mirror of
https://github.com/SuiteCRM/SuiteCRM-Core.git
synced 2025-08-29 08:17:18 +08:00
c5f636e5bc
4e205ecf45 SuiteCRM 7.13.1 Release c5da36210d Add new modules to unit tests 6321c09b68 Fix #9870 - Fix log level in ImapHandlerFactory 1a0710f537 Add option to enable legacy email compose behaviour eaff3e776e Remove option to allow user to send as themselves from configuration 7f9c743c78 Only display outbound and system accounts on email compose from de1b0f2ad8 Update email compose from dropdown ed30b7575c Allow email compose to send using outbound-only accounts d3a58bd3e0 Fix #9878 - Catch unhandled error in imap2_close cc80eabbfd Fix #9878 - Fix InboundEmail save trim error 9190b40c48 Fix #9878 - Fix InboundEmail save error 0db3827d98 Fix #9878 - Fix relate select popup white screen error e8af74ba7b Fix #9878 - Fix undefined index notice git-subtree-dir: public/legacy git-subtree-split: 4e205ecf45d493ad1351c51f8ce787fa1c6400c9
379 lines
12 KiB
PHP
Executable file
379 lines
12 KiB
PHP
Executable file
<?php
|
|
/**
|
|
*
|
|
* SugarCRM Community Edition is a customer relationship management program developed by
|
|
* SugarCRM, Inc. Copyright (C) 2004-2013 SugarCRM Inc.
|
|
*
|
|
* SuiteCRM is an extension to SugarCRM Community Edition developed by SalesAgility Ltd.
|
|
* Copyright (C) 2011 - 2018 SalesAgility Ltd.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it under
|
|
* the terms of the GNU Affero General Public License version 3 as published by the
|
|
* Free Software Foundation with the addition of the following permission added
|
|
* to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
|
|
* IN WHICH THE COPYRIGHT IS OWNED BY SUGARCRM, SUGARCRM DISCLAIMS THE WARRANTY
|
|
* OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
|
|
* FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
|
|
* details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License along with
|
|
* this program; if not, see http://www.gnu.org/licenses or write to the Free
|
|
* Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
|
|
* 02110-1301 USA.
|
|
*
|
|
* You can contact SugarCRM, Inc. headquarters at 10050 North Wolfe Road,
|
|
* SW2-130, Cupertino, CA 95014, USA. or at email address contact@sugarcrm.com.
|
|
*
|
|
* The interactive user interfaces in modified source and object code versions
|
|
* of this program must display Appropriate Legal Notices, as required under
|
|
* Section 5 of the GNU Affero General Public License version 3.
|
|
*
|
|
* In accordance with Section 7(b) of the GNU Affero General Public License version 3,
|
|
* these Appropriate Legal Notices must retain the display of the "Powered by
|
|
* SugarCRM" logo and "Supercharged by SuiteCRM" logo. If the display of the logos is not
|
|
* reasonably feasible for technical reasons, the Appropriate Legal Notices must
|
|
* display the words "Powered by SugarCRM" and "Supercharged by SuiteCRM".
|
|
*/
|
|
|
|
if (!defined('sugarEntry') || !sugarEntry) {
|
|
die('Not A Valid Entry Point');
|
|
}
|
|
|
|
|
|
require_once('include/SugarObjects/templates/person/Person.php');
|
|
|
|
// Employee is used to store customer information.
|
|
class Employee extends Person
|
|
{
|
|
// Stored fields
|
|
public $name = '';
|
|
public $id;
|
|
public $is_admin;
|
|
public $first_name;
|
|
public $last_name;
|
|
public $full_name;
|
|
public $user_name;
|
|
public $title;
|
|
public $description;
|
|
public $department;
|
|
public $reports_to_id;
|
|
public $reports_to_name;
|
|
public $phone_home;
|
|
public $phone_mobile;
|
|
public $phone_work;
|
|
public $phone_other;
|
|
public $phone_fax;
|
|
public $email1;
|
|
public $email2;
|
|
public $address_street;
|
|
public $address_city;
|
|
public $address_state;
|
|
public $address_postalcode;
|
|
public $address_country;
|
|
public $date_entered;
|
|
public $date_modified;
|
|
public $modified_user_id;
|
|
public $created_by;
|
|
public $created_by_name;
|
|
public $modified_by_name;
|
|
public $status;
|
|
public $messenger_id;
|
|
public $messenger_type;
|
|
public $employee_status;
|
|
public $error_string;
|
|
public $person_id;
|
|
|
|
public $module_dir = "Employees";
|
|
|
|
|
|
public $table_name = "users";
|
|
|
|
public $object_name = "Employee";
|
|
public $user_preferences;
|
|
|
|
public $encodeFields = array("first_name", "last_name", "description");
|
|
|
|
// This is used to retrieve related fields from form posts.
