<?php
/*
----------------------------------------------------------------------
LICENSE
This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public License (GPL)
as published by the Free Software Foundation; either version 2
of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
To read the license please visit http://www.gnu.org/copyleft/gpl.html
----------------------------------------------------------------------
*/
/**
* Manages piwik user accounts
* @copyright AlternC-Team 2000-2017 https://alternc.com/
*/
require_once("../class/config.php");
include_once("head.php");
$fields = array (
"user_name" => array ("post", "string", FALSE),
"site_id" => array ("post", "integer", -1),
"right" => array ("post", "string", FALSE),
);
getFields($fields);
if ($user_name === FALSE)
{
$msg->raise("ERROR", "piwik", _('No piwik user specified'));
}
else
{
// Add a user to a piwik website
if ($site_id != -1 && $right !== FALSE) {
$db->query("SELECT COUNT(*) AS ok FROM piwik_sites WHERE uid=? AND piwik_id=?;",array($cuid,$site_id));
$db->next_record();
if ($db->f('ok')!=1)
{
$msg->raise("ERROR", "piwik", _("You don't own this piwik website"));
}
else
{
$db->query("SELECT COUNT(*) AS ok FROM piwik_users WHERE uid=? AND login=?",array($cuid,$user_name));
$db->next_record();
if ($db->f('ok')!=1)
{
$msg->raise("ERROR", "piwik", _("You don't own this piwik user"));
}
else
{
$piwik_rights = array("noaccess", "view", "admin");
if (in_array($right, $piwik_rights))
{
$api_data = $piwik->site_set_user_right($site_id, $user_name, $right);
if ($api_data === FALSE)
$msg->raise("ERROR", "piwik", $api_data->message);
$msg->raise("ERROR", "piwik", $api_data->message);
else
$msg->raise("INFO", "piwik", _('success'));
}
else
{
$msg->raise("ERROR", "piwik", _("This right does not exist"));
}
}
}
}
$user_piwik_sites = array();
$db->query("SELECT piwik_id FROM piwik_sites WHERE uid=?",array($cuid));
while ($db->next_record())
array_push($user_piwik_sites, $db->f('piwik_id'));
// Weird behaviour of php: array_push products an array such as:
// array_push(array(1,2,3) , 4) produces
// array(0 => 1, 1 => 2, 2 => 3, 3 => 4)
// So for further comparison, we need to exchange keys and values
$user_piwik_sites = array_flip($user_piwik_sites);
$user_piwik_users = array();
$db->query("SELECT login FROM piwik_users WHERE uid=?",arary($cuid));
while ($db->next_record())
array_push ($user_piwik_users, $db->f('login'));
// Swap keys and values, see user_piwik_sites
$user_piwik_users = array_flip($user_piwik_users);
}
?>
<h3><?php printf('%s "%s"', _("Rights for user"), $user_name); ?></h3>
<?php
echo $msg->msg_html_all();
$raw_sites = $piwik->get_site_list();
$piwik_sites = array();
foreach ($raw_sites AS $site) {
$piwik_sites[ $site->idsite ] = array('name' => $site->name, 'url' => $site->main_url);
}
$raw_access = $piwik->get_site_access($user_name);
$piwik_user_sites = array_intersect_ukey($piwik_sites, $user_piwik_sites, "strcmp");
$available_user_sites = $piwik_user_sites;
echo '<ul>';
foreach ($raw_access AS $access)
{
unset($available_user_sites[ $access->site ]);
printf("<li>%s -> %s</li>\n", $piwik_sites[ $access->site ]['name'], $access->access);
}
echo '</ul>';
if (count($available_user_sites)>0)
{
?>
<h3><?php printf('%s "%s"', _("Add rights to user"), $user_name); ?></h3>
<ul>
<?php
foreach ($available_user_sites AS $current_id_site => $available_user_site)
{
printf('<li>%s <form method="post"><input type="hidden" name="site_id" value="%d">
<input type="hidden" name="csrf" value="'.csrf_get(true).'" />
<select name="right">
<option value="noaccess">%s</option>
<option value="view">%s</option>
<option value="admin">%s</option>
</select>
<input type="submit" name="add" value="ajouter" class="inb" /></form></li>', $available_user_site['name'], $current_id_site, _("noacces"), _("view"), _("admin"));
}
?>
</li>
<?php
}
include_once("foot.php"); ?>