* @author Romain Quetiez * @author Denis Flaven * @license http://www.opensource.org/licenses/gpl-3.0.html LGPL */ /** * Perform all the needed checks to delete one (or more) objects */ function DeleteObjects(WebPage $oP, $sClass, $aObjects, $bDeleteConfirmed) { $bFoundManual = false; $bFoundStopper = false; $iTotalDelete = 0; // count of object that must be deleted $iTotalReset = 0; // count of object for which an ext key will be reset (to 0) $aTotalDeletedObjs = array(); $aTotalResetedObjs = array(); foreach($aObjects as $oObj) { // Evaluate the impact on the DB integrity // list ($aDeletedObjs, $aResetedObjs) = $oObj->GetDeletionScheme(); // Evaluate feasibility (user access control) // foreach ($aDeletedObjs as $sRemoteClass => $aDeletes) { $iTotalDelete += count($aDeletes); foreach ($aDeletes as $iId => $aData) { $oToDelete = $aData['to_delete']; $bDeleteAllowed = UserRights::IsActionAllowed($sClass, UR_ACTION_DELETE, DBObjectSet::FromObject($oToDelete)) && !MetaModel::IsReadOnlyClass($sClass); $aTotalDeletedObjs[$sRemoteClass][$iId]['auto_delete'] = $aData['auto_delete']; if (!$bDeleteAllowed) { $aTotalDeletedObjs[$sRemoteClass][$iId]['issue'] = Dict::S('UI:Delete:NotAllowedToDelete'); $bFoundStopper = true; } else { $aTotalDeletedObjs[$sRemoteClass][$iId]['to_delete'] = $oToDelete; } $bAutoDel = $aData['auto_delete']; if (!$bAutoDel) { $bFoundManual = true; } } } foreach ($aResetedObjs as $sRemoteClass => $aToReset) { $iTotalReset += count($aToReset); foreach ($aToReset as $iId => $aData) { $oToReset = $aData['to_reset']; $aExtKeyLabels = array(); $aForbiddenKeys = array(); // keys on which the current user is not allowed to write foreach ($aData['attributes'] as $sRemoteExtKey => $aRemoteAttDef) { $bUpdateAllowed = UserRights::IsActionAllowedOnAttribute($sClass, $sRemoteExtKey, UR_ACTION_MODIFY, DBObjectSet::FromObject($oToReset)); if (!$bUpdateAllowed) { $bFoundStopper = true; $aForbiddenKeys[] = $aRemoteAttDef->GetLabel(); } $aExtKeyLabels[] = $aRemoteAttDef->GetLabel(); } $aResetedObjs[$sRemoteClass][$iId]['attributes_list'] = implode(', ', $aExtKeyLabels); $aTotalResetedObjs[$sRemoteClass][$iId]['attributes_list'] = $aResetedObjs[$sRemoteClass][$iId]['attributes_list']; if (count($aForbiddenKeys) > 0) { $aTotalResetedObjs[$sRemoteClass][$iId]['issue'] = Dict::Format('UI:Delete:NotAllowedToUpdate_Fields',implode(', ', $aForbiddenKeys)); } else { $aTotalResetedObjs[$sRemoteClass][$iId]['to_reset'] = $oToReset; } } } // Count of dependent objects (+ the current one) $iTotalTargets = $iTotalDelete + $iTotalReset; } if ($bDeleteConfirmed) { if (count($aObjects) == 1) { $oObj = $aObjects[0]; $oP->add("

".Dict::Format('UI:Title:DeletionOf_Object', $oObj->GetName())."

\n"); } else { $oP->add("

".Dict::Format('UI:Title:BulkDeletionOf_Count_ObjectsOf_Class', count($aObjects), MetaModel::GetName($sClass))."

\n"); } // Security - do not allow the user to force a forbidden delete by the mean of page arguments... if ($bFoundStopper) { throw new SecurityException(Dict::S('UI:Error:NotEnoughRightsToDelete')); } if ($bFoundManual) { throw new SecurityException(Dict::S('UI:Error:CannotDeleteBecauseOfDepencies')); } // Prepare the change reporting // $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $oMyChange->DBInsert(); // Delete dependencies // $aDisplayData = array(); foreach ($aTotalDeletedObjs as $sRemoteClass => $aDeletes) { foreach ($aDeletes as $iId => $aData) { $oToDelete = $aData['to_delete']; $aDisplayData[] = array( 'class' => MetaModel::GetName(get_class($oToDelete)), 'object' => $oToDelete->GetHyperLink(), 'consequence' => Dict::S('UI:Delete:AutomaticallyDeleted'), ); $oToDelete->DBDeleteTracked($oMyChange); } } // Update dependencies // foreach ($aTotalResetedObjs as $sRemoteClass => $aToReset) { foreach ($aToReset as $iId => $aData) { $oToReset = $aData['to_reset']; $aDisplayData[] = array( 'class' => MetaModel::GetName(get_class($oToReset)), 'object' => $oToReset->GetHyperLink(), 'consequence' => Dict::Format('UI:Delete:AutomaticResetOf_Fields', $aData['attributes_list']), ); foreach ($aData['attributes'] as $sRemoteExtKey => $aRemoteAttDef) { $oToReset->Set($sRemoteExtKey, 0); $oToReset->DBUpdateTracked($oMyChange); } } } // Report automatic jobs // if ($iTotalTargets > 0) { if (count($aObjects) == 1) { $oObj = $aObjects[0]; $oP->p(Dict::Format('UI:Delete:CleaningUpRefencesTo_Object', $oObj->GetName())); } else { $oP->p(Dict::Format('UI:Delete:CleaningUpRefencesTo_Several_ObjectsOf_Class', count($aObjects), MetaModel::GetName($sClass))); } $aDisplayConfig = array(); $aDisplayConfig['class'] = array('label' => 'Class', 'description' => ''); $aDisplayConfig['object'] = array('label' => 'Object', 'description' => ''); $aDisplayConfig['consequence'] = array('label' => 'Done', 'description' => Dict::S('UI:Delete:Done+')); $oP->table($aDisplayConfig, $aDisplayData); } foreach($aObjects as $oObj) { $sName = $oObj->GetName(); $sClassLabel = MetaModel::GetName(get_class($oObj)); $oObj->DBDeleteTracked($oMyChange); $oP->add("

".Dict::Format('UI:Delete:_Name_Class_Deleted', $sName, $sClassLabel)."

