Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
Stud.IP
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Requirements
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Snippets
Locked files
Build
Pipelines
Jobs
Pipeline schedules
Test cases
Artifacts
Deploy
Releases
Package registry
Container Registry
Model registry
Operate
Environments
Terraform modules
Monitor
Incidents
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Code review analytics
Issue analytics
Insights
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
Marcus Eibrink-Lunzenauer
Stud.IP
Commits
256be6d2
Commit
256be6d2
authored
1 year ago
by
Moritz Strohm
Browse files
Options
Downloads
Patches
Plain Diff
resources/admin/user_permissions: added bulk actions to delete permissions, closes #2009
Closes #2009 Merge request
studip/studip!1308
parent
ef49c13c
No related branches found
Branches containing commit
No related tags found
No related merge requests found
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
app/controllers/resources/admin.php
+67
-0
67 additions, 0 deletions
app/controllers/resources/admin.php
app/views/resources/admin/user_permissions.php
+225
-116
225 additions, 116 deletions
app/views/resources/admin/user_permissions.php
with
292 additions
and
116 deletions
app/controllers/resources/admin.php
+
67
−
0
View file @
256be6d2
...
@@ -1226,4 +1226,71 @@ class Resources_AdminController extends AuthenticatedController
...
@@ -1226,4 +1226,71 @@ class Resources_AdminController extends AuthenticatedController
$this
->
export_bookingtypes_default
=
$this
->
config
->
RESOURCES_EXPORT_BOOKINGTYPES_DEFAULT
;
$this
->
export_bookingtypes_default
=
$this
->
config
->
RESOURCES_EXPORT_BOOKINGTYPES_DEFAULT
;
}
}
/**
* This action is called from the resource permission overview page.
* It is designed to be only called via HTTP POST.
*/
public
function
delete_permissions_action
()
{
CSRFProtection
::
verifyUnsafeRequest
();
$type
=
Request
::
get
(
'permission_type'
);
if
(
!
$type
)
{
return
;
}
if
(
$type
===
'permanent'
||
$type
===
'temporary'
)
{
$user_id
=
Request
::
option
(
'user_id'
);
$resource_ids
=
Request
::
optionArray
(
'resource_ids'
);
$deleted
=
0
;
if
(
$type
===
'permanent'
)
{
$deleted
=
ResourcePermission
::
deleteBySQL
(
'`user_id` = :user_id AND `resource_id` IN ( :resource_ids )'
,
[
'user_id'
=>
$user_id
,
'resource_ids'
=>
$resource_ids
]
);
}
elseif
(
$type
===
'temporary'
)
{
$deleted
=
ResourceTemporaryPermission
::
deleteBySQL
(
'`user_id` = :user_id AND `resource_id` IN ( :resource_ids )'
,
[
'user_id'
=>
$user_id
,
'resource_ids'
=>
$resource_ids
]
);
}
if
(
$deleted
>
0
)
{
PageLayout
::
postSuccess
(
sprintf
(
ngettext
(
'%u Berechtigung wurde gelöscht.'
,
'%u Berechtigungen wurden gelöscht.'
,
$deleted
),
$deleted
));
}
$this
->
redirect
(
'resources/admin/user_permissions'
,
[
'user_id'
=>
$user_id
]);
}
elseif
(
$type
===
'all_from_users'
)
{
$user_ids
=
Request
::
optionArray
(
'user_ids'
);
$deleted
=
ResourcePermission
::
deleteBySql
(
'`user_id` IN ( :user_ids )'
,
[
'user_ids'
=>
$user_ids
]
);
$deleted
+=
ResourceTemporaryPermission
::
deleteBySql
(
'`user_id` IN ( :user_ids )'
,
[
'user_ids'
=>
$user_ids
]
);
if
(
$deleted
>
0
)
{
PageLayout
::
postSuccess
(
sprintf
(
ngettext
(
'Die Berechtigungen von einer Person wurden gelöscht.'
