noalyss  Version-6.7.2
Public Member Functions | Static Public Member Functions | Data Fields | Private Member Functions
User Class Reference

Data & function about connected users. More...

Public Member Functions

 Admin ()
 Check if an user is an admin.
 audit ($action= 'AUDIT', $p_module="")
 can_print ($p_action, $p_js=0)
 Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit.
 can_read_action ($dtoc)
 Check if the profile of the user can write for this profile.
 can_read_repo ($p_repo)
 Check if the profile of the user can read for this repository.
 can_request ($p_action, $p_js=0)
 Check if the user can access otherwise warn and exit.
 can_write_action ($dtoc)
 Check if the profile of the user can write for this profile.
 can_write_repo ($p_repo)
 Check if the profile of the user can write for this repository.
 Check ($silent=false, $from= '')
 Check if user is active and exists in therepository Automatically redirect, it doesn't check if a user can access a folder.
 check_action ($p_action_id)
 Check if an user is allowed to do an action.
 check_dossier ($p_dossier_id, $silent=false)
 check if an user can access a folder, if he cannot display a dialog box and exit
 check_jrn ($p_jrn)
 check the access of an user on a ledger
 check_module ($p_module)
 Check if an user can access a module, return 1 if yes, otherwise 0 record in audit log.
 check_print ($p_action)
 !
 get_available_folder ($p_filter="")
 Get all the available folders for the users, checked with the security.
 get_available_repository ($p_access='R')
 return array of available repository
 get_exercice ()
 Return the year of current Periode it is the parm_periode.p_exercice col if an error occurs return 0.
 get_folder_access ($p_dossier=0)
 return the access to a folder,
 get_ledger ($p_type= 'ALL', $p_access=3)
 get all the available ledgers for the current user
 get_ledger_access ($p_ledger)
 check that a user is valid and the access to the folder
 get_ledger_sql ($p_type= 'ALL', $p_access=3)
 return an sql condition for filtering the permitted ledger
 get_limit_current_exercice ()
 return the first date and the last date of the current exercice for the current user
 get_mini_report ()
 return the mini rapport to display on the welcome page
 get_periode ()
 Get the default periode from the user's preferences.
 get_preference ()
 Get the default user's preferences.
 get_profile ()
 return the profile (p_id)
 insert_default_global_pref ($p_type="", $p_value="")
 insert default pref if no parameter are given insert all the existing parameter otherwise only the requested
 is_local_admin ($p_dossier=-1)
 Check if an user is an local administrator.
 load ()
 load data from database.
 load_global_pref ()
 Get the global preferences from user_global_pref in the account_repository db.
 save ()
 save_global_preference ($key, $value)
 save_password ($p_pass1, $p_pass2)
 save_profile ($p_id)
 set_folder_access ($db_id, $priv)
 set_mini_report ($p_id)
 set the mini rapport to display on the welcome page
 set_periode ($p_periode)
 Set the selected periode in the user's preferences.
 show_dossier ($p_filtre="")
 Show all the available folder for the users at the login page.
 update_global_pref ($p_type, $p_value="")
 update default pref if value is not given then use the default value
 User (&$p_cn, $p_id=-1)

Static Public Member Functions

static get_list ($p_dossier)
 return an array with all the users who can access $p_dossier including the global admin.

Data Fields

 $admin
 $db
 $id
 $pass
 $valid

Private Member Functions

 set_default_periode ()

Detailed Description

Data & function about connected users.

Definition at line 35 of file class_user.php.


Member Function Documentation

Check if an user is an admin.

Returns:
1 for yes 0 for no

Definition at line 355 of file class_user.php.

References $cn, $res, $sql, exit, Database\fetch_result(), and Database\num_row().

Referenced by check_action(), check_dossier(), and check_print().

        {
                if ($this->login != 'phpcompta')
                {
                        $pass5 = md5($this->pass);
                        $sql = "select use_admin from ac_users where use_login=$1
                 and use_active=1  ";

                        $cn = new Database();
                        $res = $cn->exec_sql($sql, array($this->login));
                        if (Database::num_row($res) == 0)
                                exit(__FILE__ . " " . __LINE__ . " aucun resultat");
                        $this->admin = Database::fetch_result($res, 0);
                }
                else
                        $this->admin = 1;

                return $this->admin;
        }
User::audit ( action = 'AUDIT',
p_module = "" 
)

Definition at line 1023 of file class_user.php.

References $_REQUEST, $action, $audit, $cn, and $sql.

Referenced by can_print(), can_request(), check_dossier(), check_module(), and check_print().

        {
                global $audit;
                if ($audit)
                {
                        if ($p_module == "" && isset($_REQUEST['ac']))
                        {
                                $p_module = $_REQUEST['ac'];
                        }
                        $cn = new Database();
                        if (isset($_REQUEST['gDossier']))
                                $p_module.= " dossier : " . $_REQUEST['gDossier'];
                        $sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";

                        $cn->exec_sql($sql, array(
                                $_SESSION['g_user'],
                                $_SERVER["REMOTE_ADDR"],
                                $p_module,
                                $_SERVER['REQUEST_URI'],
                                $action));
                }
        }
User::can_print ( p_action,
p_js = 0 
)

Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit.

