nilsteampassnet /
TeamPass
@@ -38,7 +38,7 @@ |
||
| 38 | 38 | "error" => '', |
| 39 | 39 | ); |
| 40 | 40 | |
| 41 | - }catch (Exception $e) { |
|
| 41 | + } catch (Exception $e) { |
|
| 42 | 42 | return false; |
| 43 | 43 | } |
| 44 | 44 | } |
@@ -40,7 +40,7 @@ |
||
| 40 | 40 | "error" => '', |
| 41 | 41 | ); |
| 42 | 42 | |
| 43 | - }catch (Exception $e) { |
|
| 43 | + } catch (Exception $e) { |
|
| 44 | 44 | return false; |
| 45 | 45 | } |
| 46 | 46 | } |
@@ -21,7 +21,7 @@ |
||
| 21 | 21 | * |
| 22 | 22 | * @see https://www.teampass.net |
| 23 | 23 | */ |
| 24 | -require_once API_ROOT_PATH . "/Model/Database.php"; |
|
| 24 | +require_once API_ROOT_PATH."/Model/Database.php"; |
|
| 25 | 25 | |
| 26 | 26 | class UserModel extends Database |
| 27 | 27 | { |
@@ -34,7 +34,7 @@ discard block |
||
| 34 | 34 | $ret = []; |
| 35 | 35 | |
| 36 | 36 | foreach ($rows as $row) { |
| 37 | - $isVisible = in_array((int) $row['id'], $foldersId); |
|
| 37 | + $isVisible = in_array((int) $row['id'], $foldersId); |
|
| 38 | 38 | $childrens = $this->getFoldersChildren($row['id'], $foldersId); |
| 39 | 39 | |
| 40 | 40 | if ($isVisible || count($childrens) > 0) { |
@@ -43,7 +43,7 @@ discard block |
||
| 43 | 43 | [ |
| 44 | 44 | 'id' => (int) $row['id'], |
| 45 | 45 | 'title' => $row['title'], |
| 46 | - 'isVisible' => $isVisible, |
|
| 46 | + 'isVisible' => $isVisible, |
|
| 47 | 47 | 'childrens' => $childrens |
| 48 | 48 | ] |
| 49 | 49 | ); |
@@ -63,7 +63,7 @@ discard block |
||
| 63 | 63 | |
| 64 | 64 | if ( count($childrens) > 0) { |
| 65 | 65 | foreach ($childrens as $children) { |
| 66 | - $isVisible = in_array((int) $children['id'], $foldersId); |
|
| 66 | + $isVisible = in_array((int) $children['id'], $foldersId); |
|
| 67 | 67 | $childs = $this->getFoldersChildren($children['id'], $foldersId); |
| 68 | 68 | |
| 69 | 69 | if (in_array((int) $children['id'], $foldersId) || count($childs) > 0) { |
@@ -72,7 +72,7 @@ discard block |
||
| 72 | 72 | [ |
| 73 | 73 | 'id' => (int) $children['id'], |
| 74 | 74 | 'title' => $children['title'], |
| 75 | - 'isVisible' => $isVisible, |
|
| 75 | + 'isVisible' => $isVisible, |
|
| 76 | 76 | 'childrens' => $childs |
| 77 | 77 | ] |
| 78 | 78 | ); |
@@ -25,12 +25,12 @@ discard block |
||
| 25 | 25 | |
| 26 | 26 | use TeampassClasses\Language\Language; |
| 27 | 27 | |
| 28 | -require_once API_ROOT_PATH . "/Model/Database.php"; |
|
| 28 | +require_once API_ROOT_PATH."/Model/Database.php"; |
|
| 29 | 29 | class FolderModel extends Database |
| 30 | 30 | { |
| 31 | 31 | public function getFoldersInfo(array $foldersId): array |
| 32 | 32 | { |
| 33 | - $rows = $this->select( "SELECT id, title FROM " . prefixTable('nested_tree') . " WHERE nlevel=1" ); |
|
| 33 | + $rows = $this->select("SELECT id, title FROM ".prefixTable('nested_tree')." WHERE nlevel=1"); |
|
| 34 | 34 | |
| 35 | 35 | $ret = []; |
| 36 | 36 | |
@@ -57,9 +57,9 @@ discard block |
||
| 57 | 57 | private function getFoldersChildren(int $parentId, array $foldersId): array |
| 58 | 58 | { |
| 59 | 59 | $ret = []; |
| 60 | - $childrens = $this->select('SELECT id, title FROM ' . prefixTable('nested_tree') . ' WHERE parent_id=' . $parentId); |
|
| 60 | + $childrens = $this->select('SELECT id, title FROM '.prefixTable('nested_tree').' WHERE parent_id='.$parentId); |
|
| 61 | 61 | |
| 62 | - if ( count($childrens) > 0) { |
|
| 62 | + if (count($childrens) > 0) { |
|
| 63 | 63 | foreach ($childrens as $children) { |
| 64 | 64 | $isVisible = in_array((int) $children['id'], $foldersId); |
| 65 | 65 | $childs = $this->getFoldersChildren($children['id'], $foldersId); |
@@ -101,7 +101,7 @@ discard block |
||
| 101 | 101 | ): array |
| 102 | 102 | { |
| 103 | 103 | // Validate inputs |
| 104 | - include_once API_ROOT_PATH . '/../sources/main.functions.php'; |
|
| 104 | + include_once API_ROOT_PATH.'/../sources/main.functions.php'; |
|
| 105 | 105 | $data = [ |
| 106 | 106 | 'title' => $title, |
| 107 | 107 | 'parent_id' => $parent_id, |
@@ -166,7 +166,7 @@ discard block |
||
| 166 | 166 | 'error' => true, |
| 167 | 167 | 'error_header' => 'HTTP/1.1 422 Unprocessable Entity', |
| 168 | 168 | 'error_message' => 'Invalid parameters' |
| 169 | - ];} |
|
| 169 | + ]; } |
|
| 170 | 170 | |
| 171 | 171 | // Create folder |
| 172 | 172 | /* |
@@ -52,7 +52,7 @@ discard block |
||
| 52 | 52 | // SQL where clause with folders list |
| 53 | 53 | if (isset($arrQueryStringParams['folders']) === true) { |
| 54 | 54 | // convert the folders to an array |
| 55 | - $arrQueryStringParams['folders'] = explode(',', str_replace( array('[',']') , '' , $arrQueryStringParams['folders'])); |
|
| 55 | + $arrQueryStringParams['folders'] = explode(',', str_replace(array('[', ']'), '', $arrQueryStringParams['folders'])); |
|
| 56 | 56 | |
| 57 | 57 | // ensure to only use the intersection |
| 58 | 58 | $foldersList = implode(',', array_intersect($arrQueryStringParams['folders'], $userData['folders_list'])); |
@@ -126,10 +126,10 @@ discard block |
||
| 126 | 126 | // SQL where clause with item id |
| 127 | 127 | if (isset($arrQueryStringParams['id']) === true) { |
| 128 | 128 | // build sql where clause by ID |
| 129 | - $sqlExtra = ' WHERE i.id = '.$arrQueryStringParams['id'] . $sql_constraint; |
|
| 129 | + $sqlExtra = ' WHERE i.id = '.$arrQueryStringParams['id'].$sql_constraint; |
|
| 130 | 130 | } else if (isset($arrQueryStringParams['label']) === true) { |
| 131 | 131 | // build sql where clause by LABEL |
| 132 | - $sqlExtra = ' WHERE i.label '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['label'] : ' = '.$arrQueryStringParams['label']) . $sql_constraint; |
|
| 132 | + $sqlExtra = ' WHERE i.label '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['label'] : ' = '.$arrQueryStringParams['label']).$sql_constraint; |
|
| 133 | 133 | } else if (isset($arrQueryStringParams['description']) === true) { |
| 134 | 134 | // build sql where clause by LABEL |
| 135 | 135 | $sqlExtra = ' WHERE i.description '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['description'] : ' = '.$arrQueryStringParams['description']).$sql_constraint; |
@@ -2603,7 +2603,9 @@ |
||
| 2603 | 2603 | } |
| 2604 | 2604 | |
| 2605 | 2605 | foreach ($results as $adUser) { |
| 2606 | - if (isset($adUser[$SETTINGS['ldap_user_attribute']][0]) === false) continue; |
|
| 2606 | + if (isset($adUser[$SETTINGS['ldap_user_attribute']][0]) === false) { |
|
| 2607 | + continue; |
|
| 2608 | + } |
|
| 2607 | 2609 | // Build the list of all groups in AD |
| 2608 | 2610 | if (isset($adUser['memberof']) === true) { |
| 2609 | 2611 | foreach($adUser['memberof'] as $j => $adUserGroup) { |
@@ -73,7 +73,7 @@ discard block |
||
| 73 | 73 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('profile') === false) { |
| 74 | 74 | // Not allowed page |
| 75 | 75 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 76 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 76 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 77 | 77 | exit; |
| 78 | 78 | } |
| 79 | 79 | |
@@ -133,7 +133,7 @@ discard block |
||
| 133 | 133 | // Prepare variables |
| 134 | 134 | $login = filter_var($dataReceived['login'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
| 135 | 135 | $email = filter_var($dataReceived['email'], FILTER_SANITIZE_EMAIL); |