,
'Die Berechtigungen von %u Personen wurden gelöscht.'
,
count
(
$user_ids
)
),
count
(
$user_ids
)
));
}
$this
->
redirect
(
'resources/admin/user_permissions'
);
}
}
}
}
This diff is collapsed.
Click to expand it.
app/views/resources/admin/user_permissions.php
+
225
−
116
View file @
256be6d2
...
@@ -65,113 +65,241 @@
...
@@ -65,113 +65,241 @@
<?
endif
?>
<?
endif
?>
</div>
</div>
<?
if
(
$temporary_permissions
)
:
?>
<?
if
(
$temporary_permissions
)
:
?>
<table
class=
"default resources_permissions-table sortable-table"
<form
class=
"default"
id=
"permissions_temporary"
method=
"post"
action=
"
<?=
$controller
->
link_for
(
'resources/admin/delete_permissions'
)
?>
"
>
data-sortlist=
"[[0, 0]]"
>
<?=
CSRFProtection
::
tokenTag
()
?>
<caption>
<input
type=
"hidden"
name=
"permission_type"
value=
"temporary"
>
<?=
_
(
'Temporäre Berechtigungen'
)
?>
<input
type=
"hidden"
name=
"user_id"
value=
"
<?=
htmlReady
(
$user
->
id
)
?>
"
>
</caption>
<table
class=
"default resources_permissions-table sortable-table"
<thead>
data-sortlist=
"[[0, 0]]"
>
<tr>
<caption>
<th
data-sort=
"text"
>
<?=
_
(
'Name der Ressource'
)
?>
</th>
<?=
_
(
'Temporäre Berechtigungen'
)
?>
<th
data-sort=
"1"
>
<?=
_
(
'Berechtigung'
)
?>
</th>
</caption>
<th>
<?=
_
(
'Gültigkeit'
)
?>
</th>
<colspan>
<th
class=
"actions"
>
<?=
_
(
'Aktionen'
)
?>
</th>
<col
class=
"checkbox"
>
</tr>
<col>
</thead>
<col>
<tbody>
<col>
<?
foreach
(
$temporary_permissions
as
$permission
)
:
?>
<col>
</colspan>
<thead>
<tr>
<tr>
<td>
<th>
<?=
htmlReady
(
$permission
->
resource
->
getDerivedClassInstance
())
?>
<input
type=
"checkbox"
data-proxyfor=
"#permissions_temporary input[name='resource_ids[]']"
</td>
data-activates=
"#permissions_temporary tfoot .button"
<td>
title=
"
<?=
htmlReady
(
sprintf
(
<?=
htmlReady
(
$permission
->
perms
)
?>
_
(
'Alle Berechtigungen von %s auswählen'
),
$user
->
getFullName
()
</td>
))
?>
"
>
<td>
</th>
<?=
date
(
'd.m.Y H:i'
,
$permission
->
begin
)
?>
<th
data-sort=
"text"
>
<?=
_
(
'Name der Ressource'
)
?>
</th>
-
<th
data-sort=
"1"
>
<?=
_
(
'Berechtigung'
)
?>
</th>
<?=
date
(
'd.m.Y H:i'
,
$permission
->
end
)
?>
<th>
<?=
_
(
'Gültigkeit'
)
?>
</th>
</td>
<th
class=
"actions"
>
<?=
_
(
'Aktionen'
)
?>
</th>
<td
class=
"actions"
>
</tr>
<a
href=
"
<?=
$permission
->
resource
->
getActionLink
(
</thead>
'temporary_permissions'
,
<tbody>
[
<?
foreach
(
$temporary_permissions
as
$permission
)
:
?>
'user_id'
=>
$permission
->
user_id
<?
