![' . $lang['MOVE_UP'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_up.gif "' . $lang['MOVE_UP'] . '"){kind=icon}
',
+ 'ICON_MOVE_UP_DISABLED' => '![' . $lang['MOVE_UP'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_up_disabled.gif "' . $lang['MOVE_UP'] . '"){kind=icon}
',
+ 'ICON_MOVE_DOWN' => '![' . $lang['MOVE_DOWN'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_down.gif "' . $lang['MOVE_DOWN'] . '"){kind=icon}
',
+ 'ICON_MOVE_DOWN_DISABLED' => '![' . $lang['MOVE_DOWN'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_down_disabled.gif "' . $lang['MOVE_DOWN'] . '"){kind=icon}
',
+ 'ICON_EDIT' => '![' . $lang['EDIT'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_edit.gif "' . $lang['EDIT'] . '"){kind=icon}
',
+ 'ICON_EDIT_DISABLED' => '![' . $lang['EDIT'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_edit_disabled.gif "' . $lang['EDIT'] . '"){kind=icon}
',
+ 'ICON_DELETE' => '![' . $lang['DELETE'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_delete.gif "' . $lang['DELETE'] . '"){kind=icon}
',
+ 'ICON_DELETE_DISABLED' => '![' . $lang['DELETE'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_delete_disabled.gif "' . $lang['DELETE'] . '"){kind=icon}
',
+ 'ICON_SYNC' => '![' . $lang['RESYNC'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_sync.gif "' . $lang['RESYNC'] . '"){kind=icon}
',
+ 'ICON_SYNC_DISABLED' => '![' . $lang['RESYNC'] . '](' . IP_ROOT_PATH . 'templates/common/images/icon_sync_disabled.gif "' . $lang['RESYNC'] . '"){kind=icon}
',
+*/
- foreach ($cms_role_langs['ID'] as $id_data)
- {
- $template->assign_block_vars('roles_desc', array(
- 'ROLE_NAME' => $cms_role_langs['NAME_ARRAY'][$id_data],
- 'ROLE_DESC' => $cms_role_langs['DESC_ARRAY'][$id_data],
- )
- );
- }
+ 'ICON_MOVE_UP' => '![' . $lang['MOVE_UP'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_arrow_up.png "' . $lang['MOVE_UP'] . '"){kind=icon}
',
+ 'ICON_MOVE_UP_DISABLED' => '![' . $lang['MOVE_UP'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_arrow_up_gray.png "' . $lang['MOVE_UP'] . '"){kind=icon}
',
+ 'ICON_MOVE_DOWN' => '![' . $lang['MOVE_DOWN'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_arrow_down.png "' . $lang['MOVE_DOWN'] . '"){kind=icon}
',
+ 'ICON_MOVE_DOWN_DISABLED' => '![' . $lang['MOVE_DOWN'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_arrow_down_gray.png "' . $lang['MOVE_DOWN'] . '"){kind=icon}
',
+ 'ICON_EDIT' => '![' . $lang['EDIT'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_icon_edit.png "' . $lang['EDIT'] . '"){kind=icon}
',
+ 'ICON_EDIT_DISABLED' => '',
+ 'ICON_DELETE' => '![' . $lang['DELETE'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_icon_delete.png "' . $lang['DELETE'] . '"){kind=icon}
',
+ 'ICON_DELETE_DISABLED' => '',
+ 'ICON_SYNC' => '![' . $lang['RESYNC'] . '](' . IP_ROOT_PATH . 'templates/common/images/cms_icon_refresh.png "' . $lang['RESYNC'] . '"){kind=icon}
',
+ 'ICON_SYNC_DISABLED' => '',
+
+ 'IMG_USER_SEARCH' => $images['cms_icon_search'],
+ )
+ );
}
-if (($cms_admin->mode == false))
+if (empty($cms_admin->mode))
{
$template_to_parse = CMS_TPL . 'cms_index_body.tpl';
$template->assign_var('CMS_PAGE_TITLE', false);
}
-full_page_generation($template_to_parse, $lang['CMS_TITLE'], '', '');
+full_page_generation($template_to_parse, $page_title, '', '');
?>
\ No newline at end of file
diff --git a/cms_ads.php b/cms_ads.php
index d60bbd28..d6033e20 100644
--- a/cms_ads.php
+++ b/cms_ads.php
@@ -25,7 +25,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/cms_ajax.php b/cms_ajax.php
index fd92e94b..08722a7a 100644
--- a/cms_ajax.php
+++ b/cms_ajax.php
@@ -21,7 +21,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/cms_db_update.php b/cms_db_update.php
index 15c45f28..6f9f338b 100644
--- a/cms_db_update.php
+++ b/cms_db_update.php
@@ -21,7 +21,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/cms_menu.php b/cms_menu.php
index 43f6f637..ebcb499e 100644
--- a/cms_menu.php
+++ b/cms_menu.php
@@ -27,7 +27,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/common.php b/common.php
index d8c05459..51bad977 100644
--- a/common.php
+++ b/common.php
@@ -181,6 +181,7 @@ function deregister_globals()
require(IP_ROOT_PATH . 'includes/template.' . PHP_EXT);
require(IP_ROOT_PATH . 'includes/sessions.' . PHP_EXT);
require(IP_ROOT_PATH . 'includes/auth.' . PHP_EXT);
+require(IP_ROOT_PATH . 'includes/class_auth.' . PHP_EXT);
require(IP_ROOT_PATH . 'includes/class_cache.' . PHP_EXT);
require(IP_ROOT_PATH . 'includes/class_cache_extends.' . PHP_EXT);
require(IP_ROOT_PATH . 'includes/functions.' . PHP_EXT);
@@ -197,6 +198,7 @@ function deregister_globals()
$cache = new ip_cache();
$class_settings = new class_settings();
$user = new user();
+$auth = new auth();
$ip_cms = new ip_cms();
$ip_cms->init_vars();
diff --git a/contact_us.php b/contact_us.php
index c55b72ae..649d77f9 100644
--- a/contact_us.php
+++ b/contact_us.php
@@ -20,7 +20,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/credits.php b/credits.php
index f487a759..3995b0c9 100644
--- a/credits.php
+++ b/credits.php
@@ -22,7 +22,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/cron.php b/cron.php
index 4f1aecf0..18bf6682 100644
--- a/cron.php
+++ b/cron.php
@@ -29,7 +29,7 @@
// Do not update users last page entry
// Start session management
$user->session_begin(false);
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/ct_login_history.php b/ct_login_history.php
index deb17fb1..a6d7dd9d 100644
--- a/ct_login_history.php
+++ b/ct_login_history.php
@@ -27,7 +27,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/delete_users.php b/delete_users.php
index fee4e970..5af56514 100644
--- a/delete_users.php
+++ b/delete_users.php
@@ -60,7 +60,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/digests.php b/digests.php
index 8b3f2d20..4f85353b 100644
--- a/digests.php
+++ b/digests.php
@@ -31,7 +31,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/dload.php b/dload.php
index 492be180..21ccb8cf 100644
--- a/dload.php
+++ b/dload.php
@@ -18,7 +18,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/download.php b/download.php
index 554a3251..41418417 100644
--- a/download.php
+++ b/download.php
@@ -243,7 +243,7 @@ function send_file_to_browser($attachment, $upload_dir)
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/download_post.php b/download_post.php
index e195d0ca..afb39fb8 100644
--- a/download_post.php
+++ b/download_post.php
@@ -16,7 +16,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/drafts.php b/drafts.php
index e5eb59a9..001cb8ae 100644
--- a/drafts.php
+++ b/drafts.php
@@ -15,7 +15,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/edit_post_details.php b/edit_post_details.php
index 9558d90f..3c4b520d 100644
--- a/edit_post_details.php
+++ b/edit_post_details.php
@@ -16,7 +16,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
@@ -254,7 +254,6 @@
'L_TIME' => ($topic_post_time == 'topic') ? $lang['Topic_time_xs'] : $lang['Post_time'],
'L_SUBMIT' => $lang['Submit'],
'L_RESET' => $lang['Reset'],
- 'L_FIND_USERNAME' => $lang['Find_username'],
'U_SEARCH_USER' => append_sid(CMS_PAGE_SEARCH . '?mode=searchuser'),
diff --git a/errors.php b/errors.php
index b60e7e69..94dd38f6 100644
--- a/errors.php
+++ b/errors.php
@@ -20,7 +20,7 @@
// Start session management
$user->session_begin(false);
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/faq.php b/faq.php
index e86f99a1..d6b63b84 100644
--- a/faq.php
+++ b/faq.php
@@ -22,7 +22,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/features.php b/features.php
index b4f99e56..021adbad 100644
--- a/features.php
+++ b/features.php
@@ -15,7 +15,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/forum.php b/forum.php
index 5310727b..fe53520f 100644
--- a/forum.php
+++ b/forum.php
@@ -23,7 +23,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/groupcp.php b/groupcp.php
index c1bfd9a5..30699308 100644
--- a/groupcp.php
+++ b/groupcp.php
@@ -24,7 +24,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
@@ -860,7 +860,6 @@
'L_SELECT' => $lang['Select'],
'L_REMOVE_SELECTED' => $lang['Remove_selected'],
'L_ADD_MEMBER' => $lang['Add_member'],
- 'L_FIND_USERNAME' => $lang['Find_username'],
'L_COLORIZE_ALL' => $lang['Colorize_All'],
'L_COLORIZE_SELECTED' => $lang['Colorize_Selected'],
diff --git a/gsearch.php b/gsearch.php
index 8a3fc46c..7acc73e8 100644
--- a/gsearch.php
+++ b/gsearch.php
@@ -23,7 +23,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/includes/album_mod/album_hierarchy_sql.php b/includes/album_mod/album_hierarchy_sql.php
index 1fe8e681..8991bfad 100644
--- a/includes/album_mod/album_hierarchy_sql.php
+++ b/includes/album_mod/album_hierarchy_sql.php
@@ -881,7 +881,7 @@ function album_get_moderator_info($cat)
{
for ($j = 0; $j < sizeof($grouprows); $j++)
{
- $group_link = '' . $grouprows[$j]['group_name'] . '';
+ $group_link = '' . $grouprows[$j]['group_name'] . '';