\n"); } } else { if (count($aObjects) == 1) { $oObj = $aObjects[0]; $oP->add("

".Dict::Format('UI:Delete:ConfirmDeletionOf_Name', $oObj->GetName())."

\n"); } else { $oP->add("

".Dict::Format('UI:Delete:ConfirmDeletionOf_Count_ObjectsOf_Class', count($aObjects), MetaModel::GetName($sClass))."

\n"); } // Explain what should be done // $aDisplayData = array(); foreach ($aTotalDeletedObjs as $sRemoteClass => $aDeletes) { foreach ($aDeletes as $iId => $aData) { $oToDelete = $aData['to_delete']; $bAutoDel = $aData['auto_delete']; if (array_key_exists('issue', $aData)) { if ($bAutoDel) { $sConsequence = Dict::S('UI:Delete:ShouldBeDeletedAtomaticallyButNotAllowed'); } else { $sConsequence = Dict::S('UI:Delete:MustBeDeletedManuallyButNotAllowed'); } } else { if ($bAutoDel) { $sConsequence = Dict::S('UI:Delete:WillBeDeletedAutomatically'); } else { $sConsequence = Dict::S('UI:Delete:MustBeDeletedManually'); } } $aDisplayData[] = array( 'class' => MetaModel::GetName(get_class($oToDelete)), 'object' => $oToDelete->GetHyperLink(), 'consequence' => $sConsequence, ); } } foreach ($aTotalResetedObjs as $sRemoteClass => $aToReset) { foreach ($aToReset as $iId => $aData) { $oToReset = $aData['to_reset']; if (array_key_exists('issue', $aData)) { $sConsequence = Dict::Format('UI:Delete:CannotUpdateBecause_Issue', $aData['issue']); } else { $sConsequence = Dict::Format('UI:Delete:WillAutomaticallyUpdate_Fields', $aData['attributes_list']); } $aDisplayData[] = array( 'class' => MetaModel::GetName(get_class($oToReset)), 'object' => $oToReset->GetHyperLink(), 'consequence' => $sConsequence, ); } } if ($iTotalTargets > 0) { if (count($aObjects) == 1) { $oObj = $aObjects[0]; $oP->p(Dict::Format('UI:Delete:Count_Objects/LinksReferencing_Object', $iTotalTargets, $oObj->GetName())); } else { $oP->p(Dict::Format('UI:Delete:Count_Objects/LinksReferencingTheObjects', $iTotalTargets)); } $oP->p(Dict::S('UI:Delete:ReferencesMustBeDeletedToEnsureIntegrity')); $aDisplayConfig = array(); $aDisplayConfig['class'] = array('label' => 'Class', 'description' => ''); $aDisplayConfig['object'] = array('label' => 'Object', 'description' => ''); $aDisplayConfig['consequence'] = array('label' => 'Consequence', 'description' => Dict::S('UI:Delete:Consequence+')); $oP->table($aDisplayConfig, $aDisplayData); } if ($iTotalTargets > 0 && ($bFoundManual || $bFoundStopper)) { if ($bFoundStopper) { $oP->p(Dict::S('UI:Delete:SorryDeletionNotAllowed')); } elseif ($bFoundManual) { $oP->p(Dict::S('UI:Delete:PleaseDoTheManualOperations')); } $oP->add("
\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("
\n"); } else { if (count($aObjects) == 1) { $oObj = $aObjects[0]; $id = $oObj->GetKey(); $oP->p('

'.Dict::Format('UI:Delect:Confirm_Object', $oObj->GetHyperLink()).'

'); $oP->add("
\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("
\n"); } else { $oP->p('

'.Dict::Format('UI:Delect:Confirm_Count_ObjectsOf_Class', count($aObjects), MetaModel::GetName($sClass)).'

