Sindbad~EG File Manager
<?php
# MantisBT - A PHP based bugtracking system
# MantisBT is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
#
# MantisBT is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with MantisBT. If not, see <http://www.gnu.org/licenses/>.
/**
* Mantis Configuration Report
* @package MantisBT
* @copyright Copyright 2000 - 2002 Kenzaburo Ito - kenito@300baud.org
* @copyright Copyright 2002 MantisBT Team - mantisbt-dev@lists.sourceforge.net
* @link http://www.mantisbt.org
*
* @uses core.php
* @uses access_api.php
* @uses authentication_api.php
* @uses config_api.php
* @uses constant_inc.php
* @uses database_api.php
* @uses form_api.php
* @uses helper_api.php
* @uses html_api.php
* @uses lang_api.php
* @uses print_api.php
* @uses project_api.php
* @uses string_api.php
* @uses user_api.php
*/
require_once( 'core.php' );
require_api( 'access_api.php' );
require_api( 'authentication_api.php' );
require_api( 'config_api.php' );
require_api( 'constant_inc.php' );
require_api( 'database_api.php' );
require_api( 'form_api.php' );
require_api( 'helper_api.php' );
require_api( 'html_api.php' );
require_api( 'lang_api.php' );
require_api( 'print_api.php' );
require_api( 'project_api.php' );
require_api( 'string_api.php' );
require_api( 'user_api.php' );
access_ensure_global_level( config_get( 'view_configuration_threshold' ) );
$t_read_write_access = access_has_global_level( config_get( 'set_configuration_threshold' ) );
layout_page_header( lang_get( 'configuration_report' ) );
layout_page_begin( 'manage_overview_page.php' );
print_manage_menu( 'adm_permissions_report.php' );
print_manage_config_menu( 'adm_config_report.php' );
$t_config_types = array(
CONFIG_TYPE_DEFAULT => 'default',
CONFIG_TYPE_INT => 'integer',
CONFIG_TYPE_FLOAT => 'float',
CONFIG_TYPE_COMPLEX => 'complex',
CONFIG_TYPE_STRING => 'string',
);
/**
* returns the configuration type for a given configuration type id
* @param integer $p_type Configuration type identifier to check.
* @return string configuration type
*/
function get_config_type( $p_type ) {
global $t_config_types;
if( array_key_exists( $p_type, $t_config_types ) ) {
return $t_config_types[$p_type];
} else {
return $t_config_types[CONFIG_TYPE_DEFAULT];
}
}
/**
* Display a given config value appropriately
* @param integer $p_type Configuration type id.
* @param mixed $p_value Configuration value.
* @param boolean $p_for_display Whether to pass the value via string attribute for web browser display.
* @return void
*/
function print_config_value_as_string( $p_type, $p_value, $p_for_display = true ) {
$t_corrupted = false;
switch( $p_type ) {
case CONFIG_TYPE_DEFAULT:
return;
case CONFIG_TYPE_FLOAT:
echo (float)$p_value;
return;
case CONFIG_TYPE_INT:
echo (integer)$p_value;
return;
case CONFIG_TYPE_STRING:
$t_value = string_html_specialchars( config_eval( $p_value ) );
if( $p_for_display ) {
$t_value = '<p id="adm-config-value">\'' . string_nl2br( $t_value ) . '\'</p>';
}
echo $t_value;
return;
case CONFIG_TYPE_COMPLEX:
$t_value = @json_decode( $p_value, true );
if( $t_value === false ) {
$t_corrupted = true;
}
break;
default:
$t_value = config_eval( $p_value );
break;
}
if( $t_corrupted ) {
$t_output = $p_for_display ? lang_get( 'configuration_corrupted' ) : '';
} else {
$t_output = var_export( $t_value, true );
}
if( $p_for_display ) {
echo '<pre id="adm-config-value">' . string_attribute( $t_output ) . '</pre>';
} else {
echo $t_output;
}
}
/**
* Generate an html option list for the given array
* @param array $p_array Array.
* @param string $p_filter_value The selected value.
