='$this->id'
and ac_users.use_active=1
and ac_users.use_pass='$pass5'";
$ret = $cn->exec_sql($sql);
$res = Database::num_row($ret);
if ($res > 0)
{
$r = Database::fetch_array($ret, 0);
$_SESSION['use_admin'] = $r['use_admin'];
$_SESSION['use_name'] = $r['use_name'];
$_SESSION['use_first_name'] = $r['use_first_name'];
$_SESSION['isValid'] = 1;
$this->admin = $_SESSION['use_admin'];
$this->name = $_SESSION['use_name'];
$this->first_name = $_SESSION['use_first_name'];
$this->load_global_pref();
}
$sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";
if ($res == 0)
{
$cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $from, $_SERVER['REQUEST_URI'], 'FAIL'));
if (!$silent)
{
alert(_('Utilisateur ou mot de passe incorrect'));
redirect('index.html');
}
$this->valid = 0;
session_unset();
exit - 1;
}
else
{
if ($from == 'LOGIN')
$cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $from, $_SERVER['REQUEST_URI'], 'SUCCESS'));
$this->valid = 1;
}
return $ret;
}
| User::check_action | ( | $ | p_action_id | ) |
Check if an user is allowed to do an action.
| p_action_id |
Definition at line 535 of file class_user.php.
References $audit, $cn, $Res, $sql, Admin(), db, echo, exit, id, is_local_admin(), and Database\num_row().
Referenced by can_request().
{
/* save it into the log */
global $audit;
if ($this->Admin() == 1)
return 1;
if ($this->is_local_admin(dossier::id()) == 1)
return 1;
$Res = $this->db->exec_sql(
"select * from user_sec_act where ua_login=$1 and ua_act_id=$2", array($this->login, $p_action_id));
$Count = Database::num_row($Res);
if ($Count == 0)
{
if (isset($audit) && $audit == true)
{
$cn = new Database();
$sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";
$cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $p_action_id, $_SERVER['REQUEST_URI'], 'FAIL'));
}
return 0;
}
if ($Count == 1)
return 1;
echo "<H2 class=\"error\"> Action Invalide !!! $Count select * from user_sec_act where ua_login='$p_login' and ua_act_id=$p_action_id </H2>";
exit();
}
| User::check_dossier | ( | $ | p_dossier_id, |
| $ | silent = false |
||
| ) |
check if an user can access a folder, if he cannot display a dialog box and exit
| the | folder if |
| $silent | false, echo an error message and exit, true : exit without warning default is false |
Definition at line 883 of file class_user.php.
References $cn, $dossier, Admin(), alert(), audit(), exit, and is_local_admin().
Referenced by show_dossier().
{
$this->Admin();
if ($this->admin == 1 || $this->is_local_admin($p_dossier_id) == 1)
return 'L';
$cn = new Database();
$dossier = $cn->get_value("select priv_priv from jnt_use_dos join priv_user on (priv_jnt=jnt_id) where dos_id=$1 and use_id=$2", array($p_dossier_id, $this->id));
$dossier = ($dossier == '') ? 'X' : $dossier;
if ($dossier == 'X')
{
$this->audit('FAIL', "Access folder ");
if (!$silent)
{
alert(_('Dossier non accessible'));
exit();
}
}
return $dossier;
}
| User::check_jrn | ( | $ | p_jrn | ) |
check the access of an user on a ledger
| $p_jrn | the ledger id |
Definition at line 867 of file class_user.php.
References $p_jrn, and get_ledger_access().
{
return $this->get_ledger_access($p_jrn);
}
| User::check_module | ( | $ | p_module | ) |
Check if an user can access a module, return 1 if yes, otherwise 0 record in audit log.
| string | $p_module | menu_ref.me_code |
Definition at line 513 of file class_user.php.
| User::check_print | ( | $ | p_action | ) |
!
Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit
| $p_action | requested action |
Definition at line 717 of file class_user.php.
