[platal.git] / modules / googleapps.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2010 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

class GoogleAppsModule extends PLModule
{
    function handlers()
    {
        global $globals;
        if (!$globals->mailstorage->googleapps_domain) {
            return array();
        }

        return array(
            'googleapps'            => $this->make_hook('index',      AUTH_MDP),
            'admin/googleapps'      => $this->make_hook('admin',      AUTH_MDP, 'admin'),
            'admin/googleapps/job'  => $this->make_hook('admin_job',  AUTH_MDP, 'admin'),
            'admin/googleapps/user' => $this->make_hook('admin_user', AUTH_MDP, 'admin'),
        );
    }

    function handler_index(&$page, $action = null)
    {
        require_once("emails.inc.php");
        require_once("googleapps.inc.php");
        $page->changeTpl('googleapps/index.tpl');
        $page->addJsLink('motdepasse.js');
        $page->setTitle('Compte Google Apps');

        $user = S::user();
        $account = new GoogleAppsAccount($user);

        // Fills up the 'is Google Apps redirection active' variable.
        $page->assign('redirect_active', false);
        $page->assign('redirect_unique', true);

        if ($account->active()) {
            $redirect = new Redirect($user);
            $page->assign('redirect_unique', !$redirect->other_active('googleapps'));

            $storage = new EmailStorage($user, 'googleapps');
            $page->assign('redirect_active', $storage->active);
        }

        // Updates the Google Apps account as required.
        if ($action) {
            if ($action == 'password' && Post::has('pwsync')) {
                S::assert_xsrf_token();
                if (Post::v('pwsync') == 'sync') {
                    $account->set_password_sync(true);
                    $account->set_password(S::v('password'));
                } else {
                    $account->set_password_sync(false);
                }
            } elseif ($action == 'password' && Post::has('response2') && !$account->sync_password) {
                S::assert_xsrf_token();
                $account->set_password(Post::v('response2'));
            }

            if ($action == 'suspend' && Post::has('suspend') && $account->active()) {
                S::assert_xsrf_token();

                if ($account->pending_update_suspension) {
                    $page->trigWarning("Ton compte est déjà en cours de désactivation.");
                } else {
                    if ($redirect->modify_one_email('googleapps', false) == SUCCESS) {
                        $account->suspend();
                        $page->trigSuccess("Ton compte Google Apps est dorénavant désactivé.");
                    } else {
                        $page->trigError("Ton compte Google Apps est ta seule adresse de redirection. Ton compte ne peux pas être désactivé.");
                    }
                }
            } elseif ($action == 'unsuspend' && Post::has('unsuspend') && $account->suspended()) {
                $account->unsuspend(Post::b('redirect_mails', true));
                $page->trigSuccess("Ta demande de réactivation a bien été prise en compte.");
            }

            if ($action == 'create') {
                $page->assign('has_password_sync', Get::has('password_sync'));
                $page->assign('password_sync', Get::b('password_sync', true));
            }
            if ($action == 'create' && Post::has('password_sync') && Post::has('redirect_mails')) {
                S::assert_xsrf_token();

                $password_sync = Post::b('password_sync');
                $redirect_mails = Post::b('redirect_mails');
                if ($password_sync) {
                    $password = $user->password();
                } else {
                    $password = Post::v('response2');
                }

                $account->create($password_sync, $password, $redirect_mails);
                $page->trigSuccess("La demande de création de ton compte Google Apps a bien été enregistrée.");
            }
        }

        $page->assign('account', $account);
    }

    function handler_admin(&$page, $action = null) {
        require_once("googleapps.inc.php");
        $page->changeTpl('googleapps/admin.tpl');
        $page->setTitle('Administration Google Apps');
        $page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));

        if ($action == 'ack') {
            $qid = @func_get_arg(2);
            if ($qid) {
                XDB::execute(
                    "DELETE FROM  gapps_queue
                           WHERE  q_id = {?} AND p_status = 'hardfail'", $qid);
                $page->trigSuccess("La requête échouée a bien été retirée.");
            }
        }

        // Retrieves latest pending administrative requests from the gappsd queue.
        $res = XDB::iterator(
            "SELECT  q_id, q_recipient_id, a.alias, j_type, j_parameters,
                     UNIX_TIMESTAMP(q.p_entry_date) AS p_entry_date
               FROM  gapps_queue AS q
          LEFT JOIN  aliases AS a ON (a.uid = q_recipient_id AND a.type = 'a_vie')
              WHERE  p_status IN ('idle', 'active', 'softfail') AND
                     p_admin_request IS TRUE
           ORDER BY  p_entry_date");
        while ($request = $res->next()) {
            $j_parameters = json_decode($request['j_parameters'], true);
            unset($j_parameters['username']);
            $parameters = array_keys($j_parameters);
            $request['parameters'] = implode(', ', $parameters);