| 136 | - $password = '';//filter_var($dataReceived['pw'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 136 | + $password = ''; //filter_var($dataReceived['pw'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 137 | 137 | $lastname = filter_var($dataReceived['lastname'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
| 138 | 138 | $name = filter_var($dataReceived['name'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
| 139 | 139 | $is_admin = filter_var($dataReceived['admin'], FILTER_SANITIZE_NUMBER_INT); |
@@ -164,7 +164,7 @@ discard block |
||
| 164 | 164 | // Check if user already exists |
| 165 | 165 | $data = DB::query( |
| 166 | 166 | 'SELECT id, fonction_id, groupes_interdits, groupes_visibles |
| 167 | - FROM ' . prefixTable('users') . ' |
|
| 167 | + FROM ' . prefixTable('users').' |
|
| 168 | 168 | WHERE login = %s |
| 169 | 169 | AND deleted_at IS NULL', |
| 170 | 170 | $login |
@@ -401,7 +401,7 @@ discard block |
||
| 401 | 401 | |
| 402 | 402 | // Get info about user to delete |
| 403 | 403 | $data_user = DB::queryfirstrow( |
| 404 | - 'SELECT login, admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 404 | + 'SELECT login, admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 405 | 405 | WHERE id = %i', |
| 406 | 406 | $post_id |
| 407 | 407 | ); |
@@ -435,7 +435,7 @@ discard block |
||
| 435 | 435 | ); |
| 436 | 436 | // delete personal folder and subfolders |
| 437 | 437 | $data = DB::queryfirstrow( |
| 438 | - 'SELECT id FROM ' . prefixTable('nested_tree') . ' |
|
| 438 | + 'SELECT id FROM '.prefixTable('nested_tree').' |
|
| 439 | 439 | WHERE title = %s AND personal_folder = %i', |
| 440 | 440 | $post_id, |
| 441 | 441 | '1' |
@@ -448,7 +448,7 @@ discard block |
||
| 448 | 448 | DB::delete(prefixTable('nested_tree'), 'id = %i AND personal_folder = %i', $folder->id, '1'); |
| 449 | 449 | // delete items & logs |
| 450 | 450 | $items = DB::query( |
| 451 | - 'SELECT id FROM ' . prefixTable('items') . ' |
|
| 451 | + 'SELECT id FROM '.prefixTable('items').' |
|
| 452 | 452 | WHERE id_tree=%i AND perso = %i', |
| 453 | 453 | $folder->id, |
| 454 | 454 | '1' |
@@ -472,7 +472,7 @@ discard block |
||
| 472 | 472 | // Delete any process related to user |
| 473 | 473 | $processes = DB::query( |
| 474 | 474 | 'SELECT increment_id |
| 475 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 475 | + FROM ' . prefixTable('background_tasks').' |
|
| 476 | 476 | WHERE JSON_EXTRACT(arguments, "$.new_user_id") = %i', |
| 477 | 477 | $post_id |
| 478 | 478 | ); |
@@ -532,7 +532,7 @@ discard block |
||
| 532 | 532 | |
| 533 | 533 | // Get info about user to delete |
| 534 | 534 | $data_user = DB::queryfirstrow( |
| 535 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 535 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 536 | 536 | WHERE id = %i', |
| 537 | 537 | $post_id |
| 538 | 538 | ); |
@@ -574,7 +574,7 @@ discard block |
||
| 574 | 574 | |
| 575 | 575 | // Get info about user to delete |
| 576 | 576 | $data_user = DB::queryfirstrow( |
| 577 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 577 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 578 | 578 | WHERE id = %i', |
| 579 | 579 | $post_id |
| 580 | 580 | ); |
@@ -617,7 +617,7 @@ discard block |
||
| 617 | 617 | // Get info about user to delete |
| 618 | 618 | $data_user = DB::queryfirstrow( |
| 619 | 619 | 'SELECT admin, isAdministratedByRole, can_manage_all_users, gestionnaire |
| 620 | - FROM ' . prefixTable('users') . ' |
|
| 620 | + FROM ' . prefixTable('users').' |
|
| 621 | 621 | WHERE id = %i', |
| 622 | 622 | $post_id |
| 623 | 623 | ); |
@@ -661,7 +661,7 @@ discard block |
||
| 661 | 661 | |
| 662 | 662 | // Get info about user to delete |
| 663 | 663 | $data_user = DB::queryfirstrow( |
| 664 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 664 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 665 | 665 | WHERE id = %i', |
| 666 | 666 | $post_id |
| 667 | 667 | ); |
@@ -704,7 +704,7 @@ discard block |
||
| 704 | 704 | // Get info about user to delete |
| 705 | 705 | $data_user = DB::queryfirstrow( |
| 706 | 706 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 707 | - FROM ' . prefixTable('users') . ' |
|
| 707 | + FROM ' . prefixTable('users').' |
|
| 708 | 708 | WHERE id = %i', |
| 709 | 709 | $post_id |
| 710 | 710 | ); |
@@ -747,7 +747,7 @@ discard block |
||
| 747 | 747 | // Get info about user to delete |
| 748 | 748 | $data_user = DB::queryfirstrow( |
| 749 | 749 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 750 | - FROM ' . prefixTable('users') . ' |
|
| 750 | + FROM ' . prefixTable('users').' |
|
| 751 | 751 | WHERE id = %i', |
| 752 | 752 | $post_id |
| 753 | 753 | ); |
@@ -787,7 +787,7 @@ discard block |
||
| 787 | 787 | // Get info about user to delete |
| 788 | 788 | $data_user = DB::queryfirstrow( |
| 789 | 789 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 790 | - FROM ' . prefixTable('users') . ' |
|
| 790 | + FROM ' . prefixTable('users').' |
|
| 791 | 791 | WHERE id = %i', |
| 792 | 792 | $post_id |
| 793 | 793 | ); |
@@ -826,7 +826,7 @@ discard block |
||
| 826 | 826 | $return = array(); |
| 827 | 827 | // Check if folder exists |
| 828 | 828 | $data = DB::query( |
| 829 | - 'SELECT * FROM ' . prefixTable('nested_tree') . ' |
|
| 829 | + 'SELECT * FROM '.prefixTable('nested_tree').' |
|
| 830 | 830 | WHERE title = %s AND parent_id = %i', |
| 831 | 831 | filter_input(INPUT_POST, 'domain', FILTER_SANITIZE_FULL_SPECIAL_CHARS), |
| 832 | 832 | '0' |
@@ -839,7 +839,7 @@ discard block |
||
| 839 | 839 | } |
| 840 | 840 | // Check if role exists |
| 841 | 841 | $data = DB::query( |
| 842 | - 'SELECT * FROM ' . prefixTable('roles_title') . ' |
|
| 842 | + 'SELECT * FROM '.prefixTable('roles_title').' |
|
| 843 | 843 | WHERE title = %s', |
| 844 | 844 | filter_input(INPUT_POST, 'domain', FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
| 845 | 845 | ); |
@@ -859,7 +859,7 @@ discard block |
||
| 859 | 859 | case 'user_log_items': |
| 860 | 860 | $nb_pages = 1; |
| 861 | 861 | $logs = $sql_filter = ''; |
| 862 | - $pages = '<table style=\'border-top:1px solid #969696;\'><tr><td>' . $lang->get('pages') . ' : </td>'; |
|
| 862 | + $pages = '<table style=\'border-top:1px solid #969696;\'><tr><td>'.$lang->get('pages').' : </td>'; |
|
| 863 | 863 | |
| 864 | 864 | // Prepare POST variables |
| 865 | 865 | $post_nb_items_by_page = filter_input(INPUT_POST, 'nb_items_by_page', FILTER_SANITIZE_NUMBER_INT); |
@@ -871,14 +871,14 @@ discard block |
||
| 871 | 871 | && !empty(filter_input(INPUT_POST, 'filter', FILTER_SANITIZE_FULL_SPECIAL_CHARS)) |
| 872 | 872 | && filter_input(INPUT_POST, 'filter', FILTER_SANITIZE_FULL_SPECIAL_CHARS) !== 'all' |
| 873 | 873 | ) { |
| 874 | - $sql_filter = " AND l.action = '" . filter_input(INPUT_POST, 'filter', FILTER_SANITIZE_FULL_SPECIAL_CHARS) . "'"; |
|
| 874 | + $sql_filter = " AND l.action = '".filter_input(INPUT_POST, 'filter', FILTER_SANITIZE_FULL_SPECIAL_CHARS)."'"; |
|
| 875 | 875 | } |
| 876 | 876 | // get number of pages |
| 877 | 877 | DB::query( |
| 878 | 878 | 'SELECT * |
| 879 | - FROM ' . prefixTable('log_items') . ' as l |
|
| 880 | - INNER JOIN ' . prefixTable('items') . ' as i ON (l.id_item=i.id) |
|
| 881 | - INNER JOIN ' . prefixTable('users') . ' as u ON (l.id_user=u.id) |
|
| 879 | + FROM ' . prefixTable('log_items').' as l |
|
| 880 | + INNER JOIN ' . prefixTable('items').' as i ON (l.id_item=i.id) |
|
| 881 | + INNER JOIN ' . prefixTable('users').' as u ON (l.id_user=u.id) |
|
| 882 | 882 | WHERE l.id_user = %i ' . $sql_filter, |
