Overview Package Class Source Class tree Glossary
previous class      next class frames      no frames

XWebAdmin.xWebQueryAdmins


00001
00002
00003
00004
00005
00006
00007
00008
00009
00010
00011
00012
00013
00014
00015
00016
00017
00018
00019
00020
00021
00022
00023
00024
00025
00026
00027
00028
00029
00030
00031
00032
00033
00034
00035
00036
00037
00038
00039
00040
00041
00042
00043
00044
00045
00046
00047
00048
00049
00050
00051
00052
00053
00054
00055
00056
00057
00058
00059
00060
00061
00062
00063
00064
00065
00066
00067
00068
00069
00070
00071
00072
00073
00074
00075
00076
00077
00078
00079
00080
00081
00082
00083
00084
00085
00086
00087
00088
00089
00090
00091
00092
00093
00094
00095
00096
00097
00098
00099
00100
00101
00102
00103
00104
00105
00106
00107
00108
00109
00110
00111
00112
00113
00114
00115
00116
00117
00118
00119
00120
00121
00122
00123
00124
00125
00126
00127
00128
00129
00130
00131
00132
00133
00134
00135
00136
00137
00138
00139
00140
00141
00142
00143
00144
00145
00146
00147
00148
00149
00150
00151
00152
00153
00154
00155
00156
00157
00158
00159
00160
00161
00162
00163
00164
00165
00166
00167
00168
00169
00170
00171
00172
00173
00174
00175
00176
00177
00178
00179
00180
00181
00182
00183
00184
00185
00186
00187
00188
00189
00190
00191
00192
00193
00194
00195
00196
00197
00198
00199
00200
00201
00202
00203
00204
00205
00206
00207
00208
00209
00210
00211
00212
00213
00214
00215
00216
00217
00218
00219
00220
00221
00222
00223
00224
00225
00226
00227
00228
00229
00230
00231
00232
00233
00234
00235
00236
00237
00238
00239
00240
00241
00242
00243
00244
00245
00246
00247
00248
00249
00250
00251
00252
00253
00254
00255
00256
00257
00258
00259
00260
00261
00262
00263
00264
00265
00266
00267
00268
00269
00270
00271
00272
00273
00274
00275
00276
00277
00278
00279
00280
00281
00282
00283
00284
00285
00286
00287
00288
00289
00290
00291
00292
00293
00294
00295
00296
00297
00298
00299
00300
00301
00302
00303
00304
00305
00306
00307
00308
00309
00310
00311
00312
00313
00314
00315
00316
00317
00318
00319
00320
00321
00322
00323
00324
00325
00326
00327
00328
00329
00330
00331
00332
00333
00334
00335
00336
00337
00338
00339
00340
00341
00342
00343
00344
00345
00346
00347
00348
00349
00350
00351
00352
00353
00354
00355
00356
00357
00358
00359
00360
00361
00362
00363
00364
00365
00366
00367
00368
00369
00370
00371
00372
00373
00374
00375
00376
00377
00378
00379
00380
00381
00382
00383
00384
00385
00386
00387
00388
00389
00390
00391
00392
00393
00394
00395
00396
00397
00398
00399
00400
00401
00402
00403
00404
00405
00406
00407
00408
00409
00410
00411
00412
00413
00414
00415
00416
00417
00418
00419
00420
00421
00422
00423
00424
00425
00426
00427
00428
00429
00430
00431
00432
00433
00434
00435
00436
00437
00438
00439
00440
00441
00442
00443
00444
00445
00446
00447
00448
00449
00450
00451
00452
00453
00454
00455
00456
00457
00458
00459
00460
00461
00462
00463
00464
00465
00466
00467
00468
00469
00470
00471
00472
00473
00474
00475
00476
00477
00478
00479
00480
00481
00482
00483
00484
00485
00486
00487
00488
00489
00490
00491
00492
00493
00494
00495
00496
00497
00498
00499
00500
00501
00502
00503
00504
00505
00506
00507
00508
00509
00510
00511
00512
00513
00514
00515
00516
00517
00518
00519
00520
00521
00522
00523
00524
00525
00526
00527
00528
00529
00530
00531
00532
00533
00534
00535
00536
00537
00538
00539
00540
00541
00542
00543
00544
00545
00546
00547
00548
00549
00550
00551
00552
00553
00554
00555
00556
00557
00558
00559
00560
00561
00562
00563
00564
00565
00566
00567
00568
00569
00570
00571
00572
00573
00574
00575
00576
00577
00578
00579
00580
00581
00582
00583
00584
00585
00586
00587
00588
00589
00590
00591
00592
00593
00594
00595
00596
00597
00598
00599
00600
00601
00602
00603
00604
00605
00606
00607
00608
00609
00610
00611
00612
00613
00614
00615
00616
00617
00618
00619
00620
00621
00622
00623
00624
00625
00626
00627
00628
00629
00630
00631
00632
00633
00634
00635
00636
00637
00638
00639
00640
00641
00642
00643
00644
00645
00646
00647
00648
00649
00650
00651
00652
00653
00654
00655
00656
00657
00658
00659
00660
00661
00662
00663
00664
00665
00666
00667
00668
00669
00670
00671
00672
00673
00674
00675
00676
00677
00678
00679
00680
00681
00682
00683
00684
00685
00686
00687
00688
00689
00690
00691
00692
00693
00694
00695
00696
00697
00698
00699
00700
00701
00702
00703
00704
00705
00706
00707
00708
00709
00710
00711
00712
00713
00714
00715
00716
00717
00718
00719
00720
00721
00722
00723
00724
00725
00726
00727
00728
00729
00730
00731
00732
00733
00734
00735
00736
00737
00738
00739
00740
00741
00742
00743
00744
00745
00746
00747
00748
00749
00750
00751
00752
00753
00754
00755
00756
00757
00758
00759
00760
00761
00762
00763
00764
00765
00766
00767
00768
00769
00770
00771
00772
00773
00774
00775
00776
00777
00778
00779
00780
00781
00782
00783
00784
00785
00786
00787
00788
00789
00790
00791
00792
00793
00794
00795
00796
00797
00798
00799
00800
00801
00802
00803
00804
00805
00806
00807
00808
00809
00810
00811
00812
00813
00814
00815
00816
00817
00818
00819
00820
00821
00822
00823
00824
00825
00826
00827
00828
00829
00830
00831
00832
00833
00834
00835
00836
00837
00838
00839
00840
00841
00842
00843
00844
00845
00846
00847
00848
00849
00850
00851
00852
00853
00854
00855
00856
00857
00858
00859
00860
00861
00862
00863
00864
00865
00866
00867
00868
00869
00870
00871
00872
00873
00874
00875
00876
00877
00878
00879
00880
00881
00882
00883
00884
00885
00886
00887
00888
00889
00890
00891
00892
00893
00894
00895
00896
00897
00898
00899
00900
00901
00902
00903
00904
00905
00906
00907
00908
00909
00910
00911
00912
00913
00914
00915
00916
00917
00918
00919
00920
00921
00922
00923
00924
00925
00926
00927
00928
00929
00930
00931
00932
00933
00934
00935
00936
00937
00938
00939
00940
00941
00942
00943
00944
00945
00946
00947
00948
00949
00950
00951
00952
00953
00954
00955
00956
00957
00958
00959
00960
00961
00962
00963
00964
00965
00966
00967
00968
00969
00970
00971
00972
00973
00974
00975
00976
00977
00978
00979
00980
00981
00982
00983
00984
00985
00986
00987
00988
00989
00990
00991
00992
00993
00994
00995
00996
00997
00998
00999
01000
01001
01002
01003
01004
01005
01006
01007
01008
01009
01010
01011
01012
01013
01014
01015
01016
01017
01018
01019
01020
01021
01022
01023
01024
01025
01026
01027
01028
01029
01030
01031
01032
01033
01034
01035
01036
01037
01038
01039
01040
01041
01042
01043
01044
01045
01046
01047
01048
01049
01050
01051
01052
01053
01054
01055
01056
01057
01058
01059
01060
01061
01062
01063
01064
01065
01066
01067
01068
01069
01070
01071
01072
01073
01074
01075
01076
01077
01078
01079
01080
01081
01082
01083
01084
01085
01086
01087
01088
01089
01090
01091
01092
01093
01094
01095
01096
01097
01098
//==============================================================================
//  WebAdmin handler for activities related to managing the users / groups
//	that are allowed to log into the server
//
//  Written by Michael Comeau
//  Revised by Ron Prestenback
//  © 2003,2004 Epic Games, Inc. All Rights Reserved
//==============================================================================

