X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=admin%2Fcreate_coy.php;h=6667ea451e85da955df725451a9f3ab917642748;hb=49d2702ed98abe7a564a4abb4c8c5fa225f362e8;hp=ed557b6d97f62d814f9095ed4497da60e5525e00;hpb=da8311619dd73feae101d246a1957b972e00cbd2;p=fa-stable.git
diff --git a/admin/create_coy.php b/admin/create_coy.php
index ed557b6d..6667ea45 100644
--- a/admin/create_coy.php
+++ b/admin/create_coy.php
@@ -1,6 +1,15 @@
.
+***********************************************************************/
+$page_security = 'SA_CREATECOMPANY';
$path_to_root="..";
include_once($path_to_root . "/includes/session.inc");
@@ -9,15 +18,15 @@ include_once($path_to_root . "/admin/db/company_db.inc");
include_once($path_to_root . "/admin/db/maintenance_db.inc");
include_once($path_to_root . "/includes/ui.inc");
-page(_("Create/Update Company"));
+page(_($help_context = "Create/Update Company"));
+$comp_subdirs = array('images', 'pdf_files', 'backup','js_cache', 'reporting', 'attachments');
//---------------------------------------------------------------------------------------------
-
if (isset($_GET['selected_id']))
{
$selected_id = $_GET['selected_id'];
-}
+}
elseif (isset($_POST['selected_id']))
{
$selected_id = $_POST['selected_id'];
@@ -29,17 +38,52 @@ else
function check_data()
{
+ global $db_connections, $tb_pref_counter, $selected_id;
+
+ if ($_POST['name'] == "" || $_POST['host'] == "" || $_POST['dbuser'] == "" || $_POST['dbname'] == "")
+ return false;
+ foreach($db_connections as $id=>$con)
+ {
+ if($id != $selected_id && $_POST['host'] == $con['host']
+ && $_POST['dbname'] == $con['dbname'])
+ {
+ if ($_POST['tbpref'] == $con['tbpref'])
+ {
+ display_error(_("This database settings are already used by another company."));
+ return false;
+ }
+ if (($_POST['tbpref'] == 0) ^ ($con['tbpref'] == ''))
+ {
+ display_error(_("You cannot have table set without prefix together with prefixed sets in the same database."));
+ return false;
+ }
+ }
+ }
return true;
}
//---------------------------------------------------------------------------------------------
+function remove_connection($id) {
+ global $db_connections;
+
+ $err = db_drop_db($db_connections[$id]);
+
+ unset($db_connections[$id]);
+ $conn = array_values($db_connections);
+ $db_connections = $conn;
+ //$$db_connections = array_values($db_connections);
+ return $err;
+}
+//---------------------------------------------------------------------------------------------
+
function handle_submit()
{
- global $db_connections, $def_coy, $tb_pref_counter, $db;
+ global $db_connections, $def_coy, $tb_pref_counter, $db,
+ $comp_path, $comp_subdirs;
$new = false;
-
+
if (!check_data())
return false;
@@ -52,45 +96,38 @@ function handle_submit()
$db_connections[$id]['dbname'] = $_POST['dbname'];
if (isset($_GET['ul']) && $_GET['ul'] == 1)
{
- if ($_POST['tbpref'] == 1)
+ if (is_numeric($_POST['tbpref']))
{
- $db_connections[$id]['tbpref'] = $tb_pref_counter."_";
+ $db_connections[$id]['tbpref'] = $_POST['tbpref'] == 1 ?