| 883 | 883 | filter_input(INPUT_POST, 'id', FILTER_SANITIZE_NUMBER_INT) |
| 884 | 884 | ); |
@@ -896,19 +896,19 @@ discard block |
||
| 896 | 896 | // launch query |
| 897 | 897 | $rows = DB::query( |
| 898 | 898 | 'SELECT l.date as date, u.login as login, i.label as label, l.action as action |
| 899 | - FROM ' . prefixTable('log_items') . ' as l |
|
| 900 | - INNER JOIN ' . prefixTable('items') . ' as i ON (l.id_item=i.id) |
|
| 901 | - INNER JOIN ' . prefixTable('users') . ' as u ON (l.id_user=u.id) |
|
| 902 | - WHERE l.id_user = %i ' . $sql_filter . ' |
|
| 899 | + FROM ' . prefixTable('log_items').' as l |
|
| 900 | + INNER JOIN ' . prefixTable('items').' as i ON (l.id_item=i.id) |
|
| 901 | + INNER JOIN ' . prefixTable('users').' as u ON (l.id_user=u.id) |
|
| 902 | + WHERE l.id_user = %i ' . $sql_filter.' |
|
| 903 | 903 | ORDER BY date DESC |
| 904 | - LIMIT ' . intval($start) . ',' . intval($post_nb_items_by_page), |
|
| 904 | + LIMIT ' . intval($start).','.intval($post_nb_items_by_page), |
|
| 905 | 905 | filter_input(INPUT_POST, 'id', FILTER_SANITIZE_NUMBER_INT) |
| 906 | 906 | ); |
| 907 | 907 | } else { |
| 908 | 908 | // get number of pages |
| 909 | 909 | DB::query( |
| 910 | 910 | 'SELECT * |
| 911 | - FROM ' . prefixTable('log_system') . ' |
|
| 911 | + FROM ' . prefixTable('log_system').' |
|
| 912 | 912 | WHERE type = %s AND field_1=%i', |
| 913 | 913 | 'user_mngt', |
| 914 | 914 | filter_input(INPUT_POST, 'id', FILTER_SANITIZE_NUMBER_INT) |
@@ -927,7 +927,7 @@ discard block |
||
| 927 | 927 | // launch query |
| 928 | 928 | $rows = DB::query( |
| 929 | 929 | 'SELECT * |
| 930 | - FROM ' . prefixTable('log_system') . ' |
|
| 930 | + FROM ' . prefixTable('log_system').' |
|
| 931 | 931 | WHERE type = %s AND field_1 = %i |
| 932 | 932 | ORDER BY date DESC |
| 933 | 933 | LIMIT %i, %i', |
@@ -941,7 +941,7 @@ discard block |
||
| 941 | 941 | if (isset($counter) && $counter != 0) { |
| 942 | 942 | $nb_pages = ceil($counter / intval($post_nb_items_by_page)); |
| 943 | 943 | for ($i = 1; $i <= $nb_pages; ++$i) { |
| 944 | - $pages .= '<td onclick=\'displayLogs(' . $i . ',\"' . $post_scope . '\")\'><span style=\'cursor:pointer;' . (filter_input(INPUT_POST, 'page', FILTER_SANITIZE_NUMBER_INT) === $i ? 'font-weight:bold;font-size:18px;\'>' . $i : '\'>' . $i) . '</span></td>'; |
|
| 944 | + $pages .= '<td onclick=\'displayLogs('.$i.',\"'.$post_scope.'\")\'><span style=\'cursor:pointer;'.(filter_input(INPUT_POST, 'page', FILTER_SANITIZE_NUMBER_INT) === $i ? 'font-weight:bold;font-size:18px;\'>'.$i : '\'>'.$i).'</span></td>'; |
|
| 945 | 945 | } |
| 946 | 946 | } |
| 947 | 947 | $pages .= '</tr></table>'; |
@@ -950,7 +950,7 @@ discard block |
||
| 950 | 950 | if ($post_scope === 'user_mngt') { |
| 951 | 951 | $user = DB::queryfirstrow( |
| 952 | 952 | 'SELECT login |
| 953 | - from ' . prefixTable('users') . ' |
|
| 953 | + from ' . prefixTable('users').' |
|
| 954 | 954 | WHERE id=%i', |
| 955 | 955 | $record['qui'] |
| 956 | 956 | ); |
@@ -960,7 +960,7 @@ discard block |
||
| 960 | 960 | if ($tmp[0] == 'at_user_initial_pwd_changed') { |
| 961 | 961 | $label = $lang->get('log_user_initial_pwd_changed'); |
| 962 | 962 | } elseif ($tmp[0] == 'at_user_email_changed') { |
| 963 | - $label = $lang->get('log_user_email_changed') . $tmp[1]; |
|
| 963 | + $label = $lang->get('log_user_email_changed').$tmp[1]; |
|
| 964 | 964 | } elseif ($tmp[0] == 'at_user_added') { |
| 965 | 965 | $label = $lang->get('log_user_created'); |
| 966 | 966 | } elseif ($tmp[0] == 'at_user_locked') { |
@@ -971,14 +971,14 @@ discard block |
||
| 971 | 971 | $label = $lang->get('log_user_pwd_changed'); |
| 972 | 972 | } |
| 973 | 973 | // prepare log |
| 974 | - $logs .= '<tr><td>' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['date']) . '</td><td align=\"center\">' . $label . '</td><td align=\"center\">' . $user['login'] . '</td><td align=\"center\"></td></tr>'; |
|
| 974 | + $logs .= '<tr><td>'.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['date']).'</td><td align=\"center\">'.$label.'</td><td align=\"center\">'.$user['login'].'</td><td align=\"center\"></td></tr>'; |
|
| 975 | 975 | } else { |
| 976 | - $logs .= '<tr><td>' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['date']) . '</td><td align=\"center\">' . str_replace('"', '\"', $record['label']) . '</td><td align=\"center\">' . $record['login'] . '</td><td align=\"center\">' . $lang->get($record['action']) . '</td></tr>'; |
|
| 976 | + $logs .= '<tr><td>'.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['date']).'</td><td align=\"center\">'.str_replace('"', '\"', $record['label']).'</td><td align=\"center\">'.$record['login'].'</td><td align=\"center\">'.$lang->get($record['action']).'</td></tr>'; |
|
| 977 | 977 | } |
| 978 | 978 | } |
| 979 | 979 | } |
| 980 | 980 | |
| 981 | - echo '[ { "table_logs": "' . ($logs) . '", "pages": "' . ($pages) . '", "error" : "no" } ]'; |
|
| 981 | + echo '[ { "table_logs": "'.($logs).'", "pages": "'.($pages).'", "error" : "no" } ]'; |
|
| 982 | 982 | break; |
| 983 | 983 | |
| 984 | 984 | /* |
@@ -1001,7 +1001,7 @@ discard block |
||
| 1001 | 1001 | } else { |
| 1002 | 1002 | // Get folder id for Admin |
| 1003 | 1003 | $admin_folder = DB::queryFirstRow( |
| 1004 | - 'SELECT id FROM ' . prefixTable('nested_tree') . ' |
|
| 1004 | + 'SELECT id FROM '.prefixTable('nested_tree').' |
|
| 1005 | 1005 | WHERE title = %i AND personal_folder = %i', |
| 1006 | 1006 | (int) $session->get('user-id'), |
| 1007 | 1007 | '1' |
@@ -1012,15 +1012,15 @@ discard block |
||
| 1012 | 1012 | // Get each Items in PF |
| 1013 | 1013 | $rows = DB::query( |
| 1014 | 1014 | 'SELECT i.pw, i.label, l.id_user |
| 1015 | - FROM ' . prefixTable('items') . ' as i |
|
| 1016 | - LEFT JOIN ' . prefixTable('log_items') . ' as l ON (l.id_item=i.id) |
|
| 1015 | + FROM ' . prefixTable('items').' as i |
|
| 1016 | + LEFT JOIN ' . prefixTable('log_items').' as l ON (l.id_item=i.id) |
|
| 1017 | 1017 | WHERE l.action = %s AND i.perso=%i AND i.id_tree=%i', |
| 1018 | 1018 | 'at_creation', |
| 1019 | 1019 | '1', |
| 1020 | 1020 | intval($folder->id) |
| 1021 | 1021 | ); |
| 1022 | 1022 | foreach ($rows as $record) { |
| 1023 | - echo $record['label'] . ' - '; |
|
| 1023 | + echo $record['label'].' - '; |
|
| 1024 | 1024 | // Change user |
| 1025 | 1025 | DB::update( |
| 1026 | 1026 | prefixTable('log_items'), |
@@ -1055,7 +1055,7 @@ discard block |
||
| 1055 | 1055 | // Get info about user to delete |
| 1056 | 1056 | $data_user = DB::queryfirstrow( |
| 1057 | 1057 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 1058 | - FROM ' . prefixTable('users') . ' |
|
| 1058 | + FROM ' . prefixTable('users').' |
|
| 1059 | 1059 | WHERE id = %i', |
| 1060 | 1060 | $post_user_id |
| 1061 | 1061 | ); |
@@ -1092,7 +1092,7 @@ discard block |
||
| 1092 | 1092 | |
| 1093 | 1093 | // Do |
| 1094 | 1094 | $rows = DB::query( |
| 1095 | - 'SELECT id FROM ' . prefixTable('users') . ' |
|
| 1095 | + 'SELECT id FROM '.prefixTable('users').' |
|
| 1096 | 1096 | WHERE timestamp != %s AND admin != %i', |
| 1097 | 1097 | '', |
| 1098 | 1098 | '1' |
@@ -1101,7 +1101,7 @@ discard block |
||
| 1101 | 1101 | // Get info about user to delete |
| 1102 | 1102 | $data_user = DB::queryfirstrow( |
| 1103 | 1103 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 1104 | - FROM ' . prefixTable('users') . ' |
|
| 1104 | + FROM ' . prefixTable('users').' |
|
| 1105 | 1105 | WHERE id = %i', |