$moderators .= ($moderators == '') ? $group_link : ', ' . $group_link;
}
}
diff --git a/includes/bb_usage_stats_coldesc.php b/includes/bb_usage_stats_coldesc.php
index dd38f6f3..5b47794f 100644
--- a/includes/bb_usage_stats_coldesc.php
+++ b/includes/bb_usage_stats_coldesc.php
@@ -23,7 +23,7 @@
// Start session management
$user->session_begin();
-//$auth->acl($user->data);
+$auth->acl($user->data);
$user->setup();
// End session management
diff --git a/includes/captcha/plugins/phpbb_captcha_gd_plugin.php b/includes/captcha/plugins/phpbb_captcha_gd_plugin.php
index 10c6c645..2d3b8fa0 100644
--- a/includes/captcha/plugins/phpbb_captcha_gd_plugin.php
+++ b/includes/captcha/plugins/phpbb_captcha_gd_plugin.php
@@ -124,11 +124,11 @@ function acp_page($id, &$module)
}
//add_log('admin', 'LOG_CONFIG_VISUAL');
- trigger_error($lang['CONFIG_UPDATED'] . adm_back_link($module->u_action));
+ trigger_error($lang['CONFIG_UPDATED'] . page_back_link($module->u_action));
}
else if ($submit)
{
- trigger_error($lang['FORM_INVALID'] . adm_back_link($module->u_action));
+ trigger_error($lang['FORM_INVALID'] . page_back_link($module->u_action));
}
else
{
diff --git a/includes/captcha/plugins/phpbb_captcha_gd_wave_plugin.php b/includes/captcha/plugins/phpbb_captcha_gd_wave_plugin.php
index 4251dcca..24282390 100644
--- a/includes/captcha/plugins/phpbb_captcha_gd_wave_plugin.php
+++ b/includes/captcha/plugins/phpbb_captcha_gd_wave_plugin.php
@@ -76,7 +76,7 @@ function acp_page($id, &$module)
{
global $config, $db, $template, $lang;
- trigger_error($lang['CAPTCHA_NO_OPTIONS'] . adm_back_link($module->u_action));
+ trigger_error($lang['CAPTCHA_NO_OPTIONS'] . page_back_link($module->u_action));
}
}
diff --git a/includes/captcha/plugins/phpbb_captcha_nogd_plugin.php b/includes/captcha/plugins/phpbb_captcha_nogd_plugin.php
index 366f3cc6..950f5489 100644
--- a/includes/captcha/plugins/phpbb_captcha_nogd_plugin.php
+++ b/includes/captcha/plugins/phpbb_captcha_nogd_plugin.php
@@ -67,7 +67,7 @@ function acp_page($id, &$module)
{
global $lang;
- trigger_error($lang['CAPTCHA_NO_OPTIONS'] . adm_back_link($module->u_action));
+ trigger_error($lang['CAPTCHA_NO_OPTIONS'] . page_back_link($module->u_action));
}
}
diff --git a/includes/captcha/plugins/phpbb_captcha_qa_plugin.php b/includes/captcha/plugins/phpbb_captcha_qa_plugin.php
index dca1b2d7..7d06c334 100644
--- a/includes/captcha/plugins/phpbb_captcha_qa_plugin.php
+++ b/includes/captcha/plugins/phpbb_captcha_qa_plugin.php
@@ -627,7 +627,7 @@ function acp_page($id, &$module)
{
$this->acp_delete_question($question_id);
- trigger_error($lang['QUESTION_DELETED'] . adm_back_link($list_url));
+ trigger_error($lang['QUESTION_DELETED'] . page_back_link($list_url));
}
else
{
@@ -680,7 +680,7 @@ function acp_page($id, &$module)
}
else
{
- trigger_error($lang['FORM_INVALID'] . adm_back_link($list_url));
+ trigger_error($lang['FORM_INVALID'] . page_back_link($list_url));
}
}
else
@@ -715,12 +715,12 @@ function acp_page($id, &$module)
}
add_log('admin', 'LOG_CONFIG_VISUAL');
- trigger_error($lang['CONFIG_UPDATED'] . adm_back_link($list_url));
+ trigger_error($lang['CONFIG_UPDATED'] . page_back_link($list_url));
}
}
else if ($submit)
{
- trigger_error($lang['FORM_INVALID'] . adm_back_link($list_url));
+ trigger_error($lang['FORM_INVALID'] . page_back_link($list_url));
}
}
}
diff --git a/includes/captcha/plugins/phpbb_recaptcha_plugin.php b/includes/captcha/plugins/phpbb_recaptcha_plugin.php
index 9a5c1b5a..0b92618c 100644
--- a/includes/captcha/plugins/phpbb_recaptcha_plugin.php
+++ b/includes/captcha/plugins/phpbb_recaptcha_plugin.php
@@ -106,11 +106,11 @@ function acp_page($id, &$module)
}
add_log('admin', 'LOG_CONFIG_VISUAL');
- trigger_error($user->lang['CONFIG_UPDATED'] . adm_back_link($module->u_action));
+ trigger_error($user->lang['CONFIG_UPDATED'] . page_back_link($module->u_action));
}
elseif ($submit)
{
- trigger_error($user->lang['FORM_INVALID'] . adm_back_link($module->u_action));
+ trigger_error($user->lang['FORM_INVALID'] . page_back_link($module->u_action));
}
else
{
diff --git a/includes/class_auth_admin.php b/includes/class_auth_admin.php
index 7fc20cb7..5420b5c5 100644
--- a/includes/class_auth_admin.php
+++ b/includes/class_auth_admin.php
@@ -645,7 +645,7 @@ function display_role_mask(&$hold_ary)
if (isset($auth_ary['users']) && sizeof($auth_ary['users']))
{
- $sql = 'SELECT user_id, username
+ $sql = 'SELECT user_id, username, user_color, user_active
FROM ' . USERS_TABLE . '
WHERE ' . $db->sql_in_set('user_id', $auth_ary['users']) . '
ORDER BY username_clean ASC';
@@ -656,7 +656,8 @@ function display_role_mask(&$hold_ary)
$template->assign_block_vars('role_mask.users', array(
'USER_ID' => $row['user_id'],
'USERNAME' => $row['username'],
- 'U_PROFILE' => append_sid(IP_ROOT_PATH . CMS_PAGE_PROFILE . '?mode=viewprofile&' . POST_USERS_URL . '=' . $row['user_id'])
+ 'U_PROFILE' => append_sid(IP_ROOT_PATH . CMS_PAGE_PROFILE . '?mode=viewprofile&' . POST_USERS_URL . '=' . $row['user_id']),
+ 'USERNAME_FULL' => colorize_username($row['user_id'], $row['username'], $row['user_color'], $row['user_active']),
)
);
}
@@ -665,7 +666,7 @@ function display_role_mask(&$hold_ary)
if (isset($auth_ary['groups']) && sizeof($auth_ary['groups']))
{
- $sql = 'SELECT group_id, group_name, group_type
+ $sql = 'SELECT group_id, group_name, group_color
FROM ' . GROUPS_TABLE . '
WHERE ' . $db->sql_in_set('group_id', $auth_ary['groups']) . '
ORDER BY group_type ASC, group_name';
@@ -675,7 +676,10 @@ function display_role_mask(&$hold_ary)
{
$template->assign_block_vars('role_mask.groups', array(
'GROUP_ID' => $row['group_id'],
- 'GROUP_NAME' => ($row['group_type'] == GROUP_SPECIAL) ? $user->lang['G_' . $row['group_name']] : $row['group_name'],
+ 'GROUP_NAME' => $row['group_name'],
+ 'GROUP_COLOR' => $row['group_color'],
+ 'GROUP_FULL' => '' . $row['group_name'] . '',
+
'U_PROFILE' => append_sid(IP_ROOT_PATH . CMS_PAGE_GROUP_CP . '?' . POST_GROUPS_URL . '=' . $row['group_id'])
)
);
diff --git a/includes/class_cms_admin.php b/includes/class_cms_admin.php
index bbbb3656..8e0d5bd7 100644
--- a/includes/class_cms_admin.php
+++ b/includes/class_cms_admin.php
@@ -40,49 +40,11 @@ function cms_admin()
$this->root = CMS_PAGE_CMS;
}
- /*
- * Check CMS version
- */
- function check_version()
- {
- global $db, $cache, $config, $user, $lang, $template, $table_prefix;
-
- if ($config['cms_rev'] != '2')
- {
- if(!isset($_POST['confirm']))
- {
- $template->assign_vars(array(
- 'L_YES' => $lang['YES'],
- 'L_NO' => $lang['NO'],
-
- 'MESSAGE_TITLE' => $lang['Confirm'],
- 'MESSAGE_TEXT' => 'Aggiornare CMS?',
-
- 'S_CONFIRM_ACTION' => append_sid($this->root . $this->s_append_url),
- 'S_HIDDEN_FIELDS' => $this->s_hidden_fields
- )
- );
- full_page_generation(CMS_TPL . 'confirm_body.tpl', $lang['Confirm'], '', '');
- }
- else
- {
- include(IP_ROOT_PATH . 'includes/cms_updates.' . PHP_EXT);
- foreach($sql as $sql_data)
- {
- $result = $db->sql_query($sql_data);
- }
- }
- }
-
- return true;
- }
-
/*
* Init CMS vars
*/
function init_vars($mode_array, $action_array)
{
- //$this->check_version();
if (defined('IN_CMS_USERS'))
{
$this->tables = array(
diff --git a/includes/class_cms_permissions.php b/includes/class_cms_permissions.php
new file mode 100644
index 00000000..f64f6bac
--- /dev/null
+++ b/includes/class_cms_permissions.php
@@ -0,0 +1,822 @@
+ 0));
+ $action = key($action);
+ $action = (isset($_POST['psubmit'])) ? 'apply_permissions' : $action;
+
+ $username = request_var('username', array(''), true);
+ $usernames = request_var('usernames', '', true);
+ $user_id = request_var('user_id', array(0));
+
+ $group_id = request_var('group_id', array(0));
+ $select_all_groups = request_var('select_all_groups', 0);
+
+ $form_name = 'acp_permissions';
+ add_form_key($form_name);
+
+ $this->tpl_name = 'cms_permissions.tpl';
+ $this->u_action = append_sid($cms_admin->root . '?mode=auth&pmode=' . $mode);
+
+ // If select all groups is set, we pre-build the group id array (this option is used for other screens to link to the permission settings screen)
+ if ($select_all_groups)
+ {
+ $sql = 'SELECT group_id
+ FROM ' . GROUPS_TABLE . '
+ WHERE group_single_user = 0';
+ $result = $db->sql_query($sql);
+
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $group_id[] = $row['group_id'];
+ }
+ $db->sql_freeresult($result);
+ }
+
+ // Map usernames to ids and vice versa
+ if ($usernames)
+ {
+ $username = explode("\n", $usernames);
+ }
+ unset($usernames);
+
+ if (sizeof($username) && !sizeof($user_id))
+ {
+ user_get_id_name($user_id, $username);
+
+ if (!sizeof($user_id))
+ {
+ trigger_error($user->lang['SELECTED_USER_NOT_EXIST'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ }
+ unset($username);
+
+ // Define some common variables for every mode
+ $error = array();
+
+ $permission_scope = (strpos($mode, '_global') !== false) ? 'global' : 'local';
+
+ // Showing introductionary page?