Parameters:
$p_actionrequested action
Returns:
nothing the program exits automatically

Definition at line 737 of file class_user.php.

References $p_action, audit(), check_print(), echo, and exit.

        {
                if ($this->check_print($p_action) == 0)
                {
                        $this->audit('FAIL');
                        if ($p_js == 1)
                        {
                                echo "<script>";
                                echo "alert ('Cette action ne vous est pas autorisée. Contactez votre responsable');";
                                echo "</script>";
                        }
                        else
                        {
                                echo '<div class="redcontent">';
                                echo '<h2 class="error"> Cette action ne vous est pas autorisée Contactez votre responsable</h2>';
                                echo '</div>';
                        }
                        exit(-1);
                }
        }
User::can_read_action ( dtoc)

Check if the profile of the user can write for this profile.

Parameters:
$dtocaction_gestion.ag_id
Returns:
true if he can write otherwise false

Definition at line 1089 of file class_user.php.

References $profile, $r, db, and get_profile().

        {
                $profile = $this->get_profile();
                $r = $this->db->get_value(" select count(*) from action_gestion where ag_id=$1 and (ag_dest in
                                (select p_granted from user_sec_action_profile where p_id=$2) or ag_owner=$3)", array($dtoc, $profile, $this->login));
                if ($r == 0)
                        return false;
                return true;
        }
User::can_read_repo ( p_repo)

Check if the profile of the user can read for this repository.

Parameters:
$p_repostock_repository.r_id
Returns:
true if he read write otherwise false

Definition at line 1121 of file class_user.php.

References $profile, $r, db, and get_profile().

        {
            $profile=$this->get_profile();
            $r=$this->db->get_value("select count(*)
                from profile_sec_repository
                where
                r_id=$1
                and p_id =$2
               ",array($p_repo,$profile));
            if ( $r==0)
                return false;
            return true;
        }
User::can_request ( p_action,
p_js = 0 
)

Check if the user can access otherwise warn and exit.

Parameters:
$p_actionrequested action
$p_js= 1 javascript, or 0 just a text
Returns:
nothing the program exits automatically

Definition at line 690 of file class_user.php.

References $p_action, audit(), check_action(), echo, and exit.

        {
                if ($this->check_action($p_action) == 0)
                {
                        $this->audit('FAIL');
                        if ($p_js == 1)
                        {
                                echo "<script>";
                                echo "alert ('Cette action ne vous est pas autorisée. Contactez votre responsable');";
                                echo "</script>";
                        }
                        else
                        {
                                echo '<div class="redcontent">';
                                echo '<h2 class="error"> Cette action ne vous est pas autorisée Contactez votre responsable</h2>';
                                echo '</div>';
                        }
                        exit(-1);
                }
        }

Check if the profile of the user can write for this profile.

Parameters:
$dtocaction_gestion.ag_id
Returns:
true if he can write otherwise false

Definition at line 1074 of file class_user.php.

References $profile, $r, db, and get_profile().

        {
                $profile = $this->get_profile();
                $r = $this->db->get_value(" select count(*) from action_gestion where ag_id=$1 and ag_dest in
                                (select p_granted from user_sec_action_profile where ua_right='W' and p_id=$2) ", array($dtoc, $profile));
                if ($r == 0)
                        return false;
                return true;
        }
User::can_write_repo ( p_repo)

Check if the profile of the user can write for this repository.

Parameters:
$p_repostock_repository.r_id
Returns:
true if he can write otherwise false

Definition at line 1103 of file class_user.php.

References $profile, $r, db, and get_profile().

        {
            $profile=$this->get_profile();
            $r=$this->db->get_value("select count(*)
                from profile_sec_repository
                where
                r_id=$1
                and p_id =$2
                and ur_right='W'",array($p_repo,$profile));
            if ( $r==0)
                return false;
            return true;
        }
User::Check ( silent = false,
from = '' 
)

Check if user is active and exists in therepository Automatically redirect, it doesn't check if a user can access a folder.

Parameters:
$silentfalse, echo an error message and exit, true : exit without warning default is false

++

Definition at line 140 of file class_user.php.

References $cn, $from, $r, $res, $ret, $sql, alert(), exit, Database\fetch_array(), load_global_pref(), name, Database\num_row(), and redirect().

        {

                $res = 0;
                $pass5 = md5($this->pass);

                $cn = new Database();
                $sql = "select ac_users.use_login,ac_users.use_active, ac_users.use_pass,
             use_admin,use_first_name,use_name
             from ac_users
             where ac_users.use_id='$this->id'
             and ac_users.use_active=1
             and ac_users.use_pass='$pass5'";
                $ret = $cn->exec_sql($sql);
                $res = Database::num_row($ret);
                if ($res > 0)
                {
                        $r = Database::fetch_array($ret, 0);
                        $_SESSION['use_admin'] = $r['use_admin'];
                        $_SESSION['use_name'] = $r['use_name'];
                        $_SESSION['use_first_name'] = $r['use_first_name'];
                        $_SESSION['isValid'] = 1;

                        $this->admin = $_SESSION['use_admin'];
                        $this->name = $_SESSION['use_name'];
                        $this->first_name = $_SESSION['use_first_name'];
                        $this->load_global_pref();
                }
                $sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";

                if ($res == 0)
                {
                        $cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $from, $_SERVER['REQUEST_URI'], 'FAIL'));
                        if (!$silent)
                        {
                                alert(_('Utilisateur ou mot de passe incorrect'));
                                redirect('index.html');
                        }
                        $this->valid = 0;
                        session_unset();
                        exit - 1;
                }
                else
                {
                        if ($from == 'LOGIN')
                                $cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $from, $_SERVER['REQUEST_URI'], 'SUCCESS'));
                        $this->valid = 1;
                }

                return $ret;
        }
User::check_action ( p_action_id)

Check if an user is allowed to do an action.