'); $oSet = CMDBobjectSet::FromArray($sClass, $aObjects); CMDBAbstractObject::DisplaySet($oP, $oSet, array('display_limit' => false, 'menu' => false)); $oP->add("
\n"); $oP->add("\n"); $oP->add("\n"); foreach($aObjects as $oObj) { $oP->add("GetKey()."\">\n"); } $oP->add("\n"); $oP->add("\n"); $oP->add("
\n"); } } } } /*********************************************************************************** * * Main user interface page, starts here * * ***********************************************************************************/ try { require_once('../application/application.inc.php'); require_once('../application/itopwebpage.class.inc.php'); require_once('../application/wizardhelper.class.inc.php'); require_once('../application/startup.inc.php'); $oContext = new UserContext(); $oAppContext = new ApplicationContext(); $iActiveNodeId = utils::ReadParam('menu', ''); if (empty($iActiveNodeId) && !is_numeric($iActiveNodeId)) { // No menu specified, let's get the default one: // 1) It's a root menu item (parent_id == 0) // 2) with the lowest rank $oFilter = DBObjectSearch::FromOQL('SELECT menuNode AS M WHERE M.parent_id = 0'); if ($oFilter) { $oMenuSet = new CMDBObjectSet($oFilter); while($oMenu = $oMenuSet->Fetch()) { $aRanks[$oMenu->GetKey()] = $oMenu->Get('rank'); } asort($aRanks); // sort by ascending rank: menuId => rank $aKeys = array_keys($aRanks); $iActiveNodeId = array_shift($aKeys); // Takes the first key, i.e. the menuId with the lowest rank } } $currentOrganization = utils::ReadParam('org_id', ''); $operation = utils::ReadParam('operation', ''); require_once('../application/loginwebpage.class.inc.php'); LoginWebPage::DoLogin(); // Check user rights and prompt if needed $oP = new iTopWebPage(Dict::S('UI:WelcomeToITop'), $currentOrganization); // From now on the context is limited to the the selected organization ?? if ($iActiveNodeId != -1) { $oActiveNode = $oContext->GetObject('menuNode', $iActiveNodeId); } else { $oActiveNode = null; } switch($operation) { case 'details': $sClass = utils::ReadParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $id = utils::ReadParam('id', ''); $oSearch = new DBObjectSearch($sClass); $oBlock = new DisplayBlock($oSearch, 'search', false); $oBlock->Display($oP, 0); if ( empty($sClass) || empty($id)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:2ParametersMissing', 'class', 'id')); } $oObj = $oContext->GetObject($sClass, $id); if ($oObj != null) { $oP->set_title(Dict::Format('UI:DetailsPageTitle', $oObj->GetDisplayName(), $sClassLabel)); $oObj->DisplayDetails($oP); } else { $oP->set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } break; case 'search_oql': $sOQLClass = utils::ReadParam('oql_class', ''); $sOQLClause = utils::ReadParam('oql_clause', ''); $sFormat = utils::ReadParam('format', ''); $bSearchForm = utils::ReadParam('search_form', true); if (empty($sOQLClass)) { throw new ApplicationException(Dict::Format('UI:Error:1ParametersMissing', 'oql_class')); } $oP->set_title(Dict::S('UI:SearchResultsPageTitle')); $sOQL = "SELECT $sOQLClass $sOQLClause"; try { $oFilter = DBObjectSearch::FromOQL($sOQL); // To Do: Make sure we don't bypass security $oSet = new DBObjectSet($oFilter); if ($bSearchForm) { $oBlock = new DisplayBlock($oFilter, 'search', false); $oBlock->Display($oP, 0); } if (strtolower($sFormat) == 'csv') { $oBlock = new DisplayBlock($oFilter, 'csv', false); $oBlock->Display($oP, 'csv'); $oPage->add_ready_script(" $('#csv').css('height', '95%');"); // adjust the size of the block } else { $oBlock = new DisplayBlock($oFilter, 'list', false); $oBlock->Display($oP, 1); } } catch(CoreException $e) { $oFilter = new DBObjectSearch($sOQLClass); // To Do: Make sure we don't bypass security $oSet = new DBObjectSet($oFilter); if ($bSearchForm) { $oBlock = new DisplayBlock($oFilter, 'search', false); $oBlock->Display($oP, 0); } $oP->P(''.Dict::Format('UI:Error:IncorrectOQLQuery_Message', $e->getHtmlDesc()).''); } catch(Exception $e) { $oP->P(''.Dict::Format('UI:Error:AnErrorOccuredWhileRunningTheQuery_Message', $e->getMessage()).''); } break; case 'search_form': $sClass = utils::ReadParam('class', ''); $sFormat = utils::ReadParam('format', 'html'); $bSearchForm = utils::ReadParam('search_form', true); if (empty($sClass)) { throw new ApplicationException(Dict::Format('UI:Error:1ParametersMissing', 'class')); } $oP->set_title(Dict::S('UI:SearchResultsPageTitle')); $oFilter = $oContext->NewFilter($sClass); $oSet = new DBObjectSet($oFilter); if ($bSearchForm) { $oBlock = new DisplayBlock($oFilter, 'search', false /* Asynchronous */, array('open' => true)); $oBlock->Display($oP, 0); } if (strtolower($sFormat) == 'csv') { $oBlock = new DisplayBlock($oFilter, 'csv', false); $oBlock->Display($oP, 1); $oP->add_ready_script(" $('#csv').css('height', '95%');"); // adjust the size of the block } else { $oBlock = new DisplayBlock($oFilter, 'list', false); $oBlock->Display($oP, 1); } break; case 'search': $sFilter = utils::ReadParam('filter', ''); $sFormat = utils::ReadParam('format', ''); $bSearchForm = utils::ReadParam('search_form', true); if (empty($sFilter)) { throw new ApplicationException(Dict::Format('UI:Error:1ParametersMissing', 'filter')); } $oP->set_title(Dict::S('UI:SearchResultsPageTitle')); // TO DO: limit the search filter by the user context $oFilter = CMDBSearchFilter::unserialize($sFilter); // TO DO : check that the filter is valid $oSet = new DBObjectSet($oFilter); if ($bSearchForm) { $oBlock = new DisplayBlock($oFilter, 'search', false); $oBlock->Display($oP, 0); } if (strtolower($sFormat) == 'csv') { $oBlock = new DisplayBlock($oFilter, 'csv', false); $oBlock->Display($oP, 'csv'); $oP->add_ready_script(" $('#csv').css('height', '95%');"); // adjust the size of the block } else { $oBlock = new DisplayBlock($oFilter, 'list', false); $oBlock->Display($oP, 1); } break; case 'full_text': $sFullText = trim(utils::ReadParam('text', '')); if (empty($sFullText)) { $oP->p(Dict::S('UI:Search:NoSearch')); } else { $oP->set_title(Dict::S('UI:SearchResultsPageTitle')); $oP->p("

".Dict::Format('UI:FullTextSearchTitle_Text', $sFullText)."