* @return void
*/
function print_option_list_from_array( array $p_array, $p_filter_value ) {
foreach( $p_array as $t_key => $t_value ) {
echo '<option value="' . $t_key . '"';
check_selected( (string)$p_filter_value, (string)$t_key );
echo '>' . string_attribute( $t_value ) . '</option>' . "\n";
}
}
/**
* Ensures the given config is valid
* @param string $p_config Configuration name
* @return string|integer Config name if valid, or META_FILTER_NONE of not
*/
function check_config_value( $p_config ) {
if( $p_config != META_FILTER_NONE
&& !is_blank( $p_config )
&& is_null( @config_get( $p_config ) )
) {
return META_FILTER_NONE;
}
return $p_config;
}
# Get filter values
$t_filter_save = gpc_get_bool( 'save' );
$t_filter_default = gpc_get_bool( 'default_filter_button', false );
$t_filter_reset = gpc_get_bool( 'reset_filter_button', false );
if( $t_filter_default ) {
$t_filter_user_value = ALL_USERS;
$t_filter_project_value = ALL_PROJECTS;
$t_filter_config_value = META_FILTER_NONE;
} else if( $t_filter_reset ) {
$t_filter_user_value = META_FILTER_NONE;
$t_filter_project_value = META_FILTER_NONE;
$t_filter_config_value = META_FILTER_NONE;
} else {
$t_filter_user_value = gpc_get_int( 'filter_user_id', ALL_USERS );
$t_filter_project_value = gpc_get_int( 'filter_project_id', ALL_PROJECTS );
$t_filter_config_value = check_config_value( gpc_get_string( 'filter_config_id', META_FILTER_NONE ) );
}
# Manage filter's persistency through cookie
$t_cookie_name = config_get( 'manage_config_cookie' );
if( $t_filter_save ) {
# Save user's filter to the cookie
$t_cookie_string = implode(
':',
array(
$t_filter_user_value,
$t_filter_project_value,
$t_filter_config_value,
)
);
gpc_set_cookie( $t_cookie_name, $t_cookie_string, true );
} else {
# Retrieve the filter from the cookie if it exists
$t_cookie_string = gpc_get_cookie( $t_cookie_name, null );
if( null !== $t_cookie_string ) {
$t_cookie_contents = explode( ':', $t_cookie_string );
$t_filter_user_value = $t_cookie_contents[0];
$t_filter_project_value = $t_cookie_contents[1];
$t_filter_config_value = check_config_value( $t_cookie_contents[2] );
if( $t_filter_project_value != META_FILTER_NONE && !project_exists( $t_filter_project_value ) ) {
$t_filter_project_value = ALL_PROJECTS;
}
}
}
# Get config edit values
$t_edit_user_id = gpc_get_int( 'user_id', $t_filter_user_value == META_FILTER_NONE ? ALL_USERS : $t_filter_user_value );
$t_edit_project_id = gpc_get_int( 'project_id', $t_filter_project_value == META_FILTER_NONE ? ALL_PROJECTS : $t_filter_project_value );
$t_edit_option = gpc_get_string( 'config_option', $t_filter_config_value == META_FILTER_NONE ? '' : $t_filter_config_value );
$t_edit_type = gpc_get_string( 'type', CONFIG_TYPE_DEFAULT );
$t_edit_value = gpc_get_string( 'value', '' );
$t_edit_action = gpc_get_string( 'action', 'action_create' );
# Apply filters
# Get users in db having specific configs
$t_query = 'SELECT DISTINCT user_id FROM {config} WHERE user_id <> ' . db_param() ;
$t_result = db_query( $t_query, array( ALL_USERS ) );
if( $t_filter_user_value != META_FILTER_NONE && $t_filter_user_value != ALL_USERS ) {
# Make sure the filter value exists in the list
$t_users_list[$t_filter_user_value] = user_get_name( $t_filter_user_value );
} else {
$t_users_list = array();
}
while( $t_row = db_fetch_array( $t_result ) ) {
$t_user_id = $t_row['user_id'];