| 1106 | 1106 | $record['id'] |
| 1107 | 1107 | ); |
@@ -1162,7 +1162,7 @@ discard block |
||
| 1162 | 1162 | // Get info about user |
| 1163 | 1163 | $rowUser = DB::queryfirstrow( |
| 1164 | 1164 | 'SELECT * |
| 1165 | - FROM ' . prefixTable('users') . ' |
|
| 1165 | + FROM ' . prefixTable('users').' |
|
| 1166 | 1166 | WHERE id = %i', |
| 1167 | 1167 | $post_id |
| 1168 | 1168 | ); |
@@ -1189,7 +1189,7 @@ discard block |
||
| 1189 | 1189 | // array of roles for actual user |
| 1190 | 1190 | //$my_functions = explode(';', $rowUser['fonction_id']); |
| 1191 | 1191 | |
| 1192 | - $rows = DB::query('SELECT id,title,creator_id FROM ' . prefixTable('roles_title')); |
|
| 1192 | + $rows = DB::query('SELECT id,title,creator_id FROM '.prefixTable('roles_title')); |
|
| 1193 | 1193 | foreach ($rows as $record) { |
| 1194 | 1194 | if ( |
| 1195 | 1195 | (int) $session->get('user-admin') === 1 |
@@ -1226,7 +1226,7 @@ discard block |
||
| 1226 | 1226 | $rolesList = array(); |
| 1227 | 1227 | $managedBy = array(); |
| 1228 | 1228 | $selected = ''; |
| 1229 | - $rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title') . ' ORDER BY title ASC'); |
|
| 1229 | + $rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title').' ORDER BY title ASC'); |
|
| 1230 | 1230 | foreach ($rows as $reccord) { |
| 1231 | 1231 | $rolesList[$reccord['id']] = array('id' => $reccord['id'], 'title' => $reccord['title']); |
| 1232 | 1232 | } |
@@ -1257,7 +1257,7 @@ discard block |
||
| 1257 | 1257 | array_push( |
| 1258 | 1258 | $managedBy, |
| 1259 | 1259 | array( |
| 1260 | - 'title' => $lang->get('managers_of') . ' ' . $fonction['title'], |
|
| 1260 | + 'title' => $lang->get('managers_of').' '.$fonction['title'], |
|
| 1261 | 1261 | 'id' => $fonction['id'], |
| 1262 | 1262 | 'selected' => $selected, |
| 1263 | 1263 | ) |
@@ -1339,9 +1339,9 @@ discard block |
||
| 1339 | 1339 | |
| 1340 | 1340 | // get USER STATUS |
| 1341 | 1341 | if ($rowUser['disabled'] == 1) { |
| 1342 | - $arrData['info'] = $lang->get('user_info_locked') . '<br><input type="checkbox" value="unlock" name="1" class="chk"> <label for="1">' . $lang->get('user_info_unlock_question') . '</label><br><input type="checkbox" value="delete" id="account_delete" class="chk mr-2" name="2" onclick="confirmDeletion()">label for="2">' . $lang->get('user_info_delete_question') . '</label>'; |
|
| 1342 | + $arrData['info'] = $lang->get('user_info_locked').'<br><input type="checkbox" value="unlock" name="1" class="chk"> <label for="1">'.$lang->get('user_info_unlock_question').'</label><br><input type="checkbox" value="delete" id="account_delete" class="chk mr-2" name="2" onclick="confirmDeletion()">label for="2">'.$lang->get('user_info_delete_question').'</label>'; |
|
| 1343 | 1343 | } else { |
| 1344 | - $arrData['info'] = $lang->get('user_info_active') . '<br><input type="checkbox" value="lock" class="chk"> ' . $lang->get('user_info_lock_question'); |
|
| 1344 | + $arrData['info'] = $lang->get('user_info_active').'<br><input type="checkbox" value="lock" class="chk"> '.$lang->get('user_info_lock_question'); |
|
| 1345 | 1345 | } |
| 1346 | 1346 | |
| 1347 | 1347 | $arrData['error'] = false; |
@@ -1438,7 +1438,7 @@ discard block |
||
| 1438 | 1438 | // count number of admins |
| 1439 | 1439 | $users = DB::query( |
| 1440 | 1440 | 'SELECT id |
| 1441 | - FROM ' . prefixTable('users') . ' |
|
| 1441 | + FROM ' . prefixTable('users').' |
|
| 1442 | 1442 | WHERE admin = 1 AND email != "" AND pw != "" AND id != %i', |
| 1443 | 1443 | $post_id |
| 1444 | 1444 | ); |
@@ -1461,7 +1461,7 @@ discard block |
||
| 1461 | 1461 | // Exclude roles from AD - PR #3635 |
| 1462 | 1462 | $adRoles = DB::query( |
| 1463 | 1463 | 'SELECT roles_from_ad_groups |
| 1464 | - FROM ' . prefixTable('users') . ' |
|
| 1464 | + FROM ' . prefixTable('users').' |
|
| 1465 | 1465 | WHERE id = '. $dataReceived['user_id'] |
| 1466 | 1466 | )[0]['roles_from_ad_groups']; |
| 1467 | 1467 | $fonctions = []; |
@@ -1540,7 +1540,7 @@ discard block |
||
| 1540 | 1540 | |
| 1541 | 1541 | // Get info about user to delete |
| 1542 | 1542 | $data_user = DB::queryfirstrow( |
| 1543 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 1543 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 1544 | 1544 | WHERE id = %i', |
| 1545 | 1545 | $post_id |
| 1546 | 1546 | ); |
@@ -1561,7 +1561,7 @@ discard block |
||
| 1561 | 1561 | ); |
| 1562 | 1562 | // delete personal folder and subfolders |
| 1563 | 1563 | $data = DB::queryfirstrow( |
| 1564 | - 'SELECT id FROM ' . prefixTable('nested_tree') . ' |
|
| 1564 | + 'SELECT id FROM '.prefixTable('nested_tree').' |
|
| 1565 | 1565 | WHERE title = %s AND personal_folder = %i', |
| 1566 | 1566 | $post_id, |
| 1567 | 1567 | '1' |
@@ -1574,7 +1574,7 @@ discard block |
||
| 1574 | 1574 | DB::delete(prefixTable('nested_tree'), 'id = %i AND personal_folder = %i', $folder->id, '1'); |
| 1575 | 1575 | // delete items & logs |
| 1576 | 1576 | $items = DB::query( |
| 1577 | - 'SELECT id FROM ' . prefixTable('items') . ' |
|
| 1577 | + 'SELECT id FROM '.prefixTable('items').' |
|
| 1578 | 1578 | WHERE id_tree=%i AND perso = %i', |
| 1579 | 1579 | $folder->id, |
| 1580 | 1580 | '1' |
@@ -1595,7 +1595,7 @@ discard block |
||
| 1595 | 1595 | } else { |
| 1596 | 1596 | // Get old data about user |
| 1597 | 1597 | $oldData = DB::queryfirstrow( |
| 1598 | - 'SELECT * FROM ' . prefixTable('users') . ' |
|
| 1598 | + 'SELECT * FROM '.prefixTable('users').' |
|
| 1599 | 1599 | WHERE id = %i', |
| 1600 | 1600 | $post_id |
| 1601 | 1601 | ); |
@@ -1632,7 +1632,7 @@ discard block |
||
| 1632 | 1632 | |
| 1633 | 1633 | // update LOG |
| 1634 | 1634 | if ($oldData['email'] !== $post_email) { |
| 1635 | - logEvents($SETTINGS, 'user_mngt', 'at_user_email_changed:' . $oldData['email'], (string) $session->get('user-id'), $session->get('user-login'), $post_id); |
|
| 1635 | + logEvents($SETTINGS, 'user_mngt', 'at_user_email_changed:'.$oldData['email'], (string) $session->get('user-id'), $session->get('user-login'), $post_id); |
|
| 1636 | 1636 | } |
| 1637 | 1637 | } |
| 1638 | 1638 | echo prepareExchangedData( |
@@ -1690,7 +1690,7 @@ discard block |
||
| 1690 | 1690 | |
| 1691 | 1691 | // Get info about user to delete |
| 1692 | 1692 | $data_user = DB::queryfirstrow( |
| 1693 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 1693 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 1694 | 1694 | WHERE id = %i', |
| 1695 | 1695 | $post_id |
| 1696 | 1696 | ); |
@@ -1740,7 +1740,7 @@ discard block |
||
| 1740 | 1740 | } |
| 1741 | 1741 | |
| 1742 | 1742 | DB::queryfirstrow( |
| 1743 | - 'SELECT * FROM ' . prefixTable('users') . ' |
|
| 1743 | + 'SELECT * FROM '.prefixTable('users').' |
|
| 1744 | 1744 | WHERE login = %s |
| 1745 | 1745 | AND deleted_at IS NULL', |
| 1746 | 1746 | filter_input(INPUT_POST, 'login', FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
@@ -1792,7 +1792,7 @@ discard block |
||
| 1792 | 1792 | // get User info |
| 1793 | 1793 | $rowUser = DB::queryFirstRow( |
| 1794 | 1794 | 'SELECT login, name, lastname, email, disabled, fonction_id, groupes_interdits, groupes_visibles, isAdministratedByRole, avatar_thumb, roles_from_ad_groups |
| 1795 | - FROM ' . prefixTable('users') . ' |
|
| 1795 | + FROM ' . prefixTable('users').' |
|
| 1796 | 1796 | WHERE id = %i', |
| 1797 | 1797 | $post_id |
| 1798 | 1798 | ); |
@@ -1802,7 +1802,7 @@ discard block |
||