"); $iCount = 0; $iBlock = 0; // Search in full text mode in all the classes foreach(MetaModel::GetClasses('bizmodel') as $sClassName) { $oFilter = new DBObjectSearch($sClassName); $oFilter->AddCondition_FullText($sFullText); $oSet = new DBObjectSet($oFilter); if ($oSet->Count() > 0) { $aLeafs = array(); while($oObj = $oSet->Fetch()) { if (get_class($oObj) == $sClassName) { $aLeafs[] = $oObj->GetKey(); } } $oLeafsFilter = new DBObjectSearch($sClassName); if (count($aLeafs) > 0) { $iCount += count($aLeafs); $oP->add("
\n"); $oP->add("

".Dict::Format('UI:Search:Count_ObjectsOf_Class_Found', count($aLeafs), Metamodel::GetName($sClassName))."

\n"); $oP->add("
\n"); $oLeafsFilter->AddCondition('id', $aLeafs, 'IN'); $oBlock = new DisplayBlock($oLeafsFilter, 'list', false); $oBlock->Display($oP, $iBlock++); } } } if ($iCount == 0) { $oP->p(Dict::S('UI:Search:NoObjectFound')); } } break; case 'modify': $oP->add_linked_script("../js/json.js"); $oP->add_linked_script("../js/forms-json-utils.js"); $oP->add_linked_script("../js/wizardhelper.js"); $oP->add_linked_script("../js/wizard.utils.js"); $oP->add_linked_script("../js/linkswidget.js"); $oP->add_linked_script("../js/jquery.blockUI.js"); $sClass = utils::ReadParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $id = utils::ReadParam('id', ''); if ( empty($sClass) || empty($id)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:2ParametersMissing', 'class', 'id')); } // Check if the user can modify this object $oSearch = new DBObjectSearch($sClass); $oSearch->AddCondition('id', $id, '='); $oSet = new CMDBObjectSet($oSearch); if ($oSet->Count() > 0) { $oObj = $oSet->Fetch(); } $bIsModifiedAllowed = (UserRights::IsActionAllowed($sClass, UR_ACTION_MODIFY, $oSet) == UR_ALLOWED_YES) && !MetaModel::IsReadOnlyClass($sClass); $bIsReadAllowed = (UserRights::IsActionAllowed($sClass, UR_ACTION_READ, $oSet) == UR_ALLOWED_YES); if( ($oObj != null) && ($bIsModifiedAllowed) && ($bIsReadAllowed)) { $oP->set_title(Dict::Format('UI:ModificationPageTitle_Object_Class', $oObj->GetName(), $sClassLabel)); $oP->add("
\n"); $oP->add("

".Dict::Format('UI:ModificationTitle_Class_Object', $sClassLabel, $oObj->GetName())."

\n"); $oP->add("
\n"); $oP->add("
\n"); $oObj->DisplayModifyForm($oP); $oP->add("
\n"); } else { $oP->set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } break; case 'clone': $sClass = utils::ReadParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $id = utils::ReadParam('id', ''); if ( empty($sClass) || empty($id)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:2ParametersMissing', 'class', 'id')); } // Check if the user can modify this object $oSearch = new DBObjectSearch($sClass); $oSearch->AddCondition('id', $id, '='); $oSet = new CMDBObjectSet($oSearch); if ($oSet->Count() > 0) { $oObjToClone = $oSet->Fetch(); } $bIsModifiedAllowed = (UserRights::IsActionAllowed($sClass, UR_ACTION_MODIFY, $oSet) == UR_ALLOWED_YES) && !MetaModel::IsReadOnlyClass($sClass); $bIsReadAllowed = (UserRights::IsActionAllowed($sClass, UR_ACTION_READ, $oSet) == UR_ALLOWED_YES); if( ($oObjToClone != null) && ($bIsModifiedAllowed) && ($bIsReadAllowed)) { $oP->add_linked_script("../js/json.js"); $oP->add_linked_script("../js/forms-json-utils.js"); $oP->add_linked_script("../js/wizardhelper.js"); $oP->add_linked_script("../js/wizard.utils.js"); $oP->add_linked_script("../js/linkswidget.js"); $oP->add_linked_script("../js/jquery.blockUI.js"); $oP->set_title(Dict::Format('UI:ClonePageTitle_Object_Class', $oObj->GetName(), $sClassLabel)); $oP->add("
\n"); $oP->add("

".Dict::Format('UI:CloneTitle_Class_Object', $sClassLabel, $oObj->GetName())."

\n"); $oP->add("
\n"); $oP->add("
\n"); cmdbAbstractObject::DisplayCreationForm($oP, $sClass, $oObjToClone); $oP->add("
\n"); } else { $oP->set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } break; case 'new': $sClass = utils::ReadParam('class', ''); $sStateCode = utils::ReadParam('state', ''); if ( empty($sClass) ) { throw new ApplicationException(Dict::Format('UI:Error:1ParametersMissing', 'class')); } $oP->add_linked_script("../js/json.js"); $oP->add_linked_script("../js/forms-json-utils.js"); $oP->add_linked_script("../js/wizardhelper.js"); $oP->add_linked_script("../js/wizard.utils.js"); $oP->add_linked_script("../js/linkswidget.js"); $oP->add_linked_script("../js/jquery.blockUI.js"); $oWizard = new UIWizard($oP, $sClass, $sStateCode); $oContext = new UserContext(); $aArgs = array_merge($oAppContext->GetAsHash(), utils::ReadParam('default', array())); $sStateCode = $oWizard->GetTargetState(); // Will computes the default state if none was supplied $sClassLabel = MetaModel::GetName($sClass); $oP->set_title(Dict::Format('UI:CreationPageTitle_Class', $sClassLabel)); $oP->add("

".Dict::Format('UI:CreationTitle_Class', $sClassLabel)."

