1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
|
package FS::access_right;
use strict;
use vars qw( @ISA );
use Tie::IxHash;
use FS::Record qw( qsearch qsearchs );
use FS::upgrade_journal;
use FS::access_group;
@ISA = qw(FS::Record);
=head1 NAME
FS::access_right - Object methods for access_right records
=head1 SYNOPSIS
use FS::access_right;
$record = new FS::access_right \%hash;
$record = new FS::access_right { 'column' => 'value' };
$error = $record->insert;
$error = $new_record->replace($old_record);
$error = $record->delete;
$error = $record->check;
=head1 DESCRIPTION
An FS::access_right object represents a granted access right. FS::access_right
inherits from FS::Record. The following fields are currently supported:
=over 4
=item rightnum - primary key
=item righttype -
=item rightobjnum -
=item rightname -
=back
=head1 METHODS
=over 4
=item new HASHREF
Creates a new right. To add the right to the database, see L<"insert">.
Note that this stores the hash reference, not a distinct copy of the hash it
points to. You can ask the object for a copy with the I<hash> method.
=cut
# the new method can be inherited from FS::Record, if a table method is defined
sub table { 'access_right'; }
=item insert
Adds this record to the database. If there is an error, returns the error,
otherwise returns false.
=cut
# the insert method can be inherited from FS::Record
=item delete
Delete this record from the database.
=cut
# the delete method can be inherited from FS::Record
=item replace OLD_RECORD
Replaces the OLD_RECORD with this one in the database. If there is an error,
returns the error, otherwise returns false.
=cut
# the replace method can be inherited from FS::Record
=item check
Checks all fields to make sure this is a valid right. If there is
an error, returns the error, otherwise returns false. Called by the insert
and replace methods.
=cut
# the check method should currently be supplied - FS::Record contains some
# data checking routines
sub check {
my $self = shift;
my $error =
$self->ut_numbern('rightnum')
|| $self->ut_text('righttype')
|| $self->ut_text('rightobjnum')
|| $self->ut_text('rightname')
;
return $error if $error;
$self->SUPER::check;
}
# _upgrade_data
#
# Used by FS::Upgrade to migrate to a new database.
sub _upgrade_data { # class method
my ($class, %opts) = @_;
my @unmigrated = ( qsearch( 'access_right',
{ 'righttype'=>'FS::access_group',
'rightname'=>'Engineering configuration',
}
),
qsearch( 'access_right',
{ 'righttype'=>'FS::access_group',
'rightname'=>'Engineering global configuration',
}
)
);
foreach ( @unmigrated ) {
my $rightname = $_->rightname;
$rightname =~ s/Engineering/Dialup/;
$_->rightname($rightname);
my $error = $_->replace;
die "Failed to update access right: $error"
if $error;
my $broadband = new FS::access_right { $_->hash };
$rightname =~ s/Dialup/Broadband/;
$broadband->rightnum('');
$broadband->rightname($rightname);
$error = $broadband->insert;
die "Failed to insert access right: $error"
if $error;
}
my %migrate = (
'Post payment' => [ 'Post check payment', 'Post cash payment' ],
'Process payment' => [ 'Process credit card payment', 'Process Echeck payment' ],
'Post refund' => [ 'Post check refund', 'Post cash refund' ],
'Refund payment' => [ 'Refund credit card payment', 'Refund Echeck payment' ],
'Regular void' => [ 'Void payments' ],
'Unvoid' => [ 'Unvoid payments', 'Unvoid invoices' ],
);
foreach my $oldright (keys %migrate) {
my @old = qsearch('access_right', { 'righttype'=>'FS::access_group',
'rightname'=>$oldright,
}
);
foreach my $old ( @old ) {
foreach my $newright ( @{ $migrate{$oldright} } ) {
my %hash = (
'righttype' => 'FS::access_group',
'rightobjnum' => $old->rightobjnum,
'rightname' => $newright,
);
next if qsearchs('access_right', \%hash);
my $access_right = new FS::access_right \%hash;
my $error = $access_right->insert;
die $error if $error;
}
unless ( $oldright =~ / (payment|refund)$/ ) { #after the WEST stuff is sorted
my $error = $old->delete;
die $error if $error;
}
}
}
my @all_groups = qsearch('access_group', {});
#tie my %onetime, 'Tie::IxHash',
my @onetime = (
'List customers' => 'List all customers',
'List all customers' => 'Advanced customer search',
'List packages' => 'Summarize packages',
'Post payment' => 'Backdate payment',
'Cancel customer package immediately' => 'Un-cancel customer package',
'Suspend customer package' => 'Suspend customer',
'Unsuspend customer package' => 'Unsuspend customer',
'New prospect' => 'Generate quotation',
'Delete invoices' => 'Void invoices',
'List invoices' => 'List quotations',
'Post credit' => 'Credit line items',
#'View customer tax exemptions' => 'Edit customer tax exemptions',
'Edit customer' => 'Edit customer tax exemptions',
'Edit package definitions' => 'Bulk edit package definitions',