| 1802 | 1802 | $html = ''; |
| 1803 | 1803 | |
| 1804 | 1804 | if (isset($SETTINGS['ldap_mode']) === true && (int) $SETTINGS['ldap_mode'] === 1 && isset($SETTINGS['enable_ad_users_with_ad_groups']) === true && (int) $SETTINGS['enable_ad_users_with_ad_groups'] === 1) { |
| 1805 | - $rowUser['fonction_id'] = empty($rowUser['fonction_id']) === true ? $rowUser['roles_from_ad_groups'] : $rowUser['fonction_id']. ';' . $rowUser['roles_from_ad_groups']; |
|
| 1805 | + $rowUser['fonction_id'] = empty($rowUser['fonction_id']) === true ? $rowUser['roles_from_ad_groups'] : $rowUser['fonction_id'].';'.$rowUser['roles_from_ad_groups']; |
|
| 1806 | 1806 | } |
| 1807 | 1807 | $arrData['functions'] = array_filter(explode(';', $rowUser['fonction_id'])); |
| 1808 | 1808 | $arrData['allowed_folders'] = array_filter(explode(';', $rowUser['groupes_visibles'])); |
@@ -1813,7 +1813,7 @@ discard block |
||
| 1813 | 1813 | // refine folders based upon roles |
| 1814 | 1814 | $rows = DB::query( |
| 1815 | 1815 | 'SELECT folder_id, type |
| 1816 | - FROM ' . prefixTable('roles_values') . ' |
|
| 1816 | + FROM ' . prefixTable('roles_values').' |
|
| 1817 | 1817 | WHERE role_id IN %ls |
| 1818 | 1818 | ORDER BY folder_id ASC', |
| 1819 | 1819 | $arrData['functions'] |
@@ -1836,7 +1836,7 @@ discard block |
||
| 1836 | 1836 | } |
| 1837 | 1837 | |
| 1838 | 1838 | // add allowed folders |
| 1839 | - foreach($arrData['allowed_folders'] as $Fld) { |
|
| 1839 | + foreach ($arrData['allowed_folders'] as $Fld) { |
|
| 1840 | 1840 | array_push($arrFolders, array('id' => $Fld, 'type' => 'W', 'special' => true)); |
| 1841 | 1841 | } |
| 1842 | 1842 | |
@@ -1847,7 +1847,7 @@ discard block |
||
| 1847 | 1847 | // get folder name |
| 1848 | 1848 | $row = DB::queryFirstRow( |
| 1849 | 1849 | 'SELECT title, nlevel, id |
| 1850 | - FROM ' . prefixTable('nested_tree') . ' |
|
| 1850 | + FROM ' . prefixTable('nested_tree').' |
|
| 1851 | 1851 | WHERE id = %i', |
| 1852 | 1852 | $fld['id'] |
| 1853 | 1853 | ); |
@@ -1860,38 +1860,38 @@ discard block |
||
| 1860 | 1860 | |
| 1861 | 1861 | // manage right icon |
| 1862 | 1862 | if ($fld['type'] == 'W') { |
| 1863 | - $label = '<i class="fas fa-indent infotip text-success mr-2" title="' . $lang->get('write') . '"></i>' . |
|
| 1864 | - '<i class="fas fa-edit infotip text-success mr-2" title="' . $lang->get('edit') . '"></i>' . |
|
| 1865 | - '<i class="fas fa-eraser infotip text-success" title="' . $lang->get('delete') . '"></i>'; |
|
| 1863 | + $label = '<i class="fas fa-indent infotip text-success mr-2" title="'.$lang->get('write').'"></i>'. |
|
| 1864 | + '<i class="fas fa-edit infotip text-success mr-2" title="'.$lang->get('edit').'"></i>'. |
|
| 1865 | + '<i class="fas fa-eraser infotip text-success" title="'.$lang->get('delete').'"></i>'; |
|
| 1866 | 1866 | } elseif ($fld['type'] == 'ND') { |
| 1867 | - $label = '<i class="fas fa-indent infotip text-warning mr-2" title="' . $lang->get('write') . '"></i>' . |
|
| 1868 | - '<i class="fas fa-edit infotip text-success mr-2" title="' . $lang->get('edit') . '"></i>' . |
|
| 1869 | - '<i class="fas fa-eraser infotip text-danger" title="' . $lang->get('no_delete') . '"></i>'; |
|
| 1867 | + $label = '<i class="fas fa-indent infotip text-warning mr-2" title="'.$lang->get('write').'"></i>'. |
|
| 1868 | + '<i class="fas fa-edit infotip text-success mr-2" title="'.$lang->get('edit').'"></i>'. |
|
| 1869 | + '<i class="fas fa-eraser infotip text-danger" title="'.$lang->get('no_delete').'"></i>'; |
|
| 1870 | 1870 | } elseif ($fld['type'] == 'NE') { |
| 1871 | - $label = '<i class="fas fa-indent infotip text-warning mr-2" title="' . $lang->get('write') . '"></i>' . |
|
| 1872 | - '<i class="fas fa-edit infotip text-danger mr-2" title="' . $lang->get('no_edit') . '"></i>' . |
|
| 1873 | - '<i class="fas fa-eraser infotip text-success" title="' . $lang->get('delete') . '"></i>'; |
|
| 1871 | + $label = '<i class="fas fa-indent infotip text-warning mr-2" title="'.$lang->get('write').'"></i>'. |
|
| 1872 | + '<i class="fas fa-edit infotip text-danger mr-2" title="'.$lang->get('no_edit').'"></i>'. |
|
| 1873 | + '<i class="fas fa-eraser infotip text-success" title="'.$lang->get('delete').'"></i>'; |
|
| 1874 | 1874 | } elseif ($fld['type'] == 'NDNE') { |
| 1875 | - $label = '<i class="fas fa-indent infotip text-warning mr-2" title="' . $lang->get('write') . '"></i>' . |
|
| 1876 | - '<i class="fas fa-edit infotip text-danger mr-2" title="' . $lang->get('no_edit') . '"></i>' . |
|
| 1877 | - '<i class="fas fa-eraser infotip text-danger" title="' . $lang->get('no_delete') . '"></i>'; |
|
| 1875 | + $label = '<i class="fas fa-indent infotip text-warning mr-2" title="'.$lang->get('write').'"></i>'. |
|
| 1876 | + '<i class="fas fa-edit infotip text-danger mr-2" title="'.$lang->get('no_edit').'"></i>'. |
|
| 1877 | + '<i class="fas fa-eraser infotip text-danger" title="'.$lang->get('no_delete').'"></i>'; |
|
| 1878 | 1878 | } elseif ($fld['type'] == '') { |
| 1879 | - $label = '<i class="fas fa-eye-slash infotip text-danger mr-2" title="' . $lang->get('no_access') . '"></i>'; |
|
| 1879 | + $label = '<i class="fas fa-eye-slash infotip text-danger mr-2" title="'.$lang->get('no_access').'"></i>'; |
|
| 1880 | 1880 | } else { |
| 1881 | - $label = '<i class="fas fa-eye infotip text-info mr-2" title="' . $lang->get('read') . '"></i>'; |
|
| 1881 | + $label = '<i class="fas fa-eye infotip text-info mr-2" title="'.$lang->get('read').'"></i>'; |
|
| 1882 | 1882 | } |
| 1883 | 1883 | |
| 1884 | - $html .= '<tr><td>' . $ident . $row['title'] . |
|
| 1885 | - ' <small class="text-info">[' . $row['id'] . ']</small>'. |
|
| 1886 | - ($fld['special'] === true ? '<i class="fas fa-user-tag infotip text-primary ml-5" title="' . $lang->get('user_specific_right') . '"></i>' : ''). |
|
| 1887 | - '</td><td>' . $label . '</td></tr>'; |
|
| 1884 | + $html .= '<tr><td>'.$ident.$row['title']. |
|
| 1885 | + ' <small class="text-info">['.$row['id'].']</small>'. |
|
| 1886 | + ($fld['special'] === true ? '<i class="fas fa-user-tag infotip text-primary ml-5" title="'.$lang->get('user_specific_right').'"></i>' : ''). |
|
| 1887 | + '</td><td>'.$label.'</td></tr>'; |
|
| 1888 | 1888 | break; |
| 1889 | 1889 | } |
| 1890 | 1890 | } |
| 1891 | 1891 | } |
| 1892 | 1892 | |
| 1893 | - $html_full = '<table id="table-folders" class="table table-bordered table-striped dt-responsive nowrap" style="width:100%"><tbody>' . |
|
| 1894 | - $html . '</tbody></table>'; |
|
| 1893 | + $html_full = '<table id="table-folders" class="table table-bordered table-striped dt-responsive nowrap" style="width:100%"><tbody>'. |
|
| 1894 | + $html.'</tbody></table>'; |
|
| 1895 | 1895 | } else { |
| 1896 | 1896 | $html_full = ''; |
| 1897 | 1897 | } |
@@ -1937,7 +1937,7 @@ discard block |
||
| 1937 | 1937 | if ((int) $session->get('user-admin') === 0 && (int) $session->get('user-can_manage_all_users') === 0) { |
| 1938 | 1938 | $rows = DB::query( |
| 1939 | 1939 | 'SELECT * |
| 1940 | - FROM ' . prefixTable('users') . ' |
|
| 1940 | + FROM ' . prefixTable('users').' |
|
| 1941 | 1941 | WHERE admin = %i AND isAdministratedByRole IN %ls', |
| 1942 | 1942 | '0', |
| 1943 | 1943 | array_filter($session->get('user-roles_array')) |
@@ -1945,7 +1945,7 @@ discard block |
||
| 1945 | 1945 | } else { |
| 1946 | 1946 | $rows = DB::query( |
| 1947 | 1947 | 'SELECT * |
| 1948 | - FROM ' . prefixTable('users') . ' |
|