class xWebQueryAdmins extends xWebQueryHandler
    config;

// TODO:
// Fix log spam in adding groups function

struct RowGroup { var array<string> rows; };

var config string AdminsIndexPage;
var config string UsersHomePage;
var config string UsersAccountPage;
var config string UsersAddPage;
var config string UsersBrowsePage;
var config string UsersEditPage;
var config string UsersGroupsPage;
var config string UsersMGroupsPage;
var config string GroupsAddPage;
var config string GroupsBrowsePage;
var config string GroupsEditPage;

var config string PrivilegeTable;

// Localization
var localized string NoteUserHomePage;
var localized string NoteAccountPage;
var localized string NoteUserAddPage;
var localized string NoteUserEditPage;
var localized string NoteUsersBrowsePage;
var localized string NoteGroupAddPage;
var localized string NoteGroupEditPage;
var localized string NoteGroupsBrowsePage;
var localized string NoteGroupAccessPage;
var localized string NoteMGroupAccessPage;

// Single words
var localized string NameText;
var localized string Deleting;
var localized string Group;
var localized string Groups;
var localized string User;
var localized string Modify;
var localized string Managed;
var localized string Privileges;
var localized string SecurityLevel;

// Title & Section Names
var localized string AdminPageTitle;
var localized string AdminHomeTitle;
var localized string AdminAccountTitle;
var localized string BrowseUsersTitle;
var localized string BrowseGroupsTitle;
var localized string AddUserTitle;
var localized string AddUserButton;
var localized string AddGroupTitle;
var localized string AddGroupButton;
var localized string EditUserTitle;
var localized string EditUserButton;
var localized string EditGroupTitle;
var localized string EditGroupButton;
var localized string ModifyUserGroup;
var localized string ModifyMUserGroup;

// Status messages
var localized string UserRemoved;
var localized string GroupRemoved;


// Error Messages
var localized string AdminNotFound;
var localized string GroupNotFound;
var localized string PrivTitle;

var localized string NoneText;
var localized string NoneItemText;
var localized string PasswordError;
var localized string InsufficientPrivs;
var localized string InvalidItem;
var localized string InvalidCharacters;
var localized string NameExists;
var localized string YouMustSelect;
var localized string DoesNotExist;
var localized string CouldNotCreate;
var localized string NegSecLevel;
var localized string CannotAssignHigher;
var localized string CannotAssignPrivs;

function bool Query(WebRequest Request, WebResponse Response)
{
    if (!CanPerform(NeededPrivs))
        return false;

    switch (Mid(Request.URI, 1))
    {
    case DefaultPage:       QueryAdminsFrame(Request, Response); return true;
    case AdminsIndexPage:   QueryAdminsMenu(Request, Response); return true;

    case UsersHomePage:     if (!MapIsChanging()) QueryUsersHomePage(Request, Response); return true;
    case UsersAccountPage:  if (!MapIsChanging()) QueryUserAccountPage(Request, Response); return true;
    case UsersBrowsePage:   if (!MapIsChanging()) QueryUsersBrowsePage(Request, Response); return true;
    case UsersAddPage:      if (!MapIsChanging()) QueryUsersAddPage(Request, Response); return true;
    case UsersEditPage:     if (!MapIsChanging()) QueryUsersEditPage(Request, Response); return true;
    case UsersGroupsPage:   if (!MapIsChanging()) QueryUsersGroupsPage(Request, Response); return true;
    case UsersMGroupsPage:  if (!MapIsChanging()) QueryUsersMGroupsPage(Request, Response); return true;
    case GroupsBrowsePage:  if (!MapIsChanging()) QueryGroupsBrowsePage(Request, Response); return true;
    case GroupsAddPage:     if (!MapIsChanging()) QueryGroupsAddPage(Request, Response); return true;
    case GroupsEditPage:    if (!MapIsChanging()) QueryGroupsEditPage(Request, Response); return true;
    }
    return false;
}

function QueryAdminsFrame(WebRequest Request, WebResponse Response)
{
local String Page;