$t_users_list[$t_user_id] = user_get_name( $t_user_id );
}
asort( $t_users_list );
# Prepend '[any]' and 'All Users' to the list
$t_users_list = array(
META_FILTER_NONE => '[' . lang_get( 'any' ) . ']',
ALL_USERS => lang_get( 'all_users' ),
)
+ $t_users_list;
# Get projects in db with specific configs
$t_query = 'SELECT DISTINCT project_id, pt.name as project_name
FROM {config} ct
JOIN {project} pt ON pt.id = ct.project_id
WHERE project_id!=0
ORDER BY project_name';
$t_result = db_query( $t_query );
$t_projects_list[META_FILTER_NONE] = '[' . lang_get( 'any' ) . ']';
$t_projects_list[ALL_PROJECTS] = lang_get( 'all_projects' );
while( $t_row = db_fetch_array( $t_result ) ) {
extract( $t_row, EXTR_PREFIX_ALL, 'v' );
$t_projects_list[$v_project_id] = $v_project_name;
}
# Get config list used in db
$t_query = 'SELECT DISTINCT config_id FROM {config} ORDER BY config_id';
$t_result = db_query( $t_query );
$t_configs_list[META_FILTER_NONE] = '[' . lang_get( 'any' ) . ']';
if( $t_filter_config_value != META_FILTER_NONE ) {
# Make sure the filter value exists in the list
$t_configs_list[$t_filter_config_value] = $t_filter_config_value;
}
while( $t_row = db_fetch_array( $t_result ) ) {
extract( $t_row, EXTR_PREFIX_ALL, 'v' );
$t_configs_list[$v_config_id] = $v_config_id;
}
# Build filter's where clause
$t_where = '';
$t_param = array();
if( $t_filter_user_value != META_FILTER_NONE ) {
$t_where .= ' AND user_id = ' . db_param();
$t_param[] = $t_filter_user_value;
}
if( $t_filter_project_value != META_FILTER_NONE ) {
$t_where .= ' AND project_id = ' . db_param();
$t_param[] = $t_filter_project_value;
}
if( $t_filter_config_value != META_FILTER_NONE ) {
$t_where .= ' AND config_id = ' . db_param();
$t_param[] = $t_filter_config_value;
}
if( $t_where != '' ) {
$t_where = ' WHERE 1=1 ' . $t_where;
}
$t_query = 'SELECT config_id, user_id, project_id, type, value, access_reqd
FROM {config} ' . $t_where . ' ORDER BY user_id, project_id, config_id ';
$t_result = db_query( $t_query, $t_param );
?>
<div class="col-md-12 col-xs-12">
<div class="space-10"></div>
<!-- FILTER FORM -->
<form id="filter_form" method="post">
<?php # CSRF protection not required here - form does not result in modifications ?>
<input type="hidden" name="save" value="1" />
<div class="widget-box widget-color-blue2">
<div class="widget-header widget-header-small">
<h4 class="widget-title lighter">
<i class="ace-icon fa fa-filter"></i>
<?php echo lang_get( 'filters' ) ?>
</h4>
</div>
<div class="widget-body">
<div class="widget-main no-padding">
<div class="table-responsive">
<table class="table table-striped table-bordered table-condensed">
<!-- Title -->
<thead>
<tr>
<th>
<?php echo lang_get( 'username' ); ?><br />
</th>
<th>
<?php echo lang_get( 'project_name' ); ?><br />
</th>
<th>
<?php echo lang_get( 'configuration_option' ); ?><br />
</th>
</tr>
</thead>
<tbody>
<tr>
<td>
<select name="filter_user_id" class="input-sm">
<?php
print_option_list_from_array( $t_users_list, $t_filter_user_value );
?>
</select>
</td>
<td>
<select name="filter_project_id" class="input-sm">
<?php
print_option_list_from_array( $t_projects_list, $t_filter_project_value );
?>
</select>
</td>
<td>
<select name="filter_config_id" class="input-sm">
<?php
print_option_list_from_array( $t_configs_list, $t_filter_config_value );
?>
</select>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="widget-toolbox padding-8 clearfix">