'List services' => [ 'Services: Accounts',
'Services: Domains',
'Services: Certificates',
'Services: Mail forwards',
'Services: Virtual hosting services',
'Services: Wireless broadband services',
'Services: DSLs',
'Services: Dish services',
'Services: Hardware',
'Services: Phone numbers',
'Services: PBXs',
'Services: Ports',
'Services: Mailing lists',
'Services: External services',
],
'Services: Accounts' => 'Services: Accounts: Advanced search',
'Services: Wireless broadband services' => 'Services: Wireless broadband services: Advanced search',
'Services: Hardware' => 'Services: Hardware: Advanced search',
'Services: Phone numbers' => 'Services: Phone numbers: Advanced search',
'Services: Accounts' => 'Services: Alarm services',
'List rating data' => [ 'Usage: RADIUS sessions',
'Usage: Call Detail Records (CDRs)',
'Usage: Unrateable CDRs',
],
'Provision customer service' => [ 'Edit password' ],
'Financial reports' => [ 'Employees: Commission Report',
'Employees: Audit Report',
],
'Change customer package' => 'Detach customer package',
'Services: Accounts' => 'Services: Cable Subscribers',
'Bulk change customer packages' => 'Bulk move customer services',
'Configuration' => 'Edit sales people',
'Configuration' => 'Alarm global configuration',
'Services: Accounts' => 'Services: Conferencing',
'Services: Accounts' => 'Services: Video',
'Edit global package definitions' => 'Edit package definition costs',
'Add on-the-fly credit reason' => 'Add on-the-fly refund reason',
'Configuration' => 'Edit global fee definitions',
'Edit package definition costs' => 'View package definition costs',
'List prospects' => 'List contacts',
'List customers' => 'List contacts',
'Backdate payment' => 'Backdate credit',
'Generate quotation' => 'Disable quotation',
'Void credit' => 'Void credit',
'Unvoid credit' => 'Unvoid credit',
'Add on-the-fly void credit reason' => 'Add on-the-fly void reason',
'_ALL' => 'Employee preference telephony integration',
'_ALL' => 'RT activity notification',
'Edit customer package dates' => [ 'Change package start date', #4.x
'Change package contract end date',
],
'Resend invoices' => 'Print and mail invoices',
'List customers' => 'Customers: Customer churn report',
'Edit customer note' => 'Delete customer note',
'Edit customer' => 'Edit customer invoice terms',
'Financial reports' => 'Basic payment and refund reports',
'Configuration' => 'Edit hardware clases and types',
);
# foreach my $old_acl ( keys %onetime ) {
#
# my @new_acl = ref($onetime{$old_acl})
# ? @{ $onetime{$old_acl} }
# : ( $onetime{$old_acl} );
while ( @onetime ) {
my( $old_acl, $new_acl ) = splice(@onetime, 0, 2);
my @new_acl = ref($new_acl) ? @$new_acl : ( $new_acl );
foreach my $new_acl ( @new_acl ) {
( my $journal = 'ACL_'.lc($new_acl) ) =~ s/\W/_/g;
next if FS::upgrade_journal->is_done($journal);
# grant $new_acl to all groups who have $old_acl
for my $group (@all_groups) {
next unless $old_acl eq '_ALL' || $group->access_right($old_acl);
next if $group->access_right($new_acl);
my $access_right = FS::access_right->new( {
'righttype' => 'FS::access_group',
'rightobjnum' => $group->groupnum,
'rightname' => $new_acl,
} );
my $error = $access_right->insert;
die $error if $error;
}
FS::upgrade_journal->set_done($journal);
}
}
# some false laziness with @onetime above,
# but for use when multiple old acls trigger a single new acl
# (keys/values reversed from @onetime, expects arrayref value)
my @onetime_bynew = (
'Customize billing during suspension' => [ 'Suspend customer package', 'Suspend customer package later' ],
);
while ( @onetime_bynew ) {
my( $new_acl, $old_acl ) = splice(@onetime_bynew, 0, 2);
( my $journal = 'ACL_'.lc($new_acl) ) =~ s/\W/_/g;
next if FS::upgrade_journal->is_done($journal);
# grant $new_acl to all groups who have one of @old_acl
for my $group (@all_groups) {
next unless grep { $group->access_right($_) } @$old_acl;
next if $group->access_right($new_acl);
my $access_right = FS::access_right->new( {
'righttype' => 'FS::access_group',
'rightobjnum' => $group->groupnum,
'rightname' => $new_acl,
} );
my $error = $access_right->insert;
die $error if $error;
}
FS::upgrade_journal->set_done($journal);
}
### ACL_download_report_data
if ( !FS::upgrade_journal->is_done('ACL_download_report_data') ) {
# grant to everyone
for my $group (@all_groups) {
next if $group->access_right('Download report data');
my $access_right = FS::access_right->new( {
'righttype' => 'FS::access_group',
'rightobjnum' => $group->groupnum,
'rightname' => 'Download report data',
} );
my $error = $access_right->insert;
warn $error if $error;
}
FS::upgrade_journal->set_done('ACL_download_report_data');
}
'';
}
=back
=head1 BUGS
=head1 SEE ALSO
L<FS::Record>, schema.html from the base documentation.
=cut
1;
|