    // if no page specified, use the default
    Page = Request.GetVariable("Page", UsersHomePage);

    Response.Subst("IndexURI",  AdminsIndexPage$"?Page="$Page);
    Response.Subst("MainURI",   Page);

    ShowPage(Response, DefaultPage);
}

function QueryAdminsMenu(WebRequest Request, WebResponse Response)
{
    Response.Subst("Title",             AdminPageTitle);

    Response.Subst("UsersHomeURI",      UsersHomePage);
    Response.Subst("UserAccountURI",    UsersAccountPage);
    Response.Subst("UsersAddURI",       UsersAddPage);
    Response.Subst("GroupsAddURI",      GroupsAddPage);
    Response.Subst("UsersBrowseURI",    UsersBrowsePage);
    Response.Subst("GroupsBrowseURI",   GroupsBrowsePage);

    ShowPage(Response, AdminsIndexPage);
}

function QueryUsersHomePage(WebRequest Request, WebResponse Response)
{
    Response.Subst("AdminName", CurAdmin.UserName);
    Response.Subst("Section", AdminHomeTitle);
    Response.Subst("PageHelp", NoteUserHomePage);
    ShowPage(Response, UsersHomePage);
}

function QueryUserAccountPage(WebRequest Request, WebResponse Response)
{
local string upass;

    Response.Subst("NameValue", HtmlEncode(CurAdmin.UserName));
    if (Request.GetVariable("edit", "") != "")
    {
        // Can only change his password
        upass = Request.GetVariable("Password", CurAdmin.Password);
        if (!CurAdmin.ValidPass(upass))
            StatusError(Response, PasswordError);
        else if (upass != CurAdmin.Password)
        {
            CurAdmin.Password = upass;
            Level.Game.AccessControl.SaveAdmins();
        }
    }

    Response.Subst("PassValue", CurAdmin.Password);
    Response.Subst("PrivTable", GetPrivsTable(CurAdmin.Privileges, true));
    Response.Subst("GroupLinks", "");
    Response.Subst("SubmitValue", Accept);
    Response.Subst("PostAction", UsersAccountPage);
    Response.Subst("Section", AdminAccountTitle);
    Response.Subst("PageHelp", NoteAccountPage);
    ShowPage(Response, UsersAccountPage);
}

function QueryUsersBrowsePage(WebRequest Request, WebResponse Response)
{
local xAdminUser xUser;
local string tmp;

    if (CanPerform("Al|Aa|Ae|Ag|Am"))
    {
        // Delete an Admin
        if (Request.GetVariable("delete") != "")
        {
            // Delete specified Admin Group
            xUser = Level.Game.AccessControl.Users.FindByName(Request.GetVariable("delete"));
            if (xUser != None)
            {
                if (CurAdmin.CanManageUser(xUser))
                {
                    StatusOk(Response, Repl(UserRemoved, "%UserName%", HtmlEncode(xUser.UserName)));
                    // Remove xUser
                    xUser.UnlinkGroups();
                    Level.Game.AccessControl.Users.Remove(xUser);
                    Level.Game.AccessControl.SaveAdmins();
                }
                else
                {
                    tmp = Repl(InsufficientPrivs, "%Action%", Deleting);
                    tmp = Repl(tmp, "%Item%", Group);
                    StatusError(Response, tmp);
                }
            }
            else StatusError(Response, Repl(InvalidItem, "%Item%", Group));
        }
        // Show the list
        Response.Subst("BrowseList", GetUsersForBrowse(Response));

        Response.Subst("Section", BrowseUsersTitle);
        Response.Subst("PageHelp", NoteUsersBrowsePage);
        ShowPage(Response, UsersBrowsePage);
    }
    else
        AccessDenied(Response);
}

function QueryUsersAddPage(WebRequest Request, WebResponse Response)
{
local xAdminUser xUser;
local xAdminGroup xGroup;
local xAdminGroupList xGroups;
local string uname, upass, uprivs, ugrp, ErrMsg;

    if (CanPerform("Aa"))
    {
        if (CurAdmin.bMasterAdmin)
            xGroups = Level.Game.AccessControl.Groups;
        else
            xGroups = CurAdmin.ManagedGroups;

        if (Request.GetVariable("addnew") != "")
        {
            // Humm .. AddNew
            uname = Request.GetVariable("Username");
            upass = Request.GetVariable("Password");
            uprivs = FixPrivs(Request, "");
            ugrp = Request.GetVariable("Usergroup");
            xGroup = xGroups.FindByName(ugrp);

            if (!CurAdmin.ValidName(uname))
                ErrMsg = Repl(InvalidCharacters, "%Item%", User);
            else if (Level.Game.AccessControl.Users.FindByName(uname) != None)
                ErrMsg = NameExists@User;
            else if (!CurAdmin.ValidPass(upass))
                ErrMsg = PasswordError;
            else if (ugrp == "")
                ErrMsg = YouMustSelect@Group$"!";
            else if (xGroup == None)
                ErrMsg = Repl(DoesNotExist, "%Item%", Group);