\n"); if (!empty($sStateCode)) { $sStateLabel = MetaModel::GetStateLabel($sClass, $sStateCode); } $aWizardSteps = $oWizard->GetWizardStructure(); // Display the structure of the wizard $iStepIndex = 1; $iMaxInputId = 0; $aFieldsMap = array(); foreach($aWizardSteps['mandatory'] as $aSteps) { $oP->SetCurrentTab("Step $iStepIndex *"); $oWizard->DisplayWizardStep($aSteps, $iStepIndex, $iMaxInputId, $aFieldsMap, false /* no finish button */, $aArgs); $iStepIndex++; } foreach($aWizardSteps['optional'] as $aSteps) { $oP->SetCurrentTab("Step $iStepIndex"); $oWizard->DisplayWizardStep($aSteps, $iStepIndex, $iMaxInputId, $aFieldsMap, true, $aArgs); // true means enable the finish button $iStepIndex++; } $oWizard->DisplayFinalStep($iStepIndex, $aFieldsMap); $oObj = null; if (!empty($id)) { $oObj = $oContext->GetObject($sClass, $id); } if (!is_object($oObj)) { // new object or that can't be retrieved (corrupted id or object not allowed to this user) $id = ''; $oObj = MetaModel::NewObject($sClass); } $oP->add("\n"); break; case 'apply_modify': $sClass = utils::ReadPostedParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $id = utils::ReadPostedParam('id', ''); $sTransactionId = utils::ReadPostedParam('transaction_id', ''); if ( empty($sClass) || empty($id)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:2ParametersMissing', 'class', 'id')); } $oObj = $oContext->GetObject($sClass, $id); if (!utils::IsTransactionValid($sTransactionId)) { $oP->p("".Dict::S('UI:Error:ObjectAlreadyUpdated')."\n"); } else { if ($oObj != null) { $oP->set_title(Dict::Format('UI:ModificationPageTitle_Object_Class', $oObj->GetName(), $sClassLabel)); $oP->add("

".Dict::Format('UI:ModificationTitle_Class_Object', $sClassLabel, $oObj->GetName())."

\n"); foreach(MetaModel::ListAttributeDefs(get_class($oObj)) as $sAttCode=>$oAttDef) { if ($oAttDef->IsLinkSet()) { // Link set, the data is a set of link objects, encoded in JSON $aAttributes[$sAttCode] = trim(utils::ReadPostedParam("attr_$sAttCode", '')); if (!empty($aAttributes[$sAttCode])) { $oLinkSet = WizardHelper::ParseJsonSet($oObj, $oAttDef->GetLinkedClass(), $oAttDef->GetExtKeyToMe(), $aAttributes[$sAttCode]); $oObj->Set($sAttCode, $oLinkSet); // TO DO: detect a real modification, for now always update !! } } else if (!$oAttDef->IsExternalField()) { $rawValue = utils::ReadPostedParam("attr_$sAttCode", null); if (!is_null($rawValue)) { $aAttributes[$sAttCode] = trim($rawValue); $previousValue = $oObj->Get($sAttCode); if ($previousValue !== $aAttributes[$sAttCode]) { $oObj->Set($sAttCode, $aAttributes[$sAttCode]); } } } else if ($oAttDef->IsWritable()) { $iFlags = $oObj->GetAttributeFlags($sAttCode); if ($iFlags & (OPT_ATT_HIDDEN | OPT_ATT_READONLY)) { // Non-visible, or read-only attribute, do nothing } else if ($oAttDef->GetEditClass() == 'Document') { // There should be an uploaded file with the named attr_ $oDocument = utils::ReadPostedDocument('file_'.$sAttCode); if (!$oDocument->IsEmpty()) { // A new file has been uploaded $oObj->Set($sAttCode, $oDocument); } } } } if (!$oObj->IsModified()) { $oP->p(Dict::Format('UI:Class_Object_NotUpdated', MetaModel::GetName(get_class($oObj)), $oObj->GetName())); } else if ($oObj->CheckToUpdate()) { $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $iChangeId = $oMyChange->DBInsert(); $oObj->DBUpdateTracked($oMyChange); $oP->p(Dict::Format('UI:Class_Object_Updated', MetaModel::GetName(get_class($oObj)), $oObj->GetName())); } else { $oP->p("".Dict::S('UI:Error:ObjectCannotBeUpdated')."\n"); } } else { $oP->set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } } $oObj->DisplayDetails($oP); break; case 'select_for_deletion': $sFilter = utils::ReadParam('filter', ''); $sFormat = utils::ReadParam('format', ''); $bSearchForm = utils::ReadParam('search_form', true); if (empty($sFilter)) { throw new ApplicationException(Dict::Format('UI:Error:1ParametersMissing', 'filter')); } $oP->set_title(Dict::S('UI:BulkDeletePageTitle')); $oP->add("

".Dict::S('UI:BulkDeleteTitle')."