<div class="btn-toolbar">
<div class="btn-group">
<input name="apply_filter_button" type="submit" class="btn btn-sm btn-primary btn-white btn-round"
value="<?php echo lang_get( 'filter_button' )?>" />
<input name="default_filter_button" type="submit" class="btn btn-sm btn-primary btn-white btn-round"
value="<?php echo lang_get( 'default_filter' )?>" />
<input name="reset_filter_button" type="submit" class="btn btn-sm btn-primary btn-white btn-round"
value="<?php echo lang_get( 'reset_query' )?>" />
</div>
</div>
</div>
</div>
</div>
</form>
<div class="space-10"></div>
<!-- CONFIGURATIONS LIST -->
<div class="widget-box widget-color-blue2">
<div class="widget-header widget-header-small">
<h4 class="widget-title lighter">
<i class="ace-icon fa fa-database"></i>
<?php echo lang_get( 'database_configuration' ) ?>
</h4>
</div>
<div class="widget-body">
<div class="widget-main no-padding">
<div class="table-responsive">
<table class="table table-striped table-bordered table-condensed table-hover">
<thead>
<tr>
<th><?php echo lang_get( 'username' ) ?></th>
<th><?php echo lang_get( 'project_name' ) ?></th>
<th><?php echo lang_get( 'configuration_option' ) ?></th>
<th><?php echo lang_get( 'configuration_option_type' ) ?></th>
<th><?php echo lang_get( 'configuration_option_value' ) ?></th>
<th><?php echo lang_get( 'access_level' ) ?></th>
<?php if( $t_read_write_access ) { ?>
<th><?php echo lang_get( 'actions' ) ?></th>
<?php } ?>
</tr>
</thead>
<tbody>
<?php
# Pre-generate a form security token to avoid performance issues when the
# db contains a large number of configurations
$t_form_security_token = form_security_token( 'adm_config_delete' );
while( $t_row = db_fetch_array( $t_result ) ) {
extract( $t_row, EXTR_PREFIX_ALL, 'v' );
?>
<!-- Repeated Info Rows -->
<tr>
<td>
<?php echo ($v_user_id == 0) ? lang_get( 'all_users' ) : string_display_line( user_get_name( $v_user_id ) ) ?>
</td>
<td><?php echo string_display_line( project_get_name( $v_project_id, false ) ) ?></td>
<td><?php echo string_display_line( $v_config_id ) ?></td>
<td><?php echo string_display_line( get_config_type( $v_type ) ) ?></td>
<td style="overflow-x:auto;"><?php print_config_value_as_string( $v_type, $v_value ) ?></td>
<td><?php echo get_enum_element( 'access_levels', $v_access_reqd ) ?></td>
<?php
if( $t_read_write_access ) {
?>
<td class="center">
<div class="btn-group inline">
<?php
if( config_can_delete( $v_config_id ) ) {
# Update button (will populate edit form at page bottom)
echo '<div class="pull-left">';
print_form_button(
'#config_set_form',
lang_get( 'edit_link' ),
array(
'user_id' => $v_user_id,
'project_id' => $v_project_id,
'config_option' => $v_config_id,
'type' => $v_type,
'value' => $v_value,
'action' => 'action_edit',
),
OFF );
echo '</div>';
# Clone button
echo '<div class="pull-left">';
print_form_button(
'#config_set_form',
lang_get( 'create_child_bug_button' ),
array(
'user_id' => $v_user_id,
'project_id' => $v_project_id,
'config_option' => $v_config_id,
'type' => $v_type,
'value' => $v_value,
'action' => 'action_clone',
),
OFF );
echo '</div>';
# Delete button
echo '<div class="pull-left">';
print_form_button(
'adm_config_delete.php',
lang_get( 'delete_link' ),
array(
'user_id' => $v_user_id,
'project_id' => $v_project_id,
'config_option' => $v_config_id,
),
$t_form_security_token
);
echo '</div>';
} else {
echo ' ';
}
?>
</div>
</td>