References $audit, $cn, $p_action, $res, Admin(), audit(), id, and is_local_admin().
Referenced by can_print().
{
global $audit, $cn;
$this->audit('AUDIT', $p_action);
if ($this->Admin() == 1)
return 1;
if ($this->is_local_admin(dossier::id()) == 1)
return 1;
$res = $cn->get_value("select count(*) from profile_menu
join profile_user using (p_id)
where user_name=$1 and me_code=$2 ", array($this->login, $p_action));
return $res;
}
| User::get_available_folder | ( | $ | p_filter = "" | ) |
Get all the available folders for the users, checked with the security.
| $p_user | user login |
| $p_admin | 1 if admin |
Definition at line 988 of file class_user.php.
References $array, $cn, $max, $Res, Database\fetch_array(), and Database\num_row().
Referenced by show_dossier().
{
$cn = new Database();
$filter = "";
if ($this->admin == 0)
{
// show only available folders
// if user is not an admin
$Res = $cn->exec_sql("select distinct dos_id,dos_name,dos_description from ac_users
natural join jnt_use_dos
natural join ac_dossier
join priv_user on ( priv_jnt=jnt_id)
where use_active=1
and use_login= $1
and priv_priv != 'X' and ( dos_name ~* $2 or dos_description ~* $2 )
order by dos_name", array($this->login, $p_filter));
}
else
{
$Res = $cn->exec_sql("select distinct dos_id,dos_name,dos_description from ac_dossier
where dos_name ~* $1 or dos_description ~* $1 order by dos_name", array($p_filter));
}
require_once('class_database.php');
$max = Database::num_row($Res);
if ($max == 0)
return 0;
for ($i = 0; $i < $max; $i++)
{
$array[] = Database::fetch_array($Res, $i);
}
return $array;
}
| User::get_available_repository | ( | $ | p_access = 'R' | ) |
return array of available repository
| $p_access | R for read W for write |
Definition at line 796 of file class_user.php.
References $profile, $r, db, and get_profile().
{
$profile=$this->get_profile();
$r=array();
if ($p_access=='R')
{
$r=$this->db->get_array("select distinct u.r_id,r_name
from
profile_sec_repository as u
join stock_repository as s on(u.r_id=s.r_id)
where
p_id =$1
and ur_right='W'
order by 2
",array($profile));
}
if ($p_access == 'W')
{
$r=$this->db->get_array("select distinct u.r_id,r_name
from
profile_sec_repository as u
join stock_repository as s on(u.r_id=s.r_id)
where
p_id =$1 order by 2
",array($profile));
}
return $r;
}
Return the year of current Periode it is the parm_periode.p_exercice col if an error occurs return 0.
Definition at line 670 of file class_user.php.
References $r, $Ret, $sql, db, Database\fetch_array(), get_periode(), and Database\num_row().
Referenced by get_limit_current_exercice().
{
$sql = "select p_exercice from parm_periode where p_id=" . $this->get_periode();
$Ret = $this->db->exec_sql($sql);
if (Database::num_row($Ret) == 1)
{
$r = Database::fetch_array($Ret, 0);
return $r['p_exercice'];
}
else
return 0;
}
| User::get_folder_access | ( | $ | p_dossier = 0 | ) |
return the access to a folder,
| $p_dossier | id if it is == 0 then we take the value from $_SESSION |
Definition at line 201 of file class_user.php.
References $cn, $res, $sql, id, and is_local_admin().