\n"); // TO DO: limit the search filter by the user context $oFilter = CMDBSearchFilter::unserialize($sFilter); // TO DO : check that the filter is valid $oSet = new DBObjectSet($oFilter); if ($bSearchForm) { $oBlock = new DisplayBlock($oFilter, 'search', false); $oBlock->Display($oP, 0); } $oBlock = new DisplayBlock($oFilter, 'list', false); $oP->add("
\n"); $oP->add("\n"); $oP->add("GetClass()."\">\n"); $oP->add("\n"); $oBlock->Display($oP, 1, array('selection_type' => 'multiple', 'selection_mode' => true, 'display_limit' => false)); $oP->add("  \n"); $oP->add("
\n"); break; case 'bulk_delete': case 'bulk_delete_confirmed': $sClass = utils::ReadPostedParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $aSelectObject = utils::ReadPostedParam('selectObject', ''); $aObjects = array(); $sTransactionId = utils::ReadPostedParam('transaction_id', ''); if ( empty($sClass) || empty($aSelectObject)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:2ParametersMissing', 'class', 'selectObject[]')); } if (!utils::IsTransactionValid($sTransactionId)) { throw new ApplicationException(Dict::S('UI:Error:ObjectsAlreadyDeleted')); } foreach($aSelectObject as $iId) { $aObjects[] = $oContext->GetObject($sClass, $iId); } if (MetaModel::IsReadOnlyClass($sClass) || !UserRights::IsActionAllowed($sClass, UR_ACTION_BULK_DELETE, DBObjectSet::FromArray($sClass, $aObjects))) { throw new SecurityException(Dict::S('UI:Error:BulkDeleteNotAllowedOn_Class'), $sClass); } $oP->set_title(Dict::S('UI:BulkDeletePageTitle')); DeleteObjects($oP, $sClass, $aObjects, ($operation == 'bulk_delete_confirmed')); break; case 'delete': case 'delete_confirmed': $sClass = utils::ReadParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $id = utils::ReadParam('id', ''); $oObj = $oContext->GetObject($sClass, $id); if (MetaModel::IsReadOnlyClass($sClass) || !UserRights::IsActionAllowed($sClass, UR_ACTION_MODIFY, DBObjectSet::FromObject($oObj))) { throw new SecurityException(Dict::S('UI:Error:DeleteNotAllowedOn_Class'), $sClass); } DeleteObjects($oP, $sClass, array($oObj), ($operation == 'delete_confirmed')); break; case 'apply_clone': $sClass = utils::ReadPostedParam('class', ''); $sClassLabel = MetaModel::GetName($sClass); $iCloneId = utils::ReadPostedParam('clone_id', ''); $sTransactionId = utils::ReadPostedParam('transaction_id', ''); if (!utils::IsTransactionValid($sTransactionId)) { $oP->p(Dict::S('UI:Error:ObjectAlreadyCloned')); } else { $oObj = $oContext->GetObject($sClass, $iCloneId); $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $iChangeId = $oMyChange->DBInsert(); $sStateAttCode = MetaModel::GetStateAttributeCode(get_class($oObj)); foreach(MetaModel::ListAttributeDefs($sClass) as $sAttCode=>$oAttDef) { if ( ($oAttDef->IsWritable()) ) { $value = utils::ReadPostedParam('attr_'.$sAttCode, ''); $oObj->Set($sAttCode, $value); } } $oObj->DBCloneTracked($oMyChange); $oP->set_title(Dict::S('UI:PageTitle:ObjectCreated')); $oP->add("

".Dict::Format('UI:Title:Object_Of_Class_Created', $oObj->GetName(), $sClassLabel)."

\n"); $oObj->DisplayDetails($oP); } break; case 'wizard_apply_new': $sJson = utils::ReadPostedParam('json_obj', ''); $oWizardHelper = WizardHelper::FromJSON($sJson); $sTransactionId = utils::ReadPostedParam('transaction_id', ''); if (!utils::IsTransactionValid($sTransactionId)) { $oP->p(Dict::S('UI:Error:ObjectAlreadyCreated')); } else { $oObj = $oWizardHelper->GetTargetObject(true /* read uploaded files */); if (is_object($oObj)) { $sClass = get_class($oObj); $sClassLabel = MetaModel::GetName($sClass); $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $iChangeId = $oMyChange->DBInsert(); $oObj->DBInsertTracked($oMyChange); $oP->set_title(Dict::S('UI:PageTitle:ObjectCreated')); $oP->add("

".Dict::Format('UI:Title:Object_Of_Class_Created', $oObj->GetName(), $sClassLabel)."

\n"); $oObj->DisplayDetails($oP); } } break; case 'stimulus': $sClass = utils::ReadParam('class', ''); $id = utils::ReadParam('id', ''); $sStimulus = utils::ReadParam('stimulus', ''); if ( empty($sClass) || empty($id) || empty($sStimulus) ) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:3ParametersMissing', 'class', 'id', 'stimulus')); } $oObj = $oContext->GetObject($sClass, $id); if ($oObj != null) { $aTransitions = $oObj->EnumTransitions(); $aStimuli = MetaModel::EnumStimuli($sClass); if (!isset($aTransitions[$sStimulus])) { // Invalid stimulus throw new ApplicationException(Dict::Format('UI:Error:Invalid_Stimulus_On_Object_In_State', $sStimulus, $oObj->GetName(), $oObj->GetStateLabel())); } $sActionLabel = $aStimuli[$sStimulus]->GetLabel(); $sActionDetails = $aStimuli[$sStimulus]->GetDescription(); $aTransition = $aTransitions[$sStimulus]; $sTargetState = $aTransition['target_state']; $aTargetStates = MetaModel::EnumStates($sClass); $oP->add_linked_script("../js/json.js"); $oP->add_linked_script("../js/forms-json-utils.js"); $oP->add_linked_script("../js/wizardhelper.js"); $oP->add_linked_script("../js/wizard.utils.js"); $oP->add_linked_script("../js/linkswidget.js"); $oP->add_linked_script("../js/jquery.blockUI.js"); $oP->add("
\n"); $oP->add("