            Response.Subst("NameValue", HtmlEncode(uname));
            Response.Subst("PassValue", upass);
            Response.Subst("PrivTable", GetPrivsTable(uprivs));

            if (ErrMsg == "")
            {
                // All settings are fine, create the new Group.
                xUser = Level.Game.AccessControl.Users.Create(uname, upass, uprivs);
                if (xUser != None)
                {
                    xUser.AddGroup(xGroup);
                    Level.Game.AccessControl.Users.Add(xUser);
                    Level.Game.AccessControl.SaveAdmins();
                }
                else
                {
                    // Only re-add the DDL if there was a problem.
                    ErrMsg = CouldNotCreate@User$"!";
                }
            }

            if (ErrMsg != "")
                StatusError(Response, ErrMsg);
        }
        else
            Response.Subst("PrivTable", GetPrivsTable(""));

        if (xUser != None)
        {
            Response.Subst("PostAction", UsersEditPage);
            Response.Subst("SubmitName", "addnew");
            Response.Subst("SubmitValue", EditUserButton);
            Response.Subst("Section", EditUserTitle);
            Response.Subst("PageHelp", NoteUserEditPage);
            ShowPage(Response, UsersEditPage);
        }
        else
        {
            Response.Subst("Groups", GetGroupOptions(xGroups, ugrp));
            Response.Subst("PostAction", UsersAddPage);
            Response.Subst("SubmitName", "addnew");
            Response.Subst("SubmitValue", AddUserButton);
            Response.Subst("Section", AddUserTitle);
            Response.Subst("PageHelp", NoteUserAddPage);
            ShowPage(Response, UsersAddPage);
        }
    }
    else
        AccessDenied(Response);
}

function QueryUsersEditPage(WebRequest Request, WebResponse Response)
{
local xAdminUser xUser;
local string uname, upass, privs, ErrMsg;

    if (CanPerform("Aa|Ae"))
    {
        ErrMsg = "";

        Response.Subst("Section", EditUserTitle);

        xUser = Level.Game.AccessControl.GetUser(Request.GetVariable("edit"));
        if (xUser != None)
        {
            if (CurAdmin.CanManageUser(xUser))
            {
                // Operations
                if (Request.GetVariable("mod") != "")
                {
                    // Validate the changes and modify the user information
                    uname = Request.GetVariable("Username");
                    upass = Request.GetVariable("Password");
                    privs = FixPrivs(Request, xUser.Privileges);
                    if (uname != xUser.UserName)
                    {
                        if (xUser.ValidName(uname))
                        {
                            if (Level.Game.AccessControl.GetUser(uname) == None)
                                xUser.UserName = uname;
                            else
                                ErrMsg = NameExists@User;
                        }
                        else
                            ErrMsg = Repl(InvalidCharacters, "%Item%", User);
                    }

                    if (ErrMsg == "" && !(upass == xUser.Password))
                    {
                        if (xUser.ValidPass(upass))
                            xUser.Password = upass;
                        else
                            ErrMsg = PasswordError;
                    }

                    if (ErrMsg == "" && privs != xUser.Privileges)
                    {
                        xUser.Privileges = privs;
                        xUser.RedoMergedPrivs();
                    }
                    if (ErrMsg == "")
                        Level.Game.AccessControl.SaveAdmins();
                }

                if (ErrMsg != "")
                    StatusError(Response, ErrMsg);

                Response.Subst("NameValue", HtmlEncode(xUser.UserName));
                Response.Subst("PassValue", HtmlEncode(xUser.Password));
                Response.Subst("PrivTable", GetPrivsTable(xUser.Privileges));
                Response.Subst("PostAction", UsersEditPage);
                Response.Subst("SubmitName", "mod");
                Response.Subst("SubmitValue", EditUserButton);
                Response.Subst("PageHelp", NoteUserEditPage);
                ShowPage(Response, UsersEditPage);
            }
            else
            {
                ErrMsg = Repl(InsufficientPrivs, "%Action%", Modify);
                ErrMsg = Repl(ErrMsg, "%Item%", User);
                ShowMessage(Response, PrivTitle, ErrMsg);
            }
        }
        else
            ShowMessage(Response, AdminNotFound, Repl(DoesNotExist, "%Item%", User));
    }
    else
        AccessDenied(Response);
}

function QueryUsersGroupsPage(WebRequest Request, WebResponse Response)
{
local xAdminUser        xUser;
local xAdminGroupList   xGroups;
local xAdminGroup       xGroup;
local StringArray     GrpNames;
local string GroupRows, GrpName, Str;
local int i;
local bool bModify, bChecked;

    if (CanPerform("Ag"))
    {
        xUser = Level.Game.AccessControl.Users.FindByName(Request.GetVariable("edit"));
        if (xUser != None)
        {
            if (CurAdmin.CanManageUser(xUser))
            {
                if (CurAdmin.bMasterAdmin)
                    xGroups = Level.Game.AccessControl.Groups;
                else
                    xGroups = CurAdmin.ManagedGroups;

                // Work with a table of checkboxes now
                GroupRows = "";
                bModify = (Request.GetVariable("submit") != "");

                // Make a sorted list of Groups
                GrpNames = new(None)class'SortedStringArray';
                for (i=0; i<xGroups.Count(); i++)
                    GrpNames.Add(xGroups.Get(i).GroupName, xGroups.Get(i).GroupName);

                for (i=0; i<GrpNames.Count(); i++)
                {
                    GrpName = GrpNames.GetItem(i);
                    xGroup = xGroups.FindByName(GrpName);
                    bChecked = Request.GetVariable(GrpName) != "";

                    if (bModify)
                    {
                        if (xUser.Groups.Contains(xGroup))
                        {
                            if (!bChecked)  // Remove the xUser from the group
                                xUser.RemoveGroup(xGroup);
                        }
                        else
                        {
                            if (bChecked)
                                xUser.AddGroup(xGroup);
                        }
                    }
                    Response.Subst("GroupName", GrpName);

                    Str = "";
                    if (xUser.Groups.Contains(xGroup))
                        Str = " checked";
                    Response.Subst("Checked", Str);
                    GroupRows $= WebInclude("users_groups_row");
                }

                if (bModify)
                    Level.Game.AccessControl.SaveAdmins();