+ $tb_pref_counter."_" : '';
$new = true;
}
else if ($_POST['tbpref'] != "")
$db_connections[$id]['tbpref'] = $_POST['tbpref'];
else
$db_connections[$id]['tbpref'] = "";
- }
+ }
if ((bool)$_POST['def'] == true)
$def_coy = $id;
- $error = write_config_db($new);
- if ($error == -1)
- display_error(_("Cannot open the configuration file - ") . $path_to_root . "/config_db.php");
- else if ($error == -2)
- display_error(_("Cannot write to the configuration file - ") . $path_to_root . "/config_db.php");
- else if ($error == -3)
- display_error(_("The configuration file ") . $path_to_root . "/config_db.php" . _(" is not writable. Change its permissions so it is, then re-run the operation."));
- if ($error != 0)
- return false;
if (isset($_GET['ul']) && $_GET['ul'] == 1)
{
$conn = $db_connections[$id];
if (($db = db_create_db($conn)) == 0)
{
display_error(_("Error creating Database: ") . $conn['dbname'] . _(", Please create it manually"));
+ remove_connection($id);
set_global_connection();
return false;
}
-
+
$filename = $_FILES['uploadfile']['tmp_name'];
- if (is_uploaded_file ($filename))
+ if (is_uploaded_file ($filename))
{
db_import($filename, $conn, $id);
- if (isset($_POST['admpassword']) && $_POST['admpassword'] != "")
- db_query("UPDATE ".$conn['tbpref']."users set password = '".md5($_POST['admpassword']). "' WHERE user_id = 'admin'");
- }
- else
+ if (isset($_POST['admpassword']) && $_POST['admpassword'] != "")
+ update_admin_password($conn, md5($_POST['admpassword']));
+ }
+ else
{
display_error(_("Error uploading Database Script, please upload it manually"));
set_global_connection();
@@ -98,6 +135,24 @@ function handle_submit()
}
set_global_connection();
}
+ $error = write_config_db($new);
+ if ($error == -1)
+ display_error(_("Cannot open the configuration file - ") . $path_to_root . "/config_db.php");
+ else if ($error == -2)
+ display_error(_("Cannot write to the configuration file - ") . $path_to_root . "/config_db.php");
+ else if ($error == -3)
+ display_error(_("The configuration file ") . $path_to_root . "/config_db.php" . _(" is not writable. Change its permissions so it is, then re-run the operation."));
+ if ($error != 0)
+ {
+ return false;
+ }
+
+ if ($new)
+ {
+ create_comp_dirs("$comp_path/$id", $comp_subdirs);
+ }
+ $exts = get_company_extensions();
+ write_extensions($exts, $id);
return true;
}
@@ -105,33 +160,66 @@ function handle_submit()
function handle_delete()
{
- global $def_coy, $db_connections;
+ global $comp_path, $def_coy, $db_connections, $comp_subdirs, $path_to_root;
- $id = $_GET['id'];
-
- $dbase = $db_connections[$id]['dbname'];
- $err = db_drop_db($db_connections[$id]);
+ $id = $_GET['id'];
- unset($db_connections[$id]);
- $conn = array_values($db_connections);
- $db_connections = $conn;
+ // First make sure all company directories from the one under removal are writable.
+ // Without this after operation we end up with changed per-company owners!
+ for($i = $id; $i < count($db_connections); $i++) {
+ if (!is_dir($comp_path.'/'.$i) || !is_writable($comp_path.'/'.$i)) {
+ display_error(_('Broken company subdirectories system. You have to remove this company manually.'));
+ return;
+ }
+ }
+ // make sure config file is writable
+ if (!is_writeable($path_to_root . "/config_db.php"))
+ {
+ display_error(_("The configuration file ") . $path_to_root . "/config_db.php" . _(" is not writable. Change its permissions so it is, then re-run the operation."));
+ return;
+ }
+ // rename directory to temporary name to ensure all
+ // other subdirectories will have right owners even after
+ // unsuccessfull removal.
+ $cdir = $comp_path.'/'.$id;
+ $tmpname = $comp_path.'/old_'.$id;
+ if (!@rename($cdir, $tmpname)) {
+ display_error(_('Cannot rename subdirectory to temporary name.'));
+ return;
+ }
+ // 'shift' company directories names
+ for ($i = $id+1; $i < count($db_connections); $i++) {
+ if (!rename($comp_path.'/'.$i, $comp_path.'/'.($i-1))) {
+ display_error(_("Cannot rename company subdirectory"));
+ return;
+ }
+ }
+ $err = remove_connection($id);
+ if ($err == 0)
+ display_error(_("Error removing Database: ") . $dbase . _(", please remove it manually"));
- //$$db_connections = array_values($db_connections);
if ($def_coy == $id)
$def_coy = 0;
$error = write_config_db();
if ($error == -1)
display_error(_("Cannot open the configuration file - ") . $path_to_root . "/config_db.php");
- else if ($error == -2)
+ else if ($error == -2)
display_error(_("Cannot write to the configuration file - ") . $path_to_root . "/config_db.php");