|
|
public $additional_column_fields = array('reports_to_name');
|
|
|
|
|
|
|
|
public $new_schema = true;
|
|
|
|
public function __construct()
|
|
{
|
|
parent::__construct();
|
|
$this->setupCustomFields('Users');
|
|
$this->emailAddress = new SugarEmailAddress();
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public function get_summary_text()
|
|
{
|
|
$this->_create_proper_name_field();
|
|
return $this->name;
|
|
}
|
|
|
|
|
|
public function fill_in_additional_list_fields()
|
|
{
|
|
$this->fill_in_additional_detail_fields();
|
|
}
|
|
|
|
public function fill_in_additional_detail_fields()
|
|
{
|
|
global $locale;
|
|
$query = "SELECT u1.first_name, u1.last_name from users u1, users u2 where u1.id = u2.reports_to_id AND u2.id = '$this->id' and u1.deleted=0";
|
|
$result =$this->db->query($query, true, "Error filling in additional detail fields") ;
|
|
|
|
$row = $this->db->fetchByAssoc($result);
|
|
|
|
if ($row != null) {
|
|
$this->reports_to_name = stripslashes($locale->getLocaleFormattedName($row['first_name'], $row['last_name']));
|
|
} else {
|
|
$this->reports_to_name = '';
|
|
}
|
|
}
|
|
|
|
public function retrieve_employee_id($employee_name)
|
|
{
|
|
$query = "SELECT id from users where user_name='$user_name' AND deleted=0";
|
|
$result = $this->db->query($query, false, "Error retrieving employee ID: ");
|
|
$row = $this->db->fetchByAssoc($result);
|
|
return $row['id'];
|
|
}
|
|
|
|
/**
|
|
* @return -- returns a list of all employees in the system.
|
|
* Portions created by SugarCRM are Copyright (C) SugarCRM, Inc..
|
|
* All Rights Reserved..
|
|
* Contributor(s): ______________________________________..
|
|
*/
|
|
public function verify_data()
|
|
{
|
|
//none of the checks from the users module are valid here since the user_name and
|
|
//is_admin_on fields are not editable.
|
|
return true;
|
|
}
|
|
|
|
public function get_list_view_data()
|
|
{
|
|
$user_fields = parent::get_list_view_data();
|
|
|
|
// Copy over the reports_to_name
|
|
if (isset($GLOBALS['app_list_strings']['messenger_type_dom'][$this->messenger_type])) {
|
|
$user_fields['MESSENGER_TYPE'] = $GLOBALS['app_list_strings']['messenger_type_dom'][$this->messenger_type];
|
|
}
|
|
if (isset($GLOBALS['app_list_strings']['employee_status_dom'][$this->employee_status])) {
|
|
$user_fields['EMPLOYEE_STATUS'] = $GLOBALS['app_list_strings']['employee_status_dom'][$this->employee_status];
|
|
}
|
|
$user_fields['REPORTS_TO_NAME'] = $this->reports_to_name;
|
|
|
|
return $user_fields;
|
|
}
|
|
|
|
public function list_view_parse_additional_sections(&$list_form/*, $xTemplateSection*/)
|
|
{
|
|
return $list_form;
|
|
}
|
|
|
|
|
|
public function create_export_query($order_by, $where, $relate_link_join = '')
|
|
{
|
|
global $current_user;
|
|
if (!is_admin($current_user)) {
|
|
throw new RuntimeException('Not authorized');
|
|
}
|
|
|
|
include('modules/Employees/field_arrays.php');
|
|
|
|
$cols = '';
|
|
foreach ($fields_array['Employee']['export_fields'] as $field) {
|
|
$cols .= (empty($cols)) ? '' : ', ';
|
|
$cols .= $field;
|
|
}
|
|
|
|
$query = "SELECT {$cols} FROM users ";
|
|
|
|
$where_auto = " users.deleted = 0";
|
|
|
|
if ($where != "") {
|
|
$query .= " WHERE $where AND " . $where_auto;
|
|
} else {
|
|
$query .= " WHERE " . $where_auto;
|
|
}
|
|
|
|
if ($order_by != "") {
|
|
$query .= " ORDER BY $order_by";
|
|
} else {
|
|
$query .= " ORDER BY users.user_name";
|
|
}
|
|
|
|
return $query;
|
|
}
|
|
|
|
//use parent class
|
|
/**
|
|
* Generate the name field from the first_name and last_name fields.
|
|
*/
|
|
/*
|
|
function _create_proper_name_field() {
|
|
global $locale;
|
|
$full_name = $locale->getLocaleFormattedName($this->first_name, $this->last_name);
|
|
$this->name = $full_name;
|
|
$this->full_name = $full_name;
|
|
}
|
|
*/
|
|
|
|
public function preprocess_fields_on_save()
|
|
{
|
|
parent::preprocess_fields_on_save();
|
|
}
|
|
|
|
|
|
/**
|
|
* create_new_list_query
|
|
*
|
|
* Return the list query used by the list views and export button. Next generation of create_new_list_query function.