                // Now just build up the page as a table with checkboxes
                Response.Subst("NameValue", HtmlEncode(xUser.UserName));
                Response.Subst("GroupRows", GroupRows);
                Response.Subst("PostAction", UsersGroupsPage);
                Response.Subst("Section", ModifyUserGroup@HtmlEncode(xUser.UserName));
                Response.Subst("PageHelp", NoteGroupAccessPage);
                ShowPage(Response, UsersGroupsPage);
            }
            else
            {
                Str = Repl(InsufficientPrivs, "%Action%", Modify);
                Str = Repl(Str, "%Item%", User);
                ShowMessage(Response, PrivTitle, Str);
            }
        }
        else
            ShowMessage(Response, AdminNotFound, Repl(DoesNotExist, "%Item%", User));
    }
    else
        AccessDenied(Response);
}

function QueryUsersMGroupsPage(WebRequest Request, WebResponse Response)
{
local xAdminUser        xUser;
local xAdminGroupList   xGroups;
local xAdminGroup       xGroup;
local StringArray     GrpNames;
local string GroupRows, GrpName, Str;
local int i;
local bool bModify, bChecked;

    if (CanPerform("Am"))
    {

        xUser = Level.Game.AccessControl.Users.FindByName(Request.GetVariable("edit"));
        if (xUser != None)
        {
            if (CurAdmin.CanManageUser(xUser))
            {
                if (CurAdmin.bMasterAdmin)
                    xGroups = Level.Game.AccessControl.Groups;
                else
                    xGroups = CurAdmin.ManagedGroups;

                // Work with a table of checkboxes now
                GroupRows = "";
                bModify = (Request.GetVariable("submit") != "");

                // Make a sorted list of Groups
                GrpNames = new(None)class'SortedStringArray';
                for (i=0; i<xGroups.Count(); i++)
                    GrpNames.Add(xGroups.Get(i).GroupName, xGroups.Get(i).GroupName);

                for (i=0; i<GrpNames.Count(); i++)
                {
                    GrpName = GrpNames.GetItem(i);
                    xGroup = xGroups.FindByName(GrpName);
                    bChecked = Request.GetVariable(GrpName) != "";

                    if (bModify)
                    {
                        if (xUser.ManagedGroups.Contains(xGroup))
                        {
                            if (!bChecked)  // Remove the user from the group
                                xUser.RemoveManagedGroup(xGroup);
                        }
                        else
                        {
                            if (bChecked)
                                xUser.AddManagedGroup(xGroup);
                        }
                    }
                    Response.Subst("GroupName", GrpName);

                    Str = "";
                    if (xUser.ManagedGroups.Contains(xGroup))
                        Str = " checked";
                    Response.Subst("Checked", Str);
                    GroupRows $= WebInclude("users_groups_row");
                }

                if (bModify)
                    Level.Game.AccessControl.SaveAdmins();

                // Now just build up the page as a table with checkboxes
                Response.Subst("Managed", Managed);
                Response.Subst("NameValue", HtmlEncode(xUser.UserName));
                Response.Subst("GroupRows", GroupRows);
                Response.Subst("PostAction", UsersMGroupsPage);
                Response.Subst("Section", ModifyMUserGroup@HtmlEncode(xUser.UserName));
                Response.Subst("PageHelp", NoteMGroupAccessPage);
                ShowPage(Response, UsersGroupsPage);
            }
            else
            {
                Str = Repl(InsufficientPrivs, "%Action%", Modify);
                Str = Repl(Str, "%Item%", User);
                ShowMessage(Response, PrivTitle, Str);
            }
        }
        else
            ShowMessage(Response, AdminNotFound, Repl(DoesNotExist, "%Item%", User));
    }
    else
        AccessDenied(Response);
}

function QueryGroupsBrowsePage(WebRequest Request, WebResponse Response)
{
local xAdminGroup xGroup;
local string Str;

    if (CanPerform("Gl|Ge"))
    {
        Response.Subst("Section", BrowseGroupsTitle);
        if (Request.GetVariable("delete") != "")
        {
            // Delete specified Admin Group
            xGroup = Level.Game.AccessControl.Groups.FindByName(Request.GetVariable("delete"));
            if (xGroup != None)
            {
                if (CurAdmin.CanManageGroup(xGroup))
                {
                    StatusOk(Response, Repl(GroupRemoved, "%GroupName%", HtmlEncode(xGroup.GroupName)));
                    xGroup.UnlinkUsers();
                    Level.Game.AccessControl.Groups.Remove(xGroup);
                    Level.Game.AccessControl.SaveAdmins();
                }
                else
                {
                    Str = Repl(InsufficientPrivs, "%Action%", Deleting);
                    Str = Repl(Str, "%Item%", Group);
                    StatusError(Response, Str);
                }
            }
            else
                StatusError(Response, Repl(InvalidItem, "%Item%", Group));
        }
        Response.Subst("BrowseList", GetGroupsForBrowse(Response));
        Response.Subst("PageHelp", NoteGroupsBrowsePage);
        ShowPage(Response, GroupsBrowsePage);
    }
    else
        AccessDenied(Response);
}

function QueryGroupsAddPage(WebRequest Request, WebResponse Response)
{
local xAdminGroup xGroup;
local string gname, gprivs, ErrMsg;
local int gsec;

    if (CanPerform("Ga"))
    {
        if (Request.GetVariable("addnew") != "")
        {
            // Humm .. AddNew
            gname = Request.GetVariable("GroupName");
            gprivs = FixPrivs(Request, "");
            gsec = int(Request.GetVariable("GameSec"));

            if (!class'xAdminGroup'.static.ValidName(gname))
                ErrMsg = Repl(InvalidCharacters, "%Item%", Group);
            else if (Level.Game.AccessControl.Groups.FindByName(gname) != None)
                ErrMsg = NameExists@Group$"!";
            else if (gsec < 0)
                ErrMsg = NegSecLevel;
            else if (gsec > CurAdmin.MaxSecLevel())
                ErrMsg = CannotAssignHigher;