else if ($error == -3)
display_error(_("The configuration file ") . $path_to_root . "/config_db.php" . _(" is not writable. Change its permissions so it is, then re-run the operation."));
- if ($error != 0)
+ if ($error != 0) {
+ @rename($tmpname, $cdir);
return;
- if ($err == 0)
- display_error(_("Error removing Database: ") . $dbase . _(", please remove it manuallly"));
- else
- meta_forward($_SERVER['PHP_SELF']);
+ }
+ // finally remove renamed company directory
+ @flush_dir($tmpname, true);
+ if (!@rmdir($tmpname))
+ {
+ display_error(_("Cannot remove temporary renamed company data directory ") . $tmpname);
+ return;
+ }
+
+ meta_forward($_SERVER['PHP_SELF']);
}
//---------------------------------------------------------------------------------------------
@@ -141,7 +229,7 @@ function display_companies()
global $table_style, $def_coy, $db_connections;
$coyno = $_SESSION["wa_current_user"]->company;
-
+
echo "
";
start_table($table_style);
-
- $th = array(_("Company"), _("Database Host"), _("Database User"),
+
+ $th = array(_("Company"), _("Database Host"), _("Database User"),
_("Database Name"), _("Table Pref"), _("Default"), "", "");
- table_header($th);
+ table_header($th);
$k=0;
$conn = $db_connections;
@@ -176,9 +264,16 @@ function display_companies()
label_cell($conn[$i]['dbname']);
label_cell($conn[$i]['tbpref']);
label_cell($what);
- label_cell("" . _("Edit") . "");
- if ($i != $coyno)
- label_cell("" . _("Delete") . "");
+ $edit = _("Edit");
+ $delete = _("Delete");
+ if (user_graphic_links())
+ {
+ $edit = set_icon(ICON_EDIT, $edit);
+ $delete = set_icon(ICON_DELETE, $delete);
+ }
+ label_cell("$edit");
+ label_cell( $i == $coyno ? '' :
+ "$delete");
end_row();
}
@@ -196,25 +291,25 @@ function display_company_edit($selected_id)
$n = $selected_id;
else
$n = count($db_connections);
-
- start_form(true, true);
+
+ start_form(true);
echo "
";
-
+
start_table($table_style2);
- if ($selected_id != -1)
+ if ($selected_id != -1)
{
$conn = $db_connections[$selected_id];
$_POST['name'] = $conn['name'];
@@ -224,9 +319,9 @@ function display_company_edit($selected_id)
$_POST['dbname'] = $conn['dbname'];
$_POST['tbpref'] = $conn['tbpref'];
if ($selected_id == $def_coy)
- $_POST['def'] = true;
- else
- $_POST['def'] = false;
+ $_POST['def'] = true;
+ else
+ $_POST['def'] = false;
$_POST['dbcreate'] = false;
hidden('selected_id', $selected_id);
hidden('tbpref', $_POST['tbpref']);
@@ -234,18 +329,18 @@ function display_company_edit($selected_id)
}
else
$_POST['tbpref'] = $tb_pref_counter."_";
- text_row_ex(_("Company"), 'name', 20);
- text_row_ex(_("Host"), 'host', 20);
- text_row_ex(_("Database User"), 'dbuser', 20);
- if ($selected_id == -1)
- text_row_ex(_("Database Password"), 'dbpassword', 20);
- text_row_ex(_("Database Name"), 'dbname', 20);
+ text_row_ex(_("Company"), 'name', 30);
+ text_row_ex(_("Host"), 'host', 30);
+ text_row_ex(_("Database User"), 'dbuser', 30);
+ if ($selected_id == -1)
+ text_row_ex(_("Database Password"), 'dbpassword', 30);
+ text_row_ex(_("Database Name"), 'dbname', 30);
if ($selected_id == -1)
yesno_list_row(_("Table Pref"), 'tbpref', 1, $_POST['tbpref'], _("None"), false);
else
label_row(_("Table Pref"), $_POST['tbpref']);
yesno_list_row(_("Default"), 'def', null, "", "", false);
-
+
start_row();
label_cell(_("Database Script"));
label_cell("");
@@ -254,8 +349,8 @@ function display_company_edit($selected_id)
text_row_ex(_("New script Admin Password"), 'admpassword', 20);
end_table();
- display_note(_("Choose from Database scripts in SQL folder. No Datase is created without a script."), 0, 1);
- echo "";
+ display_note(_("Choose from Database scripts in SQL folder. No Database is created without a script."), 0, 1);
+ echo "";
end_form();
@@ -264,19 +359,19 @@ function display_company_edit($selected_id)
//---------------------------------------------------------------------------------------------
-if (isset($_GET['c']) && $_GET['c'] == 'df')
+if (isset($_GET['c']) && $_GET['c'] == 'df')
{
handle_delete();
}
-if (isset($_GET['c']) && $_GET['c'] == 'u')
+if (isset($_GET['c']) && $_GET['c'] == 'u')
{
- if (handle_submit())
+ if (handle_submit())
{
meta_forward($_SERVER['PHP_SELF']);
}
-}
+}
//---------------------------------------------------------------------------------------------
@@ -288,7 +383,6 @@ hyperlink_no_params($_SERVER['PHP_SELF'], _("Create a new company"));
display_company_edit($selected_id);
//---------------------------------------------------------------------------------------------
-
end_page();
?>
\ No newline at end of file