{
if ($p_dossier == 0)
$p_dossier = dossier::id();
if ($this->is_local_admin($p_dossier) == 1 || $this->admin == 1)
return 'L';
$cn = new Database();
$sql = "select priv_priv from priv_user join jnt_use_dos on (jnt_id=priv_jnt) join ac_users using (use_id)
where use_id=$1 and dos_id=$2";
$res = $cn->get_value($sql, array($this->id, $p_dossier));
if ($res == '')
return 'X';
return $res;
}
| User::get_ledger | ( | $ | p_type = 'ALL', |
| $ | p_access = 3 |
||
| ) |
get all the available ledgers for the current user
| $p_type | = ALL or the type of the ledger (ACH,VEN,FIN,ODS) |
| $p_access | =3 for Read or WRITE, 2 write, 1 for readonly |
[0] => [jrn_def_id] [jrn_def_type] [jrn_def_name] [jrn_def_class_deb] [jrn_def_class_cred] [jrn_type_id] [jrn_desc] [uj_priv]
Definition at line 283 of file class_user.php.
References $array, $res, $sql, db, Database\fetch_all(), is_local_admin(), Database\num_row(), and sql_string().
Referenced by get_ledger_sql().
{
if ($this->admin != 1 && $this->is_local_admin() != 1)
{
$sql_type = ($p_type == 'ALL') ? '' : "and jrn_def_type=upper('" . sql_string($p_type) . "')";
switch ($p_access)
{
case 3:
$sql_access = " and uj_priv!= 'X'";
break;
case 2:
$sql_access = " and uj_priv = 'W'";
break;
case 1:
$sql_access = " and ( uj_priv = 'R' or uj_priv='W') ";
break;
}
$sql = "select jrn_def_id,jrn_def_type,
jrn_def_name,jrn_def_class_deb,jrn_def_class_cred,jrn_type_id,jrn_desc,uj_priv,
jrn_deb_max_line,jrn_cred_max_line,jrn_def_description
from jrn_def join jrn_type on jrn_def_type=jrn_type_id
join user_sec_jrn on uj_jrn_id=jrn_def_id
where
uj_login='" . $this->login . "'" .
$sql_type . $sql_access .
" order by jrn_Def_id";
}
else
{
$sql_type = ($p_type == 'ALL') ? '' : "where jrn_def_type=upper('" . sql_string($p_type) . "')";
$sql = "select jrn_def_id,jrn_def_type,jrn_def_name,jrn_def_class_deb,jrn_def_class_cred,jrn_deb_max_line,jrn_cred_max_line,
jrn_type_id,jrn_desc,'W' as uj_priv,jrn_def_description
from jrn_def join jrn_type on jrn_def_type=jrn_type_id
$sql_type
order by jrn_Def_name";
}
$res = $this->db->exec_sql($sql);
if (Database::num_row($res) == 0)
return null;
$array = Database::fetch_all($res);
return $array;
}
| User::get_ledger_access | ( | $ | p_ledger | ) |
check that a user is valid and the access to the folder
| $p_ledger | the ledger to check |
Definition at line 252 of file class_user.php.
References $res, $sql, db, id, and is_local_admin().
Referenced by check_jrn().
{
if ($this->admin == 1 ||
$this->is_local_admin(dossier::id()) == 1)
return 'W';
$sql = "select uj_priv from user_sec_jrn where uj_login=$1 and uj_jrn_id=$2";
$res = $this->db->get_value($sql, array($this->login, $p_ledger));
if ($res == '')
$res = 'X';
return $res;
}
| User::get_ledger_sql | ( | $ | p_type = 'ALL', |
| $ | p_access = 3 |
||
| ) |
return an sql condition for filtering the permitted ledger
| $p_type | = ALL or the type of the ledger (ACH,VEN,FIN,ODS) |
| $p_access | =3 for READ or WRITE, 2 READ and write, 1 for readonly |
Definition at line 335 of file class_user.php.
References $row, $sql, and get_ledger().
return the first date and the last date of the current exercice for the current user
Definition at line 908 of file class_user.php.
References $current_exercice, $end, $periode, $start, db, and get_exercice().
{
$current_exercice = $this->get_exercice();
$periode = new Periode($this->db);
list($per_start, $per_end) = $periode->get_limit($current_exercice);
$start = $per_start->first_day();
$end = $per_end->last_day();
return array($start, $end);
}
| static User::get_list | ( | $ | p_dossier | ) | [static] |
return an array with all the users who can access $p_dossier including the global admin.
