Rev 2 | Rev 4 | Go to most recent revision | Blame | Compare with Previous | Last modification | View Log | RSS feed
#!/usr/bin/perl# Redirect error messages to a log of my choosing. (it's annoying to filter for errors in the shared env)#my $error_log_path = $ENV{SERVER_NAME} eq "volunteers.rollercon.com" ? "/home3/rollerco/logs/" : "/tmp/";#close STDERR;#open STDERR, '>>', $error_log_path.'vorc_error.log' or warn "Failed to open redirected logfile ($0): $!";#warn "Redirecting errors to ${error_log_path}vorc_error.log";use strict;use PEEPS;use CGI qw/param header start_html url/;use CGI::Cookie;our $h = HTML::Tiny->new( mode => 'html' );my $dbh = getRCDBH ();$ENV{HTTPS} = 'ON';my $cookie_string = authenticate (1) || die;my ($EML, $PWD, $LVL) = split /&/, $cookie_string;my $user = $ORCUSER;my @ERRORS;#my $activated = $ORCUSER->{access};print header (-cookie=>CGI::Cookie->new(-name=>'PEEPSAUTH',-value=>"$cookie_string"));#foreach (sort keys %ENV) {# print "$_: $ENV{$_}\n<br>";#}use DateTime;my $dt = DateTime->today;$dt =~ s/T00\:00\:00$//;#for my $key (sort keys %{$user}) {# print "$key: $user->{$key}<br>";#}my $league_id = WebDB::trim param ("league_id") // printError ("League ID not set.");my $person_id = WebDB::trim param ("person_id") // printError ("Person ID not set.");# Does the league exist?my $league_name = getLeagueName ($league_id);printError ("League not found ($league_id).") unless $league_name;# Is the current user a League (or WFTDA) Admin?my ($isALeagueAdmin) = $dbh->selectrow_array ("select 1 from role where role = ? and member_org_id = ? and person_id = ?", undef, "League Admin", $league_id, $user->{person_id});my ($isAWFTDAAdmin) = $dbh->selectrow_array ("select 1 from role where role = ? and member_org_id = ? and person_id = ?", undef, "System Admin", 4276, $user->{person_id});printError ("Not a League Admin for $league_name") unless ($isALeagueAdmin or $isAWFTDAAdmin);# Does the person exist...my $target_person = getUser ($person_id);# ...within the leauge?my @roles = @{ $dbh->selectall_arrayref ("select id, role from role where person_id = ? and member_org_id = ? order by role", undef, $person_id, $league_id) };my %rolename = map { $_->[0] => $_->[1] } @roles;printError ("Person ID not found, or they don't exist within your League") unless scalar @roles;if (my $RoleID = WebDB::trim scalar param ("Delete")) {printError ("Improperly formatted RoleID [$_]") unless $RoleID =~ /^\d+$/;if (scalar @roles == 1) {my $confirmed = WebDB::trim scalar param ("Confirmed") // "";if (!$confirmed) {# confirm removing the user from the org first...printRCHeader ("User Role Manager");print $h->h2 ("Deleting role from user...");print $h->open ("form", { action=>url, method=>'POST', name=>'UserRoleForm', id=>'UserForm' });print $h->input ({ type=>"hidden", name=>"person_id", value=>$person_id}),$h->input ({ type=>"hidden", name=>"league_id", value=>$league_id}),$h->input ({ type=>"hidden", name=>"Delete", value=>$RoleID});print $h->div ("Removing this role will remove this person from your Organization.".$h->br."Are you sure you want to do that?");print $h->div ([$h->input ({type=>"submit", name=>"Confirmed", value=>"Yes"}), ' ', $h->input ({type=>"submit", name=>"Confirmed", value=>"Cancel"})]);print $h->close ("form", "body", "html");exit;} elsif ($confirmed eq "Yes") {# delete the role$dbh->do ("delete from role where member_org_id = ? and person_id = ? and id = ?", undef, $league_id, $person_id, $RoleID);$dbh->do ("replace into full_person select * from v_person where id = ? and league_id = ?", undef, $person_id, $league_id);logit ($person_id, "Removed from the '$rolename{$RoleID}' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");logit ($user->{person_id}, "Removed user ".$target_person->{derby_name}." [ID:$person_id] from the '$rolename{$RoleID}' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");orglogit ($user->{person_id}, $league_id, "Removed user ".$target_person->{derby_name}." [ID:$person_id] from the '$rolename{$RoleID}' role [ID:$RoleID] and league");#warn "Removing RoleID: $RoleID";}# They didn't confirm the delete, don't do anything} else {$dbh->do ("delete from role where member_org_id = ? and person_id = ? and id = ?", undef, $league_id, $person_id, $RoleID);$dbh->do ("replace into full_person select * from v_person where id = ? and league_id = ?", undef, $person_id, $league_id);logit ($person_id, "Removed from the '$rolename{$RoleID}' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");logit ($user->{person_id}, "Removed user ".