1
0
Fork 0
mirror of https://github.com/YunoHost-Apps/limesurvey_ynh.git synced 2024-09-03 19:36:32 +02:00
limesurvey_ynh/sources/application/controllers/AdminController.php

431 lines
15 KiB
PHP
Raw Normal View History

<?php
/*
* LimeSurvey
* Copyright (C) 2007-2011 The LimeSurvey Project Team / Carsten Schmitz
* All rights reserved.
* License: GNU/GPL License v2 or later, see LICENSE.php
* LimeSurvey is free software. This version may have been modified pursuant
* to the GNU General Public License, and as distributed it includes or
* is derivative of works licensed under the GNU General Public License or
* other free or open source software licenses.
* See COPYRIGHT.php for copyright notices and details.
*
*/
class AdminController extends LSYii_Controller
{
public $lang = null;
public $layout = false;
protected $user_id = 0;
/**
* Initialises this controller, does some basic checks and setups
*
* @access protected
* @return void
*/
protected function _init()
{
parent::_init();
App()->getComponent('bootstrap');
$sUpdateLastCheck = getGlobalSetting('updatelastcheck');
$this->_sessioncontrol();
if (Yii::app()->getConfig('buildnumber') != "" && Yii::app()->getConfig('updatecheckperiod') > 0 && $sUpdateLastCheck < dateShift(date("Y-m-d H:i:s"), "Y-m-d H:i:s", "-". Yii::app()->getConfig('updatecheckperiod')." days"))
updateCheck();
//unset(Yii::app()->session['FileManagerContext']);
App()->getClientScript()->registerScriptFile(Yii::app()->getConfig('adminscripts') . "admin_core.js");
$this->user_id = Yii::app()->user->getId();
if (!Yii::app()->getConfig("surveyid")) {Yii::app()->setConfig("surveyid", returnGlobal('sid'));} //SurveyID
if (!Yii::app()->getConfig("ugid")) {Yii::app()->setConfig("ugid", returnGlobal('ugid'));} //Usergroup-ID
if (!Yii::app()->getConfig("gid")) {Yii::app()->setConfig("gid", returnGlobal('gid'));} //GroupID
if (!Yii::app()->getConfig("qid")) {Yii::app()->setConfig("qid", returnGlobal('qid'));} //QuestionID
if (!Yii::app()->getConfig("lid")) {Yii::app()->setConfig("lid", returnGlobal('lid'));} //LabelID
if (!Yii::app()->getConfig("code")) {Yii::app()->setConfig("code", returnGlobal('code'));} // ??
if (!Yii::app()->getConfig("action")) {Yii::app()->setConfig("action", returnGlobal('action'));} //Desired action
if (!Yii::app()->getConfig("subaction")) {Yii::app()->setConfig("subaction", returnGlobal('subaction'));} //Desired subaction
if (!Yii::app()->getConfig("editedaction")) {Yii::app()->setConfig("editedaction", returnGlobal('editedaction'));} // for html editor integration
}
/**
* Shows a nice error message to the world
*
* @access public
* @param string $message The error message
* @param string|array $url URL. Either a string. Or array with keys url and title
* @return void
*/
public function error($message, $sURL = array())
{
$clang = $this->lang;
$this->_getAdminHeader();
$sOutput = "<div class='messagebox ui-corner-all'>\n";
$sOutput .= '<div class="warningheader">'.$clang->gT('Error').'</div><br />'."\n";
$sOutput .= $message . '<br /><br />'."\n";
if (!empty($sURL) && !is_array($sURL))
{
$sTitle = $clang->gT('Back');
}
elseif (!empty($sURL['url']))
{
if (!empty($sURL['title']))
{
$sTitle = $sURL['title'];
}
else
{
$sTitle = $clang->gT('Back');
}
$sURL = $sURL['url'];
}
else
{
$sTitle = $clang->gT('Main Admin Screen');
$sURL = $this->createUrl('/admin');
}
$sOutput .= '<input type="submit" value="'.$sTitle.'" onclick=\'window.open("'.$sURL.'", "_top")\' /><br /><br />'."\n";
$sOutput .= '</div>'."\n";
$sOutput .= '</div>'."\n";
echo $sOutput;
$this->_getAdminFooter('http://manual.limesurvey.org', $clang->gT('LimeSurvey online manual'));
die;
}
/**
* Load and set session vars
*
* @access protected
* @return void
*/
protected function _sessioncontrol()
{
Yii::import('application.libraries.Limesurvey_lang');
// From personal settings
if (Yii::app()->request->getPost('action') == 'savepersonalsettings') {
if (Yii::app()->request->getPost('lang')=='auto')
{
$sLanguage= getBrowserLanguage();
}
else
{
