quote($login); $sql .= " AND u.status = 1"; $res = $mdb2->query($sql); if (is_a($res, 'PEAR_Error')) { return; } $val = $res->fetchRow(); if ($val['id'] > 0) { $this->login = $val['login']; $this->name = $val['name']; $this->id = $val['id']; $this->group_id = $val['group_id']; $this->role_id = $val['role_id']; $this->role_name = $val['role_name']; $this->rights = explode(',', $val['rights']); $this->is_client = !in_array('track_own_time', $this->rights); $this->rank = $val['rank']; $this->client_id = $val['client_id']; $this->email = $val['email']; $this->lang = $val['lang']; $this->decimal_mark = $val['decimal_mark']; $this->date_format = $val['date_format']; $this->time_format = $val['time_format']; $this->week_start = $val['week_start']; $this->tracking_mode = $val['tracking_mode']; $this->project_required = $val['project_required']; $this->task_required = $val['task_required']; $this->record_type = $val['record_type']; $this->bcc_email = $val['bcc_email']; $this->allow_ip = $val['allow_ip']; $this->team = $val['group_name']; $this->currency = $val['currency']; $this->plugins = $val['plugins']; $this->lock_spec = $val['lock_spec']; $this->workday_minutes = $val['workday_minutes']; $this->custom_logo = $val['custom_logo']; $this->config = $val['config']; $config_array = explode(',', $this->config); // Set user config options. $this->show_holidays = in_array('show_holidays', $config_array); $this->punch_mode = in_array('punch_mode', $config_array); $this->allow_overlap = in_array('allow_overlap', $config_array); $this->future_entries = in_array('future_entries', $config_array); $this->uncompleted_indicators = in_array('uncompleted_indicators', $config_array); // Set "on behalf" id and name. if (isset($_SESSION['behalf_id'])) { $this->behalf_id = $_SESSION['behalf_id']; $this->behalf_name = $_SESSION['behalf_name']; } } } // The getActiveUser returns user id on behalf of whom the current user is operating. function getActiveUser() { return ($this->behalf_id ? $this->behalf_id : $this->id); } // can - determines whether user has a right to do something. function can($do_something) { return in_array($do_something, $this->rights); } // isAdmin - determines whether current user is admin (has right_administer_site). function isAdmin() { return $this->can('administer_site'); } // isManager - determines whether current user is team manager. // This is a legacy function that we are getting rid of by replacing with rights check. function isManager() { return $this->can('export_data'); // By default this is assigned to managers but not co-managers. // Which is sufficient for now until we refactor all calls // to this function and then remove it. } // isCoManager - determines whether current user is team comanager. // This is a legacy function that we are getting rid of by replacing with rights check. function isCoManager() { return ($this->can('manage_users') && !$this->can('export_data')); } // isClient - determines whether current user is a client. function isClient() { return $this->is_client; } // canManageTeam - determines whether current user is manager or co-manager. // This is a legacy function that we are getting rid of by replacing with rights check. function canManageTeam() { return $this->can('manage_users'); // By default this is assigned to co-managers (an managers). // Which is sufficient for now until we refactor all calls // to this function and then remove it. } // isPluginEnabled checks whether a plugin is enabled for user. function isPluginEnabled($plugin) { return in_array($plugin, explode(',', $this->plugins)); } // getAssignedProjects - returns an array of assigned projects. function getAssignedProjects() { $result = array(); $mdb2 = getConnection(); // Do a query with inner join to get assigned projects. $sql = "select p.id, p.name, p.description, p.tasks, upb.rate from tt_projects p inner join tt_user_project_binds upb on (upb.user_id = ".$this->getActiveUser()." and upb.project_id = p.id and upb.status = 1) where p.group_id = $this->group_id and p.status = 1 order by p.name"; $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { while ($val = $res->fetchRow()) { $result[] = $val; } } return $result; } // getAssignedTasks - returns an array of assigned tasks. function getAssignedTasks() { // Start with projects; $projects = $this->getAssignedProjects(); if (!$projects) return false; // Build an array of task ids. $task_ids = array(); foreach($projects as $project) { $one_project_tasks = $project['tasks'] ? explode(',', $project['tasks']) : array(); $task_ids = array_unique(array_merge($task_ids, $one_project_tasks)); } if (!$task_ids) return false; // Get task descriptions. $result = array(); $mdb2 = getConnection(); $tasks = implode(',', $task_ids); // This is a comma-separated list of task ids. $sql = "select id, name, description from tt_tasks". " where group_id = $this->group_id and status = 1 and id in ($tasks) order by name"; $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { while ($val = $res->fetchRow()) { $result[] = $val; } } return $result; } // isDateLocked checks whether a specifc date is locked for modifications. function isDateLocked($date) { if (!