$target_person->{derby_name}." [ID:$person_id] from the '$rolename{$RoleID}' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");orglogit ($user->{person_id}, $league_id, "Removed user ".$target_person->{derby_name}." [ID:$person_id] from the '$rolename{$RoleID}' role [ID:$RoleID]");#warn "Removing RoleID: $RoleID";}@roles = @{ $dbh->selectall_arrayref ("select id, role from role where person_id = ? and member_org_id = ? order by role", undef, $person_id, $league_id) };}if (WebDB::trim scalar param ("savenewrole") eq "Save") {my $NewRole = WebDB::trim scalar param ("newrole");# We should check to make sure the new role is acceptable...my ($RoleID) = $dbh->selectrow_array ("select id from role where person_id = ? and member_org_id = ? and role = ?", undef, $person_id, $league_id, "Pending");if ($RoleID) {$dbh->do ("update role set role = ? where member_org_id = ? and person_id = ? and id = ?", undef, $NewRole, $league_id, $person_id, $RoleID);$dbh->do ("replace into full_person select * from v_person where id = ? and league_id = ?", undef, $person_id, $league_id);logit ($person_id, "Updated to the '$NewRole' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");logit ($user->{person_id}, "Updated user ".$target_person->{derby_name}." [ID:$person_id] to the '$NewRole' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");orglogit ($user->{person_id}, $league_id, "Added user ".$target_person->{derby_name}." [ID:$person_id] to the league and '$NewRole' role [ID:$RoleID]");# Maybe send an email to the user that they've been added to the league...} else {$dbh->do ("insert into role (member_org_id, person_id, role) values (?, ?, ?)", undef, $league_id, $person_id, $NewRole);$RoleID = $dbh->last_insert_id ();$dbh->do ("replace into full_person select * from v_person where id = ? and league_id = ?", undef, $person_id, $league_id);logit ($person_id, "Added to the '$NewRole' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");logit ($user->{person_id}, "Added user ".$target_person->{derby_name}." [ID:$person_id] to the '$NewRole' role [ID:$RoleID] for ".getLeagueName ($league_id)." [ID:$league_id]");orglogit ($user->{person_id}, $league_id, "Added user ".$target_person->{derby_name}." [ID:$person_id] to the '$NewRole' role [ID:$RoleID]");}@roles = @{ $dbh->selectall_arrayref ("select id, role from role where person_id = ? and member_org_id = ? order by role", undef, $person_id, $league_id) };}printRCHeader ("User Role Manager");print $h->h2 ("Roles for $target_person->{derby_name} in $league_name:");print $h->open ("form", { action=>url, method=>'POST', name=>'UserRoleForm', id=>'UserForm' });print $h->input ({ type=>"hidden", name=>"person_id", value=>$person_id}),$h->input ({ type=>"hidden", name=>"league_id", value=>$league_id});my @leagueroles = ($h->div ({ class=>"rTableRow" },[ $h->div ({ class=>"rTableHead", style=>"font-size: smaller;" }, "Role".' '.$h->input ({type=>"submit", name=>"Add", value=>"Add"}), "Change" ) ]));foreach (@roles) {}push @leagueroles, map { $h->div ({ class=>"rTableRow shaded" },[ $h->div ({ class=>"rTableCellr".($_->[1] eq "Pending" ? " highlighted" : ""), style=>"font-size: smaller;".($_->[1] eq "Pending" ? " font-style: italic;" : "") },$_->[1], [ $h->input ({type=>"submit", name=>"Delete", value=>"Delete", onClick=>"this.value=$_->[0]"}) ] ) ]) } @roles; # Change button -> , $h->input ({type=>"submit", name=>"Change", value=>"Change", onClick=>"this.value=$_->[0]"})if (WebDB::trim scalar param ("Add")) {use tableViewer qw(notInArray);my @allowed_roles = grep { notInArray ($_, [map { $_->[1] } @roles]) } map { $_->[0] } @{ $dbh->selectall_arrayref ("select distinct role from role order by role") };push @leagueroles, $h->div ({ class=>"rTableRow shaded" },[ $h->div ({ class=>"rTableCellr"}, $h->select ({name=>"newrole"}, [ map { $h->option ($_) } @allowed_roles ]), $h->input ({type=>"submit", name=>"savenewrole", value=>"Save"}).' '.$h->button ("Cancel")) ]);}print $h->ul ([@leagueroles]);print $h->ul ($h->input ({type=>"button", onClick=>"window.location.href='view_user?person_id=$person_id'", value=>"Back"}));print $h->close ("form");sub printError {my $message = shift // "Unknown Error";printRCHeader("Manage Role");print $h->close ("table");print $h->h2 ("Error:");print $h->div ({ style=>"max-width:450px;" }, $message, " ");print $h->button ({onclick => "window.location.href='/';"}, "Home");print $h->close ("BODY", "HTML");logit ($user->{id}, "ERROR (Manage Role) ".$message);exit;}