Parameters:
p_action_id
Returns:
  • 0 no priv

Definition at line 535 of file class_user.php.

References $audit, $cn, $Res, $sql, Admin(), db, echo, exit, id, is_local_admin(), and Database\num_row().

Referenced by can_request().

        {
                /*  save it into the log */
                global $audit;
                if ($this->Admin() == 1)
                        return 1;
                if ($this->is_local_admin(dossier::id()) == 1)
                        return 1;

                $Res = $this->db->exec_sql(
                                "select * from user_sec_act where ua_login=$1 and ua_act_id=$2", array($this->login, $p_action_id));
                $Count = Database::num_row($Res);
                if ($Count == 0)
                {
                        if (isset($audit) && $audit == true)
                        {
                                $cn = new Database();
                                $sql = "insert into audit_connect (ac_user,ac_ip,ac_module,ac_url,ac_state) values ($1,$2,$3,$4,$5)";
                                $cn->exec_sql($sql, array($_SESSION['g_user'], $_SERVER["REMOTE_ADDR"], $p_action_id, $_SERVER['REQUEST_URI'], 'FAIL'));
                        }
                        return 0;
                }
                if ($Count == 1)
                        return 1;
                echo "<H2 class=\"error\"> Action Invalide !!! $Count select * from user_sec_act where ua_login='$p_login' and ua_act_id=$p_action_id </H2>";
                exit();
        }
User::check_dossier ( p_dossier_id,
silent = false 
)

check if an user can access a folder, if he cannot display a dialog box and exit

Parameters:
thefolder if
$silentfalse, echo an error message and exit, true : exit without warning default is false
Returns:
  • L for administrator (local and global)
  • P for extension only
  • R regular user

Definition at line 883 of file class_user.php.

References $cn, $dossier, Admin(), alert(), audit(), exit, and is_local_admin().

Referenced by show_dossier().

        {
                $this->Admin();
                if ($this->admin == 1 || $this->is_local_admin($p_dossier_id) == 1)
                        return 'L';
                $cn = new Database();

                $dossier = $cn->get_value("select priv_priv from jnt_use_dos join priv_user on (priv_jnt=jnt_id) where dos_id=$1 and use_id=$2", array($p_dossier_id, $this->id));
                $dossier = ($dossier == '') ? 'X' : $dossier;
                if ($dossier == 'X')
                {
                        $this->audit('FAIL', "Access folder ");
                        if (!$silent)
                        {
                                alert(_('Dossier non accessible'));
                                exit();
                        }
                }
                return $dossier;
        }
User::check_jrn ( p_jrn)

check the access of an user on a ledger

Parameters:
$p_jrnthe ledger id
Returns:
  • O only predefined operation
  • W write
  • R read only
  • X no access

Definition at line 867 of file class_user.php.

References get_ledger_access().

        {
                return $this->get_ledger_access($p_jrn);
        }
User::check_module ( p_module)

Check if an user can access a module, return 1 if yes, otherwise 0 record in audit log.

Parameters:
string$p_modulemenu_ref.me_code

Definition at line 513 of file class_user.php.

References $acc, audit(), and db.

        {
                $acc = $this->db->get_value("select count(*) from v_all_menu where user_name = $1
                and me_code=$2", array($this->login, $p_module));
                if ($acc == 0)
                {
                        $this->audit("FAIL", $p_module);
                        return 0;
                }
                $this->audit("SUCCESS", $p_module);
                return 1;
        }
User::check_print ( p_action)

!

Check if the user can print (in menu_ref p_type_display=p) otherwise warn and exit

Parameters:
$p_actionrequested action
Returns:
nothing the program exits automatically

Definition at line 717 of file class_user.php.

References $audit, $cn, $p_action, $res, Admin(), audit(), id, and is_local_admin().

Referenced by can_print().

        {
                global $audit, $cn;
                $this->audit('AUDIT', $p_action);
                if ($this->Admin() == 1)
                        return 1;
                if ($this->is_local_admin(dossier::id()) == 1)
                        return 1;
                $res = $cn->get_value("select count(*) from profile_menu
                        join profile_user using (p_id)
                        where user_name=$1 and me_code=$2 ", array($this->login, $p_action));
                return $res;
        }
User::get_available_folder ( p_filter = "")

Get all the available folders for the users, checked with the security.

Parameters:
$p_useruser login
$p_admin1 if admin
Returns:
array containing
  • ac_dossier.dos_id
  • ac_dossier.dos_name
  • ac_dossier.dos_description

Definition at line 988 of file class_user.php.