]
$resource
=
$permission
->
resource
->
getDerivedClassInstance
();
)
?>
"
data-dialog
>
?>
<?=
Icon
::
create
(
'edit'
)
->
asImg
(
<tr>
'20px'
,
<td>
<input
type=
"checkbox"
name=
"resource_ids[]"
value=
"
<?=
htmlReady
(
$permission
->
resource_id
)
?>
"
title=
"
<?=
htmlReady
(
sprintf
(
_
(
'Berechtigung für %s auswählen'
),
$resource
))
?>
"
>
</td>
<td>
<?=
htmlReady
(
$resource
)
?>
</td>
<td>
<?=
htmlReady
(
$permission
->
perms
)
?>
</td>
<td>
<?=
date
(
'd.m.Y H:i'
,
$permission
->
begin
)
?>
-
<?=
date
(
'd.m.Y H:i'
,
$permission
->
end
)
?>
</td>
<td
class=
"actions"
>
<a
href=
"
<?=
$permission
->
resource
->
getActionLink
(
'temporary_permissions'
,
[
[
'class'
=>
'text-bottom'
,
'user_id'
=>
$permission
->
user_id
'title'
=>
_
(
'Berechtigung bearbeiten'
)
]
]
)
?>
)
?>
"
data-dialog
>
</a>
<?=
Icon
::
create
(
'edit'
)
->
asImg
(
<a
href=
"
<?=
URLHelper
::
getLink
(
'20px'
,
'dispatch.php/resources/admin/booking_log/'
[
.
$user
->
id
'class'
=>
'text-bottom'
,
.
'/'
'title'
=>
_
(
'Berechtigung bearbeiten'
)
.
$permission
->
resource_id
]
)
?>
"
data-dialog
>
)
?>
<?=
Icon
::
create
(
'log'
)
->
asImg
(
</a>
<a
href=
"
<?=
URLHelper
::
getLink
(
'dispatch.php/resources/admin/booking_log/'
.
$user
->
id
.
'/'
.
$permission
->
resource_id
)
?>
"
data-dialog
>
<?=
Icon
::
create
(
'log'
)
->
asImg
(
[
'class'
=>
'text-bottom'
,
'title'
=>
'Liste mit Buchungen anzeigen'
]
)
?>
</a>
</td>
</tr>
<?
endforeach
?>
</tbody>
<tfoot>
<tr>
<td
colspan=
"5"
>
<?=
\Studip\Button
::
create
(
_
(
'Löschen'
),
'delete'
,
[
'data-confirm'
=>
sprintf
(
_
(
'Sollen die gewählten Berechtigungen von %s wirklich gelöscht werden?'
),
$user
->
getFullName
()
)
]
)
?>
</td>
</tr>
</tfoot>
</table>
</form>
<?
endif
?>
<?
if
(
$permissions
)
:
?>
<form
class=
"default"
id=
"permissions_permanent"
method=
"post"
action=
"
<?=
$controller
->
link_for
(
'resources/admin/delete_permissions'
)
?>
"
>
<?=
CSRFProtection
::
tokenTag
()
?>
<input
type=
"hidden"
name=
"permission_type"
value=
"permanent"
>
<input
type=
"hidden"
name=
"user_id"
value=
"
<?=
htmlReady
(
$user
->
id
)
?>
"
>
<table
class=
"default resources_permissions-table sortable-table"
data-sortlist=
"[[0, 0]]"
>
<caption>
<?=
_
(
'Dauerhafte Berechtigungen'
)
?>
</caption>
<colspan>
<col
class=
"checkbox"
>
<col>
<col>
<col>
</colspan>
<thead>
<tr>
<th>
<input
type=
"checkbox"
data-proxyfor=
"#permissions_permanent input[name='resource_ids[]']"
data-activates=
"#permissions_permanent tfoot .button"
title=
"
<?=
htmlReady
(
sprintf
(
_
(
'Alle Berechtigungen von %s auswählen'
),
$user
->
getFullName
()
))
?>
"
>
</th>
<th
data-sort=
"text"
>
<?=
_
(
'Name der Ressource'
)
?>
</th>
<th
data-sort=
"text"
>
<?=
_
(
'Berechtigung'
)
?>
</th>
<th
class=
"actions"
>
<?=
_
(
'Aktionen'
)
?>
</th>
</tr>
</thead>
<tbody>
<?
