import rt 3.4.6

[freeside.git] / rt / html / Admin / CustomFields / UserRights.html

%# BEGIN BPS TAGGED BLOCK {{{
%# 
%# COPYRIGHT:
%#  
%# This software is Copyright (c) 1996-2005 Best Practical Solutions, LLC 
%#                                          <jesse@bestpractical.com>
%# 
%# (Except where explicitly superseded by other copyright notices)
%# 
%# 
%# LICENSE:
%# 
%# This work is made available to you under the terms of Version 2 of
%# the GNU General Public License. A copy of that license should have
%# been provided with this software, but in any event can be snarfed
%# from www.gnu.org.
%# 
%# This work is distributed in the hope that it will be useful, but
%# WITHOUT ANY WARRANTY; without even the implied warranty of
%# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
%# General Public License for more details.
%# 
%# You should have received a copy of the GNU General Public License
%# along with this program; if not, write to the Free Software
%# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
%# 
%# 
%# CONTRIBUTION SUBMISSION POLICY:
%# 
%# (The following paragraph is not intended to limit the rights granted
%# to you to modify and distribute this software under the terms of
%# the GNU General Public License and is only of importance to you if
%# you choose to contribute your changes and enhancements to the
%# community by submitting them to Best Practical Solutions, LLC.)
%# 
%# By intentionally submitting any modifications, corrections or
%# derivatives to this work, or any other work intended for use with
%# Request Tracker, to Best Practical Solutions, LLC, you confirm that
%# you are the copyright holder for those contributions and you grant
%# Best Practical Solutions,  LLC a nonexclusive, worldwide, irrevocable,
%# royalty-free, perpetual, license to use, copy, create derivative
%# works based on those contributions, and sublicense and distribute
%# those contributions and any derivatives thereof.
%# 
%# END BPS TAGGED BLOCK }}}
<& /Admin/Elements/Header, Title => $title &>
<& /Admin/Elements/CustomFieldTabs, id => $id, 
current_tab => "Admin/CustomFields/UserRights.html?id=".$id,
Title => $title, &>
<& /Elements/ListActions, actions => \@results &>

  <FORM METHOD=POST ACTION="UserRights.html">
    <INPUT TYPE=HIDDEN NAME=id VALUE="<% $CustomFieldObj->id %>">
      
      
<TABLE>
        
%       while (my $Member = $Users->Next()) {
% my $UserObj = $Member->MemberObj->Object();
% my $group = RT::Group->new($session{'CurrentUser'});
% $group->LoadACLEquivalenceGroup($Member->MemberObj);
  <TR ALIGN=RIGHT> 
        <TD VALIGN=TOP>
            <% $UserObj->Name %>
                  </TD>
          <TD>
            <& /Admin/Elements/SelectRights, PrincipalId=> $group->PrincipalId,
        Object => $CustomFieldObj  &>
          </TD>
        </TR>
% }
      </TABLE>
            
      <& /Elements/Submit, Caption => loc("Be sure to save your changes"), Reset => 1 &>
      
  </FORM>
  
<%INIT>
 
  #Update the acls.
  my @results;
foreach my $arg (keys %ARGS) {
        if ($arg =~ /GrantRight-(\d+)-(.*?)-(\d+)$/) {
            my $principal_id = $1;
            my $object_type = $2;
            my $object_id = $3;
            my $rights = $ARGS{$arg};

            my $principal = RT::Principal->new($session{'CurrentUser'});
            $principal->Load($principal_id);
            my $obj;

            if ($object_type eq 'RT::CustomField') {
                $obj = RT::CustomField->new($session{'CurrentUser'});
                $obj->Load($object_id);

            } else {
                push (@results, loc("System Error").
                                loc("Rights could not be granted for [_1]",
$object_type));
                next;
            }

            my @rights = ref($ARGS{$arg}) eq 'ARRAY' ? @{$ARGS{$arg}} :
($ARGS{$arg});
            foreach my $right (@rights) {
                next unless ($right);
                my ($val, $msg) = $principal->GrantRight(Object => $obj, Right
=> $right);
                push (@results, $msg);
            }
        }
     elsif ($arg =~ /RevokeRight-(\d+)-(.*?)-(\d+)-(.*?)$/) {
            my $principal_id = $1;
            my $object_type = $2;
            my $object_id = $3;
            my $right = $4;

            my $principal = RT::Principal->new($session{'CurrentUser'});
            $principal->Load($principal_id);
            next unless ($right);
            my $obj;

            if ($object_type eq 'RT::CustomField') {
                $obj = RT::CustomField->new($session{'CurrentUser'});
                $obj->Load($object_id);
            } else {
                push (@results, loc("System Error").
                                loc("Rights could not be revoked for [_1]",
$object_type));
                next;
            }
            my ($val, $msg) = $principal->RevokeRight(Object => $obj, Right =>
$right);
            push (@results, $msg);
        }
} 
  

# {{{ Deal with setting up the display of current rights.



if (!defined $id) {
    $m->comp("/Elements/Error", Why => loc("No Class defined"));
}

my $CustomFieldObj = RT::CustomField->new($session{'CurrentUser'});
$CustomFieldObj->Load($id) || $m->comp("/Elements/Error", Why => loc("Couldn't load Class [_1]",$id));

# Find out which users we want to display ACL selects for
my $Privileged = RT::Group->new($session{'CurrentUser'});
$Privileged->LoadSystemInternalGroup('Privileged');
my $Users = $Privileged->MembersObj();

    
my $title = loc('Modify user rights for custom field [_1]', $CustomFieldObj->Name);
  
# }}}
    
</%INIT>

<%ARGS>
$id => undef
$UserString => undef
$UserOp => undef
$UserField => undef
</%ARGS>