You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
129 lines
4.2 KiB
129 lines
4.2 KiB
1 year ago
|
<?php
|
||
|
|
/*
|
||
|
|
** Zabbix
|
||
|
|
** Copyright (C) 2001-2023 Zabbix SIA
|
||
|
|
**
|
||
|
|
** This program is free software; you can redistribute it and/or modify
|
||
|
|
** it under the terms of the GNU General Public License as published by
|
||
|
|
** the Free Software Foundation; either version 2 of the License, or
|
||
|
|
** (at your option) any later version.
|
||
|
|
**
|
||
|
|
** This program is distributed in the hope that it will be useful,
|
||
|
|
** but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
|
|
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||
|
|
** GNU General Public License for more details.
|
||
|
|
**
|
||
|
|
** You should have received a copy of the GNU General Public License
|
||
|
|
** along with this program; if not, write to the Free Software
|
||
|
|
** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
||
|
|
**/
|
||
|
|
|
||
|
|
|
||
|
|
class CControllerUsergroupUpdate extends CController {
|
||
|
|
|
||
|
|
protected function checkInput() {
|
||
|
|
$fields = [
|
||
|
|
'usrgrpid' => 'required|db usrgrp.usrgrpid',
|
||
|
|
'name' => 'not_empty|db usrgrp.name',
|
||
|
|
'userids' => 'array_db users.userid',
|
||
|
|
'gui_access' => 'db usrgrp.gui_access|in '.implode(',', [GROUP_GUI_ACCESS_SYSTEM, GROUP_GUI_ACCESS_INTERNAL, GROUP_GUI_ACCESS_LDAP, GROUP_GUI_ACCESS_DISABLED]),
|
||
|
|
'userdirectoryid' => 'db usrgrp.userdirectoryid',
|
||
|
|
'users_status' => 'db usrgrp.users_status|in '.GROUP_STATUS_ENABLED.','.GROUP_STATUS_DISABLED,
|
||
|
|
'debug_mode' => 'db usrgrp.debug_mode|in '.GROUP_DEBUG_MODE_ENABLED.','.GROUP_DEBUG_MODE_DISABLED,
|
||
|
|
|
||
|
|
'group_rights' => 'array',
|
||
|
|
'templategroup_rights'=> 'array',
|
||
|
|
'tag_filters' => 'array',
|
||
|
|
|
||
|
|
'new_group_right' => 'array',
|
||
|
|
'new_templategroup_right' => 'array',
|
||
|
|
'new_tag_filter' => 'array',
|
||
|
|
|
||
|
|
'form_refresh' => 'int32'
|
||
|
|
];
|
||
|
|
|
||
|
|
$ret = $this->validateInput($fields);
|
||
|
|
|
||
|
|
if (!$ret) {
|
||
|
|
switch ($this->getValidationError()) {
|
||
|
|
case self::VALIDATION_ERROR:
|
||
|
|
$response = new CControllerResponseRedirect((new CUrl('zabbix.php'))
|
||
|
|
->setArgument('action', 'usergroup.edit')
|
||
|
|
->setArgument('usrgrpid', $this->getInput('usrgrpid'))
|
||
|
|
->getUrl()
|
||
|
|
);
|
||
|
|
$response->setFormData($this->getInputAll());
|
||
|
|
CMessageHelper::setErrorTitle(_('Cannot update user group'));
|
||
|
|
$this->setResponse($response);
|
||
|
|
break;
|
||
|
|
|
||
|
|
case self::VALIDATION_FATAL_ERROR:
|
||
|
|
$this->setResponse(new CControllerResponseFatal());
|
||
|
|
break;
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
return $ret;
|
||
|
|
}
|
||
|
|
|
||
|
|
protected function checkPermissions() {
|
||
|
|
return $this->checkAccess(CRoleHelper::UI_ADMINISTRATION_USER_GROUPS);
|
||
|
|
}
|
||
|
|
|
||
|
|
protected function doAction() {
|
||
|
|
$user_group = [
|
||
|
|
'users' => zbx_toObject($this->getInput('userids', []), 'userid'),
|
||
|
|
'tag_filters' => $this->getInput('tag_filters', []),
|
||
|
|
'hostgroup_rights' => [],
|
||
|
|
'templategroup_rights' => []
|
||
|
|
];
|
||
|
|
|
||
|
|
$this->getInputs($user_group, ['usrgrpid', 'name', 'users_status', 'gui_access', 'debug_mode',
|
||
|
|
'userdirectoryid'
|
||
|
|
]);
|
||
|
|
|
||
|
|
$group_rights = applyHostGroupRights($this->getInput('group_rights', []));
|
||
|
|
|
||
|
|
foreach ($group_rights as $groupid => $group_right) {
|
||
|
|
if ($groupid != 0 && $group_right['permission'] != PERM_NONE) {
|
||
|
|
$user_group['hostgroup_rights'][] = [
|
||
|
|
'id' => (string) $groupid,
|
||
|
|
'permission' => $group_right['permission']
|
||
|
|
];
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
$templategroup_rights = applyTemplateGroupRights($this->getInput('templategroup_rights', []));
|
||
|
|
|
||
|
|
foreach ($templategroup_rights as $groupid => $group_right) {
|
||
|
|
if ($groupid != 0 && $group_right['permission'] != PERM_NONE) {
|
||
|
|
$user_group['templategroup_rights'][] = [
|
||
|
|
'id' => (string) $groupid,
|
||
|
|
'permission' => $group_right['permission']
|
||
|
|
];
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
$result = (bool) API::UserGroup()->update($user_group);
|
||
|
|
|
||
|
|
if ($result) {
|
||
|
|
$response = new CControllerResponseRedirect((new CUrl('zabbix.php'))
|
||
|
|
->setArgument('action', 'usergroup.list')
|
||
|
|
->setArgument('page', CPagerHelper::loadPage('usergroup.list', null))
|
||
|
|
);
|
||
|
|
$response->setFormData(['uncheck' => '1']);
|
||
|
|
CMessageHelper::setSuccessTitle(_('User group updated'));
|
||
|
|
}
|
||
|
|
else {
|
||
|
|
$response = new CControllerResponseRedirect((new CUrl('zabbix.php'))
|
||
|
|
->setArgument('action', 'usergroup.edit')
|
||
|
|
->setArgument('usrgrpid', $this->getInput('usrgrpid'))
|
||
|
|
);
|
||
|
|
CMessageHelper::setErrorTitle(_('Cannot update user group'));
|
||
|
|
$response->setFormData($this->getInputAll());
|
||
|
|
}
|
||
|
|
|
||
|
|
$this->setResponse($response);
|
||
|
|
}
|
||
|
|
}
|