The user must be activated
| $p_dossier | dossier |
| throw | an exception if nobody can access |
Definition at line 839 of file class_user.php.
References $array, $repo, and $sql.
{
$sql = "select distinct use_id,use_login,use_first_name,use_name from ac_users
left outer join jnt_use_dos using (use_id)
left join priv_user on (priv_jnt=jnt_id)
where
(dos_id=$1 or use_admin=1) and use_active=1 and (use_admin=1 or priv_priv <> 'X') order by use_login,use_name";
$repo = new Database();
$array = $repo->get_array($sql, array($p_dossier));
if ($repo->size() == 0)
throw new Exception('Error inaccessible folder');
return $array;
}
return the mini rapport to display on the welcome page
Definition at line 441 of file class_user.php.
References $array, and get_preference().
{
$array = $this->get_preference();
$fr_id = (isset($array['MINIREPORT'])) ? $array['MINIREPORT'] : 0;
return $fr_id;
}
Get the default periode from the user's preferences.
Definition at line 425 of file class_user.php.
References $array, get_preference(), and set_default_periode().
Referenced by get_exercice().
{
$array = $this->get_preference();
if (!isset($array['PERIODE']))
{
$this->set_default_periode();
$array = $this->get_preference();
}
return $array['PERIODE'];
}
Get the default user's preferences.
Definition at line 492 of file class_user.php.
References $Res, $row, $sql, $type, db, Database\fetch_array(), and Database\num_row().
Referenced by get_mini_report(), and get_periode().
{
$sql = "select parameter_type,parameter_value from user_local_pref where user_id=$1";
$Res = $this->db->exec_sql($sql, array($this->id));
$l_array = array();
for ($i = 0; $i < Database::num_row($Res); $i++)
{
$row = Database::fetch_array($Res, $i);
$type = $row['parameter_type'];
$l_array[$type] = $row['parameter_value'];
}
return $l_array;
}
return the profile (p_id)
Definition at line 1063 of file class_user.php.
Referenced by can_read_action(), can_read_repo(), can_write_action(), can_write_repo(), and get_available_repository().
| User::insert_default_global_pref | ( | $ | p_type = "", |
| $ | p_value = "" |
||
| ) |
insert default pref if no parameter are given insert all the existing parameter otherwise only the requested
| $p_type | parameter's type or nothing |
| $p_value | parameter value |
Definition at line 616 of file class_user.php.
References $cn, $name, and $value.
Referenced by load_global_pref().
{
$default_parameter = array("THEME" => "classic",
"PAGESIZE" => "50",
'TOPMENU' => 'TEXT',
'LANG' => 'fr_FR.utf8');
$cn = new Database();
$Sql = "insert into user_global_pref(user_id,parameter_type,parameter_value)
values ('%s','%s','%s')";
if ($p_type == "")
{
foreach ($default_parameter as $name => $value)
{
$Insert = sprintf($Sql, $this->login, $name, $value);
$cn->exec_sql($Insert);
}
}
else
{
$value = ($p_value == "") ? $default_parameter[$p_type] : $p_value;
$Insert = sprintf($Sql, $this->login, $p_type, $value);
$cn->exec_sql($Insert);
}
}
| User::is_local_admin | ( | $ | p_dossier = -1 | ) |
Check if an user is an local administrator.
| $p_dossier | : dossier_id |
Definition at line 770 of file class_user.php.
Referenced by check_action(), check_dossier(), check_print(), get_folder_access(), get_ledger(), and get_ledger_access().
{
if ($p_dossier == -1)
{
$p_dossier = dossier::id();
}
if ($this->login == 'admin')
return 1;
$sql = 'select priv_priv from ac_users join jnt_use_dos using (use_id) join priv_user ' .
' on ( jnt_use_dos.jnt_id = priv_user.priv_jnt) ' .