            $page->append('admin_requests', $request);
        }

        // Retrieves latest failed requests from the gappsd queue.
        $res = XDB::iterator(
            "SELECT  q.q_id, q.q_recipient_id, a.alias, q.j_type, q.r_result,
                     UNIX_TIMESTAMP(q.p_entry_date) AS p_entry_date
               FROM  gapps_queue AS q
          LEFT JOIN  aliases AS a ON (a.uid = q.q_recipient_id AND a.type = 'a_vie')
              WHERE  q.p_status = 'hardfail'
           ORDER BY  p_entry_date DESC
              LIMIT  20");
        $page->assign('failed_requests', $res);
    }

    function handler_admin_job(&$page, $job = null) {
        require_once("googleapps.inc.php");
        $page->changeTpl('googleapps/admin.job.tpl');
        $page->setTitle('Administration Google Apps');
        $page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));

        if ($job) {
            $res = XDB::query(
                "SELECT  q.*, ao.alias AS q_owner, ar.alias AS q_recipient
                   FROM  gapps_queue AS q
              LEFT JOIN  aliases AS ao ON (ao.uid = q.q_owner_id AND ao.type = 'a_vie')
              LEFT JOIN  aliases AS ar ON (ar.uid = q.q_recipient_id AND ar.type = 'a_vie')
                  WHERE  q_id = {?}", $job);
            $sql_job = $res->fetchOneAssoc();
            $sql_job['decoded_parameters'] = var_export(json_decode($sql_job['j_parameters'], true), true);
            $page->assign('job', $sql_job);
        }
    }

    function handler_admin_user(&$page, $user = null) {
        require_once("emails.inc.php");
        require_once("googleapps.inc.php");
        $page->changeTpl('googleapps/admin.user.tpl');
        $page->setTitle('Administration Google Apps');
        $page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));

        if (!$user && Post::has('login')) {
            $user = Post::v('login');
        }
        $user = User::get($user);

        if ($user) {
            $account = new GoogleAppsAccount($user);
            $storage = new EmailStorage($user, 'googleapps');

            // Apply requested actions.
            if (Post::has('suspend') && $account->active() && !$account->pending_update_suspension) {
                S::assert_xsrf_token();
                $account->suspend();
                $page->trigSuccess('Le compte est en cours de suspension.');
            } else if (Post::has('unsuspend') && $account->suspended() && !$account->pending_update_suspension) {
                S::assert_xsrf_token();
                $account->do_unsuspend();
                $page->trigSuccess('Le compte est en cours de réactivation.');
            } else if (Post::has('forcesync') && $account->active() && $account->sync_password) {
                $account->set_password($user->password());
                $page->trigSuccess('Le mot de passe est en cours de synchronisation.');
            } else if (Post::has('sync') && $account->active()) {
                $account->set_password($user->password());
                $account->set_password_sync(true);
            } else if (Post::has('nosync') && $account->active()) {
                $account->set_password_sync(false);
            }

            // Displays basic account information.
            $page->assign('account', $account);
            $page->assign('admin_account', GoogleAppsAccount::is_administrator($user->id()));
            $page->assign('googleapps_storage', $storage->active);
            $page->assign('user', $user->id());

            // Retrieves user's pending requests.
            $res = XDB::iterator(
                "SELECT  q_id, q_recipient_id, p_status, j_type, UNIX_TIMESTAMP(p_entry_date) AS p_entry_date
                   FROM  gapps_queue
                  WHERE  q_recipient_id = {?}
               ORDER BY  p_entry_date DESC", $user->id());
            $page->assign('requests', $res);
        }
    }
}

// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
?>
Commit	Line	Data
	1	<?php
	2	/***************************************************************************
	3	* Copyright (C) 2003-2010 Polytechnique.org *
	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
	22	class GoogleAppsModule extends PLModule
	23	{
	24	function handlers()
	25	{
	26	global $globals;
	27	if (!$globals->mailstorage->googleapps_domain) {
	28	return array();
	29	}
	30
	31	return array(
	32	'googleapps' => $this->make_hook('index', AUTH_MDP),
	33	'admin/googleapps' => $this->make_hook('admin', AUTH_MDP, 'admin'),
	34	'admin/googleapps/job' => $this->make_hook('admin_job', AUTH_MDP, 'admin'),
	35	'admin/googleapps/user' => $this->make_hook('admin_user', AUTH_MDP, 'admin'),
	36	);
	37	}
	38
	39	function handler_index(&$page, $action = null)
	40	{
	41	require_once("emails.inc.php");
	42	require_once("googleapps.inc.php");
	43	$page->changeTpl('googleapps/index.tpl');
	44	$page->addJsLink('motdepasse.js');
	45	$page->setTitle('Compte Google Apps');
	46
	47	$user = S::user();
	48	$account = new GoogleAppsAccount($user);
	49
	50	// Fills up the 'is Google Apps redirection active' variable.
	51	$page->assign('redirect_active', false);
	52	$page->assign('redirect_unique', true);
	53
	54	if ($account->active()) {
	55	$redirect = new Redirect($user);
	56	$page->assign('redirect_unique', !$redirect->other_active('googleapps'));
	57
	58	$storage = new EmailStorage($user, 'googleapps');
	59	$page->assign('redirect_active', $storage->active);
	60	}
	61
	62	// Updates the Google Apps account as required.
	63	if ($action) {
	64	if ($action == 'password' && Post::has('pwsync')) {
	65	S::assert_xsrf_token();
	66	if (Post::v('pwsync') == 'sync') {
	67	$account->set_password_sync(true);
	68	$account->set_password(S::v('password'));
	69	} else {
	70	$account->set_password_sync(false);
	71	}
	72	} elseif ($action == 'password' && Post::has('response2') && !$account->sync_password) {
	73	S::assert_xsrf_token();
	74	$account->set_password(Post::v('response2'));
	75	}
	76
	77	if ($action == 'suspend' && Post::has('suspend') && $account->active()) {
	78	S::assert_xsrf_token();
	79
	80	if ($account->pending_update_suspension) {
	81	$page->trigWarning("Ton compte est déjà en cours de désactivation.");
	82	} else {
	83	if ($redirect->modify_one_email('googleapps', false) == SUCCESS) {
	84	$account->suspend();
	85	$page->trigSuccess("Ton compte Google Apps est dorénavant désactivé.");
	86	} else {
	87	$page->trigError("Ton compte Google Apps est ta seule adresse de redirection. Ton compte ne peux pas être désactivé.");
	88	}
	89	}
	90	} elseif ($action == 'unsuspend' && Post::has('unsuspend') && $account->suspended()) {
	91	$account->unsuspend(Post::b('redirect_mails', true));
	92	$page->trigSuccess("Ta demande de réactivation a bien été prise en compte.");
	93	}
	94
	95	if ($action == 'create') {
	96	$page->assign('has_password_sync', Get::has('password_sync'));
	97	$page->assign('password_sync', Get::b('password_sync', true));
	98	}
	99	if ($action == 'create' && Post::has('password_sync') && Post::has('redirect_mails')) {
	100	S::assert_xsrf_token();
	101
	102	$password_sync = Post::b('password_sync');
	103	$redirect_mails = Post::b('redirect_mails');
	104	if ($password_sync) {
	105	$password = $user->password();
	106	} else {
	107	$password = Post::v('response2');
	108	}
	109
	110	$account->create($password_sync, $password, $redirect_mails);
	111	$page->trigSuccess("La demande de création de ton compte Google Apps a bien été enregistrée.");
	112	}
	113	}
	114
	115	$page->assign('account', $account);
	116	}
	117
	118	function handler_admin(&$page, $action = null) {
	119	require_once("googleapps.inc.php");
	120	$page->changeTpl('googleapps/admin.tpl');
	121	$page->setTitle('Administration Google Apps');
	122	$page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));
	123
	124	if ($action == 'ack') {
	125	$qid = @func_get_arg(2);
	126	if ($qid) {
	127	XDB::execute(
	128	"DELETE FROM gapps_queue
	129	WHERE q_id = {?} AND p_status = 'hardfail'", $qid);
	130	$page->trigSuccess("La requête échouée a bien été retirée.");
	131	}
	132	}
	133