+ if ($mode == 'intro')
+ {
+ $this->page_title = 'CMS_PERMISSIONS';
+ $template->assign_vars(array(
+ 'S_INTRO' => true
+ )
+ );
+ return;
+ }
+
+ switch ($mode)
+ {
+ case 'setting_cms_user_global':
+ case 'setting_cms_group_global':
+ $this->permission_dropdown = array('cms_');
+ $permission_victim = ($mode == 'setting_cms_user_global') ? array('user') : array('group');
+ $this->page_title = ($mode == 'setting_cms_user_global') ? 'CMS_PERMISSIONS_CMS_USERS' : 'CMS_PERMISSIONS_CMS_GROUPS';
+ break;
+
+ case 'setting_plugins_user_global':
+ case 'setting_plugins_group_global':
+ $this->permission_dropdown = array('pl_');
+ $permission_victim = ($mode == 'setting_plugins_user_global') ? array('user') : array('group');
+ $this->page_title = ($mode == 'setting_plugins_user_global') ? 'CMS_PERMISSIONS_PLUGINS_USERS' : 'CMS_PERMISSIONS_PLUGINS_GROUPS';
+ break;
+
+ case 'setting_user_global':
+ case 'setting_group_global':
+ $this->permission_dropdown = array('u_');
+ $permission_victim = ($mode == 'setting_user_global') ? array('user') : array('group');
+ $this->page_title = ($mode == 'setting_user_global') ? 'CMS_PERMISSIONS_USERS' : 'CMS_PERMISSIONS_GROUPS';
+ break;
+
+ case 'setting_admin_global':
+ case 'setting_mod_global':
+ $this->permission_dropdown = (strpos($mode, '_admin_') !== false) ? array('a_') : array('m_');
+ $permission_victim = array('usergroup');
+ $this->page_title = ($mode == 'setting_admin_global') ? 'CMS_PERMISSIONS_ADMINS' : 'CMS_PERMISSIONS_MODS';
+ break;
+
+ case 'view_admin_global':
+ case 'view_user_global':
+ case 'view_mod_global':
+ $this->permission_dropdown = ($mode == 'view_admin_global') ? array('a_') : (($mode == 'view_user_global') ? array('u_') : array('m_'));
+ $permission_victim = array('usergroup_view');
+ $this->page_title = ($mode == 'view_admin_global') ? 'CMS_PERMISSIONS_ADMINS' : (($mode == 'view_user_global') ? 'CMS_PERMISSIONS_USERS' : 'CMS_PERMISSIONS_MODS');
+ break;
+
+ default:
+ trigger_error('NO_MODE', E_USER_ERROR);
+ break;
+ }
+
+ $template->assign_vars(array(
+ 'L_TITLE' => $lang[$this->page_title],
+ 'L_EXPLAIN' => $lang[$this->page_title . '_EXPLAIN']
+ )
+ );
+
+ // Get permission type
+ $permission_type = request_var('type', $this->permission_dropdown[0]);
+
+ if (!in_array($permission_type, $this->permission_dropdown))
+ {
+ trigger_error($user->lang['WRONG_PERMISSION_TYPE'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ // Handle actions
+ if ((strpos($mode, 'setting_') === 0) && $action)
+ {
+ switch ($action)
+ {
+ case 'delete':
+ if (confirm_box(true))
+ {
+ // All users/groups selected?
+ $all_users = (isset($_POST['all_users'])) ? true : false;
+ $all_groups = (isset($_POST['all_groups'])) ? true : false;
+
+ if ($all_users || $all_groups)
+ {
+ $items = $this->retrieve_defined_user_groups($permission_scope, $permission_type);
+
+ if ($all_users && sizeof($items['user_ids']))
+ {
+ $user_id = $items['user_ids'];
+ }
+ elseif ($all_groups && sizeof($items['group_ids']))
+ {
+ $group_id = $items['group_ids'];
+ }
+ }
+
+ if (sizeof($user_id) || sizeof($group_id))
+ {
+ $this->remove_permissions($mode, $permission_type, $auth_admin, $user_id, $group_id);
+ }
+ else
+ {
+ trigger_error($user->lang['NO_USER_GROUP_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ }
+ else
+ {
+ if (isset($_POST['cancel']))
+ {
+ $u_redirect = $this->u_action . '&type=' . $permission_type;
+ redirect($u_redirect);
+ }
+
+ $s_hidden_fields = array(
+ 'i' => $id,
+ 'pmode' => $mode,
+ 'paction' => array($action => 1),
+ 'user_id' => $user_id,
+ 'group_id' => $group_id,
+ 'type' => $permission_type,
+ );
+ if (isset($_POST['all_users']))
+ {
+ $s_hidden_fields['all_users'] = 1;
+ }
+ if (isset($_POST['all_groups']))
+ {
+ $s_hidden_fields['all_groups'] = 1;
+ }
+ confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields($s_hidden_fields));
+ }
+ break;
+
+ case 'apply_permissions':
+ if (!isset($_POST['setting']))
+ {
+ trigger_error($user->lang['NO_AUTH_SETTING_FOUND'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ if (!check_form_key($form_name))
+ {
+ trigger_error($user->lang['FORM_INVALID'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $this->set_permissions($mode, $permission_type, $auth_admin, $user_id, $group_id);
+ break;
+
+ case 'apply_all_permissions':
+ if (!isset($_POST['setting']))
+ {
+ trigger_error($user->lang['NO_AUTH_SETTING_FOUND'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ if (!check_form_key($form_name))
+ {
+ trigger_error($user->lang['FORM_INVALID'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $this->set_all_permissions($mode, $permission_type, $auth_admin, $user_id, $group_id);
+ break;
+ }
+ }
+
+
+ // Setting permissions screen
+ $s_hidden_fields = build_hidden_fields(array(
+ 'user_id' => $user_id,
+ 'group_id' => $group_id,
+ 'type' => $permission_type
+ )
+ );
+
+ // Go through the screens/options needed and present them in correct order
+ foreach ($permission_victim as $victim)
+ {
+ switch ($victim)
+ {
+ case 'user':
+ case 'group':
+
+ if (sizeof($user_id))
+ {
+ $this->check_existence('user', $user_id);
+ continue 2;
+ }
+
+ if (sizeof($group_id))
+ {
+ $this->check_existence('group', $group_id);
+ continue 2;
+ }
+
+ $template->assign_vars(array(
+ 'S_SELECT_USER' => true,
+ 'S_SELECT_GROUP' => true,
+ 'U_FIND_USERNAME' => append_sid(IP_ROOT_PATH . CMS_PAGE_SEARCH . '?mode=searchuser'),
+ 'S_GROUP_OPTIONS' => group_select_options(false, false, false), // Show all groups
+ )
+ );
+
+ break;
+
+ case 'usergroup':
+ case 'usergroup_view':
+
+ $all_users = (isset($_POST['all_users'])) ? true : false;
+ $all_groups = (isset($_POST['all_groups'])) ? true : false;
+
+ if ((sizeof($user_id) && !$all_users) || (sizeof($group_id) && !$all_groups))
+ {
+ if (sizeof($user_id))
+ {
+ $this->check_existence('user', $user_id);
+ }
+
+ if (sizeof($group_id))
+ {
+ $this->check_existence('group', $group_id);
+ }
+
+ continue 2;
+ }
+
+ // Now we check the users... because the "all"-selection is different here (all defined users/groups)
+ $items = $this->retrieve_defined_user_groups($permission_scope, $permission_type);
+
+ if ($all_users && sizeof($items['user_ids']))
+ {
+ $user_id = $items['user_ids'];
+ continue 2;
+ }
+
+ if ($all_groups && sizeof($items['group_ids']))
+ {
+ $group_id = $items['group_ids'];
+ continue 2;
+ }
+
+ $template->assign_vars(array(
+ 'S_SELECT_USERGROUP' => ($victim == 'usergroup') ? true : false,
+ 'S_SELECT_USERGROUP_VIEW' => ($victim == 'usergroup_view') ? true : false,
+ 'S_DEFINED_USER_OPTIONS' => $items['user_ids_options'],
+ 'S_DEFINED_GROUP_OPTIONS' => $items['group_ids_options'],
+ 'S_ADD_GROUP_OPTIONS' => group_select_options(false, $items['group_ids'], false), // Show all groups
+ 'U_FIND_USERNAME' => append_sid(IP_ROOT_PATH . CMS_PAGE_SEARCH . '?mode=searchuser'),
+ )
+ );
+
+ break;
+ }
+
+ // The S_ALLOW_SELECT parameter below is a measure to lower memory usage.