" where priv_priv='L' and use_login='" . $this->login . "' and dos_id=$p_dossier";
$cn = new Database();
$isAdmin = $cn->count_sql($sql);
return $isAdmin;
}
| User::load | ( | ) |
load data from database.
if this->id == -1, it is unknown so we have to retrieve it from the database by the login return -1 if nothing is found
Definition at line 87 of file class_user.php.
References $cn, $Max, $Res, $row, $sql, $sql_array, Database\fetch_array(), name, and Database\num_row().
Referenced by User().
{
/* if this->id == -1, it is unknown so we have to retrieve it from
the database thanks it login */
if ($this->id < 0)
{
$sql_cond = " where use_login=$1";
$sql_array = array($this->login);
}
else
{
$sql_cond = " where use_id=$1";
$sql_array = array($this->id);
}
$sql = "select use_id,
use_first_name,
use_name,
use_login,
use_active,
use_admin,
use_pass
from ac_users ";
$cn = new Database();
$Res = $cn->exec_sql($sql . $sql_cond, $sql_array);
if (($Max = Database::num_row($Res)) == 0)
return -1;
$row = Database::fetch_array($Res, 0);
$this->id = $row['use_id'];
$this->first_name = $row['use_first_name'];
$this->name = $row['use_name'];
$this->active = $row['use_active'];
$this->login = $row['use_login'];
$this->admin = $row['use_admin'];
$this->password = $row['use_pass'];
}
Get the global preferences from user_global_pref in the account_repository db.
Definition at line 570 of file class_user.php.
References $cn, $Max, $name, $Res, $row, $type, Database\fetch_array(), insert_default_global_pref(), and Database\num_row().
Referenced by Check().
{
$cn = new Database();
// Load everything in an array
$Res = $cn->exec_sql("select parameter_type,parameter_value from
user_global_pref
where user_id='" . $this->login . "'");
$Max = Database::num_row($Res);
if ($Max == 0)
{
$this->insert_default_global_pref();
$this->load_global_pref();
return;
}
// Load value into array
$line = array();
for ($i = 0; $i < $Max; $i++)
{
$row = Database::fetch_array($Res, $i);
$type = $row['parameter_type'];
$line[$type] = $row['parameter_value'];
;
}
// save array into g_ variable
$array_pref = array('g_theme' => 'THEME', 'g_pagesize' => 'PAGESIZE', 'g_topmenu' => 'TOPMENU', 'g_lang' => 'LANG');
foreach ($array_pref as $name => $parameter)
{
if (!isset($line[$parameter]))
{
$this->insert_default_global_pref($parameter);
$this->load_global_pref();
return;
}
$_SESSION[$name] = $line[$parameter];
}
}
| User::save | ( | ) |
Definition at line 123 of file class_user.php.
| User::save_global_preference | ( | $ | key, |
| $ | value | ||
| ) |
Definition at line 467 of file class_user.php.
References $count, $key, $repo, and $value.
{
$repo = new Database();
$count = $repo->get_value("select count(*)
from
user_global_pref
where
parameter_type=$1 and user_id=$2", array($key, $this->login));
if ($count == 1)
{
$repo->exec_sql("update user_global_pref set parameter_value=$1
where parameter_type=$2 and user_id=$3", array($value, $key, $this->login));
}
elseif ($count == 0)
{
$repo->exec_sql("insert into user_global_pref(user_id,parameter_type,parameter_value)
values($1,$2,$3)", array($this->login, $key, $value));
}
}
| User::save_password | ( | $ | p_pass1, |
| $ | p_pass2 | ||
| ) |
Definition at line 1134 of file class_user.php.
References $repo, and alert().
{
if ($p_pass1 == $p_pass2) {
$repo = new Database();
$l_pass = md5($_POST['pass_1']);
$repo->exec_sql("update ac_users set use_pass=$1 where use_login=$2", array($l_pass, $_SESSION['g_user']));
$_SESSION['g_pass'] = $_POST['pass_1'];
} else {
alert(_("Les mots de passe ne correspondent pas. Mot de passe inchangé"));
}
}
| User::save_profile | ( | $ | p_id | ) |
Definition at line 1046 of file class_user.php.
