groups_table, "name", "id", "fGroupID"); $oPatternListBox->setFromClause("LEFT OUTER JOIN groups_units_link GUL on ST.id=GUL.group_id " . "LEFT OUTER JOIN units_lookup UL on GUL.unit_id=UL.id"); $oPatternListBox->setCompositeDisplayName("COALESCE(CONCAT(CONCAT(UL.name, '-'),ST.name),ST.name)"); } else if (Permission::userIsUnitAdministrator()) { // else if this is a unit administrator, only display the groups in your unit $oPatternListBox = & new PatternListBox($default->groups_table, "name", "id", "fGroupID"); $oPatternListBox->setFromClause("INNER JOIN $default->groups_units_table GUL on ST.id=GUL.group_id"); $oPatternListBox->setWhereClause("GUL.unit_id IN (" . implode(",", User::getUnitIDs($_SESSION["userID"])) . ")"); $oPatternListBox->setIncludeDefaultValue(false); } $oPatternListBox->setPostBackOnChange(true); if ($iGroupID != 0) { $oPatternListBox->setSelectedValue($iGroupID); } return "

" . _("Filter By Group") . "

" . $oPatternListBox->render() . "

"; } function getNameDisplay($sName) { return "

" . _("Filter By Name") . "

"; } function getUsers($iGroupID, $sName) { global $default; // changed from inner to outer joins to include users that aren't in any groups (Stefano Ciancio [s.ciancio@pisa.iol.it]) $aParam = array(); /*ok*/ $sQuery = "SELECT DISTINCT U.id as userid, U.name as name, U.username, " . "'Edit' AS \"Edit\", 'Delete' AS \"Delete\", 'Edit Groups' AS \"Edit Groups\" " . "FROM $default->users_table U " . "LEFT OUTER JOIN $default->users_groups_table UGL ON U.id = UGL.user_id " . "LEFT OUTER JOIN $default->groups_table GL ON UGL.group_id = GL.id "; // filter by group if ($iGroupID) { $sWhereClause = "WHERE UGL.group_id = ? "; $aParams[] = $iGroupID; } // filter by name if ($sName) { $sWhereClause = "WHERE U.name like '%" . DBUtil::escapeSimple($sName) . "%' "; } // #2978 don't display sys admin accounts if you're not a sysadmin if (!Permission::userIsSystemAdministrator()) { $sRestrictUsers = " GL.is_sys_admin = 0 "; if (strlen($sWhereClause) > 0) { $sWhereClause .= " AND $sRestrictUsers"; } else { $sWhereClause = "WHERE $sRestrictUsers"; } } $sQuery .= $sWhereClause . "ORDER BY U.username"; $aColumns = array("name", "username", "Edit", "Delete", "Edit Groups"); $aColumnNames = array(_("Name"), _("Username"), _("Edit"), _("Delete"), _("Edit Groups")); $aColumnTypes = array(1,1,3,3,3); $aDBColumnArray = array("userid"); $aQueryStringVariableNames = array("fUserID"); $aHyperLinkURL = array( 2=> "$default->rootUrl/control.php?action=editUser", 3=> "$default->rootUrl/control.php?action=removeUser", 4=> "$default->rootUrl/control.php?action=editUserGroups"); $oSearchResults = & new PatternTableSqlQuery(array($sQuery, $aParams), $aColumns, $aColumnTypes, $aColumnNames, "100%", $aHyperLinkURL,$aDBColumnArray,$aQueryStringVariableNames); $oSearchResults->setDisplayColumnHeadings(true); return $oSearchResults->render() ; } function getPage($iGroupID, $sName) { global $default; $sToRender .= renderHeading(_("User Management")); // add user link if you're a sysadmin if (Permission::userIsSystemAdministrator()) { $sToRender .= getAddLink("addUser", _("Add A User")); } $sToRender .= getGroupDisplay($iGroupID); $sToRender .= getNameDisplay($sName); $sToRender .= getUsers($iGroupID, $sName); return $sToRender; } ?>