2011-02-15 Juan Manuel Ramon <juanmanuel.ramon@artica.es>

* godmode/users/user_list.php: Only display administrator users if current user is administrator too. * godmode/users/configure_user.php: Only administrator can create administrator users. Only administrator users can assign group "All" to a profile. Fixes: #3180761 git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@3860 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2011-02-15 17:49:13 +00:00 · 2011-02-15 17:49:13 +00:00 · 0c0ab29ec8
parent 37df52a4ff
commit 0c0ab29ec8
3 changed files with 33 additions and 9 deletions
--- a/pandora_console/ChangeLog
+++ b/pandora_console/ChangeLog
@ -1,3 +1,13 @@
+2011-02-15 Juan Manuel Ramon <juanmanuel.ramon@artica.es>
+
+	* godmode/users/user_list.php: Only display administrator users if
+	current user is administrator too. 
+	* godmode/users/configure_user.php: Only administrator can create
+	administrator users. Only administrator users can assign group "All" to
+	a profile.  
+
+	Fixes: #3180761
+
 2011-02-15 Miguel de Dios  <miguel.dedios@artica.es>

 	* pandoradb.postgreSQL.sql, pandoradb.data.postgreSQL.sql: added column
--- a/pandora_console/godmode/users/configure_user.php
+++ b/pandora_console/godmode/users/configure_user.php
@ -258,13 +258,16 @@ if ($config['user_can_update_password']) {
 		'', 15, 255, $view_mode, '', '', true, true);
 }

+$own_info = get_user_info ($config['id_user']);
 if ($config['admin_can_make_admin']) {
 	$table->data[6][0] = __('Global Profile');
-	$table->data[6][1] = print_radio_button ('is_admin', 1, '', $user_info['is_admin'], true);
-	$table->data[6][1] .= __('Administrator');
-	$table->data[6][1] .= print_help_tip (__("This user has permissions to manage all. This is admin user and overwrites all permissions given in profiles/groups"), true);
-	$table->data[6][1] .= '<br />';
-	
+	$table->data[6][1] = '';
+	if ($own_info['is_admin'] || $user_info['is_admin']){
+		$table->data[6][1] = print_radio_button ('is_admin', 1, '', $user_info['is_admin'], true);
+		$table->data[6][1] .= __('Administrator');
+		$table->data[6][1] .= print_help_tip (__("This user has permissions to manage all. This is admin user and overwrites all permissions given in profiles/groups"), true);
+		$table->data[6][1] .= '<br />';
+	}
 	$table->data[6][1] .= print_radio_button ('is_admin', 0, '', $user_info['is_admin'], true);
 	$table->data[6][1] .= __('Standard User');
 	$table->data[6][1] .= print_help_tip (__("This user has separated permissions to view data in his group agents, create incidents belong to his groups, add notes in another incidents, create personal assignments or reviews and other tasks, on different profiles"), true);
@ -363,7 +366,7 @@ $data = array ();
 $data[0] = '<form method="post">';
 $data[0] .= print_select (get_profiles (), 'assign_profile', 0, '', __('None'),
 	0, true, false, false);
-$data[1] = print_select_groups($config['id_user'], "UM", true,
+$data[1] = print_select_groups($config['id_user'], "UM", $own_info['is_admin'],
 	'assign_group', -1, '', __('None'), -1, true, false, false);
 $data[2] = print_input_image ('add', 'images/add.png', 1, '', true);
 $data[2] .= print_input_hidden ('id', $id, true);
--- a/pandora_console/godmode/users/user_list.php
+++ b/pandora_console/godmode/users/user_list.php
@ -140,11 +140,22 @@ $table->align[3] = "center";
 $table->align[5] = "center";
 $table->size[5] = 40;

-$info = array ();
+$info1 = array ();

-$info = get_users ($order, array ('offset' => (int) get_parameter ('offset'),
+$info1 = get_users ($order, array ('offset' => (int) get_parameter ('offset'),
 			'limit' => (int) $config['block_size']));

+$info = array();
+$own_info = get_user_info ($config['id_user']);	
+
+if ($own_info['is_admin'])
+	$info = $info1;
+// If user is not admin then don't display admin users.
+else
+	foreach ($info1 as $key => $usr)
+		if (!$usr['is_admin'])
+			$info[$key] = $usr;
+
 // Prepare pagination
 pagination (count(get_users ()));