+ // If there are more than 5 forums selected the admin is not able to select all users/groups too.
+ // We need to see if the number of forums can be increased or need to be decreased.
+
+ $template->assign_vars(array(
+ 'U_ACTION' => $this->u_action,
+ 'U_ACTION_USERS' => str_replace('_group_global', '_user_global', $this->u_action),
+ 'U_ACTION_GROUPS' => str_replace('_user_global', '_group_global', $this->u_action),
+ 'ANONYMOUS_USER_ID' => ANONYMOUS,
+
+ 'S_SELECT_VICTIM' => true,
+ 'S_ALLOW_ALL_SELECT' => false,
+ /*
+ 'S_CAN_SELECT_USER' => ($auth->acl_get('a_authusers')) ? true : false,
+ 'S_CAN_SELECT_GROUP' => ($auth->acl_get('a_authgroups')) ? true : false,
+ */
+ 'S_CAN_SELECT_USER' => true,
+ 'S_CAN_SELECT_GROUP' => true,
+
+ 'S_HIDDEN_FIELDS' => $s_hidden_fields
+ )
+ );
+
+ return;
+ }
+
+ $template->assign_vars(array(
+ 'S_PERMISSION_DROPDOWN' => (sizeof($this->permission_dropdown) > 1) ? $this->build_permission_dropdown($this->permission_dropdown, $permission_type, $permission_scope) : false,
+ 'L_PERMISSION_TYPE' => $user->lang['ACL_TYPE_' . strtoupper($permission_type)],
+
+ 'U_ACTION' => $this->u_action,
+ 'S_HIDDEN_FIELDS' => $s_hidden_fields
+ )
+ );
+
+ if (strpos($mode, 'setting_') === 0)
+ {
+ $template->assign_vars(array(
+ 'S_SETTING_PERMISSIONS' => true
+ )
+ );
+
+ $hold_ary = $auth_admin->get_mask('set', (sizeof($user_id)) ? $user_id : false, (sizeof($group_id)) ? $group_id : false, false, $permission_type, $permission_scope, ACL_NO);
+ $auth_admin->display_mask('set', $permission_type, $hold_ary, ((sizeof($user_id)) ? 'user' : 'group'), (($permission_scope == 'local') ? true : false));
+ }
+ else
+ {
+ $template->assign_vars(array(
+ 'S_VIEWING_PERMISSIONS' => true
+ )
+ );
+
+ $hold_ary = $auth_admin->get_mask('view', (sizeof($user_id)) ? $user_id : false, (sizeof($group_id)) ? $group_id : false, false, $permission_type, $permission_scope, ACL_NEVER);
+ $auth_admin->display_mask('view', $permission_type, $hold_ary, ((sizeof($user_id)) ? 'user' : 'group'), (($permission_scope == 'local') ? true : false));
+ }
+ }
+
+ /**
+ * Build dropdown field for changing permission types
+ */
+ function build_permission_dropdown($options, $default_option, $permission_scope)
+ {
+ global $user, $auth;
+
+ $s_dropdown_options = '';
+ foreach ($options as $setting)
+ {
+ if (!$auth->acl_get('a_' . str_replace('_', '', $setting) . 'auth'))
+ {
+ continue;
+ }
+
+ $selected = ($setting == $default_option) ? ' selected="selected"' : '';
+ $l_setting = (isset($user->lang['permission_type'][$permission_scope][$setting])) ? $user->lang['permission_type'][$permission_scope][$setting] : $user->lang['permission_type'][$setting];
+ $s_dropdown_options .= '';
+ }
+
+ return $s_dropdown_options;
+ }
+
+ /**
+ * Check if selected items exist. Remove not found ids and if empty return error.
+ */
+ function check_existence($mode, &$ids)
+ {
+ global $db, $user;
+
+ switch ($mode)
+ {
+ case 'user':
+ $table = USERS_TABLE;
+ $sql_id = 'user_id';
+ break;
+
+ case 'group':
+ $table = GROUPS_TABLE;
+ $sql_id = 'group_id';
+ break;
+
+ case 'forum':
+ $table = FORUMS_TABLE;
+ $sql_id = 'forum_id';
+ break;
+ }
+
+ if (sizeof($ids))
+ {
+ $sql = "SELECT $sql_id
+ FROM $table
+ WHERE " . $db->sql_in_set($sql_id, $ids);
+ $result = $db->sql_query($sql);
+
+ $ids = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $ids[] = (int) $row[$sql_id];
+ }
+ $db->sql_freeresult($result);
+ }
+
+ if (!sizeof($ids))
+ {
+ trigger_error($user->lang['SELECTED_' . strtoupper($mode) . '_NOT_EXIST'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ }
+
+ /**
+ * Apply permissions
+ */
+ function set_permissions($mode, $permission_type, &$auth_admin, &$user_id, &$group_id)
+ {
+ global $user, $auth;
+
+ $psubmit = request_var('psubmit', array(0 => array(0 => 0)));
+
+ // User or group to be set?
+ $ug_type = (sizeof($user_id)) ? 'user' : 'group';
+
+ // Mighty Gorgon: we need to decide if we wish to leave this check upon specific permissions in settings permissions
+ /*
+ // Check the permission setting again
+ if (!$auth->acl_get('a_' . str_replace('_', '', $permission_type) . 'auth') || !$auth->acl_get('a_auth' . $ug_type . 's'))
+ {
+ trigger_error($user->lang['NO_AUTH_OPERATION'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ */
+
+ $ug_id = $forum_id = 0;
+
+ // We loop through the auth settings defined in our submit
+ list($ug_id, ) = each($psubmit);
+ list($forum_id, ) = each($psubmit[$ug_id]);
+
+ if (empty($_POST['setting']) || empty($_POST['setting'][$ug_id]) || empty($_POST['setting'][$ug_id][$forum_id]) || !is_array($_POST['setting'][$ug_id][$forum_id]))
+ {
+ trigger_error('WRONG_PERMISSION_SETTING_FORMAT' . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ // We obtain and check $_POST['setting'][$ug_id][$forum_id] directly and not using request_var() because request_var()
+ // currently does not support the amount of dimensions required. ;)
+ // $auth_settings = request_var('setting', array(0 => array(0 => array('' => 0))));
+ $auth_settings = array_map('intval', $_POST['setting'][$ug_id][$forum_id]);
+
+ // Do we have a role we want to set?
+ $assigned_role = (isset($_POST['role'][$ug_id][$forum_id])) ? (int) $_POST['role'][$ug_id][$forum_id] : 0;
+
+ // Do the admin want to set these permissions to other items too?
+ $inherit = request_var('inherit', array(0 => array(0)));
+
+ $ug_id = array($ug_id);
+ $forum_id = array($forum_id);
+
+ if (sizeof($inherit))
+ {
+ foreach ($inherit as $_ug_id => $forum_id_ary)
+ {
+ // Inherit users/groups?
+ if (!in_array($_ug_id, $ug_id))
+ {
+ $ug_id[] = $_ug_id;
+ }
+
+ // Inherit forums?
+ $forum_id = array_merge($forum_id, array_keys($forum_id_ary));
+ }
+ }
+
+ $forum_id = array_unique($forum_id);
+
+ // If the auth settings differ from the assigned role, then do not set a role...
+ if ($assigned_role)
+ {
+ if (!$this->check_assigned_role($assigned_role, $auth_settings))
+ {
+ $assigned_role = 0;
+ }
+ }
+
+ // Update the permission set...
+ $auth_admin->acl_set($ug_type, $forum_id, $ug_id, $auth_settings, $assigned_role);
+
+ // Do we need to recache the moderator lists?
+ if ($permission_type == 'm_')
+ {
+ cache_moderators();
+ }
+
+ // Do we need to recache the moderator lists?
+ if ($permission_type == 'm_')
+ {
+ cache_moderators();
+ }
+
+ // Remove users who are now moderators or admins from everyones foes list
+ if ($permission_type == 'm_' || $permission_type == 'a_')
+ {
+ // MIGHTY GORGON: We don't use foes...
+ //update_foes($group_id, $user_id);
+ }
+
+ $this->log_action($mode, 'add', $permission_type, $ug_type, $ug_id, $forum_id);
+
+ $redirect_url = $this->u_action;
+ meta_refresh(3, $redirect_url);
+
+ trigger_error($user->lang['AUTH_UPDATED'] . page_back_link($this->u_action));
+ }
+
+ /**
+ * Apply all permissions
+ */
+ function set_all_permissions($mode, $permission_type, &$auth_admin, &$user_id, &$group_id)
+ {
+ global $user, $auth;
+
+ // User or group to be set?
+ $ug_type = (sizeof($user_id)) ? 'user' : 'group';
+
+ // Mighty Gorgon: we need to decide if we wish to leave this check upon specific permissions in settings permissions
+ /*
+ // Check the permission setting again
+ if (!$auth->acl_get('a_' . str_replace('_', '', $permission_type) . 'auth') || !$auth->acl_get('a_auth' . $ug_type . 's'))
+ {
+ trigger_error($user->lang['NO_AUTH_OPERATION'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+ */
+
+ $auth_settings = (isset($_POST['setting'])) ? $_POST['setting'] : array();
+ $auth_roles = (isset($_POST['role'])) ? $_POST['role'] : array();
+ $ug_ids = $forum_ids = array();
+
+ // We need to go through the auth settings
+ foreach ($auth_settings as $ug_id => $forum_auth_row)
+ {
+ $ug_id = (int) $ug_id;
+ $ug_ids[] = $ug_id;
+
+ foreach ($forum_auth_row as $forum_id => $auth_options)
+ {
+ $forum_id = (int) $forum_id;
+ $forum_ids[] = $forum_id;
+
+ // Check role...
