ISPConfig3 devel
blame | history | patch | commit | commitdiff | ignore whitespace
tbrehm
2013-02-22 526b997c9891a796b152cdbab8e329b356b1f596 
 interface/web/sites/database_user_edit.php


@@ -66,13 +66,13 @@


        if ($_SESSION["s"]["user"]["typ"] != 'admin' && $app->auth->has_clients($_SESSION['s']['user']['userid'])) {


         // Get the limits of the client


         $client_group_id = $_SESSION["s"]["user"]["default_group"];


         $client = $app->db->queryOneRecord("SELECT client.contactname, client.name, client.client_id FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");


         $client = $app->db->queryOneRecord("SELECT client.company_name, client.contact_name, client.client_id FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");


            


            // Fill the client select field


            $sql = "SELECT sys_group.groupid, sys_group.name, CONCAT(client.company_name,' :: ',client.contact_name) as contactname FROM sys_group, client WHERE sys_group.client_id = client.client_id AND client.parent_client_id = ".$client['client_id']." ORDER BY sys_group.name";


            $records = $app->db->queryAllRecords($sql);


            $tmp = $app->db->queryOneRecord("SELECT groupid FROM sys_group WHERE client_id = ".$client['client_id']);


            $client_select = '<option value="'.$tmp['groupid'].'">'.$client['name'].' :: '.$client['contactname'].'</option>';


            $client_select = '<option value="'.$tmp['groupid'].'">'.$client['company_name'].' :: '.$client['contact_name'].'</option>';


            //$tmp_data_record = $app->tform->getDataRecord($this->id);


            if(is_array($records)) {


                foreach( $records as $rec) {


@@ -100,14 +100,11 @@


        


      if ($this->dataRecord['database_user'] != ""){


         /* REMOVE the restriction */


         $app->tpl->setVar("database_user", str_replace($dbuser_prefix , '', $this->dataRecord['database_user']));


         $app->tpl->setVar("database_user", $app->tools_sites->removePrefix($this->dataRecord['database_user'], $this->dataRecord['database_user_prefix'], $dbuser_prefix));


      }


      


      if($_SESSION["s"]["user"]["typ"] == 'admin' || $app->auth->has_clients($_SESSION['s']['user']['userid'])) {


         $app->tpl->setVar("database_user_prefix", $global_config['dbuser_prefix']);


      } else {


         $app->tpl->setVar("database_user_prefix", $dbuser_prefix);


      }


    


      $app->tpl->setVar("database_user_prefix", $app->tools_sites->getPrefix($this->dataRecord['database_user_prefix'], $dbuser_prefix, $global_config['dbuser_prefix']));


      


      parent::onShowEnd();


   }


@@ -128,6 +125,11 @@


      $global_config = $app->getconf->get_global_config('sites');


      $dbuser_prefix = $app->tools_sites->replacePrefix($global_config['dbuser_prefix'], $this->dataRecord);




        $this->oldDataRecord = $app->db->queryOneRecord("SELECT * FROM web_database_user WHERE database_user_id = '".$this->id."'");


        


        $dbuser_prefix = $app->tools_sites->getPrefix($this->oldDataRecord['database_user_prefix'], $dbuser_prefix);


        $this->dataRecord['database_user_prefix'] = $dbuser_prefix;


        


      //* Database username shall not be empty


      if($this->dataRecord['database_user'] == '') $app->tform->errorMessage .= $app->tform->wordbook["database_user_error_empty"].'<br />';




@@ -161,6 +163,8 @@


      $global_config = $app->getconf->get_global_config('sites');


      $dbuser_prefix = $app->tools_sites->replacePrefix($global_config['dbuser_prefix'], $this->dataRecord);


      


        $this->dataRecord['database_user_prefix'] = $dbuser_prefix;


        


      if(strlen($dbuser_prefix . $this->dataRecord['database_user']) > 16) $app->tform->errorMessage .= str_replace('{user}',$dbuser_prefix . $this->dataRecord['database_user'],$app->tform->wordbook["database_user_error_len"]).'<br />';


      


      //* Check database user against blacklist


@@ -204,14 +208,16 @@


         $client_group_id = $app->functions->intval($this->dataRecord["client_group_id"]);


         $app->db->query("UPDATE web_database_user SET sys_groupid = $client_group_id, sys_perm_group = 'riud' WHERE database_user_id = ".$this->id);


      }


        


        $old_rec = $app->db->queryOneRecord("SELECT * FROM web_database_user WHERE database_user_id = '".$this->id."'");


		


      $password = $app->db->queryOneRecord("SELECT database_password FROM web_database_user WHERE database_user_id = ".$this->id);


        


        $records = $app->db->queryAllRecords("SELECT DISTINCT server_id FROM web_database WHERE database_user_id = '".$app->functions->intval($this->id)."' UNION SELECT DISTINCT server_id FROM web_database WHERE database_ro_user_id = '".$app->functions->intval($this->id)."'");


        foreach($records as $rec) {


            $new_rec = $this->dataRecord;


            $new_rec['server_id'] = $rec['server_id'];


            $app->db->datalogSave('web_database_user', 'UPDATE', 'database_user_id', $this->id, $old_rec, $new_rec);


         // Make sure to store the password in encrypted form in sys_datalog


         $new_rec['database_password'] = $password['database_password'];


            $app->db->datalogSave('web_database_user', 'UPDATE', 'database_user_id', $this->id, $this->oldDataRecord, $new_rec);


        }


        unset($new_rec);


   }