Newer
Older
<?php
/*********************************************************************
users.php
Peter Rotich <peter@osticket.com>
Jared Hancock <jared@osticket.com>
Copyright (c) 2006-2014 osTicket
http://www.osticket.com
Released under the GNU General Public License WITHOUT ANY WARRANTY.
See LICENSE.TXT for details.
vim: expandtab sw=4 ts=4 sts=4:
**********************************************************************/
require('staff.inc.php');
Http::redirect('index.php');
require_once INCLUDE_DIR.'class.note.php';
$user = null;
if ($_REQUEST['id'] && !($user=User::lookup($_REQUEST['id'])))
$errors['err'] = sprintf(__('%s: Unknown or invalid'), _N('end user', 'end users', 1));
switch(strtolower($_REQUEST['do'])) {
$errors['err']=sprintf(__('%s: Unknown or invalid'), _N('end user', 'end users', 1));
$errors['err'] = __('Action denied. Contact admin for access');
} elseif(($acct = $user->getAccount())
&& !$acct->update($_POST, $errors)) {
$errors['err']=__('Unable to update user account information');
$msg=sprintf(__('Successfully updated %s.'), __('this end user'));
$errors['err']=sprintf('%s %s',
sprintf(__('Unable to update %s.'), __('this end user')),
__('Correct any errors below and try again.'));
}
break;
case 'create':
$form = UserForm::getUserForm()->getForm($_POST);
if (($user = User::fromForm($form))) {
$msg = Format::htmlchars(sprintf(__('Successfully added %s.'), $user->getName()));
$errors['err']=sprintf('%s %s',
sprintf(__('Unable to add %s.'), __('this end user')),
__('Correct any errors below and try again.'));
$errors['err'] = sprintf(__('%s: Unknown or invalid'),
__('end user account'));
$errors['err'] = __('Account is already confirmed');
$msg = sprintf(__('Account activation email sent to %s'),$user->getEmail());
$errors['err'] = sprintf('%s - %s', __('Unable to send account activation email'), __('Please try again!'));
$errors['err'] = sprintf(__('%s: Unknown or invalid'), __('end user account'));
$msg = sprintf(__('Account password reset email sent to %s'),$user->getEmail());
$errors['err'] = sprintf('%s - %s', __('Unable to send account password reset email'), __('Please try again!'));
case 'mass_process':
if (!$_POST['ids'] || !is_array($_POST['ids']) || !count($_POST['ids'])) {
$errors['err'] = sprintf(__('You must select at least %s.'),
$users = User::objects()->filter(
array('id__in' => $_POST['ids'])
);
$count = 0;
switch (strtolower($_POST['a'])) {
case 'lock':
foreach ($users as $U)
if (($acct = $U->getAccount()) && $acct->lock())
$count++;
break;
case 'unlock':
foreach ($users as $U)
if (($acct = $U->getAccount()) && $acct->unlock())
$count++;
break;
case 'delete':
foreach ($users as $U) {
if (@$_POST['deletetickets']) {
if (!$U->deleteAllTickets())
// XXX: This message is very unclear
$errors['err'] = __('You do not have permission to delete a user with tickets!');
}
if ($U->delete())
$count++;
break;
case 'reset':
foreach ($users as $U)
if (($acct = $U->getAccount()) && $acct->sendResetEmail())
$count++;
break;
case 'register':
foreach ($users as $U) {
if (($acct = $U->getAccount()) && $acct->sendConfirmEmail())
$count++;
elseif ($acct = UserAccount::register($U,
array('sendemail' => true), $errors
)) {
$count++;
}
}
break;
case 'setorg':
if (!($org = Organization::lookup($_POST['org_id'])))
$errors['err'] = __('Unknown action - get technical help.');
foreach ($users as $U) {
if ($U->setOrganization($org))
$count++;
}
break;
default:
$errors['err']=__('Unknown action - get technical help.');
}
if (!$errors['err'] && !$count) {
$errors['err'] = __('Unable to manage any of the selected end users');
}
elseif ($_POST['count'] && $count != $_POST['count']) {
$warn = __('Not all selected items were updated');
}
elseif ($count) {
$msg = __('Successfully managed selected end users');
}
case 'import-users':
$status = User::importFromPost($_FILES['import'] ?: $_POST['pasted']);
if (is_numeric($status))
$msg = sprintf(__('Successfully imported %1$d %2$s'), $status,
_N('end user', 'end users', $status));
else
$errors['err'] = $status;
break;
$errors['err'] = __('Unknown action');
require_once(INCLUDE_DIR.'class.export.php');
$ts = strftime('%Y%m%d');
if (!($query=$_SESSION[':Q:users']))
$errors['err'] = __('Query token not found');
elseif (!Export::saveUsers($query, __("users")."-$ts.csv", 'csv'))
Michael
committed
$errors['err'] = __('Unable to dump query results.')
.' '.__('Internal error occurred');
$page = 'users.inc.php';
if ($user ) {
$page = 'user-view.inc.php';
switch (strtolower($_REQUEST['t'])) {
case 'tickets':
if (isset($_SERVER['HTTP_X_PJAX'])) {
$page='templates/tickets.tmpl.php';
$pjax_container = @$_SERVER['HTTP_X_PJAX_CONTAINER'];
require(STAFFINC_DIR.$page);
return;
} elseif ($_REQUEST['a'] == 'export' && ($query=$_SESSION[':U:tickets'])) {
$filename = sprintf('%s-tickets-%s.csv',
$user->getName(), strftime('%Y%m%d'));
if (!Export::saveTickets($query, $filename, 'csv'))
Michael
committed
$errors['err'] = __('Unable to dump query results.')
.' '.__('Internal error occurred');
$nav->setTabActive('users');
require(STAFFINC_DIR.'header.inc.php');
require(STAFFINC_DIR.$page);
include(STAFFINC_DIR.'footer.inc.php');
?>