+ $assigned_role = (isset($auth_roles[$ug_id][$forum_id])) ? (int) $auth_roles[$ug_id][$forum_id] : 0;
+
+ // If the auth settings differ from the assigned role, then do not set a role...
+ if ($assigned_role)
+ {
+ if (!$this->check_assigned_role($assigned_role, $auth_options))
+ {
+ $assigned_role = 0;
+ }
+ }
+
+ // Update the permission set...
+ $auth_admin->acl_set($ug_type, $forum_id, $ug_id, $auth_options, $assigned_role, false);
+ }
+ }
+
+ $auth_admin->acl_clear_prefetch();
+
+ // Do we need to recache the moderator lists?
+ if ($permission_type == 'm_')
+ {
+ cache_moderators();
+ }
+
+ $this->log_action($mode, 'add', $permission_type, $ug_type, $ug_ids, $forum_ids);
+
+ $redirect_url = $this->u_action;
+ meta_refresh(3, $redirect_url);
+
+ trigger_error($user->lang['AUTH_UPDATED'] . page_back_link($this->u_action));
+ }
+
+ /**
+ * Compare auth settings with auth settings from role
+ * returns false if they differ, true if they are equal
+ */
+ function check_assigned_role($role_id, &$auth_settings)
+ {
+ global $db;
+
+ $sql = 'SELECT o.auth_option, r.auth_setting
+ FROM ' . ACL_OPTIONS_TABLE . ' o, ' . ACL_ROLES_DATA_TABLE . ' r
+ WHERE o.auth_option_id = r.auth_option_id
+ AND r.role_id = ' . $role_id;
+ $result = $db->sql_query($sql);
+
+ $test_auth_settings = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $test_auth_settings[$row['auth_option']] = $row['auth_setting'];
+ }
+ $db->sql_freeresult($result);
+
+ // We need to add any ACL_NO setting from auth_settings to compare correctly
+ foreach ($auth_settings as $option => $setting)
+ {
+ if ($setting == ACL_NO)
+ {
+ $test_auth_settings[$option] = $setting;
+ }
+ }
+
+ if (sizeof(array_diff_assoc($auth_settings, $test_auth_settings)))
+ {
+ return false;
+ }
+
+ return true;
+ }
+
+ /**
+ * Remove permissions
+ */
+ function remove_permissions($mode, $permission_type, &$auth_admin, &$user_id, &$group_id)
+ {
+ global $db, $user, $auth;
+
+ // User or group to be set?
+ $ug_type = (sizeof($user_id)) ? 'user' : 'group';
+
+ // Check the permission setting again
+ if (!$auth->acl_get('a_' . str_replace('_', '', $permission_type) . 'auth') || !$auth->acl_get('a_auth' . $ug_type . 's'))
+ {
+ trigger_error($user->lang['NO_AUTH_OPERATION'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $auth_admin->acl_delete($ug_type, (($ug_type == 'user') ? $user_id : $group_id), (sizeof($forum_id) ? $forum_id : false), $permission_type);
+
+ // Do we need to recache the moderator lists?
+ if ($permission_type == 'm_')
+ {
+ cache_moderators();
+ }
+
+ $this->log_action($mode, 'del', $permission_type, $ug_type, (($ug_type == 'user') ? $user_id : $group_id), array(0 => 0));
+
+ trigger_error($user->lang['AUTH_UPDATED'] . page_back_link($this->u_action));
+ }
+
+ /**
+ * Log permission changes
+ */
+ function log_action($mode, $action, $permission_type, $ug_type, $ug_id, $forum_id)
+ {
+ global $db, $user;
+
+ if (!is_array($ug_id))
+ {
+ $ug_id = array($ug_id);
+ }
+
+ if (!is_array($forum_id))
+ {
+ $forum_id = array($forum_id);
+ }
+
+ // Logging ... first grab user or groupnames ...
+ $sql = ($ug_type == 'group') ? 'SELECT group_name as name, group_type FROM ' . GROUPS_TABLE . ' WHERE ' : 'SELECT username as name FROM ' . USERS_TABLE . ' WHERE ';
+ $sql .= $db->sql_in_set(($ug_type == 'group') ? 'group_id' : 'user_id', array_map('intval', $ug_id));
+ $sql .= ($ug_type == 'group') ? ' AND group_single_user = 0' : '';
+ $result = $db->sql_query($sql);
+
+ $l_ug_list = '';
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $l_ug_list .= (($l_ug_list != '') ? ', ' : '') . ((isset($row['group_type']) && $row['group_type'] == GROUP_SPECIAL) ? '' . $user->lang['G_' . $row['name']] . '' : $row['name']);
+ }
+ $db->sql_freeresult($result);
+
+ $mode = str_replace('setting_', '', $mode);
+
+ add_log('admin', 'LOG_ACL_' . strtoupper($action) . '_' . strtoupper($mode) . '_' . strtoupper($permission_type), $l_ug_list);
+ }
+
+ /**
+ * Get already assigned users/groups
+ */
+ function retrieve_defined_user_groups($permission_scope, $permission_type)
+ {
+ global $db, $user;
+
+ // Permission options are only able to be a permission set... therefore we will pre-fetch the possible options and also the possible roles
+ $option_ids = $role_ids = array();
+
+ $sql = 'SELECT auth_option_id
+ FROM ' . ACL_OPTIONS_TABLE . '
+ WHERE auth_option ' . $db->sql_like_expression($permission_type . $db->any_char);
+ $result = $db->sql_query($sql);
+
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $option_ids[] = (int) $row['auth_option_id'];
+ }
+ $db->sql_freeresult($result);
+
+ if (sizeof($option_ids))
+ {
+ $sql = 'SELECT DISTINCT role_id
+ FROM ' . ACL_ROLES_DATA_TABLE . '
+ WHERE ' . $db->sql_in_set('auth_option_id', $option_ids);
+ $result = $db->sql_query($sql);
+
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $role_ids[] = (int) $row['role_id'];
+ }
+ $db->sql_freeresult($result);
+ }
+
+ if (sizeof($option_ids) && sizeof($role_ids))
+ {
+ $sql_where = 'AND (' . $db->sql_in_set('a.auth_option_id', $option_ids) . ' OR ' . $db->sql_in_set('a.auth_role_id', $role_ids) . ')';
+ }
+ elseif (sizeof($role_ids))
+ {
+ $sql_where = 'AND ' . $db->sql_in_set('a.auth_role_id', $role_ids);
+ }
+ elseif (sizeof($option_ids))
+ {
+ $sql_where = 'AND ' . $db->sql_in_set('a.auth_option_id', $option_ids);
+ }
+
+ // Not ideal, due to the filesort, non-use of indexes, etc.
+ $sql = 'SELECT DISTINCT u.user_id, u.username, u.username_clean, u.user_regdate
+ FROM ' . USERS_TABLE . ' u, ' . ACL_USERS_TABLE . " a
+ WHERE u.user_id = a.user_id
+ $sql_where
+ ORDER BY u.username_clean, u.user_regdate ASC";
+ $result = $db->sql_query($sql);
+
+ $s_defined_user_options = '';
+ $defined_user_ids = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $s_defined_user_options .= '';
+ $defined_user_ids[] = $row['user_id'];
+ }
+ $db->sql_freeresult($result);
+
+ $sql = 'SELECT DISTINCT g.group_type, g.group_name, g.group_id
+ FROM ' . GROUPS_TABLE . ' g, ' . ACL_GROUPS_TABLE . " a
+ WHERE g.group_id = a.group_id
+ AND g.group_single_user = 0
+ $sql_where
+ ORDER BY g.group_name ASC";
+ $result = $db->sql_query($sql);
+
+ $s_defined_group_options = '';
+ $defined_group_ids = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $s_defined_group_options .= '';
+ $defined_group_ids[] = $row['group_id'];
+ }
+ $db->sql_freeresult($result);
+
+ return array(
+ 'group_ids' => $defined_group_ids,
+ 'group_ids_options' => $s_defined_group_options,
+ 'user_ids' => $defined_user_ids,
+ 'user_ids_options' => $s_defined_user_options
+ );
+ }
+
+}
+
+?>
\ No newline at end of file
diff --git a/includes/class_cms_permissions_roles.php b/includes/class_cms_permissions_roles.php
new file mode 100644
index 00000000..34089469
--- /dev/null
+++ b/includes/class_cms_permissions_roles.php
@@ -0,0 +1,589 @@
+tpl_name = 'cms_permissions_roles.tpl';
+ $this->u_action = append_sid($cms_admin->root . '?mode=auth&rmode=' . $mode . '&roles_admin=1');
+
+ switch ($mode)
+ {
+ case 'admin_roles':
+ $permission_type = 'a_';
+ $this->page_title = 'ACP_ADMIN_ROLES';
+ break;
+
+ case 'cms_roles':
+ $permission_type = 'cms_';
+ $this->page_title = 'ACP_CMS_ROLES';
+ break;
+
+ case 'forum_roles':
+ $permission_type = 'f_';
+ $this->page_title = 'ACP_FORUM_ROLES';
+ break;
+
+ case 'mod_roles':
+ $permission_type = 'm_';
+ $this->page_title = 'ACP_MOD_ROLES';
+ break;
+
+ case 'plugins_roles':
+ $permission_type = 'pl_';
+ $this->page_title = 'ACP_PLUGINS_ROLES';
+ break;
+
+ case 'user_roles':
+ $permission_type = 'u_';
+ $this->page_title = 'ACP_USER_ROLES';
+ break;
+
+ default:
+ trigger_error('NO_MODE', E_USER_ERROR);
+ break;
+ }
+
+ $template->assign_vars(array(
+ 'L_TITLE' => $user->lang[$this->page_title],
+ 'L_EXPLAIN' => $user->lang[$this->page_title . '_EXPLAIN']
+ )
+ );
+
+ // Take action... admin submitted something
+ if ($submit || ($action == 'remove'))
+ {
+ switch ($action)
+ {
+ case 'remove':
+
+ if (!$role_id)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $sql = 'SELECT *
+ FROM ' . ACL_ROLES_TABLE . '
+ WHERE role_id = ' . $role_id;
+ $result = $db->sql_query($sql);
+ $role_row = $db->sql_fetchrow($result);
+ $db->sql_freeresult($result);
+
+ if (!$role_row)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ if (confirm_box(true))
+ {
+ $this->remove_role($role_id, $permission_type);
+
+ $role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name'];
+ add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_REMOVED', $role_name);
+ trigger_error($user->lang['ROLE_DELETED'] . page_back_link($this->u_action));
+ }
+ else
+ {
+ $s_hidden_fields = array(
+ 'i' => $id,
+ 'pmode' => $mode,
+ 'role_id' => $role_id,
+ 'paction' => $action,
+ );
+
+ confirm_box(false, 'DELETE_ROLE', build_hidden_fields($s_hidden_fields));
+ }
+
+ break;
+
+ case 'edit':
+ if (!$role_id)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ // Get role we edit
+ $sql = 'SELECT *
+ FROM ' . ACL_ROLES_TABLE . '
+ WHERE role_id = ' . $role_id;
+ $result = $db->sql_query($sql);
+ $role_row = $db->sql_fetchrow($result);
+ $db->sql_freeresult($result);
+
+ if (!$role_row)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ // no break;
+
+ case 'add':
+
+ if (!check_form_key($form_name))
+ {
+ trigger_error($user->lang['FORM_INVALID']. page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $role_name = utf8_normalize_nfc(request_var('role_name', '', true));
+ $role_description = utf8_normalize_nfc(request_var('role_description', '', true));
+ $auth_settings = request_var('setting', array('' => 0));
+
+ if (!$role_name)
+ {
+ trigger_error($user->lang['NO_ROLE_NAME_SPECIFIED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ if (utf8_strlen($role_description) > 4000)
+ {
+ trigger_error($user->lang['ROLE_DESCRIPTION_LONG'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ // if we add/edit a role we check the name to be unique among the settings...
