From 6bfadc14edec84119dc6d72b62b7fa762cbc5771 Mon Sep 17 00:00:00 2001 From: Bharat Mediratta Date: Wed, 28 Jan 2009 22:42:50 +0000 Subject: Fully implement the user administration backend with drag/drop to add users to groups. --- modules/user/controllers/admin_groups.php | 124 -------------------------- modules/user/controllers/admin_users.php | 113 +++++++++++++++++++++-- modules/user/helpers/group.php | 6 +- modules/user/helpers/user.php | 5 +- modules/user/helpers/user_menu.php | 18 ++-- modules/user/views/admin_groups.html.php | 25 ------ modules/user/views/admin_users.html.php | 6 +- modules/user/views/admin_users_group.html.php | 7 ++ 8 files changed, 128 insertions(+), 176 deletions(-) delete mode 100644 modules/user/controllers/admin_groups.php delete mode 100644 modules/user/views/admin_groups.html.php (limited to 'modules/user') diff --git a/modules/user/controllers/admin_groups.php b/modules/user/controllers/admin_groups.php deleted file mode 100644 index bba104f0..00000000 --- a/modules/user/controllers/admin_groups.php +++ /dev/null @@ -1,124 +0,0 @@ -content = new View("admin_groups.html"); - $view->content->groups = ORM::factory("group")->orderby("name")->find_all(); - print $view; - } - - public function add() { - $form = group::get_add_form_admin(); - $valid = $form->validate(); - if ($valid) { - $new_name = $form->add_group->inputs["name"]->value; - $group = ORM::factory("group")->where("name", $new_name)->find(); - if ($group->loaded) { - $form->add_group->inputs["name"]->add_error("in_use", 1); - $valid = false; - } - } - - if ($valid) { - $group = group::create($new_name); - $group->save(); - message::success(t("Created group %group_name", array("group_name" => $group->name))); - print json_encode(array("result" => "success")); - } else { - message::error(t("Failed to create group")); - print json_encode(array("result" => "error", - "form" => $form->__toString())); - } - } - - public function add_form() { - print group::get_add_form_admin(); - } - - public function delete($id) { - $group = ORM::factory("group", $id); - if (!$group->loaded) { - kohana::show_404(); - } - - $form = group::get_delete_form_admin($group); - if($form->validate()) { - $name = $group->name; - $group->delete(); - } else { - message::error(t("Failed to delete group")); - print json_encode(array("result" => "error", - "form" => $form->__toString())); - } - - $message = t("Deleted group %group_name", array("group_name" => $name)); - log::success("group", $message); - message::success($message); - print json_encode(array("result" => "success")); - } - - public function delete_form($id) { - $group = ORM::factory("group", $id); - if (!$group->loaded) { - kohana::show_404(); - } - print group::get_delete_form_admin($group); - } - - public function edit($id) { - $group = ORM::factory("group", $id); - if (!$group->loaded) { - kohana::show_404(); - } - - $form = group::get_edit_form_admin($group); - $valid = $form->validate(); - - if ($valid) { - $new_name = $form->edit_group->inputs["name"]->value; - $group = ORM::factory("group")->where("name", $new_name)->find(); - if ($group->loaded) { - $form->edit_group->inputs["name"]->add_error("in_use", 1); - $valid = false; - } - } - - if ($valid) { - $group->name = $form->edit_group->inputs["name"]->value; - $group->save(); - message::success(t("Changed group %group_name", array("group_name" => $group->name))); - print json_encode(array("result" => "success")); - } else { - message::error(t("Failed to change group %group_name", array("group_name" => $group->name))); - print json_encode(array("result" => "error", - "form" => $form->__toString())); - } - } - - public function edit_form($id) { - $group = ORM::factory("group", $id); - if (!$group->loaded) { - kohana::show_404(); - } - - print group::get_edit_form_admin($group); - } -} diff --git a/modules/user/controllers/admin_users.php b/modules/user/controllers/admin_users.php index 85d59b8d..f6136cd0 100644 --- a/modules/user/controllers/admin_users.php +++ b/modules/user/controllers/admin_users.php @@ -27,8 +27,8 @@ class Admin_Users_Controller extends Controller { } public function add_user() { + access::verify_csrf(); $form = user::get_add_form_admin(); - $valid = $form->validate(); $name = $form->add_user->inputs["name"]->value; $user = ORM::factory("user")->where("name", $name)->find(); @@ -45,7 +45,6 @@ class Admin_Users_Controller extends Controller { message::success(t("Created user %user_name", array("user_name" => $user->name))); print json_encode(array("result" => "success")); } else { - message::error(t("Failed to create user")); print json_encode(array("result" => "error", "form" => $form->__toString())); } @@ -56,6 +55,7 @@ class Admin_Users_Controller extends Controller { } public function delete_user($id) { + access::verify_csrf(); $user = ORM::factory("user", $id); if (!