| 1948 | + FROM ' . prefixTable('users').' |
|
| 1949 | 1949 | WHERE admin = %i', |
| 1950 | 1950 | '0' |
| 1951 | 1951 | ); |
@@ -1957,7 +1957,7 @@ discard block |
||
| 1957 | 1957 | $groupIds = []; |
| 1958 | 1958 | foreach (explode(';', $record['fonction_id']) as $group) { |
| 1959 | 1959 | $tmp = DB::queryfirstrow( |
| 1960 | - 'SELECT id, title FROM ' . prefixTable('roles_title') . ' |
|
| 1960 | + 'SELECT id, title FROM '.prefixTable('roles_title').' |
|
| 1961 | 1961 | WHERE id = %i', |
| 1962 | 1962 | $group |
| 1963 | 1963 | ); |
@@ -1969,7 +1969,7 @@ discard block |
||
| 1969 | 1969 | |
| 1970 | 1970 | // Get managed_by |
| 1971 | 1971 | $managedBy = DB::queryfirstrow( |
| 1972 | - 'SELECT id, title FROM ' . prefixTable('roles_title') . ' |
|
| 1972 | + 'SELECT id, title FROM '.prefixTable('roles_title').' |
|
| 1973 | 1973 | WHERE id = %i', |
| 1974 | 1974 | $record['isAdministratedByRole'] |
| 1975 | 1975 | ); |
@@ -1979,7 +1979,7 @@ discard block |
||
| 1979 | 1979 | $foldersAllowedIds = []; |
| 1980 | 1980 | foreach (explode(';', $record['groupes_visibles']) as $role) { |
| 1981 | 1981 | $tmp = DB::queryfirstrow( |
| 1982 | - 'SELECT id, title FROM ' . prefixTable('nested_tree') . ' |
|
| 1982 | + 'SELECT id, title FROM '.prefixTable('nested_tree').' |
|
| 1983 | 1983 | WHERE id = %i', |
| 1984 | 1984 | $role |
| 1985 | 1985 | ); |
@@ -1992,7 +1992,7 @@ discard block |
||
| 1992 | 1992 | $foldersForbiddenIds = []; |
| 1993 | 1993 | foreach (explode(';', $record['groupes_interdits']) as $role) { |
| 1994 | 1994 | $tmp = DB::queryfirstrow( |
| 1995 | - 'SELECT id, title FROM ' . prefixTable('nested_tree') . ' |
|
| 1995 | + 'SELECT id, title FROM '.prefixTable('nested_tree').' |
|
| 1996 | 1996 | WHERE id = %i', |
| 1997 | 1997 | $role |
| 1998 | 1998 | ); |
@@ -2010,7 +2010,7 @@ discard block |
||
| 2010 | 2010 | 'login' => $record['login'], |
| 2011 | 2011 | 'groups' => implode(', ', $groups), |
| 2012 | 2012 | 'groupIds' => $groupIds, |
| 2013 | - 'managedBy' => $managedBy=== null ? $lang->get('administrator') : $managedBy['title'], |
|
| 2013 | + 'managedBy' => $managedBy === null ? $lang->get('administrator') : $managedBy['title'], |
|
| 2014 | 2014 | 'managedById' => $managedBy === null ? 0 : $managedBy['id'], |
| 2015 | 2015 | 'foldersAllowed' => implode(', ', $foldersAllowed), |
| 2016 | 2016 | 'foldersAllowedIds' => $foldersAllowedIds, |
@@ -2091,7 +2091,7 @@ discard block |
||
| 2091 | 2091 | |
| 2092 | 2092 | // Get info about user |
| 2093 | 2093 | $data_user = DB::queryfirstrow( |
| 2094 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 2094 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 2095 | 2095 | WHERE id = %i', |
| 2096 | 2096 | $post_source_id |
| 2097 | 2097 | ); |
@@ -2297,14 +2297,14 @@ discard block |
||
| 2297 | 2297 | if (empty($post_context) === false && $post_context === 'add_one_role_to_user') { |
| 2298 | 2298 | $data_user = DB::queryfirstrow( |
| 2299 | 2299 | 'SELECT fonction_id, public_key |
| 2300 | - FROM ' . prefixTable('users') . ' |
|
| 2300 | + FROM ' . prefixTable('users').' |
|
| 2301 | 2301 | WHERE id = %i', |
| 2302 | 2302 | $post_user_id |
| 2303 | 2303 | ); |
| 2304 | 2304 | |
| 2305 | 2305 | if ($data_user) { |
| 2306 | 2306 | // Ensure array is unique |
| 2307 | - $post_new_value = str_replace(',', ';', $data_user['fonction_id']) . ';' . $post_new_value; |
|
| 2307 | + $post_new_value = str_replace(',', ';', $data_user['fonction_id']).';'.$post_new_value; |
|
| 2308 | 2308 | $post_new_value = implode(';', array_unique(explode(';', $post_new_value))); |
| 2309 | 2309 | } else { |
| 2310 | 2310 | // User not found |
@@ -2320,14 +2320,14 @@ discard block |
||
| 2320 | 2320 | } |
| 2321 | 2321 | |
| 2322 | 2322 | // Manage specific case of api key |
| 2323 | - if($post_field === 'user_api_key') { |
|
| 2323 | + if ($post_field === 'user_api_key') { |
|
| 2324 | 2324 | $encrypted_key = encryptUserObjectKey(base64_encode($post_new_value), $session->get('user-public_key')); |
| 2325 | 2325 | $session->set('user-api_key', $post_new_value); |
| 2326 | 2326 | |
| 2327 | 2327 | // test if user has an api key |
| 2328 | 2328 | $data_user = DB::queryfirstrow( |
| 2329 | 2329 | 'SELECT value |
| 2330 | - FROM ' . prefixTable('api') . ' |
|
| 2330 | + FROM ' . prefixTable('api').' |
|
| 2331 | 2331 | WHERE user_id = %i', |
| 2332 | 2332 | $post_user_id |
| 2333 | 2333 | ); |
@@ -2447,7 +2447,7 @@ discard block |
||
| 2447 | 2447 | } catch (\LdapRecord\Auth\BindException $e) { |
| 2448 | 2448 | $error = $e->getDetailedError(); |
| 2449 | 2449 | if ($error) { |
| 2450 | - error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage(). " - ".$error->getDiagnosticMessage()); |
|
| 2450 | + error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage()." - ".$error->getDiagnosticMessage()); |
|
| 2451 | 2451 | } else { |
| 2452 | 2452 | error_log('TEAMPASS Error - LDAP - Code: '.$e->getCode().' - Message: '.$e->getMessage()); |
| 2453 | 2453 | } |
@@ -2479,7 +2479,7 @@ discard block |
||
| 2479 | 2479 | } catch (\LdapRecord\Auth\BindException $e) { |
| 2480 | 2480 | $error = $e->getDetailedError(); |
| 2481 | 2481 | if ($error) { |
| 2482 | - error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage(). " - ".$error->getDiagnosticMessage()); |
|
| 2482 | + error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage()." - ".$error->getDiagnosticMessage()); |
|
| 2483 | 2483 | } else { |
| 2484 | 2484 | error_log('TEAMPASS Error - LDAP - Code: '.$e->getCode().' - Message: '.$e->getMessage()); |
| 2485 | 2485 | } |
@@ -2498,7 +2498,7 @@ discard block |
||
| 2498 | 2498 | if (isset($adUser[$SETTINGS['ldap_user_attribute']][0]) === false) continue; |
| 2499 | 2499 | // Build the list of all groups in AD |
| 2500 | 2500 | if (isset($adUser['memberof']) === true) { |
| 2501 | - foreach($adUser['memberof'] as $j => $adUserGroup) { |
|
| 2501 | + foreach ($adUser['memberof'] as $j => $adUserGroup) { |
|
| 2502 | 2502 | if (empty($adUserGroup) === false && $j !== "count") { |
| 2503 | 2503 | $adGroup = substr($adUserGroup, 3, strpos($adUserGroup, ',') - 3); |
| 2504 | 2504 | if (in_array($adGroup, $adRoles) === false && empty($adGroup) === false) { |
@@ -2514,7 +2514,7 @@ discard block |
||
| 2514 | 2514 | // Get his ID |
| 2515 | 2515 | $userInfo = DB::queryfirstrow( |
| 2516 | 2516 | 'SELECT id, login, fonction_id, auth_type |
| 2517 | - FROM ' . prefixTable('users') . ' |
|
| 2517 | + FROM ' . prefixTable('users').' |
|
| 2518 | 2518 | WHERE login = %s', |
| 2519 | 2519 | $userLogin |
| 2520 | 2520 | ); |
@@ -2550,7 +2550,7 @@ discard block |
||
| 2550 | 2550 | |
| 2551 | 2551 | // Get all groups in Teampass |
| 2552 | 2552 | $teampassRoles = array(); |
| 2553 | - $rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title')); |
|
| 2553 | + $rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title')); |
|
| 2554 | 2554 | foreach ($rows as $record) { |
| 2555 | 2555 | array_push( |
| 2556 | 2556 | $teampassRoles, |
@@ -2620,7 +2620,7 @@ discard block |
||
| 2620 | 2620 | // Check if user already exists |
| 2621 | 2621 | $data = DB::query( |
| 2622 | 2622 | 'SELECT id, fonction_id, groupes_interdits, groupes_visibles |
| 2623 | - FROM ' . prefixTable('users') . ' |
|
| 2623 | + FROM ' . prefixTable('users').' |
|
| 2624 | 2624 | WHERE login = %s', |
| 2625 | 2625 | $post_login |
| 2626 | 2626 | ); |
@@ -2803,14 +2803,14 @@ discard block |
||