{
$count = $this->db->get_value("select count(*) from profile_user where user_name=$1", array($this->login));
if ($count == 0)
{
$this->db->exec_sql("insert into profile_user(p_id,user_name)
values ($1,$2)", array($p_id, $this->login));
}
else
{
$this->db->exec_sql("update profile_user set p_id=$1 where user_name=$2", array($p_id, $this->login));
}
}
| User::set_default_periode | ( | ) | [private] |
Definition at line 390 of file class_user.php.
References $Res, $sql, db, and Database\fetch_result().
Referenced by get_periode().
{
/* get the first periode */
$sql = 'select min(p_id) as pid from parm_periode where p_closed = false and p_start = (select min(p_start) from parm_periode)';
$Res = $this->db->exec_sql($sql);
$pid = Database::fetch_result($Res, 0, 0);
/* if all the periode are closed, then we use the last closed period */
if ($pid == null)
{
$sql = 'select min(p_id) as pid from parm_periode where p_start = (select max(p_start) from parm_periode)';
$Res2 = $this->db->exec_sql($sql);
$pid = Database::fetch_result($Res2, 0, 0);
if ($pid == null)
{
throw new Exception( _("Aucune période trouvéee !!!"));
}
$pid = Database::fetch_result($Res2, 0, 0);
}
$sql = sprintf("insert into user_local_pref (user_id,parameter_value,parameter_type)
values ('%s','%d','PERIODE')", $this->id, $pid);
$Res = $this->db->exec_sql($sql);
}
| User::set_folder_access | ( | $ | db_id, |
| $ | priv | ||
| ) |
Definition at line 224 of file class_user.php.
References $cn, $priv, and $Res.
{
$cn = new Database();
$jnt = $cn->get_value("select jnt_id from jnt_use_dos where dos_id=$1 and use_id=$2", array($db_id, $this->id));
if ($cn->size() == 0)
{
$Res = $cn->exec_sql("insert into jnt_use_dos(dos_id,use_id) values($1,$2)", array($db_id, $this->id));
$jnt = $cn->get_value("select jnt_id from jnt_use_dos where dos_id=$1 and use_id=$2", array($db_id, $this->id));
$Res = $cn->exec_sql("insert into priv_user (priv_priv,priv_jnt) values($1,$2)", array($priv, $jnt));
}
$Res = $cn->exec_sql("update priv_user set priv_priv=$1 where priv_jnt=$2", array($priv, $jnt));
}
| User::set_mini_report | ( | $ | p_id | ) |
set the mini rapport to display on the welcome page
Definition at line 451 of file class_user.php.
References $count, $Res, $sql, and db.
{
$count = $this->db->get_value("select count(*) from user_local_pref where user_id=$1 and parameter_type=$2", array($this->id, 'MINIREPORT'));
if ($count == 1)
{
$sql = "update user_local_pref set parameter_value=$1 where user_id=$2 and parameter_type='MINIREPORT'";
$Res = $this->db->exec_sql($sql, array($p_id, $this->id));
}
else
{
$sql = "insert into user_local_pref (user_id,parameter_type,parameter_value)" .
"values($1,'MINIREPORT',$2)";
$Res = $this->db->exec_sql($sql, array($this->id, $p_id));
}
}
| User::set_periode | ( | $ | p_periode | ) |
Set the selected periode in the user's preferences.
| $p_periode | periode |
| - | $p_user |
Definition at line 384 of file class_user.php.
| User::show_dossier | ( | $ | p_filtre = "" | ) |
Show all the available folder for the users at the login page.
For the special case 'E' go directly to extension and bypasse the dashboard
| $p_user | user |
| $p_admin | 1 if admin |
Definition at line 929 of file class_user.php.