+ $sql = 'SELECT role_id
+ FROM ' . ACL_ROLES_TABLE . "
+ WHERE role_type = '" . $db->sql_escape($permission_type) . "'
+ AND role_name = '" . $db->sql_escape($role_name) . "'";
+ $result = $db->sql_query($sql);
+ $row = $db->sql_fetchrow($result);
+ $db->sql_freeresult($result);
+
+ // Make sure we only print out the error if we add the role or change it's name
+ if ($row && ($mode == 'add' || ($mode == 'edit' && $role_row['role_name'] != $role_name)))
+ {
+ trigger_error(sprintf($user->lang['ROLE_NAME_ALREADY_EXIST'], $role_name) . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $sql_ary = array(
+ 'role_name' => (string) $role_name,
+ 'role_description' => (string) $role_description,
+ 'role_type' => (string) $permission_type,
+ );
+
+ if ($action == 'edit')
+ {
+ $sql = 'UPDATE ' . ACL_ROLES_TABLE . '
+ SET ' . $db->sql_build_array('UPDATE', $sql_ary) . '
+ WHERE role_id = ' . $role_id;
+ $db->sql_query($sql);
+ }
+ else
+ {
+ // Get maximum role order for inserting a new role...
+ $sql = 'SELECT MAX(role_order) as max_order
+ FROM ' . ACL_ROLES_TABLE . "
+ WHERE role_type = '" . $db->sql_escape($permission_type) . "'";
+ $result = $db->sql_query($sql);
+ $max_order = (int) $db->sql_fetchfield('max_order');
+ $db->sql_freeresult($result);
+
+ $sql_ary['role_order'] = $max_order + 1;
+
+ $sql = 'INSERT INTO ' . ACL_ROLES_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary);
+ $db->sql_query($sql);
+
+ $role_id = $db->sql_nextid();
+ }
+
+ // Now add the auth settings
+ $auth_admin->acl_set_role($role_id, $auth_settings);
+
+ $role_name = (!empty($user->lang[$role_name])) ? $user->lang[$role_name] : $role_name;
+ add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_' . strtoupper($action), $role_name);
+
+ trigger_error($user->lang['ROLE_' . strtoupper($action) . '_SUCCESS'] . page_back_link($this->u_action));
+
+ break;
+ }
+ }
+
+ // Display screens
+ switch ($action)
+ {
+ case 'add':
+
+ $options_from = request_var('options_from', 0);
+
+ $role_row = array(
+ 'role_name' => utf8_normalize_nfc(request_var('role_name', '', true)),
+ 'role_description' => utf8_normalize_nfc(request_var('role_description', '', true)),
+ 'role_type' => $permission_type,
+ );
+
+ if ($options_from)
+ {
+ $sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option
+ FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o
+ WHERE o.auth_option_id = p.auth_option_id
+ AND p.role_id = ' . $options_from . '
+ ORDER BY p.auth_option_id';
+ $result = $db->sql_query($sql);
+
+ $auth_options = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $auth_options[$row['auth_option']] = $row['auth_setting'];
+ }
+ $db->sql_freeresult($result);
+ }
+ else
+ {
+ $sql = 'SELECT auth_option_id, auth_option
+ FROM ' . ACL_OPTIONS_TABLE . "
+ WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . "
+ AND auth_option <> '{$permission_type}'
+ ORDER BY auth_option_id";
+ $result = $db->sql_query($sql);
+
+ $auth_options = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $auth_options[$row['auth_option']] = ACL_NO;
+ }
+ $db->sql_freeresult($result);
+ }
+
+ // no break;
+
+ case 'edit':
+
+ if ($action == 'edit')
+ {
+ if (!$role_id)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $sql = 'SELECT *
+ FROM ' . ACL_ROLES_TABLE . '
+ WHERE role_id = ' . $role_id;
+ $result = $db->sql_query($sql);
+ $role_row = $db->sql_fetchrow($result);
+ $db->sql_freeresult($result);
+
+ $sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option
+ FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o
+ WHERE o.auth_option_id = p.auth_option_id
+ AND p.role_id = ' . $role_id . '
+ ORDER BY p.auth_option_id';
+ $result = $db->sql_query($sql);
+
+ $auth_options = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $auth_options[$row['auth_option']] = $row['auth_setting'];
+ }
+ $db->sql_freeresult($result);
+ }
+
+ if (!$role_row)
+ {
+ trigger_error($user->lang['NO_ROLE_SELECTED'] . page_back_link($this->u_action), E_USER_WARNING);
+ }
+
+ $template->assign_vars(array(
+ 'S_EDIT' => true,
+
+ 'U_ACTION' => $this->u_action . "&paction={$action}&role_id={$role_id}",
+ 'U_BACK' => $this->u_action,
+
+ 'ROLE_NAME' => $role_row['role_name'],
+ 'ROLE_DESCRIPTION' => $role_row['role_description'],
+ 'L_ACL_TYPE' => $user->lang['ACL_TYPE_' . strtoupper($permission_type)],
+ )
+ );
+
+ // We need to fill the auth options array with ACL_NO options ;)
+ $sql = 'SELECT auth_option_id, auth_option
+ FROM ' . ACL_OPTIONS_TABLE . "
+ WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . "
+ AND auth_option <> '{$permission_type}'
+ ORDER BY auth_option_id";
+ $result = $db->sql_query($sql);
+
+ while ($row = $db->sql_fetchrow($result))
+ {
+ if (!isset($auth_options[$row['auth_option']]))
+ {
+ $auth_options[$row['auth_option']] = ACL_NO;
+ }
+ }
+ $db->sql_freeresult($result);
+
+ // Unset global permission option
+ unset($auth_options[$permission_type]);
+
+ // Display auth options
+ $this->display_auth_options($auth_options);
+
+ // Get users/groups/forums using this preset...
+ if ($action == 'edit')
+ {
+ $hold_ary = $auth_admin->get_role_mask($role_id);
+
+ if (sizeof($hold_ary))
+ {
+ $role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name'];
+
+ $template->assign_vars(array(
+ 'S_DISPLAY_ROLE_MASK' => true,
+ 'L_ROLE_ASSIGNED_TO' => sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name))
+ );
+
+ $auth_admin->display_role_mask($hold_ary);
+ }
+ }
+
+ return;
+ break;
+
+ case 'move_up':
+ case 'move_down':
+
+ $order = request_var('order', 0);
+ $order_total = $order * 2 + (($action == 'move_up') ? -1 : 1);
+
+ $sql = 'UPDATE ' . ACL_ROLES_TABLE . '
+ SET role_order = ' . $order_total . " - role_order
+ WHERE role_type = '" . $db->sql_escape($permission_type) . "'
+ AND role_order IN ($order, " . (($action == 'move_up') ? $order - 1 : $order + 1) . ')';
+ $db->sql_query($sql);
+
+ break;
+ }
+
+ // By default, check that role_order is valid and fix it if necessary
+ $sql = 'SELECT role_id, role_order
+ FROM ' . ACL_ROLES_TABLE . "
+ WHERE role_type = '" . $db->sql_escape($permission_type) . "'
+ ORDER BY role_order ASC";
+ $result = $db->sql_query($sql);
+
+ if ($row = $db->sql_fetchrow($result))
+ {
+ $order = 0;
+ do
+ {
+ $order++;
+ if ($row['role_order'] != $order)
+ {
+ $db->sql_query('UPDATE ' . ACL_ROLES_TABLE . " SET role_order = $order WHERE role_id = {$row['role_id']}");
+ }
+ }
+ while ($row = $db->sql_fetchrow($result));
+ }
+ $db->sql_freeresult($result);
+
+ // Display assigned items?