<?php
} # end if config_can_delete
?>
</tr>
<?php
} # end while loop
?>
</tbody>
</table>
</div>
</div>
</div>
</div>
<?php
# Only display the edit form if user is authorized to change configuration
if( $t_read_write_access ) {
?>
<!-- Config Set Form -->
<div class="space-10"></div>
<?php if( config_can_delete( $t_edit_option ) ){ ?>
<div id="config-edit-div">
<form id="config_set_form" method="post" action="adm_config_set.php">
<!-- Title -->
<div class="widget-box widget-color-blue2">
<div class="widget-header widget-header-small">
<h4 class="widget-title lighter">
<i class="ace-icon fa fa-sliders"></i>
<?php echo lang_get( 'set_configuration_option_' . $t_edit_action ) ?>
</h4>
</div>
<div class="widget-body">
<div class="widget-main no-padding">
<div id="config-edit-div" class="form-container">
<div class="table-responsive">
<table class="table table-bordered table-condensed table-striped">
<fieldset>
<?php echo form_security_field( 'adm_config_set' ) ?>
<!-- Username -->
<tr>
<td class="category">
<?php echo lang_get( 'username' ) ?>
</td>
<td>
<select id="config-user-id" name="user_id" class="input-sm">
<option value="<?php echo ALL_USERS; ?>"
<?php check_selected( $t_edit_user_id, ALL_USERS ) ?>>
<?php echo lang_get( 'all_users' ); ?>
</option>
<?php print_user_option_list( $t_edit_user_id ) ?>
</select>
<input type="hidden" name="original_user_id" value="<?php echo $t_edit_user_id; ?>" />
</td>
</tr>
<!-- Project -->
<tr>
<td class="category">
<?php echo lang_get( 'project_name' ) ?>
</td>
<td>
<select id="config-project-id" name="project_id" class="input-sm">
<option value="<?php echo ALL_PROJECTS; ?>"
<?php check_selected( $t_edit_project_id, ALL_PROJECTS ); ?>>
<?php echo lang_get( 'all_projects' ); ?>
</option>
<?php print_project_option_list( $t_edit_project_id, false ) ?>
</select>
<input type="hidden" name="original_project_id" value="<?php echo $t_edit_project_id; ?>" />
</td>
</tr>
<!-- Config option name -->
<tr>
<td class="category">
<?php echo lang_get( 'configuration_option' ) ?>
</td>
<td>
<input type="text" name="config_option" class="input-sm"
value="<?php echo string_display_line( $t_edit_option ); ?>"
size="64" maxlength="64" />
<input type="hidden" name="original_config_option" value="<?php echo $t_edit_option; ?>" />
</td>
</tr>
<!-- Option type -->
<tr>
<td class="category">
<?php echo lang_get( 'configuration_option_type' ) ?>
</td>
<td>
<select id="config-type" name="type" class="input-sm">
<?php print_option_list_from_array( $t_config_types, $t_edit_type ); ?>
</select>
</td>
</tr>
<!-- Option Value -->
<tr>
<td class="category">
<?php echo lang_get( 'configuration_option_value' ) ?>
</td>
<td>
<textarea class="form-control" name="value" cols="80" rows="10"><?php
print_config_value_as_string( $t_edit_type, $t_edit_value, false );
?></textarea>
</td>
</tr>
</fieldset>
</table>
</div>
</div>
<div class="widget-toolbox padding-4 clearfix">
<input type="hidden" name="action" value="<?php echo $t_edit_action; ?>" />
<input type="submit" name="config_set" class="btn btn-primary btn-white btn-round"
value="<?php echo lang_get( 'set_configuration_option_' . $t_edit_action ) ?>"/>
</div>
</div>
</div>
</div>
</form>
</div>
<?php } # end if config_can_delete ?>
<?php
} # end user can change config
echo '</div>';
layout_page_end();
Sindbad File Manager Version 1.0, Coded By Sindbad EG ~ The Terrorists