            Response.Subst("NameValue", HtmlEncode(gname));
            Response.Subst("PrivTable", GetPrivsTable(gprivs));
            Response.Subst("GameSecValue", string(gsec));

            if (ErrMsg == "")
            {
                // All settings are fine, create the new Group.
                xGroup = Level.Game.AccessControl.Groups.CreateGroup(gname, gprivs, byte(gsec));
                if (xGroup != None)
                {
                    CurAdmin.AddManagedGroup(xGroup);
                    Level.Game.AccessControl.Groups.Add(xGroup);
                    Level.Game.AccessControl.SaveAdmins();
                }
                else
                    ErrMsg = CouldNotCreate@Group$"!";
            }

            if (ErrMsg != "")
                StatusError(Response, ErrMsg);
        }
        else
            Response.Subst("PrivTable", GetPrivsTable(""));

        if (xGroup != None)
        {
            Response.Subst("PostAction", GroupsEditPage);
            Response.Subst("SubmitName", "mod");
            Response.Subst("SubmitValue", EditGroupButton);
            Response.Subst("PageHelp", NoteGroupEditPage);
            Response.Subst("Section", EditGroupTitle);
        }
        else
        {
            Response.Subst("PostAction", GroupsAddPage);
            Response.Subst("SubmitName", "addnew");
            Response.Subst("SubmitValue", AddGroupButton);
            Response.Subst("Section", AddGroupTitle);
            Response.Subst("PageHelp", NoteGroupAddPage);
        }
        ShowPage(Response, GroupsEditPage);
    }
    else
        AccessDenied(Response);
}

function QueryGroupsEditPage(WebRequest Request, WebResponse Response)
{
local xAdminGroup xGroup;
local string ErrMsg, gname, gprivs;
local int gsec;

    if (CanPerform("Gm"))
    {
        Response.Subst("Section", EditGroupTitle);

        xGroup = Level.Game.AccessControl.Groups.FindByName(Request.GetVariable("edit"));
        if (xGroup != None)     // Do not let admins fake the system.
        {
            if (CurAdmin.CanManageGroup(xGroup))
            {
                if (Request.GetVariable("mod") != "")
                {
                    // Save the changes
                    gname = Request.GetVariable("GroupName");
                    gprivs = FixPrivs(Request, xGroup.Privileges);
                    gsec = Clamp(int(Request.GetVariable("GameSec")), 0, 255);
                    if (gname != xGroup.GroupName)
                    {
                        if (xGroup.ValidName(gname))
                        {
                            if (Level.Game.AccessControl.Groups.FindByName(gname) == None)
                                xGroup.GroupName = gname;
                            else
                                ErrMsg = Repl(NameExists, "%Item%", Group);
                        }
                        else
                            ErrMsg = Repl(InvalidCharacters, "%Item%", Group);
                    }

                    if (ErrMsg == "")
                    {
                        if (gprivs != xGroup.Privileges)
                            xGroup.SetPrivs(gprivs);

                        xGroup.GameSecLevel = gsec;
                        Level.Game.AccessControl.SaveAdmins();
                    }
                }

                if (ErrMsg != "")
                    StatusError(Response, ErrMsg);

                Response.Subst("NameValue", HtmlEncode(xGroup.GroupName));
                Response.Subst("PrivTable", GetPrivsTable(xGroup.Privileges));
                Response.Subst("GameSecValue", string(xGroup.GameSecLevel));
                Response.Subst("PostAction", GroupsEditPage);
                Response.Subst("SubmitName", "mod");
                Response.Subst("SubmitValue", EditGroupButton);
                Response.Subst("PageHelp", NoteGroupEditPage);
                ShowPage(Response, GroupsEditPage);
            }
            else
            {
                ErrMsg = Repl(InsufficientPrivs, "%Action%", Modify);
                ErrMsg = Repl(ErrMsg, "%Item%", Group);
                ShowMessage(Response, PrivTitle, ErrMsg);
            }
        }
        else
            ShowMessage(Response, GroupNotFound, Repl(DoesNotExist, "%Item%", Group));
    }
    else
        AccessDenied(Response);
}

// Must not forget to show only the Users from groups that the admin can manage
function string GetUsersForBrowse(WebResponse Response)
{
local ObjectArray   Users;
local xAdminUser    xUser;
local string OutStr, Tmp;
local int i;
local bool CanDelete;

    CanDelete = CanPerform("Aa");
    Users = ManagedUsers();

    // Now, just make the users list a bunch of Rows
    if (Users.Count() == 0)
    {
        Response.Subst("Content", Repl(NoneItemText, "%Item%", User));
        Response.Subst("RowContent", WebInclude(CellLeft));
        return WebInclude(RowLeft);
    }

    Response.Subst("Content", NameText);
    Tmp = WebInclude(CellLeft);
    Response.Subst("Content", Privileges);
    Tmp = Tmp $ WebInclude(CellLeft);
    Response.Subst("Content", " ");
    Tmp = Eval(CanDelete, Tmp $ WebInclude(CellLeft), Tmp);
    Response.Subst("RowContent", Tmp);
    OutStr = WebInclude(RowLeft);

    for (i = 0; i<Users.Count(); i++)
    {
        xUser = xAdminUser(Users.GetItem(i));
        Response.Subst("Username", Hyperlink(UsersEditPage$"?edit="$HtmlEncode(xUser.UserName), HtmlEncode(xUser.UserName), CanPerform("Ae|Aa")));
        Response.Subst("Privileges", xUser.Privileges);
        Response.Subst("Groups", Eval(CanPerform("Ag"), Hyperlink(UsersGroupsPage$"?edit="$HtmlEncode(xUser.UserName),Groups, true), ""));
        Response.Subst("Managed", Eval(CanPerform("Am"), Hyperlink(UsersMGroupsPage$"?edit="$HtmlEncode(xUser.UserName),Managed$Groups, true), ""));
        Response.Subst("Delete", Eval(CanDelete, Hyperlink(UsersBrowsePage$"?delete="$HtmlEncode(xUser.UserName), DeleteText, true), ""));
        OutStr $= WebInclude("users_row");
    }
    return OutStr;
}

// Must not forget to show only the Groups that the admin can add users to
function string GetGroupsForBrowse(WebResponse Response)
{
local xAdminGroup   xGroup;
local xAdminGroupList xGroups;
local string OutStr, Tmp;
local int i;
local bool CanDelete, CanEdit;

