From e942cfab4d189d1dd58e9f16ecb7f01e2adbc8c3 Mon Sep 17 00:00:00 2001
From: tbrehm <t.brehm@ispconfig.org>
Date: Mon, 02 Jan 2012 07:51:32 -0500
Subject: [PATCH] Fixed website permission settings,

---
 interface/lib/classes/remoting.inc.php |  163 +++++++++++++++++++++++++++++++++++++++++++++++++++++-
 1 files changed, 160 insertions(+), 3 deletions(-)

diff --git a/interface/lib/classes/remoting.inc.php b/interface/lib/classes/remoting.inc.php
index 5b3ba95..304ab11 100644
--- a/interface/lib/classes/remoting.inc.php
+++ b/interface/lib/classes/remoting.inc.php
@@ -1353,6 +1353,12 @@
 		if($params['system_user'] == '') $params['system_user'] = '-';
 		if($params['system_group'] == '') $params['system_group'] = '-';
 		
+		//* Set a few defaults for nginx servers
+		if($params['pm_max_children'] == '') $params['pm_max_children'] = 1;
+		if($params['pm_start_servers'] == '') $params['pm_start_servers'] = 1;
+		if($params['pm_min_spare_servers'] == '') $params['pm_min_spare_servers'] = 1;
+		if($params['pm_max_spare_servers'] == '') $params['pm_max_spare_servers'] = 1;
+		
 		$domain_id = $this->insertQuery('../sites/form/web_domain.tform.php',$client_id,$params, 'sites:web_domain:on_after_insert');
 		if ($readonly === true)
 			$app->db->query("UPDATE web_domain SET `sys_userid` = '1' WHERE domain_id = ".$domain_id);
@@ -1366,6 +1372,13 @@
 			$this->server->fault('permission_denied', 'You do not have the permissions to access this function.');
 			return false;
 		}
+		
+		//* Set a few defaults for nginx servers
+		if($params['pm_max_children'] == '') $params['pm_max_children'] = 1;
+		if($params['pm_start_servers'] == '') $params['pm_start_servers'] = 1;
+		if($params['pm_min_spare_servers'] == '') $params['pm_min_spare_servers'] = 1;
+		if($params['pm_max_spare_servers'] == '') $params['pm_max_spare_servers'] = 1;
+		
 		$affected_rows = $this->updateQuery('../sites/form/web_domain.tform.php',$client_id,$primary_id,$params);
 		return $affected_rows;
 	}
@@ -2516,13 +2529,13 @@
 	public function sites_database_get_all_by_user($session_id, $client_id)
     {
         global $app;
-		if(!$this->checkPerm($session_id, 'sites_database_get_all_by_user')) {
+		if(!$this->checkPerm($session_id, 'sites_database_get')) {
         	$this->server->fault('permission_denied', 'You do not have the permissions to access this function.');
             return false;
 		}
         $client_id = intval($client_id);
-        $sql = "SELECT database_id, database_name, database_user, database_password FROM web_database WHERE sys_userid  = $client_id ";
-        $all = $app->db->queryAllRecords($sql);
+        $sql = "SELECT d.database_id, d.database_name, d.database_user, d.database_password FROM web_database d INNER JOIN sys_user s on(d.sys_groupid = s.default_group) WHERE client_id = $client_id";
+		$all = $app->db->queryAllRecords($sql);
         return $all;
 	}
 	