References $desc, $id, $name, $p_array, $result, $target, $tr, check_dossier(), get_available_folder(), h(), and td().
{
$p_array = $this->get_available_folder($p_filtre);
$result = "";
if ($p_array == 0)
return $result . " * Aucun dossier *";
$result.="<TABLE id=\"folder\" >";
for ($i = 0; $i < sizeof($p_array); $i++)
{
$id = $p_array[$i]['dos_id'];
$name = $p_array[$i]['dos_name'];
$desc = $p_array[$i]['dos_description'];
if ($i % 2 == 0)
$tr = "odd";
else
$tr = "even";
if ($this->check_dossier($id) != 'P')
{
$target = "do.php?gDossier=$id";
}
else
{
$target = "extension.php?gDossier=$id";
}
$result.="<TR class=\"$tr\">";
$result.=td($id, ' class="num" ');
$result.="<TD class=\"$tr\">";
$result.="<A class=\"dossier\" HREF=\"$target\">";
$result.= " <B>" . h($name) . "</B>";
$result.="</A>";
$result.="</TD>";
$desc = ($desc == "") ? "<i>Aucune description</i>" : h($desc);
$desc = "<A class=\"dossier\" HREF=\"$target\">$desc</A>";
$result.="<TD class=\"$tr\" style=\"padding-left:50px\">" . $desc;
$result.="</TD>";
$result.="</TR>";
}
$result.="</TABLE>";
return $result;
}
| User::update_global_pref | ( | $ | p_type, |
| $ | p_value = "" |
||
| ) |
update default pref if value is not given then use the default value
| $p_type | parameter's type |
| $p_value | parameter's value value of the type |
Definition at line 650 of file class_user.php.
{
$default_parameter = array("THEME" => "classic",
"PAGESIZE" => "50",
"LANG" => 'fr_FR.utf8',
'TOPMENU' => 'SELECT');
$cn = new Database();
$Sql = "update user_global_pref set parameter_value=$1
where parameter_type=$2 and
user_id=$3";
$value = ($p_value == "") ? $default_parameter[$p_type] : $p_value;
$cn->exec_sql($Sql, array($value, $p_type, $this->login));
}
| User::User | ( | &$ | p_cn, |
| $ | p_id = -1 |
||
| ) |
Definition at line 44 of file class_user.php.
References db, echo, exit, load(), name, and redirect().
{
// if p_id is not set then check the connected user
if ($p_id == -1)
{
if (!isset($_SESSION['g_user']))
{
echo '<h2 class="error">' . _('Session expirée<br>Utilisateur déconnecté') . '</h2>';
redirect('index.php', 1);
exit();
}
$this->login = $_SESSION['g_user'];
$this->pass = $_SESSION['g_pass'];
$this->lang = (isset($_SESSION['g_lang'])) ? $_SESSION['g_lang'] : 'fr_FR.utf8';
$this->valid = (isset($_SESSION['isValid'])) ? 1 : 0;
$this->db = $p_cn;
$this->id = -1;
if (isset($_SESSION['g_theme']))
$this->theme = $_SESSION['g_theme'];
$this->admin = ( isset($_SESSION['use_admin']) ) ? $_SESSION['use_admin'] : 0;
if (isset($_SESSION['use_name']))
$this->name = $_SESSION['use_name'];
if (isset($_SESSION['use_first_name']))
$this->first_name = $_SESSION['use_first_name'];
$this->load();
}
else // if p_id is set get data of another user
{
$this->id = $p_id;
$this->db = $p_cn;
$this->load();
}
}
| User::$admin |
Definition at line 41 of file class_user.php.
| User::$db |
Definition at line 40 of file class_user.php.
| User::$id |
Definition at line 38 of file class_user.php.
Referenced by show_dossier().
| User::$pass |
Definition at line 39 of file class_user.php.
| User::$valid |
Definition at line 42 of file class_user.php.