galads/icehrm
1
0
Fork 0
Code Issues Pull Requests Releases Activity
Files
b2f83c51e4f0aa4567ac0802175e942b9ae8146d
icehrm/ext/admin/users/api/UsersAdminManager.php
Thilina Hasantha 31bb455d6f Release note v16.0 
------------------
### Features
 * Advanced Employee Management Module is now included in IceHrm Open Source Edition
 * LDAP Module which was only available in IceHrm Enterprise is now included in open source also
 * Initial implementation of icehrm REST Api for reading employee details
 * Improvements to data filtering
 * Multiple tabs for settings module
 * Overtime reports - now its possible to calculate overtime for employees.compatible with US overtime rules
 * Logout the user if tried accessing an unauthorized module
 * Setting for updating module names

### Fixes
 * Fix issue: classes should be loaded even the module is disabled
 * Deleting the only Admin user is not allowed
 * Fixes for handling non UTF-8
 * Fix for non-mandatory select boxes are shown as mandatory
2016-04-15 20:24:39 +05:30

107 lines
3.1 KiB
PHP
Raw Blame History

<?php
if (!class_exists('UsersAdminManager')) {
class UsersAdminManager extends AbstractModuleManager{
public function initializeUserClasses(){
}
public function initializeFieldMappings(){
}
public function initializeDatabaseErrorMappings(){
}
public function setupModuleClassDefinitions(){
$this->addModelClass('User');
}
public function getDashboardItemData(){
$data = array();
$user = new User();
$data['numberOfUsers'] = $user->Count("1 = 1");
return $data;
}
}
}
if (!class_exists('User')) {
class User extends ICEHRM_Record {
public function getAdminAccess(){
return array("get","element","save","delete");
}
public function getUserAccess(){
return array();
}
public function validateSave($obj){
$userTemp = new User();
if(empty($obj->id)){
$users = $userTemp->Find("email = ?",array($obj->email));
if(count($users) > 0){
return new IceResponse(IceResponse::ERROR,"A user with same authentication email already exist");
}
}else{
$users = $userTemp->Find("email = ? and id <> ?",array($obj->email, $obj->id));
if(count($users) > 0){
return new IceResponse(IceResponse::ERROR,"A user with same authentication email already exist");
}
//Check if you are trying to change user level
$oldUser = new User();
$oldUser->Load("id = ?",array($obj->id));
if($oldUser->user_level != $obj->user_level && $oldUser->user_level == 'Admin'){
$adminUsers = $userTemp->Find("user_level = ?",array("Admin"));
if(count($adminUsers) == 1 && $adminUsers[0]->id == $obj->id){
return new IceResponse(IceResponse::ERROR,"You are the only admin user for the application. You are not allowed to revoke your admin rights");
}
}
}
//Check if the user have rights to the default module
if(!empty($obj->default_module)){
$module = new Module();
$module->Load("id = ?",array($obj->default_module));
if($module->mod_group == "user"){
$module->mod_group = "modules";
}
$moduleManager = BaseService::getInstance()->getModuleManager($module->mod_group, $module->name);
if(!BaseService::getInstance()->isModuleAllowedForGivenUser($moduleManager, $obj)){
return new IceResponse(IceResponse::ERROR,"This module can not be set as the default module for the user since the user do not have access to this module");
}
}
return new IceResponse(IceResponse::SUCCESS,"");
}
var $_table = 'Users';
}
}
if (!class_exists('UserRole')) {
class UserRole extends ICEHRM_Record {
public function getAdminAccess(){
return array("get","element","save","delete");
}
public function getUserAccess(){
return array();
}
var $_table = 'UserRoles';
}
}
Reference in New Issue View Git Blame Copy Permalink