@@ -2941,8 +2954,152 @@
 		return $affected_rows;
 	}
 	
+	//* Start VM
+	public function openvz_vm_start($session_id, $vm_id)
+    {
+		global $app;
+		
+		if(!$this->checkPerm($session_id, 'vm_openvz')) {
+			$this->server->fault('permission_denied', 'You do not have the permissions to access this function.');
+			return false;
+		}
+		
+		$app->uses('remoting_lib');
+		$app->remoting_lib->loadFormDef('../vm/form/openvz_vm.tform.php');
+		$vm = $app->remoting_lib->getDataRecord($vm_id);
+		
+		if(!is_array($vm)) {
+			$this->server->fault('action_pending', 'No VM with this ID available.');
+			return false;
+		}
+		
+		if($vm['active'] == 'n') {
+			$this->server->fault('action_pending', 'VM is not in active state.');
+			return false;
+		}
+		
+		$action = 'openvz_start_vm';
+		
+		$tmp = $app->db->queryOneRecord("SELECT count(action_id) as actions FROM sys_remoteaction 
+				WHERE server_id = '".$vm['server_id']."' 
+				AND action_type = '$action'
+				AND action_param = '".$vm['veid']."'
+				AND action_state = 'pending'");
+		
+		if($tmp['actions'] > 0) {
+			$this->server->fault('action_pending', 'There is already a action pending for this VM.');
+			return false;
+		} else {
+			$sql =  "INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " .
+					"VALUES (".
+					(int)$vm['server_id'] . ", ".
+					time() . ", ".
+					"'".$action."', ".
+					$vm['veid'].", ".
+					"'pending', ".
+					"''".
+					")";
+			$app->db->query($sql);
+		}
+	}
 	
+	//* Stop VM
+	public function openvz_vm_stop($session_id, $vm_id)
+    {
+		global $app;
+		
+		if(!$this->checkPerm($session_id, 'vm_openvz')) {
+			$this->server->fault('permission_denied', 'You do not have the permissions to access this function.');
+			return false;
+		}
+		
+		$app->uses('remoting_lib');
+		$app->remoting_lib->loadFormDef('../vm/form/openvz_vm.tform.php');
+		$vm = $app->remoting_lib->getDataRecord($vm_id);
+		
+		if(!is_array($vm)) {
+			$this->server->fault('action_pending', 'No VM with this ID available.');
+			return false;
+		}
+		
+		if($vm['active'] == 'n') {
+			$this->server->fault('action_pending', 'VM is not in active state.');
+			return false;
+		}
+		
+		$action = 'openvz_stop_vm';
+		
+		$tmp = $app->db->queryOneRecord("SELECT count(action_id) as actions FROM sys_remoteaction 
+				WHERE server_id = '".$vm['server_id']."' 
+				AND action_type = '$action'
+				AND action_param = '".$vm['veid']."'
+				AND action_state = 'pending'");
+		
+		if($tmp['actions'] > 0) {
+			$this->server->fault('action_pending', 'There is already a action pending for this VM.');
+			return false;
+		} else {
+			$sql =  "INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " .
+					"VALUES (".
+					(int)$vm['server_id'] . ", ".
+					time() . ", ".
+					"'".$action."', ".
+					$vm['veid'].", ".
+					"'pending', ".
+					"''".
+					")";
+			$app->db->query($sql);
+		}
+	}
 	
+	//* Restart VM
+	public function openvz_vm_restart($session_id, $vm_id)
+    {
+		global $app;
+		
+		if(!$this->checkPerm($session_id, 'vm_openvz')) {
+			$this->server->fault('permission_denied', 'You do not have the permissions to access this function.');
+			return false;
+		}
+		
+		$app->uses('remoting_lib');
+		$app->remoting_lib->loadFormDef('../vm/form/openvz_vm.tform.php');
+		$vm = $app->remoting_lib->getDataRecord($vm_id);
+		
+		if(!is_array($vm)) {
+			$this->server->fault('action_pending', 'No VM with this ID available.');
+			return false;
+		}
+		
+		if($vm['active'] == 'n') {
+			$this->server->fault('action_pending', 'VM is not in active state.');
+			return false;
+		}
+		
+		$action = 'openvz_restart_vm';
+		
+		$tmp = $app->db->queryOneRecord("SELECT count(action_id) as actions FROM sys_remoteaction 
+				WHERE server_id = '".$vm['server_id']."' 
+				AND action_type = '$action'
+				AND action_param = '".$vm['veid']."'
+				AND action_state = 'pending'");
+		
+		if($tmp['actions'] > 0) {
+			$this->server->fault('action_pending', 'There is already a action pending for this VM.');
+			return false;
+		} else {
+			$sql =  "INSERT INTO sys_remoteaction (server_id, tstamp, action_type, action_param, action_state, response) " .
+					"VALUES (".
+					(int)$vm['server_id'] . ", ".
+					time() . ", ".
+					"'".$action."', ".
+					$vm['veid'].", ".
+					"'pending', ".
+					"''".
+					")";
+			$app->db->query($sql);
+		}
+	}
 	
 	
 	

--
Gitblit v1.9.1