+ $display_item = request_var('display_item', 0);
+
+ // Select existing roles
+ $sql = 'SELECT *
+ FROM ' . ACL_ROLES_TABLE . "
+ WHERE role_type = '" . $db->sql_escape($permission_type) . "'
+ ORDER BY role_order ASC";
+ $result = $db->sql_query($sql);
+
+ $s_role_options = '';
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $role_name = (!empty($user->lang[$row['role_name']])) ? $user->lang[$row['role_name']] : $row['role_name'];
+
+ $template->assign_block_vars('roles', array(
+ 'ROLE_NAME' => $role_name,
+ 'ROLE_DESCRIPTION' => (!empty($user->lang[$row['role_description']])) ? $user->lang[$row['role_description']] : nl2br($row['role_description']),
+
+ 'U_EDIT' => $this->u_action . '&paction=edit&role_id=' . $row['role_id'],
+ 'U_REMOVE' => $this->u_action . '&paction=remove&role_id=' . $row['role_id'],
+ 'U_MOVE_UP' => $this->u_action . '&paction=move_up&order=' . $row['role_order'],
+ 'U_MOVE_DOWN' => $this->u_action . '&paction=move_down&order=' . $row['role_order'],
+ 'U_DISPLAY_ITEMS' => ($row['role_id'] == $display_item) ? '' : $this->u_action . '&display_item=' . $row['role_id'] . '#assigned_to'
+ )
+ );
+
+ $s_role_options .= '';
+
+ if ($display_item == $row['role_id'])
+ {
+ $template->assign_vars(array(
+ 'L_ROLE_ASSIGNED_TO' => sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name))
+ );
+ }
+ }
+ $db->sql_freeresult($result);
+
+ $template->assign_vars(array(
+ 'S_ROLE_OPTIONS' => $s_role_options)
+ );
+
+ if ($display_item)
+ {
+ $template->assign_vars(array(
+ 'S_DISPLAY_ROLE_MASK' => true
+ )
+ );
+
+ $hold_ary = $auth_admin->get_role_mask($display_item);
+ $auth_admin->display_role_mask($hold_ary);
+ }
+ }
+
+ /**
+ * Display permission settings able to be set
+ */
+ function display_auth_options($auth_options)
+ {
+ global $template, $user;
+
+ $content_array = $categories = array();
+ $key_sort_array = array(0);
+ $auth_options = array(0 => $auth_options);
+
+ // Making use of auth_admin method here (we do not really want to change two similar code fragments)
+ auth_admin::build_permission_array($auth_options, $content_array, $categories, $key_sort_array);
+
+ $content_array = $content_array[0];
+
+ $template->assign_var('S_NUM_PERM_COLS', sizeof($categories));
+
+ // Assign to template
+ foreach ($content_array as $cat => $cat_array)
+ {
+ $template->assign_block_vars('auth', array(
+ 'CAT_NAME' => $user->lang['permission_cat'][$cat],
+
+ 'S_YES' => ($cat_array['S_YES'] && !$cat_array['S_NEVER'] && !$cat_array['S_NO']) ? true : false,
+ 'S_NEVER' => ($cat_array['S_NEVER'] && !$cat_array['S_YES'] && !$cat_array['S_NO']) ? true : false,
+ 'S_NO' => ($cat_array['S_NO'] && !$cat_array['S_NEVER'] && !$cat_array['S_YES']) ? true : false
+ )
+ );
+
+ foreach ($cat_array['permissions'] as $permission => $allowed)
+ {
+ $template->assign_block_vars('auth.mask', array(
+ 'S_YES' => ($allowed == ACL_YES) ? true : false,
+ 'S_NEVER' => ($allowed == ACL_NEVER) ? true : false,
+ 'S_NO' => ($allowed == ACL_NO) ? true : false,
+
+ 'FIELD_NAME' => $permission,
+ 'PERMISSION' => $user->lang['acl_' . $permission]['lang']
+ )
+ );
+ }
+ }
+ }
+
+ /**
+ * Remove role
+ */
+ function remove_role($role_id, $permission_type)
+ {
+ global $db;
+
+ $auth_admin = new auth_admin();
+
+ // Get complete auth array
+ $sql = 'SELECT auth_option, auth_option_id
+ FROM ' . ACL_OPTIONS_TABLE . "
+ WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char);
+ $result = $db->sql_query($sql);
+
+ $auth_settings = array();
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $auth_settings[$row['auth_option']] = ACL_NO;
+ }
+ $db->sql_freeresult($result);
+
+ // Get the role auth settings we need to re-set...
+ $sql = 'SELECT o.auth_option, r.auth_setting
+ FROM ' . ACL_ROLES_DATA_TABLE . ' r, ' . ACL_OPTIONS_TABLE . ' o
+ WHERE o.auth_option_id = r.auth_option_id
+ AND r.role_id = ' . $role_id;
+ $result = $db->sql_query($sql);
+
+ while ($row = $db->sql_fetchrow($result))
+ {
+ $auth_settings[$row['auth_option']] = $row['auth_setting'];
+ }
+ $db->sql_freeresult($result);
+
+ // Get role assignments
+ $hold_ary = $auth_admin->get_role_mask($role_id);
+
+ // Re-assign permissions
+ foreach ($hold_ary as $forum_id => $forum_ary)
+ {
+ if (isset($forum_ary['users']))
+ {
+ $auth_admin->acl_set('user', $forum_id, $forum_ary['users'], $auth_settings, 0, false);
+ }
+
+ if (isset($forum_ary['groups']))
+ {
+ $auth_admin->acl_set('group', $forum_id, $forum_ary['groups'], $auth_settings, 0, false);
+ }
+ }
+
+ // Remove role from users and groups just to be sure (happens through acl_set)
+ $sql = 'DELETE FROM ' . ACL_USERS_TABLE . '
+ WHERE auth_role_id = ' . $role_id;
+ $db->sql_query($sql);
+
+ $sql = 'DELETE FROM ' . ACL_GROUPS_TABLE . '
+ WHERE auth_role_id = ' . $role_id;
+ $db->sql_query($sql);
+
+ // Remove role data and role
+ $sql = 'DELETE FROM ' . ACL_ROLES_DATA_TABLE . '
+ WHERE role_id = ' . $role_id;
+ $db->sql_query($sql);
+
+ $sql = 'DELETE FROM ' . ACL_ROLES_TABLE . '
+ WHERE role_id = ' . $role_id;
+ $db->sql_query($sql);
+
+ $auth_admin->acl_clear_prefetch();
+ }
+}
+
+?>
\ No newline at end of file
diff --git a/includes/class_form.php b/includes/class_form.php
index 9a5e02a5..a731e930 100644
--- a/includes/class_form.php
+++ b/includes/class_form.php
@@ -138,7 +138,7 @@ function create_input($name, $properties)
case 'USERNAME_INPUT':
$input = '';
- $input .= '';
+ $input .= '';
break;
case 'USERNAME_INPUT_JQUI':
diff --git a/includes/class_module.php b/includes/class_module.php
index 6ccd322b..c80fb713 100644
--- a/includes/class_module.php
+++ b/includes/class_module.php
@@ -435,6 +435,13 @@ function load_active($mode = false, $module_url = false, $execute_module = true)
$module_path = $this->include_path . $this->p_class;
$icat = request_var('icat', '');
+ // MIGHTY GORGON - DEBUG - BEGIN
+ /*
+ print_r($this);
+ die('Permissions are highly granular and grouped into four major sections, which are:
+ +These are used to control access on a global level and apply to the entire bulletin board. They are further divided into Users’ Permissions, Groups’ Permissions, Administrators and Global Moderators.
+ +These are used to control access on a per forum basis. They are further divided into Forum Permissions, Forum Moderators, Users’ Forum Permissions and Groups’ Forum Permissions.
+ +These are used to create different sets of permissions for the different permission types later being able to be assigned on a role-based basis. The default roles should cover the administration of bulletin boards large and small, though within each of the four divisions, you can add/edit/delete roles as you see fit.
+ +These are used to view the effective permissions assigned to Users, Moderators (Local and Global), Administrators or Forums.
+ +For further information on setting up and managing permissions on your phpBB3 board, please see Chapter 1.5 of our Quick Start Guide.