References $array, $cn, $max, $Res, Database\fetch_array(), and Database\num_row().

Referenced by show_dossier().

        {
                $cn = new Database();
                $filter = "";
                if ($this->admin == 0)
                {
                        // show only available folders
                        // if user is not an admin
                        $Res = $cn->exec_sql("select distinct dos_id,dos_name,dos_description from ac_users
             natural join jnt_use_dos
             natural join  ac_dossier
             join  priv_user on ( priv_jnt=jnt_id)
             where use_active=1
             and use_login= $1
             and priv_priv != 'X' and ( dos_name ~* $2 or dos_description ~* $2 )
             order by dos_name", array($this->login, $p_filter));
                }
                else
                {
                        $Res = $cn->exec_sql("select distinct dos_id,dos_name,dos_description from ac_dossier
             where   dos_name ~* $1 or dos_description ~* $1 order by dos_name", array($p_filter));
                }
                require_once('class_database.php');

                $max = Database::num_row($Res);
                if ($max == 0)
                        return 0;

                for ($i = 0; $i < $max; $i++)
                {
                        $array[] = Database::fetch_array($Res, $i);
                }
                return $array;
        }
User::get_available_repository ( p_access = 'R')

return array of available repository

Parameters:
$p_accessR for read W for write
Returns:
an array

Definition at line 796 of file class_user.php.

References $profile, $r, db, and get_profile().

        {
                 $profile=$this->get_profile();
                 $r=array();
                if ($p_access=='R')
                {
                        $r=$this->db->get_array("select u.r_id,r_name
                from
                                        profile_sec_repository as u
                                        join stock_repository as s on(u.r_id=s.r_id)
                where
                p_id =$1
                and ur_right='W'
                                order by 2
                                ",array($profile));
                }
                if ($p_access == 'W')
                {
                         $r=$this->db->get_array("select u.r_id,r_name
                from
                                        profile_sec_repository as u
                                        join stock_repository as s on(u.r_id=s.r_id)
                where
                p_id =$1 order by 2
               ",array($profile));
                }
                return $r;
        }

Return the year of current Periode it is the parm_periode.p_exercice col if an error occurs return 0.

Definition at line 670 of file class_user.php.

References $r, $Ret, $sql, db, Database\fetch_array(), get_periode(), and Database\num_row().

Referenced by get_limit_current_exercice().

        {
                $sql = "select p_exercice from parm_periode where p_id=" . $this->get_periode();
                $Ret = $this->db->exec_sql($sql);
                if (Database::num_row($Ret) == 1)
                {
                        $r = Database::fetch_array($Ret, 0);
                        return $r['p_exercice'];
                }
                else
                        return 0;
        }
User::get_folder_access ( p_dossier = 0)

return the access to a folder,

Parameters:
$p_dossierid if it is == 0 then we take the value from $_SESSION
Returns:
the priv_priv
  • X no access
  • R has access (normal user)
  • L Local Admin

Definition at line 201 of file class_user.php.

References $cn, $res, $sql, id, and is_local_admin().

        {

                if ($p_dossier == 0)
                        $p_dossier = dossier::id();
                if ($this->is_local_admin($p_dossier) == 1 || $this->admin == 1)
                        return 'L';
                $cn = new Database();

                $sql = "select priv_priv from priv_user join jnt_use_dos on (jnt_id=priv_jnt) join ac_users using (use_id)
             where use_id=$1 and dos_id=$2";

                $res = $cn->get_value($sql, array($this->id, $p_dossier));
                if ($res == '')
                        return 'X';
                return $res;
        }
User::get_ledger ( p_type = 'ALL',
p_access = 3 
)

get all the available ledgers for the current user

Parameters:
$p_type= ALL or the type of the ledger (ACH,VEN,FIN,ODS)
$p_access=3 for Read or WRITE, 2 write, 1 for readonly
Returns:
a double array of available ledgers
	  [0] => [jrn_def_id]
	  [jrn_def_type]
	  [jrn_def_name]
	  [jrn_def_class_deb]
	  [jrn_def_class_cred]
	  [jrn_type_id]
	  [jrn_desc]
	  [uj_priv]
	  

Definition at line 283 of file class_user.php.

References $array, $res, $sql, db, Database\fetch_all(), is_local_admin(), Database\num_row(), and sql_string().

Referenced by get_ledger_sql().

        {
                if ($this->admin != 1 && $this->is_local_admin() != 1)
                {
                        $sql_type = ($p_type == 'ALL') ? '' : "and jrn_def_type=upper('" . sql_string($p_type) . "')";
                        switch ($p_access)
                        {
                                case 3:
                                        $sql_access = " and uj_priv!= 'X'";
                                        break;
                                case 2:
                                        $sql_access = " and uj_priv = 'W'";
                                        break;

                                case 1:
                                        $sql_access = " and ( uj_priv = 'R' or uj_priv='W') ";
                                        break;
                        }