foreach
(
$permissions
as
$permission
)
:
?>
<tr>
<td>
<input
type=
"checkbox"
name=
"resource_ids[]"
value=
"
<?=
htmlReady
(
$permission
->
resource_id
)
?>
"
title=
"
<?=
htmlReady
(
sprintf
(
_
(
'Berechtigung für %s auswählen'
),
$resource
))
?>
"
>
</td>
<td>
<?=
htmlReady
(
$permission
->
resource
->
getDerivedClassInstance
())
?>
</td>
<td>
<?=
htmlReady
(
$permission
->
perms
)
?>
</td>
<td
class=
"actions"
>
<a
href=
"
<?=
$permission
->
resource
->
getActionLink
(
'permissions'
,
[
[
'class'
=>
'text-bottom'
,
'user_id'
=>
$permission
->
user_id
'title'
=>
'Liste mit Buchungen anzeigen'
]
]
)
?>
)
?>
"
data-dialog
>
</a>
<?=
Icon
::
create
(
'edit'
)
->
asImg
(
[
'class'
=>
'text-bottom'
,
'title'
=>
_
(
'Berechtigung bearbeiten'
)
]
)
?>
</a>
<a
href=
"
<?=
URLHelper
::
getLink
(
'dispatch.php/resources/admin/booking_log/'
.
$user
->
id
.
'/'
.
$permission
->
resource_id
)
?>
"
data-dialog
>
<?=
Icon
::
create
(
'log'
)
->
asImg
(
[
'class'
=>
'text-bottom'
,
'title'
=>
_
(
'Liste mit Buchungen anzeigen'
)
]
)
?>
</a>
</td>
</tr>
<?
endforeach
?>
</tbody>
<tfoot>
<tr>
<td
colspan=
"5"
>
<?=
Studip\Button
::
create
(
_
(
'Löschen'
),
'delete'
,
[
'data-confirm'
=>
sprintf
(
_
(
'Sollen die gewählten Berechtigungen von %s wirklich gelöscht werden?'
),
$user
->
getFullName
()
)
]
)
?>
</td>
</td>
</tr>
</tr>
<
?
endforeach
?
>
<
/tfoot
>
</t
body
>
</t
able
>
</
table
>
</
form
>
<?
endif
?>
<?
endif
?>
<?
if
(
$permissions
)
:
?>
<?
elseif
(
$users
)
:
?>
<table
class=
"default resources_permissions-table sortable-table"
<form
class=
"default"
id=
"permissions_all_from_user"
method=
"post"
data-sortlist=
"[[0, 0]]"
>
action=
"
<?=
$controller
->
link_for
(
'resources/admin/delete_permissions'
)
?>
"
>
<?=
CSRFProtection
::
tokenTag
()
?>
<input
type=
"hidden"
name=
"permission_type"
value=
"all_from_users"
>
<table
class=
"default sortable-table"
data-sortlist=
"[[0, 0]]"
>
<caption>
<caption>
<?=
_
(
'
Dauerhafte
Berechtigungen'
)
?>
<?=
_
(
'
Personen mit
Berechtigungen
an der Raumverwaltung
'
)
?>
</caption>
</caption>
<colspan>
<col
class=
"checkbox"
>
<col>
</colspan>
<thead>
<thead>
<tr>
<tr>
<th
data-sort=
"text"
>
<?=
_
(
'Name der Ressource'
)
?>
</th>
<th>
<th
data-sort=
"text"
>
<?=
_
(
'Berechtigung'
)
?>
</th>
<input
type=
"checkbox"
data-proxyfor=
"#permissions_all_from_user input[name='user_ids[]']"
<th
class=
"actions"
>
<?=
_
(
'Aktionen'
)
?>
</th>
data-activates=
"#permissions_all_from_user tfoot .button"
title=
"
<?=
_
(
'Alle Berechtigungen auswählen'
)
?>
"
>
</th>
<th
data-sort=
"text"
>
<?=
_
(
'Nachname, Vorname'
)
?>
</th>
</tr>
</tr>
</thead>
</thead>
<tbody>
<tbody>
<?