	134	// Retrieves latest pending administrative requests from the gappsd queue.
	135	$res = XDB::iterator(
	136	"SELECT q_id, q_recipient_id, a.alias, j_type, j_parameters,
	137	UNIX_TIMESTAMP(q.p_entry_date) AS p_entry_date
	138	FROM gapps_queue AS q
	139	LEFT JOIN aliases AS a ON (a.uid = q_recipient_id AND a.type = 'a_vie')
	140	WHERE p_status IN ('idle', 'active', 'softfail') AND
	141	p_admin_request IS TRUE
	142	ORDER BY p_entry_date");
	143	while ($request = $res->next()) {
	144	$j_parameters = json_decode($request['j_parameters'], true);
	145	unset($j_parameters['username']);
	146	$parameters = array_keys($j_parameters);
	147	$request['parameters'] = implode(', ', $parameters);
	148
	149	$page->append('admin_requests', $request);
	150	}
	151
	152	// Retrieves latest failed requests from the gappsd queue.
	153	$res = XDB::iterator(
	154	"SELECT q.q_id, q.q_recipient_id, a.alias, q.j_type, q.r_result,
	155	UNIX_TIMESTAMP(q.p_entry_date) AS p_entry_date
	156	FROM gapps_queue AS q
	157	LEFT JOIN aliases AS a ON (a.uid = q.q_recipient_id AND a.type = 'a_vie')
	158	WHERE q.p_status = 'hardfail'
	159	ORDER BY p_entry_date DESC
	160	LIMIT 20");
	161	$page->assign('failed_requests', $res);
	162	}
	163
	164	function handler_admin_job(&$page, $job = null) {
	165	require_once("googleapps.inc.php");
	166	$page->changeTpl('googleapps/admin.job.tpl');
	167	$page->setTitle('Administration Google Apps');
	168	$page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));
	169
	170	if ($job) {
	171	$res = XDB::query(
	172	"SELECT q.*, ao.alias AS q_owner, ar.alias AS q_recipient
	173	FROM gapps_queue AS q
	174	LEFT JOIN aliases AS ao ON (ao.uid = q.q_owner_id AND ao.type = 'a_vie')
	175	LEFT JOIN aliases AS ar ON (ar.uid = q.q_recipient_id AND ar.type = 'a_vie')
	176	WHERE q_id = {?}", $job);
	177	$sql_job = $res->fetchOneAssoc();
	178	$sql_job['decoded_parameters'] = var_export(json_decode($sql_job['j_parameters'], true), true);
	179	$page->assign('job', $sql_job);
	180	}
	181	}
	182
	183	function handler_admin_user(&$page, $user = null) {
	184	require_once("emails.inc.php");
	185	require_once("googleapps.inc.php");
	186	$page->changeTpl('googleapps/admin.user.tpl');
	187	$page->setTitle('Administration Google Apps');
	188	$page->assign('googleapps_admin', GoogleAppsAccount::is_administrator(S::v('uid')));
	189
	190	if (!$user && Post::has('login')) {
	191	$user = Post::v('login');
	192	}
	193	$user = User::get($user);
	194
	195	if ($user) {
	196	$account = new GoogleAppsAccount($user);
	197	$storage = new EmailStorage($user, 'googleapps');
	198
	199	// Apply requested actions.
	200	if (Post::has('suspend') && $account->active() && !$account->pending_update_suspension) {
	201	S::assert_xsrf_token();
	202	$account->suspend();
	203	$page->trigSuccess('Le compte est en cours de suspension.');
	204	} else if (Post::has('unsuspend') && $account->suspended() && !$account->pending_update_suspension) {
	205	S::assert_xsrf_token();
	206	$account->do_unsuspend();
	207	$page->trigSuccess('Le compte est en cours de réactivation.');
	208	} else if (Post::has('forcesync') && $account->active() && $account->sync_password) {
	209	$account->set_password($user->password());
	210	$page->trigSuccess('Le mot de passe est en cours de synchronisation.');
	211	} else if (Post::has('sync') && $account->active()) {
	212	$account->set_password($user->password());
	213	$account->set_password_sync(true);
	214	} else if (Post::has('nosync') && $account->active()) {
	215	$account->set_password_sync(false);
	216	}
	217
	218	// Displays basic account information.
	219	$page->assign('account', $account);
	220	$page->assign('admin_account', GoogleAppsAccount::is_administrator($user->id()));
	221	$page->assign('googleapps_storage', $storage->active);
	222	$page->assign('user', $user->id());
	223
	224	// Retrieves user's pending requests.
	225	$res = XDB::iterator(
	226	"SELECT q_id, q_recipient_id, p_status, j_type, UNIX_TIMESTAMP(p_entry_date) AS p_entry_date
	227	FROM gapps_queue
	228	WHERE q_recipient_id = {?}
	229	ORDER BY p_entry_date DESC", $user->id());
	230	$page->assign('requests', $res);
	231	}
	232	}
	233	}
	234
	235	// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
	236	?>