$sLanguage=sanitize_languagecode(Yii::app()->request->getPost('lang'));
}
Yii::app()->session['adminlang'] = $sLanguage;
}
if (empty(Yii::app()->session['adminlang']))
Yii::app()->session["adminlang"] = Yii::app()->getConfig("defaultlang");
global $clang; // Needed so EM can localize equation hints until a better solution is found
$this->lang = $clang = new Limesurvey_lang(Yii::app()->session['adminlang']);
Yii::app()->setLang($this->lang);
if (!empty($this->user_id))
$this->_GetSessionUserRights($this->user_id);
}
/**
* Checks for action specific authorization and then executes an action
*
* @access public
* @param string $action
* @return bool
*/
public function run($action)
{
// Check if the DB is up to date
if (Yii::app()->db->schema->getTable('{{surveys}}'))
{
$sDBVersion = getGlobalSetting('DBVersion');
if ((int) $sDBVersion < Yii::app()->getConfig('dbversionnumber') && $action != 'update' && $action != 'authentication')
$this->redirect(array('/admin/update/sa/db'));
}
if ($action != "update" && $action != "db")
if (empty($this->user_id) && $action != "authentication" && $action != "remotecontrol")
{
if (!empty($action) && $action != 'index')
Yii::app()->session['redirect_after_login'] = $this->createUrl('/');
App()->user->setReturnUrl(App()->request->requestUri);
$this->redirect(array('/admin/authentication/sa/login'));
}
elseif (!empty($this->user_id) && $action != "remotecontrol")
{
if (Yii::app()->session['session_hash'] != hash('sha256',getGlobalSetting('SessionName').Yii::app()->user->getName().Yii::app()->user->getId()))
{
Yii::app()->session->clear();
Yii::app()->session->close();
$this->redirect(array('/admin/authentication/sa/login'));
}
}
return parent::run($action);
}
/**
* Routes all the actions to their respective places
*
* @access public
* @return array
*/
public function actions()
{
$aActions = $this->getActionClasses();
foreach ($aActions as $action => $class)
{
$aActions[$action] = "application.controllers.admin.{$class}";
}
return $aActions;
}
public function getActionClasses()
{
return array(
'assessments' => 'assessments',
'authentication' => 'authentication',
'checkintegrity' => 'checkintegrity',
'conditions' => 'conditionsaction',
'database' => 'database',
'dataentry' => 'dataentry',
'dumpdb' => 'dumpdb',
'emailtemplates' => 'emailtemplates',
'export' => 'export',
'expressions' => 'expressions',
'globalsettings' => 'globalsettings',
'htmleditor_pop' => 'htmleditor_pop',
'limereplacementfields' => 'limereplacementfields',
'index' => 'index',
'labels' => 'labels',
'participants' => 'participantsaction',
'printablesurvey' => 'printablesurvey',
'questiongroups' => 'questiongroups',
'questions' => 'questions',
'quotas' => 'quotas',
'remotecontrol' => 'remotecontrol',
'responses' => 'responses',
'saved' => 'saved',
'statistics' => 'statistics',
'survey' => 'surveyadmin',
'surveypermission' => 'surveypermission',
'user' => 'useraction',
'usergroups' => 'usergroups',
'templates' => 'templates',
'tokens' => 'tokens',
'translate' => 'translate',
'update' => 'update',
);
}
/**
* Set Session User Rights
*
* @access public
* @return void
*/
public function _GetSessionUserRights($loginID)
{
$oUser = User::model()->findByPk($loginID);
// SuperAdmins
// * original superadmin with uid=1 unless manually changed and defined
// in config-defaults.php
// * or any user having USER_RIGHT_SUPERADMIN right
// Let's check if I am the Initial SuperAdmin
$oUser = User::model()->findByAttributes(array('parent_id' => 0));
if (!is_null($oUser) && $oUser->uid == $loginID)
Yii::app()->session['USER_RIGHT_INITIALSUPERADMIN'] = 1;
else
Yii::app()->session['USER_RIGHT_INITIALSUPERADMIN'] = 0;
}
/**
* Prints Admin Header
*
* @access protected
* @param bool $meta
* @param bool $return
* @return mixed
*/
public function _getAdminHeader($meta = false, $return = false)
{
if (empty(Yii::app()->session['adminlang']))
Yii::app()->session["adminlang"] = Yii::app()->getConfig("defaultlang");
$aData = array();
$aData['adminlang'] = $this->lang->getlangcode();
//$data['admin'] = getLanguageRTL;