|
|
*
|
|
* We overrode this function in the Employees module to add the additional filter check so that we do not retrieve portal users for the Employees list view queries
|
|
*
|
|
* @param string $order_by custom order by clause
|
|
* @param string $where custom where clause
|
|
* @param array $filter Optioanal
|
|
* @param array $params Optional *
|
|
* @param int $show_deleted Optional, default 0, show deleted records is set to 1.
|
|
* @param string $join_type
|
|
* @param boolean $return_array Optional, default false, response as array
|
|
* @param object $parentbean creating a subquery for this bean.
|
|
* @param boolean $singleSelect Optional, default false.
|
|
* @return String select query string, optionally an array value will be returned if $return_array= true.
|
|
*/
|
|
public function create_new_list_query($order_by, $where, $filter=array(), $params=array(), $show_deleted = 0, $join_type='', $return_array = false, $parentbean=null, $singleSelect = false, $ifListForExport = false)
|
|
{
|
|
//create the filter for portal only users, as they should not be showing up in query results
|
|
if (empty($where)) {
|
|
$where = ' users.portal_only = 0 ';
|
|
} else {
|
|
$where .= ' and users.portal_only = 0 ';
|
|
}
|
|
|
|
//return parent method, specifying for array to be returned
|
|
return parent::create_new_list_query($order_by, $where, $filter, $params, $show_deleted, $join_type, $return_array, $parentbean, $singleSelect, $ifListForExport);
|
|
}
|
|
|
|
/*
|
|
* Overwrite Sugar bean which returns the current objects custom fields. Lets return User custom fields instead
|
|
*/
|
|
public function hasCustomFields()
|
|
{
|
|
|
|
//Check to see if there are custom user fields that we should report on, first check the custom_fields array
|
|
$userCustomfields = !empty($GLOBALS['dictionary']['Employee']['custom_fields']);
|
|
if (!$userCustomfields) {
|
|
//custom Fields not set, so traverse employee fields to see if any custom fields exist
|
|
foreach ($GLOBALS['dictionary']['Employee']['fields'] as $k=>$v) {
|
|
if (!empty($v['source']) && $v['source'] == 'custom_fields') {
|
|
//custom field has been found, set flag to true and break
|
|
$userCustomfields = true;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
//return result of search for custom fields
|
|
return $userCustomfields;
|
|
}
|
|
|
|
/**
|
|
* Override the original save function,
|
|
* for checking first is it same user as employee
|
|
* and disable to save any employee data for others.
|
|
* (admin user is an exception)
|
|
*
|
|
* @param bool $check_notify
|
|
* @return bool|string
|
|
*/
|
|
public function save($check_notify = false)
|
|
{
|
|
global $current_user;
|
|
if ($current_user->id) {
|
|
if (!is_admin($current_user)) {
|
|
if ($this->id && $current_user->id != $this->id) {
|
|
$GLOBALS['log']->security("{$current_user->name} tried to update {$this->name} record with out permission.");
|
|
$GLOBALS['log']->fatal("You can change only your own employee data.");
|
|
|
|
return false;
|
|
}
|
|
}
|
|
}
|
|
|
|
if (!$this->hasSaveAccess()) {
|
|
throw new RuntimeException('Not authorized');
|
|
}
|
|
|
|
// If the current user is not an admin, reset the admin flag to the original value.
|
|
$this->setIsAdmin();
|
|
|
|
return parent::save($check_notify);
|
|
}
|
|
|
|
/**
|
|
* Check if current user can save the current employee record
|
|
* @return bool
|
|
*/
|
|
protected function hasSaveAccess(): bool
|
|
{
|
|
global $current_user;
|
|
|
|
if (empty($this->id)) {
|
|
return true;
|
|
}
|
|
|
|
if (empty($current_user->id)) {
|
|
return false;
|
|
}
|
|
|
|
$sameUser = $current_user->id === $this->id;
|
|
|
|
return $sameUser || is_admin($current_user);
|
|
}
|
|
|
|
/**
|
|
* Reset is_admin if current user is not an admin user
|
|
* @return void
|
|
*/
|
|
protected function setIsAdmin(): void
|
|
{
|
|
global $current_user;
|
|
|
|
if (!isset($this->is_admin)) {
|
|
return;
|
|
}
|
|
|
|
$originalIsAdminValue = $this->is_admin ?? false;
|
|
if ($this->isUpdate() && isset($this->fetched_row['is_admin'])) {
|
|
$originalIsAdminValue = isTrue($this->fetched_row['is_admin'] ?? false);
|
|
}
|
|
|
|
$currentUserReloaded = BeanFactory::getReloadedBean('Users', $current_user->id);
|
|
if (!is_admin($currentUserReloaded)) {
|
|
$this->is_admin = $originalIsAdminValue;
|
|
}
|
|
|
|
}
|
|
|
|
/**
|
|
* @return bool
|
|
*/
|
|
protected function isUpdate(): bool
|
|
{
|
|
return !empty($this->id) && !$this->new_with_id;
|
|
}
|
|
}
|