    CanDelete = CanPerform("Gd");
    CanEdit = CanPerform("Ge");
    if(CurAdmin.bMasterAdmin) xGroups = Level.Game.AccessControl.Groups;
    else xGroups = CurAdmin.ManagedGroups;

    if (xGroups.Count() == 0)
    {
        Response.Subst("Content", Repl(NoneItemText, "%Item%", Group));
        Response.Subst("RowContent", WebInclude(CellLeft));
        return WebInclude(RowLeft);
    }

    Response.Subst("Content", NameText);
    Tmp = WebInclude(CellLeft);
    Response.Subst("Content", Privileges);
    Tmp = Tmp $ WebInclude(CellLeft);
    Response.Subst("Content", SecurityLevel);
    Tmp = Tmp $ WebInclude(CellLeft);
    Response.Subst("Content", " ");
    Tmp = Eval(CanDelete, Tmp $ WebInclude(CellLeft), Tmp);
    Response.Subst("RowContent", Tmp);
    OutStr = WebInclude(RowLeft);

    for (i=0; i<xGroups.Count(); i++)
    {
        xGroup = xGroups.Get(i);
        // Build 1 Group Row
        Response.Subst("Groupname", Hyperlink(GroupsEditPage$"?edit="$HtmlEncode(xGroup.GroupName),HtmlEncode(xGroup.GroupName),true));
        Response.Subst("Privileges", xGroup.Privileges);
        Response.Subst("Gamesec", string(xGroup.GameSecLevel));
        Response.Subst("Delete", Eval(CanDelete, HyperLink(GroupsBrowsePage $ "?delete=" $ HtmlEncode(xGroup.GroupName), DeleteText, True), ""));
        OutStr $= WebInclude("groups_row");
    }
    return OutStr;
}

function string GetPrivsHeader(string privs, string text, bool cond, string tag)
{
    Resp.Subst("Checkbox", Checkbox(Tag, Instr("|"$privs$"|", "|"$tag$"|") != -1, !cond));
    Resp.Subst("Text", text);
    return WebInclude("privs_header");
}

function string GetPrivsItem(string privs, string text, bool cond, string tag, optional bool bReadOnly)
{
    local string S;
    if (!cond)
        return "";

    Cond = InStr("|" $ Privs $ "|", "|" $ Tag $ "|") != -1;
    while (Privs != "" && Cond == True)
    {
        S = NextPriv(Privs);
        if (S == Left(Tag,1))
            Cond = False;
    }

    Resp.Subst("Checkbox", Checkbox(Tag, Cond, !bReadOnly));
    Resp.Subst("Text", text);
    return WebInclude("privs_element");
}

function ObjectArray ManagedUsers()
{
local ObjectArray Users;
local int i, j;
local xAdminGroup xGroup;
local xAdminUser xUser;
local xAdminGroupList xGroups;

    Users = New(None) class'SortedObjectArray';
    if (CurAdmin.bMasterAdmin) xGroups = Level.Game.AccessControl.Groups;
    else xGroups = CurAdmin.ManagedGroups;

    for (i=0; i<xGroups.Count(); i++)
    {
        xGroup = xGroups.Get(i);
        for (j=0; j<xGroup.Users.Count(); j++)
        {
            xUser = xGroup.Users.Get(j);
            if (Users.FindItemId(xUser) < 0)
                Users.Add(xUser, xUser.UserName);
        }
    }
    return Users;
}

function string MakePrivsTable(xPrivilegeBase PM, string privs, bool bReadOnly)
{
local int TagIndex, CurCol, maxcols;
local string MainStr, SubStr, Main, SPriv, OutStr;
local string PrivHeader, PrivItems;
local bool   bShowPrivGroup, bHasPriv, bCanEdit;

    MainStr = PM.MainPrivs;
    OutStr = "";
    TagIndex = 0;
    maxcols = 3;
    CurCol = 1;
    while (MainStr != "")
    {
        // Step 1: Check for a main privilege type
        Main = NextPriv(MainStr);
        SubStr = PM.SubPrivs;
        bShowPrivGroup = CheckPrivilegeGroup(Main, SubStr);

        // If we could manage anything, lets make checkboxes for them
        bCanEdit = CanPerform(Main) && !bReadOnly;
        PrivHeader = "";
        PrivHeader = GetPrivsHeader(privs, PM.Tags[TagIndex++], bCanEdit, Main);
        while (SubStr != "")
        {
            SPriv = NextPriv(SubStr);
            // Only allow manager to modify privileges that he has access to
            bHasPriv = CanPerform(SPriv);
            bCanEdit = !bReadOnly && bHasPriv;
            if (Left(SPriv,1) == Main && bShowPrivGroup && bHasPriv)
            {
                if (CurCol > maxcols)
                {
                    CurCol = 1;
                    PrivItems $= "</tr><tr>";
                }

                PrivItems $= GetPrivsItem(privs, PM.Tags[TagIndex++], true, SPriv, bCanEdit);
                CurCol++;
            }
        }

        if (bShowPrivGroup)
        {
            Resp.Subst("PrivilegeRows", PrivItems);
            OutStr = OutStr $ PrivHeader $ WebInclude(PrivilegeTable);
        }
    }
    return OutStr;
}

function string GetPrivsTable(string privs, optional bool bNoEdit)
{
local string str;
local int i;

    // Start by getting all rows for known privilege groups
    str = "";
    for (i=0; i<Level.Game.AccessControl.PrivManagers.Length; i++)
        str = str$MakePrivsTable(Level.Game.AccessControl.PrivManagers[i], privs, bNoEdit);

    if (str == "")
        str = CannotAssignPrivs;
    return str;
}

// This function determines which privileges will appear as checked in webadmin
function string FixPrivs(WebRequest Request, string oldprivs)
{
local string privs, myprivs, priv;

// Can only modify settings that I have access to
    if (CurAdmin.bMasterAdmin)
        myprivs = Level.Game.AccessControl.AllPrivs;
    else
        myprivs = CurAdmin.MergedPrivs;

    privs = "";