                        $sql = "select jrn_def_id,jrn_def_type,
                 jrn_def_name,jrn_def_class_deb,jrn_def_class_cred,jrn_type_id,jrn_desc,uj_priv,
                 jrn_deb_max_line,jrn_cred_max_line,jrn_def_description
                 from jrn_def join jrn_type on jrn_def_type=jrn_type_id
                 join user_sec_jrn on uj_jrn_id=jrn_def_id
                 where
                 uj_login='" . $this->login . "'" .
                                        $sql_type . $sql_access .
                                        " order by jrn_Def_id";
                }
                else
                {
                        $sql_type = ($p_type == 'ALL') ? '' : "where jrn_def_type=upper('" . sql_string($p_type) . "')";
                        $sql = "select jrn_def_id,jrn_def_type,jrn_def_name,jrn_def_class_deb,jrn_def_class_cred,jrn_deb_max_line,jrn_cred_max_line,
                 jrn_type_id,jrn_desc,'W' as uj_priv,jrn_def_description
                 from jrn_def join jrn_type on jrn_def_type=jrn_type_id
                 $sql_type
                 order by jrn_Def_name";
                }
                $res = $this->db->exec_sql($sql);
                if (Database::num_row($res) == 0)
                        return null;
                $array = Database::fetch_all($res);
                return $array;
        }
User::get_ledger_access ( p_ledger)

check that a user is valid and the access to the folder

Parameters:
$p_ledgerthe ledger to check
Returns:
the priv_priv
  • O only predefined operation
  • W write
  • R read only
  • X no access

Definition at line 252 of file class_user.php.

References $res, $sql, db, id, and is_local_admin().

Referenced by check_jrn().

        {
                if ($this->admin == 1 ||
                                $this->is_local_admin(dossier::id()) == 1)
                        return 'W';

                $sql = "select uj_priv from user_sec_jrn where uj_login=$1 and uj_jrn_id=$2";
                $res = $this->db->get_value($sql, array($this->login, $p_ledger));

                if ($res == '')
                        $res = 'X';
                return $res;
        }
User::get_ledger_sql ( p_type = 'ALL',
p_access = 3 
)

return an sql condition for filtering the permitted ledger

Parameters:
$p_type= ALL or the type of the ledger (ACH,VEN,FIN,ODS)
$p_access=3 for READ or WRITE, 2 READ and write, 1 for readonly
Returns:
sql condition like = jrn_def_id in (...)

Definition at line 335 of file class_user.php.

References $row, $sql, and get_ledger().

        {
                $aLedger = $this->get_ledger($p_type, $p_access);
                if (empty($aLedger))
                        return ' jrn_def_id < 0 ';
                $sql = " jrn_def_id in (";
                foreach ($aLedger as $row)
                {
                        $sql.=$row['jrn_def_id'] . ',';
                }
                $sql.='-1)';
                return $sql;
        }

return the first date and the last date of the current exercice for the current user

Returns:
and array ([0] => start_date,[1] => end_date)

Definition at line 908 of file class_user.php.

References $end, $periode, $start, db, and get_exercice().

        {
                $current_exercice = $this->get_exercice();
                $periode = new Periode($this->db);
                list($per_start, $per_end) = $periode->get_limit($current_exercice);
                $start = $per_start->first_day();
                $end = $per_end->last_day();
                return array($start, $end);
        }
static User::get_list ( p_dossier) [static]

return an array with all the users who can access $p_dossier including the global admin.

The user must be activated

Parameters:
$p_dossierdossier
Returns:
an array of user's object array indices
  • use_id (id )
  • use_login (login of the user)
  • use_name
  • use_first_name
Exceptions:
throwan exception if nobody can access

Definition at line 839 of file class_user.php.

References $array, $repo, and $sql.

        {
                $sql = "select distinct use_id,use_login,use_first_name,use_name from ac_users
             left outer join  jnt_use_dos using (use_id)
             left join priv_user on (priv_jnt=jnt_id)
              where
              (dos_id=$1 or  use_admin=1) and use_active=1 and (use_admin=1  or priv_priv <> 'X') order by use_login,use_name";


                $repo = new Database();
                $array = $repo->get_array($sql, array($p_dossier));
                if ($repo->size() == 0)
                        throw new Exception('Error inaccessible folder');
                return $array;
        }

return the mini rapport to display on the welcome page

Returns:
0 if nothing if found or the report to display (formdef.fr_id)

Definition at line 441 of file class_user.php.

References $array, and get_preference().

        {
                $array = $this->get_preference();
                $fr_id = (isset($array['MINIREPORT'])) ? $array['MINIREPORT'] : 0;
                return $fr_id;
        }

Get the default periode from the user's preferences.

Returns:
the default periode

Definition at line 425 of file class_user.php.

References $array, get_preference(), and set_default_periode().

Referenced by get_exercice().

        {

                $array = $this->get_preference();
                if (!isset($array['PERIODE']))
                {
                        $this->set_default_periode();
                        $array = $this->get_preference();
                }
                return $array['PERIODE'];
        }

Get the default user's preferences.

Returns:
array of (parameter_type => parameter_value)

Definition at line 492 of file class_user.php.

References $Res, $row, $sql, $type, db, Database\fetch_array(), and Database\num_row().

Referenced by get_mini_report(), and get_periode().