+ ', + + 'ACL_NEVER' => 'Never', + 'ACL_SET' => 'Setting permissions', + 'ACL_SET_EXPLAIN' => 'Permissions are based on a simple YES/NO system. Setting an option to NEVER for a user or usergroup overrides any other value assigned to it. If you do not wish to assign a value for an option for this user or group select NO. If values are assigned for this option elsewhere they will be used in preference, else NEVER is assumed. All objects marked (with the checkbox in front of them) will copy the permission set you defined.', + 'ACL_SETTING' => 'Setting', + + 'ACL_TYPE_A_' => 'Administrative permissions', + 'ACL_TYPE_CMS_' => 'CMS permissions', + 'ACL_TYPE_F_' => 'Forum permissions', + 'ACL_TYPE_M_' => 'Moderative permissions', + 'ACL_TYPE_PL_' => 'Plugins permissions', + 'ACL_TYPE_U_' => 'User permissions', + + 'ACL_TYPE_GLOBAL_A_' => 'Administrative permissions', + 'ACL_TYPE_GLOBAL_CMS_' => 'CMS permissions', + 'ACL_TYPE_GLOBAL_M_' => 'Global Moderator permissions', + 'ACL_TYPE_GLOBAL_PL_' => 'Plugins permissions', + 'ACL_TYPE_GLOBAL_U_' => 'User permissions', + 'ACL_TYPE_LOCAL_F_' => 'Forum permissions', + 'ACL_TYPE_LOCAL_M_' => 'Forum Moderator permissions', + + 'ACL_NO' => 'No', + 'ACL_VIEW' => 'Viewing permissions', + 'ACL_VIEW_EXPLAIN' => 'Here you can see the effective permissions the user/group is having. A red square indicates that the user/group does not have the permission, a green square indicates that the user/group does have the permission.', + 'ACL_YES' => 'Yes', + + 'ACP_ADMIN_ROLES' => 'Admin Roles', + 'ACP_CMS_ROLES' => 'CMS Roles', + 'ACP_FORUM_ROLES' => 'Forum Roles', + 'ACP_MOD_ROLES' => 'Moderator Roles', + 'ACP_PLUGINS_ROLES' => 'Plugins Roles', + 'ACP_USER_ROLES' => 'Global Roles', + + 'ACP_ADMINISTRATORS_EXPLAIN' => 'Here you can assign administrator permissions to users or groups. All users with administrator permissions can view the administration control panel.', + 'ACP_FORUM_MODERATORS_EXPLAIN' => 'Here you can assign users and groups as forum moderators. To assign users access to forums, to define global moderative permissions or administrators please use the appropriate page.', + 'ACP_FORUM_PERMISSIONS_EXPLAIN' => 'Here you can alter which users and groups can access which forums. To assign moderators or define administrators please use the appropriate page.', + 'ACP_FORUM_PERMISSIONS_COPY_EXPLAIN' => 'Here you can copy forum permissions from one forum to one or more other forums.', + 'ACP_GLOBAL_MODERATORS_EXPLAIN' => 'Here you can assign global moderator permissions to users or groups. These moderators are like ordinary moderators except they have access to every forum on your board.', + 'ACP_GROUPS_FORUM_PERMISSIONS_EXPLAIN' => 'Here you can assign forum permissions to groups.', + 'ACP_GROUPS_PERMISSIONS_EXPLAIN' => 'Here you can assign global permissions to groups - user permissions, global moderator permissions and administrator permissions. User permissions include capabilities such as the use of avatars, sending private messages, et cetera; global moderator permissions such as approving posts, manage topics, manage bans, et cetera and lastly administrator permissions such as altering permissions, define custom BBCodes, manage forums, et cetera. Individual users permissions should only be changed in rare occasions, the preferred method is putting users in groups and assigning the group’s permissions.', + 'ACP_ADMIN_ROLES_EXPLAIN' => 'Roles for administrative permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_CMS_ROLES_EXPLAIN' => 'Roles for CMS permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_FORUM_ROLES_EXPLAIN' => 'Roles for forum permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_MOD_ROLES_EXPLAIN' => 'Roles for moderative permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_PLUGINS_ROLES_EXPLAIN' => 'Roles for Plugins permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_USER_ROLES_EXPLAIN' => 'Roles for user permissions. Roles are effective permissions, if you change a role the items having this role assigned will change its permissions too.', + 'ACP_USERS_FORUM_PERMISSIONS_EXPLAIN' => 'Here you can assign forum permissions to users.', + 'ACP_USERS_PERMISSIONS_EXPLAIN' => 'Here you can assign global permissions to users - user permissions, global moderator permissions and administrator permissions. User permissions include capabilities such as the use of avatars, sending private messages, et cetera; global moderator permissions such as approving posts, manage topics, manage bans, et cetera and lastly administrator permissions such as altering permissions, define custom BBCodes, manage forums, et cetera. To alter these settings for large numbers of users the Group permissions system is the preferred method. User’s permissions should only be changed in rare occasions, the preferred method is putting users in groups and assigning the group’s permissions.', + 'ACP_VIEW_ADMIN_PERMISSIONS_EXPLAIN' => 'Here you can view the effective administrative permissions assigned to the selected users/groups.', + 'ACP_VIEW_GLOBAL_MOD_PERMISSIONS_EXPLAIN' => 'Here you can view the global moderative permissions assigned to the selected users/groups.', + 'ACP_VIEW_FORUM_PERMISSIONS_EXPLAIN' => 'Here you can view the forum permissions assigned to the selected users/groups and forums.', + 'ACP_VIEW_FORUM_MOD_PERMISSIONS_EXPLAIN' => 'Here you can view the forum moderator permissions assigned to the selected users/groups and forums.', + 'ACP_VIEW_USER_PERMISSIONS_EXPLAIN' => 'Here you can view the effective user permissions assigned to the selected users/groups.', + + 'ADD_GROUPS' => 'Add groups', + 'ADD_PERMISSIONS' => 'Add permissions', + 'ADD_USERS' => 'Add users', + 'ADVANCED_PERMISSIONS' => 'Advanced Permissions', + 'ALL_GROUPS' => 'Select all groups', + 'ALL_NEVER' => 'All NEVER', + 'ALL_NO' => 'All NO', + 'ALL_USERS' => 'Select all users', + 'ALL_YES' => 'All YES', + 'APPLY_ALL_PERMISSIONS' => 'Apply all permissions', + 'APPLY_PERMISSIONS' => 'Apply permissions', + 'APPLY_PERMISSIONS_EXPLAIN' => 'The permissions and role defined for this item will only be applied to this item and all checked items.', + 'AUTH_UPDATED' => 'Permissions have been updated.', + + 'COPY_PERMISSIONS_CONFIRM' => 'Are you sure you wish to carry out this operation? Please be aware that this will overwrite any existing permissions on the selected targets.', + 'COPY_PERMISSIONS_FORUM_FROM_EXPLAIN' => 'The source forum you want to copy permissions from.', + 'COPY_PERMISSIONS_FORUM_TO_EXPLAIN' => 'The destination forums you want the copied permissions applied to.', + 'COPY_PERMISSIONS_FROM' => 'Copy permissions from', + 'COPY_PERMISSIONS_TO' => 'Apply permissions to', + + 'CREATE_ROLE' => 'Create role', + 'CREATE_ROLE_FROM' => 'Use settings from…', + 'CUSTOM' => 'Custom…', + + 'DEFAULT' => 'Default', + 'DELETE_ROLE' => 'Delete role', + 'DELETE_ROLE_CONFIRM' => 'Are you sure you want to remove this role? Items having this role assigned will not lose their permission settings.', + 'DISPLAY_ROLE_ITEMS' => 'View items using this role', + + 'EDIT_PERMISSIONS' => 'Edit permissions', + 'EDIT_ROLE' => 'Edit role', + + 'GROUPS_NOT_ASSIGNED' => 'No group assigned to this role', + + 'LOOK_UP_GROUP' => 'Look up usergroup', + 'LOOK_UP_USER' => 'Look up user', + + 'MANAGE_GROUPS' => 'Manage groups', + 'MANAGE_USERS' => 'Manage users', + + 'NO_AUTH_SETTING_FOUND' => 'Permission settings not defined.', + 'NO_ROLE_ASSIGNED' => 'No role assigned…', + 'NO_ROLE_ASSIGNED_EXPLAIN' => 'Setting to this role does not change permissions on the right. If you want to unset/remove all permissions you should use the “All NO” link.', + 'NO_ROLE_AVAILABLE' => 'No role available', + 'NO_ROLE_NAME_SPECIFIED' => 'Please give the role a name.', + 'NO_ROLE_SELECTED' => 'Role could not be found.', + 'NO_USER_GROUP_SELECTED' => 'You haven’t selected any user or group.', + + 'ONLY_FORUM_DEFINED' => 'You only defined forums in your selection. Please also select at least one user or one group.', + + 'PERMISSION_APPLIED_TO_ALL' => 'Permissions and role will also be applied to all checked objects', + 'PLUS_SUBFORUMS' => '+Subforums', + + 'REMOVE_PERMISSIONS' => 'Remove permissions', + 'REMOVE_ROLE' => 'Remove role', + 'RESULTING_PERMISSION' => 'Resulting permission', + 'ROLE' => 'Role', + 'ROLE_ADD_SUCCESS' => 'Role successfully added.', + 'ROLE_ASSIGNED_TO' => 'Users/Groups assigned to %s', + 'ROLE_DELETED' => 'Role successfully removed.', + 'ROLE_DESCRIPTION' => 'Role description', + + 'ROLE_ADMIN_FORUM' => 'Forum Admin', + 'ROLE_ADMIN_FULL' => 'Full Admin', + 'ROLE_ADMIN_STANDARD' => 'Standard Admin', + 'ROLE_ADMIN_USERGROUP' => 'User and Groups Admin', + 'ROLE_FORUM_BOT' => 'Bot Access', + 'ROLE_FORUM_FULL' => 'Full Access', + 'ROLE_FORUM_LIMITED' => 'Limited Access', + 'ROLE_FORUM_LIMITED_POLLS' => 'Limited Access + Polls', + 'ROLE_FORUM_NOACCESS' => 'No Access', + 'ROLE_FORUM_ONQUEUE' => 'On Moderation Queue', + 'ROLE_FORUM_POLLS' => 'Standard Access + Polls', + 'ROLE_FORUM_READONLY' => 'Read Only Access', + 'ROLE_FORUM_STANDARD' => 'Standard Access', + 'ROLE_FORUM_NEW_MEMBER' => 'Newly registered User', + 'ROLE_MOD_FULL' => 'Full Moderator', + 'ROLE_MOD_QUEUE' => 'Queue Moderator', + 'ROLE_MOD_SIMPLE' => 'Simple Moderator', + 'ROLE_MOD_STANDARD' => 'Standard Moderator', + 'ROLE_USER_FULL' => 'All Features', + 'ROLE_USER_LIMITED' => 'Limited Features', + 'ROLE_USER_NOAVATAR' => 'No Avatar', + 'ROLE_USER_NOPM' => 'No Private Messages', + 'ROLE_USER_STANDARD' => 'Standard Features', + 'ROLE_USER_NEW_MEMBER' => 'Newly registered User', + + + 'ROLE_DESCRIPTION_ADMIN_FORUM' => 'Can access the forum management and forum permission settings.', + 'ROLE_DESCRIPTION_ADMIN_FULL' => 'Has access to all administrative functions of this board.