$aData['test'] = "t";
$aData['languageRTL']="";
$aData['styleRTL']="";
Yii::app()->loadHelper("surveytranslator");
if (getLanguageRTL($aData['adminlang']))
{
$aData['languageRTL'] = " dir=\"rtl\" ";
$aData['bIsRTL']=true;
}
else
{
$aData['languageRTL'] = " dir=\"ltr\" ";
$aData['bIsRTL']=false;
}
$aData['meta']="";
if ($meta)
{
$aData['meta']=$meta;
}
$aData['baseurl'] = Yii::app()->baseUrl . '/';
$aData['datepickerlang']="";
if ($aData['adminlang'] != 'en')
Yii::app()->getClientScript()->registerScriptFile(App()->baseUrl . "/third_party/jqueryui/development-bundle/ui/i18n/jquery.ui.datepicker-" . $aData['adminlang'] .".js");
$aData['sitename'] = Yii::app()->getConfig("sitename");
$aData['admintheme'] = Yii::app()->getConfig("admintheme");
$aData['firebug'] = useFirebug();
if (!empty(Yii::app()->session['dateformat']))
$aData['formatdata'] = getDateFormatData(Yii::app()->session['dateformat']);
$sOutput = $this->renderPartial("/admin/super/header", $aData, true);
if ($return)
{
return $sOutput;
}
else
{
echo $sOutput;
}
}
/**
* Prints Admin Footer
*
* @access protected
* @param string $url
* @param string $explanation
* @param bool $return
* @return mixed
*/
public function _getAdminFooter($url, $explanation, $return = false)
{
$clang = $this->lang;
$aData['clang'] = $clang;
$aData['versionnumber'] = Yii::app()->getConfig("versionnumber");
$aData['buildtext'] = "";
if(Yii::app()->getConfig("buildnumber")!="") {
$aData['buildtext']= "Build ".Yii::app()->getConfig("buildnumber");
}
//If user is not logged in, don't print the version number information in the footer.
if (empty(Yii::app()->session['loginID']))
{
$aData['versionnumber']="";
$aData['versiontitle']="";
$aData['buildtext']="";
}
else
{
$aData['versiontitle'] = $clang->gT('Version');
}
$aData['imageurl'] = Yii::app()->getConfig("imageurl");
$aData['url'] = $url;
return $this->renderPartial("/admin/super/footer", $aData, $return);
}
/**
* Shows a message box
*
* @access public
* @param string $title
* @param string $message
* @param string $class
* @return void
*/
public function _showMessageBox($title,$message,$class="header ui-widget-header")
{
$aData['title'] = $title;
$aData['message'] = $message;
$aData['class'] = $class;
$aData['clang'] = $this->lang;
$this->renderPartial('/admin/super/messagebox', $aData);
}
/**
* _showadminmenu() function returns html text for the administration button bar
*
* @access public
* @global string $homedir
* @global string $scriptname
* @global string $surveyid
* @global string $setfont
* @global string $imageurl
* @param int $surveyid
* @return string $adminmenu
*/
public function _showadminmenu($surveyid = false)
{
$clang = $this->lang;
$aData['clang']= $clang;
if (Yii::app()->session['pw_notify'] && Yii::app()->getConfig("debug")<2) {
Yii::app()->session['flashmessage'] = $clang->gT("Warning: You are still using the default password ('password'). Please change your password and re-login again.");
}
$aData['showupdate'] = (Yii::app()->session['USER_RIGHT_SUPERADMIN'] == 1 && getGlobalSetting("updatenotification")!='never' && getGlobalSetting("updateavailable")==1 && Yii::app()->getConfig("updatable") );
if($aData['showupdate'])
{
$aData['aUpdateVersions'] = json_decode(getGlobalSetting("updateversions"),true);
$aUpdateTexts=array();
foreach ($aData['aUpdateVersions'] as $aVersion)
{
$aUpdateTexts[]=$aVersion['versionnumber'].'('.$aVersion['build'].')';
}
$aData['sUpdateText']=implode(' '.$clang->gT('or').' ',$aUpdateTexts);
}
$aData['surveyid'] = $surveyid;
$aData['iconsize'] = Yii::app()->getConfig('adminthemeiconsize');
$aData['sImageURL'] = Yii::app()->getConfig('adminimageurl');
$this->renderPartial("/admin/super/adminmenu", $aData);
}
public function _loadEndScripts()
{
static $bRendered = false;
if ($bRendered)
return true;
$bRendered = true;
if (empty(Yii::app()->session['metaHeader']))
Yii::app()->session['metaHeader'] = '';
unset(Yii::app()->session['metaHeader']);
return $this->renderPartial('/admin/endScripts_view', array());
}
}