        {
                $sql = "select parameter_type,parameter_value from user_local_pref where user_id=$1";
                $Res = $this->db->exec_sql($sql, array($this->id));
                $l_array = array();
                for ($i = 0; $i < Database::num_row($Res); $i++)
                {
                        $row = Database::fetch_array($Res, $i);
                        $type = $row['parameter_type'];
                        $l_array[$type] = $row['parameter_value'];
                }


                return $l_array;
        }

return the profile (p_id)

Returns:
profile.p_id

Definition at line 1063 of file class_user.php.

References $profile, and db.

Referenced by can_read_action(), can_read_repo(), can_write_action(), can_write_repo(), and get_available_repository().

        {
                $profile = $this->db->get_value("select p_id from profile_user where
                                user_name=$1", array($this->login));
                return $profile;
        }
User::insert_default_global_pref ( p_type = "",
p_value = "" 
)

insert default pref if no parameter are given insert all the existing parameter otherwise only the requested

Parameters:
$p_typeparameter's type or nothing
$p_valueparameter value

Definition at line 616 of file class_user.php.

References $cn, $name, and $value.

Referenced by load_global_pref().

        {

                $default_parameter = array("THEME" => "classic",
                        "PAGESIZE" => "50",
                        'TOPMENU' => 'TEXT',
                        'LANG' => 'fr_FR.utf8');
                $cn = new Database();
                $Sql = "insert into user_global_pref(user_id,parameter_type,parameter_value)
             values ('%s','%s','%s')";
                if ($p_type == "")
                {
                        foreach ($default_parameter as $name => $value)
                        {
                                $Insert = sprintf($Sql, $this->login, $name, $value);
                                $cn->exec_sql($Insert);
                        }
                }
                else
                {
                        $value = ($p_value == "") ? $default_parameter[$p_type] : $p_value;
                        $Insert = sprintf($Sql, $this->login, $p_type, $value);
                        $cn->exec_sql($Insert);
                }
        }
User::is_local_admin ( p_dossier = -1)

Check if an user is an local administrator.

Parameters:
$p_dossier: dossier_id
Returns:
  • 0 if no
  • 1 if yes

Definition at line 770 of file class_user.php.

References $cn, $sql, and id.

Referenced by check_action(), check_dossier(), check_print(), get_folder_access(), get_ledger(), and get_ledger_access().

        {
                if ($p_dossier == -1)
                {
                        $p_dossier = dossier::id();
                }

                if ($this->login == 'admin')
                        return 1;
                $sql = 'select priv_priv from ac_users join jnt_use_dos using (use_id) join priv_user ' .
                                ' on ( jnt_use_dos.jnt_id = priv_user.priv_jnt) ' .
                                " where priv_priv='L' and use_login='" . $this->login . "' and dos_id=$p_dossier";

                $cn = new Database();

                $isAdmin = $cn->count_sql($sql);


                return $isAdmin;
        }

load data from database.

if this->id == -1, it is unknown so we have to retrieve it from the database by the login return -1 if nothing is found

Definition at line 87 of file class_user.php.

References $cn, $Max, $Res, $row, $sql, Database\fetch_array(), name, and Database\num_row().

Referenced by User().

        {
                /* if this->id == -1, it is unknown so we have to retrieve it from
                  the database thanks it login */
                if ($this->id < 0)
                {
                        $sql_cond = "   where use_login=$1";
                        $sql_array = array($this->login);
                }
                else
                {
                        $sql_cond = "   where use_id=$1";
                        $sql_array = array($this->id);
                }
                $sql = "select use_id,
             use_first_name,
             use_name,
             use_login,
             use_active,
             use_admin,
                         use_pass
             from ac_users ";
                $cn = new Database();
                $Res = $cn->exec_sql($sql . $sql_cond, $sql_array);
                if (($Max = Database::num_row($Res)) == 0)
                        return -1;
                $row = Database::fetch_array($Res, 0);
                $this->id = $row['use_id'];
                $this->first_name = $row['use_first_name'];
                $this->name = $row['use_name'];
                $this->active = $row['use_active'];
                $this->login = $row['use_login'];
                $this->admin = $row['use_admin'];
                $this->password = $row['use_pass'];
        }

Get the global preferences from user_global_pref in the account_repository db.

Note:
set $SESSION[g_variable]

Definition at line 570 of file class_user.php.

References $cn, $line, $Max, $name, $Res, $row, $type, Database\fetch_array(), insert_default_global_pref(), and Database\num_row().

Referenced by Check().

        {
                $cn = new Database();
                // Load everything in an array
                $Res = $cn->exec_sql("select parameter_type,parameter_value from
                            user_global_pref
                            where user_id='" . $this->login . "'");
                $Max = Database::num_row($Res);
                if ($Max == 0)
                {
                        $this->insert_default_global_pref();
                        $this->load_global_pref();
                        return;
                }
                // Load value into array
                $line = array();
                for ($i = 0; $i < $Max; $i++)
                {
                        $row = Database::fetch_array($Res, $i);
                        $type = $row['parameter_type'];
                        $line[$type] = $row['parameter_value'];
                        ;
                }
                // save array into g_ variable
                $array_pref = array('g_theme' => 'THEME', 'g_pagesize' => 'PAGESIZE', 'g_topmenu' => 'TOPMENU', 'g_lang' => 'LANG');
                foreach ($array_pref as $name => $parameter)
                {
                        if (!isset($line[$parameter]))
                        {
                                $this->insert_default_global_pref($parameter);
                                $this->load_global_pref();
                                return;
                        }
                        $_SESSION[$name] = $line[$parameter];
                }
        }

Definition at line 123 of file class_user.php.