| 2803 | 2803 | // Send mail to user with new OTP |
| 2804 | 2804 | $userInfo = DB::queryFirstRow( |
| 2805 | 2805 | 'SELECT email |
| 2806 | - FROM ' . prefixTable('users') . ' |
|
| 2806 | + FROM ' . prefixTable('users').' |
|
| 2807 | 2807 | WHERE id = %i', |
| 2808 | 2808 | $post_userId |
| 2809 | 2809 | ); |
| 2810 | 2810 | $emailSettings = new EmailSettings($SETTINGS); |
| 2811 | 2811 | $emailService = new EmailService(); |
| 2812 | 2812 | $emailService->sendMail( |
| 2813 | - 'TEAMPASS - ' . $lang->get('temporary_encryption_code'), |
|
| 2813 | + 'TEAMPASS - '.$lang->get('temporary_encryption_code'), |
|
| 2814 | 2814 | str_replace( |
| 2815 | 2815 | array('#enc_code#'), |
| 2816 | 2816 | array($post_otp), |
@@ -2872,7 +2872,7 @@ discard block |
||
| 2872 | 2872 | // Check if user already exists |
| 2873 | 2873 | DB::query( |
| 2874 | 2874 | 'SELECT id |
| 2875 | - FROM ' . prefixTable('users') . ' |
|
| 2875 | + FROM ' . prefixTable('users').' |
|
| 2876 | 2876 | WHERE id = %i', |
| 2877 | 2877 | $post_id |
| 2878 | 2878 | ); |
@@ -2951,7 +2951,7 @@ discard block |
||
| 2951 | 2951 | // Check if user already exists |
| 2952 | 2952 | $userInfo = DB::queryfirstrow( |
| 2953 | 2953 | 'SELECT id, private_key, public_key |
| 2954 | - FROM ' . prefixTable('users') . ' |
|
| 2954 | + FROM ' . prefixTable('users').' |
|
| 2955 | 2955 | WHERE id = %i', |
| 2956 | 2956 | $post_userid |
| 2957 | 2957 | ); |
@@ -2998,7 +2998,7 @@ discard block |
||
| 2998 | 2998 | if (count($session->get('user-personal_folders')) > 0) { |
| 2999 | 2999 | DB::query( |
| 3000 | 3000 | 'SELECT id |
| 3001 | - FROM ' . prefixTable('items') . ' |
|
| 3001 | + FROM ' . prefixTable('items').' |
|
| 3002 | 3002 | WHERE id_tree IN %ls', |
| 3003 | 3003 | $session->get('user-personal_folders') |
| 3004 | 3004 | ); |
@@ -3079,7 +3079,7 @@ discard block |
||
| 3079 | 3079 | // Check if user already exists |
| 3080 | 3080 | DB::query( |
| 3081 | 3081 | 'SELECT id |
| 3082 | - FROM ' . prefixTable('users') . ' |
|
| 3082 | + FROM ' . prefixTable('users').' |
|
| 3083 | 3083 | WHERE id = %i', |
| 3084 | 3084 | $post_id |
| 3085 | 3085 | ); |
@@ -3157,10 +3157,10 @@ discard block |
||
| 3157 | 3157 | 'process_type' => 'create_user_keys', |
| 3158 | 3158 | 'arguments' => json_encode([ |
| 3159 | 3159 | 'new_user_id' => (int) $post_user_id, |
| 3160 | - 'new_user_pwd' => empty($post_user_pwd) === true ? '' : cryption($post_user_pwd, '','encrypt', $SETTINGS)['string'], |
|
| 3161 | - 'new_user_code' => cryption($post_user_code, '','encrypt', $SETTINGS)['string'], |
|
| 3160 | + 'new_user_pwd' => empty($post_user_pwd) === true ? '' : cryption($post_user_pwd, '', 'encrypt', $SETTINGS)['string'], |
|
| 3161 | + 'new_user_code' => cryption($post_user_code, '', 'encrypt', $SETTINGS)['string'], |
|
| 3162 | 3162 | 'owner_id' => (int) $session->get('user-id'), |
| 3163 | - 'creator_pwd' => cryption($session->get('user-password'), '','encrypt', $SETTINGS)['string'], |
|
| 3163 | + 'creator_pwd' => cryption($session->get('user-password'), '', 'encrypt', $SETTINGS)['string'], |
|
| 3164 | 3164 | 'email_body' => $lang->get('email_body_user_config_5'), |
| 3165 | 3165 | 'send_email' => 1, |
| 3166 | 3166 | ]), |
@@ -3323,7 +3323,7 @@ discard block |
||
| 3323 | 3323 | // get user info |
| 3324 | 3324 | $userInfo = DB::queryFirstRow( |
| 3325 | 3325 | 'SELECT * |
| 3326 | - FROM ' . prefixTable('users') . ' |
|
| 3326 | + FROM ' . prefixTable('users').' |
|
| 3327 | 3327 | WHERE id = %i', |
| 3328 | 3328 | $user_id |
| 3329 | 3329 | ); |
@@ -3416,8 +3416,8 @@ discard block |
||
| 3416 | 3416 | // get user info |
| 3417 | 3417 | $processesProgress = DB::query( |
| 3418 | 3418 | 'SELECT u.ongoing_process_id, pt.task, pt.updated_at, pt.finished_at, pt.is_in_progress |
| 3419 | - FROM ' . prefixTable('users') . ' AS u |
|
| 3420 | - INNER JOIN ' . prefixTable('background_subtasks') . ' AS pt ON (pt.task_id = u.ongoing_process_id) |
|
| 3419 | + FROM ' . prefixTable('users').' AS u |
|
| 3420 | + INNER JOIN ' . prefixTable('background_subtasks').' AS pt ON (pt.task_id = u.ongoing_process_id) |
|
| 3421 | 3421 | WHERE u.id = %i', |
| 3422 | 3422 | $user_id |
| 3423 | 3423 | ); |
@@ -3425,9 +3425,9 @@ discard block |
||
| 3425 | 3425 | //print_r($processesProgress); |
| 3426 | 3426 | $finished_steps = 0; |
| 3427 | 3427 | $nb_steps = count($processesProgress); |
| 3428 | - foreach($processesProgress as $process) { |
|
| 3428 | + foreach ($processesProgress as $process) { |
|
| 3429 | 3429 | if ((int) $process['is_in_progress'] === -1) { |
| 3430 | - $finished_steps ++; |
|
| 3430 | + $finished_steps++; |
|
| 3431 | 3431 | } |
| 3432 | 3432 | } |
| 3433 | 3433 | |
@@ -3436,7 +3436,7 @@ discard block |
||
| 3436 | 3436 | 'error' => false, |
| 3437 | 3437 | 'message' => '', |
| 3438 | 3438 | 'user_id' => $user_id, |
| 3439 | - 'status' => $finished_steps === $nb_steps ? 'finished' : number_format($finished_steps/$nb_steps*100, 0).'%', |
|
| 3439 | + 'status' => $finished_steps === $nb_steps ? 'finished' : number_format($finished_steps / $nb_steps * 100, 0).'%', |
|
| 3440 | 3440 | 'debug' => $finished_steps.",".$nb_steps, |
| 3441 | 3441 | ), |
| 3442 | 3442 | 'encode' |
@@ -3501,7 +3501,7 @@ discard block |
||
| 3501 | 3501 | |
| 3502 | 3502 | // Get info about user |
| 3503 | 3503 | $data_user = DB::queryfirstrow( |
| 3504 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 3504 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 3505 | 3505 | WHERE id = %i', |
| 3506 | 3506 | $value[1] |
| 3507 | 3507 | ); |
@@ -3535,7 +3535,7 @@ discard block |
||
| 3535 | 3535 | logEvents( |
| 3536 | 3536 | $SETTINGS, |
| 3537 | 3537 | 'user_mngt', |
| 3538 | - 'at_user_new_' . $value[0] . ':' . $value[1], |
|
| 3538 | + 'at_user_new_'.$value[0].':'.$value[1], |
|
| 3539 | 3539 | (string) $session->get('user-id'), |
| 3540 | 3540 | $session->get('user-login'), |
| 3541 | 3541 | filter_input(INPUT_POST, 'id', FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
@@ -3569,7 +3569,7 @@ discard block |
||
| 3569 | 3569 | |
| 3570 | 3570 | // Get info about user |
| 3571 | 3571 | $data_user = DB::queryfirstrow( |
| 3572 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 3572 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 3573 | 3573 | WHERE id = %i', |
| 3574 | 3574 | $value[1] |
| 3575 | 3575 | ); |
@@ -72,8 +72,8 @@ |
||
| 72 | 72 | function rebuildConfigFile(): void |
| 73 | 73 | { |
| 74 | 74 | // Load expected files |
| 75 | - require_once __DIR__. '/../sources/main.functions.php'; |
|
| 76 | - include __DIR__. '/../includes/config/tp.config.php'; |
|
| 75 | + require_once __DIR__.'/../sources/main.functions.php'; |
|
| 76 | + include __DIR__.'/../includes/config/tp.config.php'; |
|
| 77 | 77 | |
| 78 | 78 | if (isset($SETTINGS) === true) { |
| 79 | 79 | handleConfigFile('rebuild', $SETTINGS); |
@@ -39,7 +39,7 @@ discard block |
||
| 39 | 39 | $arrQueryStringParams = $this->getQueryStringParams(); |
| 40 | 40 | |
| 41 | 41 | if (strtoupper($requestMethod) === 'POST') { |
| 42 | - require API_ROOT_PATH . "/Model/AuthModel.php"; |
|
| 42 | + require API_ROOT_PATH."/Model/AuthModel.php"; |
|
| 43 | 43 | try { |
| 44 | 44 | $authModel = new AuthModel(); |
| 45 | 45 | $arrUser = $authModel->getUserAuth( |
@@ -50,7 +50,7 @@ discard block |
||
| 50 | 50 | if (array_key_exists("token", $arrUser)) { |
| 51 | 51 | $responseData = json_encode($arrUser); |
| 52 | 52 | } else { |