$sActionLabel - {$oObj->GetName()}

\n"); $oP->add("
\n"); $oObj->DisplayBareDetails($oP); $aTargetState = $aTargetStates[$sTargetState]; $aExpectedAttributes = $aTargetState['attribute_list']; $oP->add("
\n"); $oP->add("

$sActionDetails

\n"); $oP->add("
\n"); $oP->add("
\n"); $aDetails = array(); $iFieldIndex = 0; $aFieldsMap = array(); foreach($aExpectedAttributes as $sAttCode => $iExpectCode) { // Prompt for an attribute if // - the attribute must be changed or must be displayed to the user for confirmation // - or the field is mandatory and currently empty if ( ($iExpectCode & (OPT_ATT_MUSTCHANGE | OPT_ATT_MUSTPROMPT)) || (($iExpectCode & OPT_ATT_MANDATORY) && ($oObj->Get($sAttCode) == '')) ) { $aAttributesDef = MetaModel::ListAttributeDefs($sClass); $oAttDef = $aAttributesDef[$sAttCode]; $aArgs = array('this' => $oObj); $sHTMLValue = cmdbAbstractObject::GetFormElementForField($oP, $sClass, $sAttCode, $oAttDef, $oObj->Get($sAttCode), $oObj->GetEditValue($sAttCode), 'att_'.$iFieldIndex, '', $iExpectCode, $aArgs); $aDetails[] = array('label' => $oAttDef->GetLabel(), 'value' => "$sHTMLValue"); $aFieldsMap[$sAttCode] = 'att_'.$iFieldIndex; $iFieldIndex++; } } $oP->details($aDetails); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add("\n"); $oP->add($oAppContext->GetForForm()); $oP->add("    \n"); $oP->add("\n"); $oP->add("
\n"); $oP->add("
\n"); $oP->add("
\n"); $iFieldsCount = count($aFieldsMap); $sJsonFieldsMap = json_encode($aFieldsMap); $oP->add_script( <<set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } break; case 'apply_stimulus': $sClass = utils::ReadPostedParam('class', ''); $id = utils::ReadPostedParam('id', ''); $sTransactionId = utils::ReadPostedParam('transaction_id', ''); $sStimulus = utils::ReadPostedParam('stimulus', ''); if ( empty($sClass) || empty($id) || empty($sStimulus) ) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:3ParametersMissing', 'class', 'id', 'stimulus')); } $oObj = $oContext->GetObject($sClass, $id); if ($oObj != null) { $aTransitions = $oObj->EnumTransitions(); $aStimuli = MetaModel::EnumStimuli($sClass); if (!isset($aTransitions[$sStimulus])) { throw new ApplicationException(Dict::Format('UI:Error:Invalid_Stimulus_On_Object_In_State', $sStimulus, $oObj->GetName(), $oObj->GetStateLabel())); } if (!utils::IsTransactionValid($sTransactionId)) { $oP->p(Dict::S('UI:Error:ObjectAlreadyUpdated')); } else { $sActionLabel = $aStimuli[$sStimulus]->GetLabel(); $sActionDetails = $aStimuli[$sStimulus]->GetDescription(); $aTransition = $aTransitions[$sStimulus]; $sTargetState = $aTransition['target_state']; $aTargetStates = MetaModel::EnumStates($sClass); $oP->add("
\n"); $oP->add("

$sActionLabel - {$oObj->GetName()}

\n"); $oP->add("