References $cn, and $Res.

        {

                $Sql = "update ac_users set use_first_name=$1, use_name=$2
             ,use_active=$3,use_admin=$4,use_pass=$5 where use_id=$6";
                $cn = new Database();
                $Res = $cn->exec_sql($Sql, array($this->first_name, $this->last_name, $this->active, $this->admin, $this->pass, $this->id));
        }
User::save_global_preference ( key,
value 
)

Definition at line 467 of file class_user.php.

References $count, $repo, and $value.

        {
                $repo = new Database();
                $count = $repo->get_value("select count(*)
            from
            user_global_pref
            where
            parameter_type=$1 and user_id=$2", array($key, $this->login));
                if ($count == 1)
                {
                        $repo->exec_sql("update user_global_pref set parameter_value=$1
                where parameter_type=$2 and user_id=$3", array($value, $key, $this->login));
                }
                elseif ($count == 0)
                {
                        $repo->exec_sql("insert into user_global_pref(user_id,parameter_type,parameter_value)
                values($1,$2,$3)", array($this->login, $key, $value));
                }
        }
User::save_password ( p_pass1,
p_pass2 
)

Definition at line 1134 of file class_user.php.

References $repo, and alert().

                                              {
        if ($p_pass1 == $p_pass2) {
            $repo = new Database();
            $l_pass = md5($_POST['pass_1']);
            $repo->exec_sql("update ac_users set use_pass=$1 where use_login=$2", array($l_pass, $_SESSION['g_user']));
            $_SESSION['g_pass'] = $_POST['pass_1'];
        } else {
            alert(_("Les mots de passe ne correspondent pas. Mot de passe inchangé"));
        }
    }
User::save_profile ( p_id)

Definition at line 1046 of file class_user.php.

References $count, and db.

        {
                $count = $this->db->get_value("select count(*) from profile_user where user_name=$1", array($this->login));
                if ($count == 0)
                {
                        $this->db->exec_sql("insert into profile_user(p_id,user_name)
                                                                values ($1,$2)", array($p_id, $this->login));
                }
                else
                {
                        $this->db->exec_sql("update profile_user set p_id=$1 where user_name=$2", array($p_id, $this->login));
                }
        }

Definition at line 389 of file class_user.php.

References $Res, $sql, db, echo, exit, and Database\fetch_result().

Referenced by get_periode().

        {

                /* get the first periode */
                $sql = 'select min(p_id) as pid from parm_periode where p_closed = false and p_start = (select min(p_start) from parm_periode)';
                $Res = $this->db->exec_sql($sql);

                $pid = Database::fetch_result($Res, 0, 0);
                /* if all the periode are closed, then we use the last closed period */
                if ($pid == null)
                {
                        $sql = 'select min(p_id) as pid from parm_periode where p_start = (select max(p_start) from parm_periode)';
                        $Res2 = $this->db->exec_sql($sql);
                        $pid = Database::fetch_result($Res2, 0, 0);
                        if ($pid == null)
                        {
                                echo _("Aucune période trouvéee !!!");
                                exit(1);
                        }

                        $pid = Database::fetch_result($Res2, 0, 0);
                }

                $sql = sprintf("insert into user_local_pref (user_id,parameter_value,parameter_type)
                     values ('%s','%d','PERIODE')", $this->id, $pid);
                $Res = $this->db->exec_sql($sql);
        }
User::set_folder_access ( db_id,
priv 
)

Definition at line 224 of file class_user.php.

References $cn, $priv, and $Res.

        {

                $cn = new Database();
                $jnt = $cn->get_value("select jnt_id from jnt_use_dos where dos_id=$1 and use_id=$2", array($db_id, $this->id));

                if ($cn->size() == 0)
                {

                        $Res = $cn->exec_sql("insert into jnt_use_dos(dos_id,use_id) values($1,$2)", array($db_id, $this->id));
                        $jnt = $cn->get_value("select jnt_id from jnt_use_dos where dos_id=$1 and use_id=$2", array($db_id, $this->id));
                        $Res = $cn->exec_sql("insert into priv_user (priv_priv,priv_jnt) values($1,$2)", array($priv, $jnt));
                }
                $Res = $cn->exec_sql("update priv_user set priv_priv=$1 where priv_jnt=$2", array($priv, $jnt));
        }
User::set_mini_report ( p_id)

set the mini rapport to display on the welcome page

Definition at line 451 of file class_user.php.

References $count, $Res, $sql, and db.

        {
                $count = $this->db->get_value("select count(*) from user_local_pref where user_id=$1 and parameter_type=$2", array($this->id, 'MINIREPORT'));
                if ($count == 1)
                {
                        $sql = "update user_local_pref set parameter_value=$1 where user_id=$2 and parameter_type='MINIREPORT'";
                        $Res = $this->db->exec_sql($sql, array($p_id, $this->id));
                }
                else
                {
                        $sql = "insert into user_local_pref (user_id,parameter_type,parameter_value)" .
                                        "values($1,'MINIREPORT',$2)";
                        $Res = $this->db->exec_sql($sql, array($this->id, $p_id));
                }
        }
User::set_periode ( p_periode)

Set the selected periode in the user's preferences.