| 53 | - $strErrorDesc = $arrUser['error'] . " (" . $arrUser['info'] . ")"; |
|
| 53 | + $strErrorDesc = $arrUser['error']." (".$arrUser['info'].")"; |
|
| 54 | 54 | $strErrorHeader = 'HTTP/1.1 401 Unauthorized'; |
| 55 | 55 | } |
| 56 | 56 | } catch (Error $e) { |
@@ -133,7 +133,7 @@ |
||
| 133 | 133 | { |
| 134 | 134 | include API_ROOT_PATH . '/../includes/config/tp.config.php'; |
| 135 | 135 | |
| 136 | - $payload = [ |
|
| 136 | + $payload = [ |
|
| 137 | 137 | 'username' => $login, |
| 138 | 138 | 'id' => $id, |
| 139 | 139 | 'exp' => (time() + $SETTINGS['api_token_duration'] + 600), |
@@ -27,7 +27,7 @@ discard block |
||
| 27 | 27 | use Firebase\JWT\JWT; |
| 28 | 28 | use Firebase\JWT\Key; |
| 29 | 29 | |
| 30 | -require_once API_ROOT_PATH . "/Model/Database.php"; |
|
| 30 | +require_once API_ROOT_PATH."/Model/Database.php"; |
|
| 31 | 31 | |
| 32 | 32 | |
| 33 | 33 | class AuthModel extends Database |
@@ -45,7 +45,7 @@ discard block |
||
| 45 | 45 | public function getUserAuth(string $login, string $password, string $apikey): array |
| 46 | 46 | { |
| 47 | 47 | // Sanitize |
| 48 | - include_once API_ROOT_PATH . '/../sources/main.functions.php'; |
|
| 48 | + include_once API_ROOT_PATH.'/../sources/main.functions.php'; |
|
| 49 | 49 | $inputData = dataSanitizer( |
| 50 | 50 | [ |
| 51 | 51 | 'login' => isset($login) === true ? $login : '', |
@@ -65,7 +65,7 @@ discard block |
||
| 65 | 65 | // Check apikey |
| 66 | 66 | if (empty($inputData['password']) === true) { |
| 67 | 67 | // case where it is a generic key |
| 68 | - $apiInfo = $this->select("SELECT * FROM " . prefixTable('api') . " WHERE value='".$inputData['apikey']."' AND label='".$inputData['login']."'"); |
|
| 68 | + $apiInfo = $this->select("SELECT * FROM ".prefixTable('api')." WHERE value='".$inputData['apikey']."' AND label='".$inputData['login']."'"); |
|
| 69 | 69 | $apiInfo = $apiInfo[0]; |
| 70 | 70 | if (WIP === true) { |
| 71 | 71 | if (isset($apiInfo['increment_id']) === false) { |
@@ -78,7 +78,7 @@ discard block |
||
| 78 | 78 | } |
| 79 | 79 | |
| 80 | 80 | // Log user |
| 81 | - include API_ROOT_PATH . '/../includes/config/tp.config.php'; |
|
| 81 | + include API_ROOT_PATH.'/../includes/config/tp.config.php'; |
|
| 82 | 82 | logEvents($SETTINGS, 'api', 'user_connection', (string) $apiInfo['increment_id'], stripslashes($inputData['login'])); |
| 83 | 83 | |
| 84 | 84 | // create JWT |
@@ -110,8 +110,8 @@ discard block |
||
| 110 | 110 | // Check if user exists |
| 111 | 111 | $userInfoRes = $this->select( |
| 112 | 112 | "SELECT u.id, u.pw, u.login, u.admin, u.gestionnaire, u.can_manage_all_users, u.fonction_id, u.can_create_root_folder, u.public_key, u.private_key, u.personal_folder, u.fonction_id, u.groupes_visibles, u.groupes_interdits, a.value AS user_api_key, a.allowed_folders as user_api_allowed_folders, a.enabled, a.allowed_to_create, a.allowed_to_read, a.allowed_to_update, a.allowed_to_delete |
| 113 | - FROM " . prefixTable('users') . " AS u |
|
| 114 | - INNER JOIN " . prefixTable('api') . " AS a ON (a.user_id=u.id) |
|
| 113 | + FROM " . prefixTable('users')." AS u |
|
| 114 | + INNER JOIN " . prefixTable('api')." AS a ON (a.user_id=u.id) |
|
| 115 | 115 | WHERE login='".$inputData['login']."'"); |
| 116 | 116 | if (count($userInfoRes) === 0) { |
| 117 | 117 | return ["error" => "Login failed.", "info" => "apikey : Not valid"]; |
@@ -139,7 +139,7 @@ discard block |
||
| 139 | 139 | // Update user's key_tempo |
| 140 | 140 | $keyTempo = bin2hex(random_bytes(16)); |
| 141 | 141 | $this->update( |
| 142 | - "UPDATE " . prefixTable('users') . " |
|
| 142 | + "UPDATE ".prefixTable('users')." |
|
| 143 | 143 | SET key_tempo='".$keyTempo."' |
| 144 | 144 | WHERE id=".$userInfo['id'] |
| 145 | 145 | ); |
@@ -148,7 +148,7 @@ discard block |
||
| 148 | 148 | $ret = $this->buildUserFoldersList($userInfo); |
| 149 | 149 | |
| 150 | 150 | // Log user |
| 151 | - include API_ROOT_PATH . '/../includes/config/tp.config.php'; |
|
| 151 | + include API_ROOT_PATH.'/../includes/config/tp.config.php'; |
|
| 152 | 152 | logEvents($SETTINGS, 'api', 'user_connection', (string) $userInfo['id'], stripslashes($userInfo['login'])); |
| 153 | 153 | |
| 154 | 154 | // create JWT |
@@ -222,7 +222,7 @@ discard block |
||
| 222 | 222 | int $allowed_to_delete, |
| 223 | 223 | ): array |
| 224 | 224 | { |
| 225 | - include API_ROOT_PATH . '/../includes/config/tp.config.php'; |
|
| 225 | + include API_ROOT_PATH.'/../includes/config/tp.config.php'; |
|
| 226 | 226 | |
| 227 | 227 | $payload = [ |
| 228 | 228 | 'username' => $login, |
@@ -277,7 +277,7 @@ discard block |
||
| 277 | 277 | |
| 278 | 278 | // Get folders from the roles |
| 279 | 279 | if (empty($userFunctionId) === false) { |
| 280 | - $rows = $this->select("SELECT * FROM " . prefixTable('roles_values') . " WHERE role_id IN (".$userFunctionId.") AND type IN ('W', 'ND', 'NE', 'NDNE', 'R')"); |
|
| 280 | + $rows = $this->select("SELECT * FROM ".prefixTable('roles_values')." WHERE role_id IN (".$userFunctionId.") AND type IN ('W', 'ND', 'NE', 'NDNE', 'R')"); |
|
| 281 | 281 | foreach ($rows as $record) { |
| 282 | 282 | if ($record['type'] === 'R') { |
| 283 | 283 | array_push($readOnlyFolders, $record['folder_id']); |
@@ -298,7 +298,7 @@ discard block |
||
| 298 | 298 | |
| 299 | 299 | // Does this user is allowed to see other items |
| 300 | 300 | $inc = 0; |
| 301 | - $rows = $this->select("SELECT id, id_tree FROM " . prefixTable('items') . " WHERE restricted_to LIKE '".$userInfo['id']."'". |
|
| 301 | + $rows = $this->select("SELECT id, id_tree FROM ".prefixTable('items')." WHERE restricted_to LIKE '".$userInfo['id']."'". |
|
| 302 | 302 | (empty($userFunctionId) === false ? ' AND id_tree NOT IN ('.$userFunctionId.')' : '')); |
| 303 | 303 | foreach ($rows as $record) { |
| 304 | 304 | // Exclude restriction on item if folder is fully accessible |
@@ -308,8 +308,8 @@ discard block |
||
| 308 | 308 | |
| 309 | 309 | // Check for the users roles if some specific rights exist on items |
| 310 | 310 | $rows = $this->select("SELECT i.id_tree, r.item_id |
| 311 | - FROM " . prefixTable('items') . " as i |
|
| 312 | - INNER JOIN " . prefixTable('restriction_to_roles') . " as r ON (r.item_id=i.id) |
|
| 311 | + FROM " . prefixTable('items')." as i |
|
| 312 | + INNER JOIN " . prefixTable('restriction_to_roles')." as r ON (r.item_id=i.id) |
|
| 313 | 313 | WHERE ".(empty($userFunctionId) === false ? ' id_tree NOT IN ('.$userFunctionId.') AND ' : '')." i.id_tree != '' |
| 314 | 314 | ORDER BY i.id_tree ASC"); |
| 315 | 315 | foreach ($rows as $record) { |
@@ -323,7 +323,7 @@ discard block |
||
| 323 | 323 | // Add all personal folders |
| 324 | 324 | $rows = $this->select( |
| 325 | 325 | 'SELECT id |
| 326 | - FROM ' . prefixTable('nested_tree') . ' |
|
| 326 | + FROM ' . prefixTable('nested_tree').' |
|
| 327 | 327 | WHERE title = '.$userInfo['id'].' AND personal_folder = 1'. |
| 328 | 328 | (empty($userFunctionId) === false ? ' AND id NOT IN ('.$userFunctionId.')' : ''). |
| 329 | 329 | ' LIMIT 0,1' |
@@ -65,7 +65,7 @@ |
||
| 65 | 65 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('statistics') === false) { |
| 66 | 66 | // Not allowed page |
| 67 | 67 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 68 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 68 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 69 | 69 | exit; |
| 70 | 70 | } |
| 71 | 71 | |