$sActionDetails

\n"); $oP->p(Dict::Format('UI:Apply_Stimulus_On_Object_In_State_ToTarget_State', $sActionLabel, $oObj->GetName(), $oObj->GetStateLabel(), $sTargetState)); $oP->add("
\n"); $aTargetState = $aTargetStates[$sTargetState]; $aExpectedAttributes = $aTargetState['attribute_list']; $aDetails = array(); foreach($aExpectedAttributes as $sAttCode => $iExpectCode) { if (($iExpectCode & OPT_ATT_MUSTCHANGE) || ($oObj->Get($sAttCode) == '') ) { $paramValue = utils::ReadPostedParam("attr_$sAttCode", ''); $oObj->Set($sAttCode, $paramValue); } } if ($oObj->ApplyStimulus($sStimulus) && $oObj->CheckToUpdate()) { $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $iChangeId = $oMyChange->DBInsert(); $oObj->DBUpdateTracked($oMyChange); $oP->p(Dict::Format('UI:Class_Object_Updated', get_class($oObj), $oObj->GetName())); } } $oObj->DisplayDetails($oP); } else { $oP->set_title(Dict::S('UI:ErrorPageTitle')); $oP->P(Dict::S('UI:ObjectDoesNotExist')); } break; case 'modify_links': $sClass = utils::ReadParam('class', ''); $sLinkAttr = utils::ReadParam('link_attr', ''); $sTargetClass = utils::ReadParam('target_class', ''); $id = utils::ReadParam('id', ''); $bAddObjects = utils::ReadParam('addObjects', false); if ( empty($sClass) || empty($id) || empty($sLinkAttr) || empty($sTargetClass)) // TO DO: check that the class name is valid ! { throw new ApplicationException(Dict::Format('UI:Error:4ParametersMissing', 'class', 'id', 'target_class', 'link_attr')); } require_once('../application/uilinkswizard.class.inc.php'); $oWizard = new UILinksWizard($sClass, $sLinkAttr, $id, $sTargetClass); $oWizard->Display($oP, $oContext, array('StartWithAdd' => $bAddObjects)); break; case 'do_modify_links': $aLinks = utils::ReadParam('linkId', array(), 'post'); $sLinksToRemove = trim(utils::ReadParam('linksToRemove', '', 'post')); $aLinksToRemove = array(); if (!empty($sLinksToRemove)) { $aLinksToRemove = explode(' ', trim($sLinksToRemove)); } $sClass = utils::ReadParam('class', '', 'post'); $sLinkageAtt = utils::ReadParam('linkage', '', 'post'); $iObjectId = utils::ReadParam('object_id', '', 'post'); $sLinkingAttCode = utils::ReadParam('linking_attcode', '', 'post'); $oMyChange = MetaModel::NewObject("CMDBChange"); $oMyChange->Set("date", time()); if (UserRights::GetUser() != UserRights::GetRealUser()) { $sUserString = Dict::Format('UI:Archive_User_OnBehalfOf_User', UserRights::GetRealUser(), UserRights::GetUser()); } else { $sUserString = UserRights::GetUser(); } $oMyChange->Set("userinfo", $sUserString); $iChangeId = $oMyChange->DBInsert(); // Delete links that are to be deleted foreach($aLinksToRemove as $iLinkId) { if ($iLinkId > 0) // Negative IDs are objects that were not even created { $oLink = $oContext->GetObject($sClass, $iLinkId); $oLink->DBDeleteTracked($oMyChange); } } $aEditableFields = array(); $aData = array(); foreach(MetaModel::GetAttributesList($sClass) as $sAttCode) { $oAttDef = MetaModel::GetAttributeDef($sClass, $sAttCode); if ( (!$oAttDef->IsExternalKey()) && (!$oAttDef->IsExternalField())) { $aEditableFields[] = $sAttCode; $aData[$sAttCode] = utils::ReadParam('attr_'.$sAttCode, array(), 'post'); } } // Update existing links or create new links foreach($aLinks as $iLinkId) { if ($iLinkId > 0) { // This is an existing link to be modified $oLink = $oContext->GetObject($sClass, $iLinkId); // Update all the attributes of the link foreach($aEditableFields as $sAttCode) { $value = $aData[$sAttCode][$iLinkId]; $oLink->Set($sAttCode, $value); } if ($oLink->IsModified()) { $oLink->DBUpdateTracked($oMyChange); } //echo "Updated link:
\n"; //var_dump($oLink); } else { // A new link must be created $oLink = MetaModel::NewObject($sClass); $oLinkedObjectId = -$iLinkId; // Set all the attributes of the link foreach($aEditableFields as $sAttCode) { $value = $aData[$sAttCode][$iLinkId]; $oLink->Set($sAttCode, $value); } // And the two external keys $oLink->Set($sLinkageAtt, $iObjectId); $oLink->Set($sLinkingAttCode, $oLinkedObjectId); // then save it //echo "Created link:
\n"; //var_dump($oLink); $oLink->DBInsertTracked($oMyChange); } } // Display again the details of the linked object $oAttDef = MetaModel::GetAttributeDef($sClass, $sLinkageAtt); $sTargetClass = $oAttDef->GetTargetClass(); $oObj = $oContext->GetObject($sTargetClass, $iObjectId); $oSearch = $oContext->NewFilter(get_class($oObj)); $oBlock = new DisplayBlock($oSearch, 'search', false); $oBlock->Display($oP, 0); $oObj->DisplayDetails($oP); break; case 'swf_navigator': $sClass = utils::ReadParam('class', ''); $id = utils::ReadParam('id', 0); $sRelation = utils::ReadParam('relation', 'neighbours'); $width = 1000; $height = 700; $sParams = "pWidth=$width&pHeight=$height&drillUrl=".urlencode('../pages/UI.php?operation=details')."&displayController=false&xmlUrl=".urlencode("./xml.navigator.php")."&obj_class=$sClass&obj_id=$id&relation=$sRelation"; $oP->add(" \n"); break; default: if (is_object($oActiveNode)) { $oActiveNode->RenderContent($oP, $oAppContext->GetAsHash()); $oP->set_title($oActiveNode->GetMenuLabel()); } } ////MetaModel::ShowQueryTrace(); $oP->output(); } catch(CoreException $e) { require_once('../setup/setuppage.class.inc.php'); $oP = new SetupWebPage(Dict::S('UI:PageTitle:FatalError')); $oP->add("

".Dict::S('UI:FatalErrorMessage')."

\n"); $oP->error(Dict::Format('UI:Error_Details', $e->getHtmlDesc())); $oP->output(); if (MetaModel::IsLogEnabledIssue()) { if (MetaModel::IsValidClass('EventIssue')) { $oLog = new EventIssue(); $oLog->Set('message', $e->getMessage()); $oLog->Set('userinfo', ''); $oLog->Set('issue', $e->GetIssue()); $oLog->Set('impact', 'Page could not be displayed'); $oLog->Set('callstack', $e->getTrace()); $oLog->Set('data', $e->getContextData()); $oLog->DBInsertNoReload(); } IssueLog::Error($e->getMessage()); } // For debugging only //throw $e; } catch(Exception $e) { require_once('../setup/setuppage.class.inc.php'); $oP = new SetupWebPage(Dict::S('UI:PageTitle:FatalError')); $oP->add("

".Dict::S('UI:FatalErrorMessage')."

\n"); $oP->error(Dict::Format('UI:Error_Details', $e->getMessage())); $oP->output(); if (MetaModel::IsLogEnabledIssue()) { if (MetaModel::IsValidClass('EventIssue')) { $oLog = new EventIssue(); $oLog->Set('message', $e->getMessage()); $oLog->Set('userinfo', ''); $oLog->Set('issue', 'PHP Exception'); $oLog->Set('impact', 'Page could not be displayed'); $oLog->Set('callstack', $e->getTrace()); $oLog->Set('data', array()); $oLog->DBInsertNoReload(); } IssueLog::Error($e->getMessage()); } } ?>