$user->loaded) { kohana::show_404(); @@ -66,7 +66,6 @@ class Admin_Users_Controller extends Controller { $name = $user->name; $user->delete(); } else { - message::error(t("Failed to delete user")); print json_encode(array("result" => "error", "form" => $form->__toString())); } @@ -86,6 +85,7 @@ class Admin_Users_Controller extends Controller { } public function edit_user($id) { + access::verify_csrf(); $user = ORM::factory("user", $id); if (!$user->loaded) { kohana::show_404(); @@ -96,8 +96,11 @@ class Admin_Users_Controller extends Controller { $valid = $form->validate(); if ($valid) { $new_name = $form->edit_user->inputs["name"]->value; - $user = ORM::factory("user")->where("name", $new_name)->find(); - if ($user->loaded) { + if (ORM::factory("user") + ->where("name", $new_name) + ->where("id !=", $id) + ->find() + ->loaded) { $form->edit_user->inputs["name"]->add_error("in_use", 1); $valid = false; } @@ -112,7 +115,6 @@ class Admin_Users_Controller extends Controller { message::success(t("Changed user %user_name", array("user_name" => $user->name))); print json_encode(array("result" => "success")); } else { - message::error(t("Failed to change user %user_name", array("user_name" => $user->name))); print json_encode(array("result" => "error", "form" => $form->__toString())); } @@ -148,4 +150,103 @@ class Admin_Users_Controller extends Controller { $view->group = ORM::factory("group", $group_id); print $view; } + + public function add_group() { + access::verify_csrf(); + $form = group::get_add_form_admin(); + $valid = $form->validate(); + if ($valid) { + $new_name = $form->add_group->inputs["name"]->value; + $group = ORM::factory("group")->where("name", $new_name)->find(); + if ($group->loaded) { + $form->add_group->inputs["name"]->add_error("in_use", 1); + $valid = false; + } + } + + if ($valid) { + $group = group::create($new_name); + $group->save(); + message::success(t("Created group %group_name", array("group_name" => $group->name))); + print json_encode(array("result" => "success")); + } else { + print json_encode(array("result" => "error", + "form" => $form->__toString())); + } + } + + public function add_group_form() { + print group::get_add_form_admin(); + } + + public function delete_group($id) { + access::verify_csrf(); + $group = ORM::factory("group", $id); + if (!$group->loaded) { + kohana::show_404(); + } + + $form = group::get_delete_form_admin($group); + if($form->validate()) { + $name = $group->name; + $group->delete(); + } else { + print json_encode(array("result" => "error", + "form" => $form->__toString())); + } + + $message = t("Deleted group %group_name", array("group_name" => $name)); + log::success("group", $message); + message::success($message); + print json_encode(array("result" => "success")); + } + + public function delete_group_form($id) { + $group = ORM::factory("group", $id); + if (!$group->loaded) { + kohana::show_404(); + } + print group::get_delete_form_admin($group); + } + + public function edit_group($id) { + access::verify_csrf(); + $group = ORM::factory("group", $id); + if (!$group->loaded) { + kohana::show_404(); + } + + $form = group::get_edit_form_admin($group); + $valid = $form->validate(); + + if ($valid) { + $new_name = $form->edit_group->inputs["name"]->value; + $group = ORM::factory("group")->where("name", $new_name)->find(); + if ($group->loaded) { + $form->edit_group->inputs["name"]->add_error("in_use", 1); + $valid = false; + } + } + + if ($valid) { + $group->name = $form->edit_group->inputs["name"]->value; + $group->save(); + message::success(t("Changed group %group_name", array("group_name" => $group->name))); + print json_encode(array("result" => "success")); + } else { + message::error(t("Failed to change group %group_name", array("group_name" => $group->name))); + print json_encode(array("result" => "error", + "form" => $form->__toString())); + } + } + + public function edit_group_form($id) { + $group = ORM::factory("group", $id); + if (!