foreach
(
$
permissions
as
$permission
)
:
?>
<?
foreach
(
$
users
as
$user
)
:
?>
<tr>
<tr>
<td>
<td>
<?=
htmlReady
(
$permission
->
resource
->
getDerivedClassInstance
())
?>
<input
type=
"checkbox"
name=
"user_ids[]"
value=
"
<?=
htmlReady
(
$user
->
id
)
?>
"
title=
"
<?=
htmlReady
(
sprintf
(
_
(
'%s auswählen'
),
$user
->
getFullName
()))
?>
"
>
</td>
</td>
<td>
<td>
<?=
htmlReady
(
$permission
->
perms
)
?>
<a
href=
"
<?=
$controller
->
link_for
(
</td>
'resources/admin/user_permissions'
,
<td
class=
"actions"
>
[
'user_id'
=>
$user
->
id
]
<a
href=
"
<?=
$permission
->
resource
->
getActionLink
(
)
?>
"
>
'permissions'
,
<?=
htmlReady
(
$user
->
getFullName
(
'full_rev'
))
?>
[
<?=
Icon
::
create
(
'link-intern'
)
->
asImg
(
'user_id'
=>
$permission
->
user_id
]
)
?>
"
data-dialog
>
<?=
Icon
::
create
(
'edit'
)
->
asImg
(
[
[
'class'
=>
'text-bottom'
,
'class'
=>
'text-bottom'
'title'
=>
_
(
'Berechtigung bearbeiten'
)
]
)
?>
</a>
<a
href=
"
<?=
URLHelper
::
getLink
(
'dispatch.php/resources/admin/booking_log/'
.
$user
->
id
.
'/'
.
$permission
->
resource_id
)
?>
"
data-dialog
>
<?=
Icon
::
create
(
'log'
)
->
asImg
(
[
'class'
=>
'text-bottom'
,
'title'
=>
_
(
'Liste mit Buchungen anzeigen'
)
]
]
)
?>
)
?>
</a>
</a>
...
@@ -179,36 +307,17 @@
...
@@ -179,36 +307,17 @@
</tr>
</tr>
<?
endforeach
?>
<?
endforeach
?>
</tbody>
</tbody>
</table>
<tfoot>
<?
endif
?>
<?
elseif
(
$users
)
:
?>
<table
class=
"default sortable-table"
data-sortlist=
"[[0, 0]]"
>
<caption>
<?=
_
(
'Personen mit Berechtigungen an der Raumverwaltung'
)
?>
</caption>
<thead>
<tr>
<th
data-sort=
"text"
>
<?=
_
(
'Nachname, Vorname'
)
?>
</th>
</tr>
</thead>
<tbody>
<?
foreach
(
$users
as
$user
)
:
?>
<tr>
<tr>
<td>
<td
colspan=
"2"
>
<a
href=
"
<?=
$controller
->
link_for
(
<?=
Studip\Button
::
create
(
_
(
'Löschen'
),
'delete'
,
'resources/admin/user_permissions'
,
[
[
'user_id'
=>
$user
->
id
]
'data-confirm'
=>
_
(
'Sollen alle Berechtigungen der ausgewählten Personen wirklich gelöscht werden?'
)
)
?>
"
>
]
<?=
htmlReady
(
$user
->
getFullName
(
'full_rev'
))
?>
)
?>
<?=
Icon
::
create
(
'link-intern'
)
->
asImg
(
[
'class'
=>
'text-bottom'
]
)
?>
</a>
</td>
</td>
</tr>
</tr>
<
?
endforeach
?
>
<
/tfoot
>
</t
body
>
</t
able
>
</
table
>
</
form
>
<?
endif
?>
<?
endif
?>
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
