nettsiden/www/admin/brukere/update.php

<?php
ini_set('display_errors', '1');
date_default_timezone_set('Europe/Oslo');
setlocale(LC_ALL, 'nb_NO');
error_reporting(E_ALL);
require __DIR__ . '/../../../src/_autoload.php';
require __DIR__ . '/../../../config.php';
$pdo = new \PDO($DB_DSN, $DB_USER, $DB_PASS);
$pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
$userManager = new \pvv\admin\UserManager($pdo);

require_once(__DIR__ . '/../../../vendor/simplesamlphp/simplesamlphp/lib/_autoload.php');
$as = new SimpleSAML_Auth_Simple('default-sp');
$as->requireAuth();
$attrs = $as->getAttributes();
$uname = $attrs['uid'][0];

if(!$userManager->isAdmin($uname)){
	echo 'Her har du ikke lov\'t\'å\'værra!!!';
	exit();
}

$newUser;
if(isset($_POST['newuser'])){
	$newUser = $_POST['newuser'];
	unset($_POST['newuser']);	
}

//$updatingUsers = explode('_', $_POST['users']);
$updatingUsers = array();
foreach ($_POST as $key => $value) { if ($key === "user_to_update") {
		array_push($updatingUsers, $value);
	}
}
unset($_POST['user_to_update']);

// 2d array of usernames and their corresponding group flags
$userFlags = [];
if($newUser){
	$userFlags[$newUser] = 0;
}

foreach($_POST as $namegroup => $info){
	$data = explode('_', $namegroup);
	$group = array_pop($data);
	$uname = implode("_", $data);
	if($uname == 'newuser'){
		if(!$newUser){
			continue;
		}

		$uname = $newUser;
	}

	if(!isset($userFlags[$uname])){
		$userFlags[$uname] = 0;
	}

	$userFlags[$uname] = ($userFlags[$uname] | $userManager->usergroups[$group]);
}

foreach($updatingUsers as $uname) {
	if(!array_key_exists($uname, $userFlags)){
		$userFlags[$uname] = 0;
	}
}

foreach($userFlags as $uname => $flag){
	$userManager->setGroups($uname, $flag);
}

header('Location: .');
?>

<a href=".">Om du ikke ble automatisk omdirigert tilbake klikk her</a>
Usergroup system 2017-11-11 17:00:08 +01:00			`<?php`
			`ini_set('display_errors', '1');`
			`date_default_timezone_set('Europe/Oslo');`
Norwegian localisation fixes 2018-02-10 18:08:53 +01:00			`setlocale(LC_ALL, 'nb_NO');`
Usergroup system 2017-11-11 17:00:08 +01:00			`error_reporting(E_ALL);`
			`require __DIR__ . '/../../../src/_autoload.php';`
WIP: move sql_config.php to config.php 2024-02-15 22:57:03 +01:00			`require __DIR__ . '/../../../config.php';`
Update global config variables 2024-03-12 19:33:09 +01:00			`$pdo = new \PDO($DB_DSN, $DB_USER, $DB_PASS);`
Usergroup system 2017-11-11 17:00:08 +01:00			`$pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);`
			`$userManager = new \pvv\admin\UserManager($pdo);`

			`require_once(__DIR__ . '/../../../vendor/simplesamlphp/simplesamlphp/lib/_autoload.php');`
			`$as = new SimpleSAML_Auth_Simple('default-sp');`
			`$as->requireAuth();`
			`$attrs = $as->getAttributes();`
			`$uname = $attrs['uid'][0];`

			`if(!$userManager->isAdmin($uname)){`
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00			`echo 'Her har du ikke lov\'t\'å\'værra!!!';`
Usergroup system 2017-11-11 17:00:08 +01:00			`exit();`
			`}`

Admins can now set groups for new users new users meaning users who don't already have any usergroups set 2017-11-11 19:13:59 +01:00			`$newUser;`
			`if(isset($_POST['newuser'])){`
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00			`$newUser = $_POST['newuser'];`
			`unset($_POST['newuser']);`
Admins can now set groups for new users new users meaning users who don't already have any usergroups set 2017-11-11 19:13:59 +01:00			`}`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`//$updatingUsers = explode('_', $_POST['users']);`
			`$updatingUsers = array();`
			`foreach ($_POST as $key => $value) { if ($key === "user_to_update") {`
			`array_push($updatingUsers, $value);`
			`}`
			`}`
			`unset($_POST['user_to_update']);`
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00
Usergroup system 2017-11-11 17:00:08 +01:00			`// 2d array of usernames and their corresponding group flags`
			`$userFlags = [];`
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00			`if($newUser){`
			`$userFlags[$newUser] = 0;`
			`}`
Admins can now set groups for new users new users meaning users who don't already have any usergroups set 2017-11-11 19:13:59 +01:00
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00			`foreach($_POST as $namegroup => $info){`
Usergroup system 2017-11-11 17:00:08 +01:00			`$data = explode('_', $namegroup);`
Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`$group = array_pop($data);`
			`$uname = implode("_", $data);`
			`if($uname == 'newuser'){`
Admins can now set groups for new users new users meaning users who don't already have any usergroups set 2017-11-11 19:13:59 +01:00			`if(!$newUser){`
			`continue;`
			`}`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`$uname = $newUser;`
Admins can now set groups for new users new users meaning users who don't already have any usergroups set 2017-11-11 19:13:59 +01:00			`}`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`if(!isset($userFlags[$uname])){`
			`$userFlags[$uname] = 0;`
Usergroup system 2017-11-11 17:00:08 +01:00			`}`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`$userFlags[$uname] = ($userFlags[$uname] \| $userManager->usergroups[$group]);`
Usergroup system 2017-11-11 17:00:08 +01:00			`}`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`foreach($updatingUsers as $uname) {`
Admins can add new users to usergroup system new users meaning users who aren't in the usergroup system for the website yet. also spicier no access messages 2017-11-11 20:37:04 +01:00			`if(!array_key_exists($uname, $userFlags)){`
			`$userFlags[$uname] = 0;`
			`}`
			`}`

Usergroup system 2017-11-11 17:00:08 +01:00			`foreach($userFlags as $uname => $flag){`
			`$userManager->setGroups($uname, $flag);`
			`}`

			`header('Location: .');`
			`?>`

Fix changing user permissions. usernames with _ in them would be split into multiple users This page is utterly broken and deserves a rewrite. delimiting fields with "_" is a bad idea. But i'm too lazy to be bothered. Don't call me when the db breaks 2018-08-06 23:30:27 +02:00			`<a href=".">Om du ikke ble automatisk omdirigert tilbake klikk her</a>`