$this->isPluginEnabled('lk')) return false; // Locking feature is disabled. if (!$this->lock_spec) return false; // There is no lock specification. if (!$this->behalf_id && $this->can('override_own_date_lock')) return false; // User is working as self and can override own date lock. if ($this->behalf_id && $this->can('override_date_lock')) return false; // User is working on behalf of someone else and can override date lock. require_once(LIBRARY_DIR.'/tdcron/class.tdcron.php'); require_once(LIBRARY_DIR.'/tdcron/class.tdcron.entry.php'); // Calculate the last occurrence of a lock. $last = tdCron::getLastOccurrence($this->lock_spec, time()); $lockdate = new DateAndTime(DB_DATEFORMAT, strftime('%Y-%m-%d', $last)); if ($date->before($lockdate)) return true; return false; } // canOverridePunchMode checks whether a user can override punch mode in a situation. function canOverridePunchMode() { if (!$this->behalf_id && !$this->can('override_own_punch_mode')) return false; // User is working as self and cannot override for self. if ($this->behalf_id && !$this->can('override_punch_mode')) return false; // User is working on behalf of someone else and cannot override. return true; } // getUsers obtains users in a group, as specififed by options. function getUsers($options) { $mdb2 = getConnection(); $skipClients = !isset($options['include_clients']); $includeSelf = isset($options['include_self']); $select_part = 'select u.id, u.name'; if (isset($options['include_login'])) $select_part .= ', u.login'; if (!isset($options['include_clients'])) $select_part .= ', r.rights'; if (isset($options['include_role'])) $select_part .= ', r.name as role_name, r.rank'; $from_part = ' from tt_users u'; $left_joins = null; if (isset($options['max_rank']) || $skipClients || isset($options['include_role'])) $left_joins .= ' left join tt_roles r on (u.role_id = r.id)'; $where_part = " where u.group_id = $this->group_id"; if (isset($options['status'])) $where_part .= ' and u.status = '.(int)$options['status']; else $where_part .= ' and u.status is not null'; if ($includeSelf) { $where_part .= " and (u.id = $this->id || r.rank <= ".(int)$options['max_rank'].')'; } else { if (isset($options['max_rank'])) $where_part .= ' and r.rank <= '.(int)$options['max_rank']; } $order_part = " order by upper(u.name)"; $sql = $select_part.$from_part.$left_joins.$where_part.$order_part; $res = $mdb2->query($sql); $user_list = array(); if (is_a($res, 'PEAR_Error')) return false; while ($val = $res->fetchRow()) { if ($skipClients) { $isClient = in_array('track_own_time', explode(',', $val['rights'])) ? 0 : 1; // Clients do not have track_own_time right. if ($isClient) continue; // Skip adding clients. } $user_list[] = $val; } if (isset($options['self_first'])) { // Put own entry at the front. $cnt = count($user_list); for($i = 0; $i < $cnt; $i++) { if ($user_list[$i]['id'] == $this->id) { $self = $user_list[$i]; // Found self. array_unshift($user_list, $self); // Put own entry at the front. array_splice($user_list, $i+1, 1); // Remove duplicate. } } } return $user_list; } // getUser function is used to manage users in group and returns user details. // At the moment, the function is used for user edits and deletes. function getUser($user_id) { if (!$this->can('manage_users')) return false; $mdb2 = getConnection(); $sql = "select u.id, u.name, u.login, u.role_id, u.status, u.rate, u.email from tt_users u". " left join tt_roles r on (u.role_id = r.id)". " where u.id = $user_id and u.group_id = $this->group_id and u.status is not null". " and (r.rank < $this->rank or (r.rank = $this->rank and u.id = $this->id))"; // Users with lesser roles or self. $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { $val = $res->fetchRow(); return $val; } return false; } // checkBehalfId checks whether behalf_id is appropriate. // On behalf user must be active and have lower rank. function checkBehalfId() { $options = array('status'=>ACTIVE,'max_rank'=>$this->rank-1); $users = $this->getUsers($options); foreach($users as $one_user) { if ($one_user['id'] == $this->behalf_id) return true; } return false; } // adjustBehalfId attempts to adjust behalf_id and behalf_name to a first found // apropriate user. // // Needed for situations when user does not have do_own_something right. // Example: has view_charts but does not have view_own_charts. // In this case we still allow access to charts, but set behalf_id to someone else. function adjustBehalfId() { $options = array('status'=>ACTIVE,'max_rank'=>$this->rank-1); $users = $this->getUsers($options); foreach($users as $one_user) { // Fake loop to access first element. $this->behalf_id = $one_user['id']; $this->behalf_name = $one_user['name']; $_SESSION['behalf_id'] = $this->behalf_id; $_SESSION['behalf_name'] = $this->behalf_name; return true; } return false; } }