$group->loaded) { + kohana::show_404(); + } + + print group::get_edit_form_admin($group); + } + } diff --git a/modules/user/helpers/group.php b/modules/user/helpers/group.php index 45c8d1e8..56e8b52d 100644 --- a/modules/user/helpers/group.php +++ b/modules/user/helpers/group.php @@ -62,7 +62,7 @@ class group_Core { } static function get_edit_form_admin($group) { - $form = new Forge("admin/groups/edit/$group->id", "", "post", array("id" => "gEditGroupForm")); + $form = new Forge("admin/users/edit_group/$group->id", "", "post", array("id" => "gEditGroupForm")); $form_group = $form->group("edit_group")->label(t("Edit Group")); $form_group->input("name")->label(t("Name"))->id("gName")->value($group->name); $form_group->inputs["name"]->error_messages( @@ -73,7 +73,7 @@ class group_Core { } static function get_add_form_admin() { - $form = new Forge("admin/groups/add", "", "post", array("id" => "gAddGroupForm")); + $form = new Forge("admin/users/add_group", "", "post", array("id" => "gAddGroupForm")); $form_group = $form->group("add_group")->label(t("Add Group")); $form_group->input("name")->label(t("Name"))->id("gName"); $form_group->inputs["name"]->error_messages( @@ -85,7 +85,7 @@ class group_Core { } static function get_delete_form_admin($group) { - $form = new Forge("admin/groups/delete/$group->id", "", "post", + $form = new Forge("admin/users/delete_group/$group->id", "", "post", array("id" => "gDeleteGroupForm")); $form_group = $form->group("delete_group")->label( t("Are you sure you want to delete group %group_name?", array("group_name" => $group->name))); diff --git a/modules/user/helpers/user.php b/modules/user/helpers/user.php index b67986e3..14e3f09c 100644 --- a/modules/user/helpers/user.php +++ b/modules/user/helpers/user.php @@ -38,7 +38,8 @@ class user_Core { } static function get_edit_form_admin($user) { - $form = new Forge("admin/users/edit/$user->id", "", "post", array("id" => "gEditUserForm")); + $form = new Forge( + "admin/users/edit_user/$user->id", "", "post", array("id" => "gEditUserForm")); $group = $form->group("edit_user")->label(t("Edit User")); $group->input("name")->label(t("Name"))->id("gName")->value($user->name); $group->inputs["name"]->error_messages( @@ -69,7 +70,7 @@ class user_Core { } static function get_delete_form_admin($user) { - $form = new Forge("admin/users/delete/$user->id", "", "post", array("id" => "gDeleteUserForm")); + $form = new Forge("admin/users/delete_user/$user->id", "", "post", array("id" => "gDeleteUserForm")); $group = $form->group("delete_user")->label( t("Are you sure you want to delete user %name?", array("name" => $user->name))); $group->submit("")->value(t("Delete user %name", array("name" => $user->name))); diff --git a/modules/user/helpers/user_menu.php b/modules/user/helpers/user_menu.php index 5f845804..7a0a4505 100644 --- a/modules/user/helpers/user_menu.php +++ b/modules/user/helpers/user_menu.php @@ -19,18 +19,10 @@ */ class user_menu_Core { static function admin($menu, $theme) { - $menu->get("users_groups_menu") - ->append(Menu::factory("link") - ->id("list_users") - ->label(t("Users")) - ->url(url::site("admin/users"))) - ->append(Menu::factory("link") - ->id("list_groups") - ->label(t("Groups")) - ->url(url::site("admin/groups"))) - ->append(Menu::factory("link") - ->id("users_groups") - ->label(t("Users <-> Groups")) - ->url("#")); + $menu->add_after("presentation_menu", + Menu::factory("link") + ->id("users_groups") + ->label(t("Users/Groups")) + ->url(url::site("admin/users"))); } } diff --git a/modules/user/views/admin_groups.html.php b/modules/user/views/admin_groups.html.php deleted file mode 100644 index c1b7dbde..00000000 --- a/modules/user/views/admin_groups.html.php +++ /dev/null @@ -1,25 +0,0 @@ - -
-

-
-

-
- -
- - diff --git a/modules/user/views/admin_users.html.php b/modules/user/views/admin_users.html.php index 57e0864f..72ad0fcd 100644 --- a/modules/user/views/admin_users.html.php +++ b/modules/user/views/admin_users.html.php @@ -73,9 +73,9 @@ last_login == 0) ? "" : date("m j, y", $user->last_login) ?> - + id") ?>" class="gPanelLink"> id != $user->id && !$user->guest): ?> - + id") ?>" class="gDialogLink"> "> @@ -96,7 +96,7 @@