    // Keep any privs which the currently logged in admin does not have
    while (oldprivs != "")
    {
        priv = NextPriv(oldprivs);
        if (Instr("|"$myprivs$"|", "|"$priv$"|") == -1)
        {
            if (Privs != "") Privs $= "|";
            Privs $= Priv;
        }
    }

    // If this priv is checked, and the Main priv for the group is not checked, add the priv
    while (myprivs != "")
    {
        priv = NextPriv(myprivs);
        if (Request.GetVariable(priv) != "" &&
            InStr("|" $ Privs $ "|", "|" $ Left(Priv, 1) $ "|") == -1)
        {
            if (Privs != "") Privs $= "|";
            Privs $= Priv;
        }
    }
    return privs;
}

function string GetGroupOptions(xAdminGroupList xGroups, string grpsel)
{
local int i;
local string OutStr, GrpName;
local StringArray     GrpNames;

    if (xGroups.Count() == 0)
        return "<option value=\"\">"$NoneText$"</option>";

    // Step 1: Sort the groups
    GrpNames = new(None) class'SortedStringArray';
    for (i=0; i<xGroups.Count(); i++)
        GrpNames.Add(xGroups.Get(i).GroupName, xGroups.Get(i).GroupName);

    if (GrpNames.Count() == 0)
        return "<option value=\"\">" $ NoneText $ "</option>";

    // Step 2: Build the group list
    OutStr = "";
    for (i=0; i<GrpNames.Count(); i++)
    {
        GrpName = GrpNames.GetItem(i);
        OutStr = OutStr$"<option value='"$GrpName$"'";
        if (GrpName == grpsel)
            OutStr = OutStr$" selected";
        OutStr = OutStr$">"$HtmlEncode(GrpName)$"</option>";
    }
    return OutStr;
}

// Returns true if we have any of the privilege from this priv group
function bool CheckPrivilegeGroup(string MainPriv, string SubPrivs)
{
    local string Tmp;

    if (CanPerform(MainPriv))
        return true;

    while (SubPrivs != "")
    {
        Tmp = NextPriv(SubPrivs);
        if (CanPerform(Tmp))
            return true;
    }

    return false;
}

defaultproperties
{
     AdminsIndexPage="admins_menu"
     UsersHomePage="admins_home"
     UsersAccountPage="admins_account"
     UsersAddPage="users_add"
     UsersBrowsePage="users_browse"
     UsersEditPage="users_edit"
     UsersGroupsPage="users_groups"
     UsersMGroupsPage="users_mgroups"
     GroupsAddPage="groups_add"
     GroupsBrowsePage="groups_browse"
     GroupsEditPage="groups_edit"
     PrivilegeTable="admins_priv_table"
     NoteUserHomePage="Welcome to Admins & Groups Management"
     NoteAccountPage="Here you can change your password if required. You can also see which privileges were assigned to you by your manager."
     NoteUserAddPage="As an Admin of this server you can add new Admins and give them privileges. Make sure that the password assigned to the new Admin is not easy to hack."
     NoteUserEditPage="As an Admin of this server you can modify information and privileges for another Admin that you can manage."
     NoteUsersBrowsePage="Here you can see other Admins that you can manage and modify their privilege and groups assignment."
     NoteGroupAddPage="You can create new groups which will have a common set of privileges. Groups are used to give the same privileges to multiple Admins."
     NoteGroupEditPage="You can modify which privileges were assigned to this group. Note that you can only change privileges that you have yourself."
     NoteGroupsBrowsePage="Here you can see all the groups that you can manage, click on a group name to modify it."
     NoteGroupAccessPage="Here you can decide in which groups the selected admin will be part of. This will decide which base privileges this admin will have."
     NoteMGroupAccessPage="Here you can decide which groups this admin will be able to manage. He will be able to assign other admins to this group."
     NameText="Name"
     Deleting="deleting"
     Group="group"
     Groups="Groups"
     User="user"
     Modify="modify"
     Managed="Managed "
     Privileges="Privileges"
     SecurityLevel="Security Level"
     AdminPageTitle="Users & Groups Management"
     AdminHomeTitle="Admin Home Page"
     AdminAccountTitle="Account"
     BrowseUsersTitle="Browse Available Users"
     BrowseGroupsTitle="Browse Available Groups"
     AddUserTitle="Add a New Administrator"
     AddUserButton="Add Admin"
     AddGroupTitle="Add New Administration Group"
     AddGroupButton="Add Group"
     EditUserTitle="Modify an Administrator"
     EditUserButton="Modify Admin"
     EditGroupTitle="Modify an Administration Group"
     EditGroupButton="Modify Group"
     ModifyUserGroup="Modify Groups for"
     ModifyMUserGroup="Modify Managed Groups for"
     UserRemoved="User '%UserName%' was removed!"
     GroupRemoved="Group '%GroupName%' was removed!"
     AdminNotFound="Admin Not Found"
     GroupNotFound="Group Not Found"
     PrivTitle="Insufficient Privileges"
     NoneText="*** None ***"
     NoneItemText="** There are no %Item%s to list **"
     PasswordError="Invalid characters in password or password not at least 6 characters."
     InsufficientPrivs="Your privileges prevent you from %Action% this %Item%."
     InvalidItem="Invalid %Item% name specified!"
     InvalidCharacters="Invalid characters in %Item% name!"
     NameExists="Must specify a unique name for"
     YouMustSelect="You must select a"
     DoesNotExist="The selected %Item% does not exist!"
     CouldNotCreate="Exceptional error creating new"
     NegSecLevel="Negative security level is invalid!"
     CannotAssignHigher="You cannot assign a security level higher than yours"
     CannotAssignPrivs="You cannot assign privileges"
     DefaultPage="adminsframe"
     Title="Admins & Groups"
     NeededPrivs="A|G|Al|Aa|Ae|Ag|Am|Gl|Ga|Ge"
}

Overview Package Class Source Class tree Glossary
previous class      next class frames      no frames
Class file time: Fr 30.3.2007 08:43:50.000 - Creation time: Mo 16.4.2007 11:20:58.078 - Created with UnCodeX