Parameters:
$p_periodeperiode
-$p_user

Definition at line 383 of file class_user.php.

References $Res, $sql, and db.

        {
                $sql = "update user_local_pref set parameter_value='$p_periode' where user_id='$this->id' and parameter_type='PERIODE'";
                $Res = $this->db->exec_sql($sql);
        }
User::show_dossier ( p_filtre = "")

Show all the available folder for the users at the login page.

For the special case 'E' go directly to extension and bypasse the dashboard

Parameters:
$p_useruser
$p_admin1 if admin
Returns:
table in HTML

Definition at line 929 of file class_user.php.

References $desc, $id, $name, $p_array, $result, $tr, check_dossier(), get_available_folder(), h(), and td().

        {
                $p_array = $this->get_available_folder($p_filtre);

                $result = "";
                if ($p_array == 0)
                        return $result . " * Aucun dossier *";

                $result.="<TABLE id=\"folder\" >";
                for ($i = 0; $i < sizeof($p_array); $i++)
                {

                        $id = $p_array[$i]['dos_id'];
                        $name = $p_array[$i]['dos_name'];
                        $desc = $p_array[$i]['dos_description'];
                        if ($i % 2 == 0)
                                $tr = "odd";
                        else
                                $tr = "even";
                        if ($this->check_dossier($id) != 'P')
                        {
                                $target = "do.php?gDossier=$id";
                        }
                        else
                        {
                                $target = "extension.php?gDossier=$id";
                        }

                        $result.="<TR class=\"$tr\">";

                        $result.=td($id, ' class="num" ');
                        $result.="<TD class=\"$tr\">";
                        $result.="<A class=\"dossier\" HREF=\"$target\">";
                        $result.= "  <B>" . h($name) . "</B>";
                        $result.="</A>";
                        $result.="</TD>";
                        $desc = ($desc == "") ? "<i>Aucune description</i>" : h($desc);
                        $desc = "<A class=\"dossier\" HREF=\"$target\">$desc</A>";
                        $result.="<TD class=\"$tr\" style=\"padding-left:50px\">" . $desc;
                        $result.="</TD>";
                        $result.="</TR>";
                }
                $result.="</TABLE>";
                return $result;
        }
User::update_global_pref ( p_type,
p_value = "" 
)

update default pref if value is not given then use the default value

Parameters:
$p_typeparameter's type
$p_valueparameter's value value of the type

Definition at line 650 of file class_user.php.

References $cn, and $value.

        {
                $default_parameter = array("THEME" => "classic",
                        "PAGESIZE" => "50",
                        "LANG" => 'fr_FR.utf8',
                        'TOPMENU' => 'SELECT');
                $cn = new Database();
                $Sql = "update user_global_pref set parameter_value=$1
             where parameter_type=$2 and
             user_id=$3";
                $value = ($p_value == "") ? $default_parameter[$p_type] : $p_value;
                $cn->exec_sql($Sql, array($value, $p_type, $this->login));
        }
User::User ( &$  p_cn,
p_id = -1 
)

Definition at line 44 of file class_user.php.

References db, echo, exit, load(), name, and redirect().

        {
                // if p_id is not set then check the connected user
                if ($p_id == -1)
                {
                        if (!isset($_SESSION['g_user']))
                        {
                                echo '<h2 class="error">' . _('Session expirée<br>Utilisateur déconnecté') . '</h2>';
                                redirect('index.php', 1);
                                exit();
                        }

                        $this->login = $_SESSION['g_user'];
                        $this->pass = $_SESSION['g_pass'];
                        $this->lang = (isset($_SESSION['g_lang'])) ? $_SESSION['g_lang'] : 'fr_FR.utf8';
                        $this->valid = (isset($_SESSION['isValid'])) ? 1 : 0;
                        $this->db = $p_cn;
                        $this->id = -1;
                        if (isset($_SESSION['g_theme']))
                                $this->theme = $_SESSION['g_theme'];

                        $this->admin = ( isset($_SESSION['use_admin']) ) ? $_SESSION['use_admin'] : 0;

                        if (isset($_SESSION['use_name']))
                                $this->name = $_SESSION['use_name'];
                        if (isset($_SESSION['use_first_name']))
                                $this->first_name = $_SESSION['use_first_name'];
                        $this->load();
                }
                else // if p_id is set get data of another user
                {
                        $this->id = $p_id;
                        $this->db = $p_cn;
                        $this->load();
                }
        }

Field Documentation

User::$admin

Definition at line 41 of file class_user.php.

User::$db

Definition at line 40 of file class_user.php.

User::$id

Definition at line 38 of file class_user.php.

Referenced by show_dossier().

User::$pass

Definition at line 39 of file class_user.php.

User::$valid

Definition at line 42 of file class_user.php.


The documentation for this class was generated from the following file:
 All Data Structures Namespaces Files Functions Variables Enumerations