registerFunction('search_users'); // setting the section (for the tabs) $this_section = SECTION_PLATFORM_ADMIN; // Access restrictions api_protect_admin_script(true); // setting breadcrumbs $interbreadcrumb[] = array('url' => 'index.php', 'name' => get_lang('PlatformAdmin')); $interbreadcrumb[] = array('url' => 'user_list.php', 'name' => get_lang('UserList')); // Database Table Definitions $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $tbl_access_url_rel_user = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER); // initializing variables $user_id = intval($_GET['user']); $user_info = api_get_user_info($user_id); $user_anonymous = api_get_anonymous_id(); $current_user_id = api_get_user_id(); $userStatus = api_get_user_status($user_id); $firstLetterUser = isset($_POST['firstLetterUser']) ? $_POST['firstLetterUser'] : null; // setting the name of the tool $isAdmin = UserManager::is_admin($user_id); if ($isAdmin) { $userStatus = PLATFORM_ADMIN; $tool_name = get_lang('AssignUsersToPlatformAdministrator'); } else if ($user_info['status'] == SESSIONADMIN) { $tool_name = get_lang('AssignUsersToSessionsAdministrator'); } else if ($user_info['status'] == STUDENT_BOSS) { $tool_name = get_lang('AssignUsersToBoss'); } else { $tool_name = get_lang('AssignUsersToHumanResourcesManager'); } $add_type = 'multiple'; if (isset($_GET['add_type']) && $_GET['add_type'] != '') { $add_type = Security::remove_XSS($_REQUEST['add_type']); } if (!api_is_platform_admin()) { api_not_allowed(true); } function search_users($needle, $type) { global $tbl_access_url_rel_user, $tbl_user, $user_anonymous, $current_user_id, $user_id, $userStatus; $xajax_response = new xajaxResponse(); $return = ''; if (!empty($needle) && !empty($type)) { $assigned_users_to_hrm = array(); switch ($userStatus) { case DRH: //no break; case PLATFORM_ADMIN: $assigned_users_to_hrm = UserManager::get_users_followed_by_drh($user_id); break; case STUDENT_BOSS: $assigned_users_to_hrm = UserManager::getUsersFollowedByStudentBoss($user_id); break; } $assigned_users_id = array_keys($assigned_users_to_hrm); $without_assigned_users = ''; $westernOrder = api_is_western_name_order(); if ($westernOrder) { $order_clause = " ORDER BY firstname, lastname"; } else { $order_clause = " ORDER BY lastname, firstname"; } if (count($assigned_users_id) > 0) { $without_assigned_users = " AND user.user_id NOT IN(".implode(',', $assigned_users_id).")"; } if (api_is_multiple_url_enabled()) { $sql = "SELECT user.user_id, username, lastname, firstname FROM $tbl_user user LEFT JOIN $tbl_access_url_rel_user au ON (au.user_id = user.user_id) WHERE ".(api_sort_by_first_name() ? 'firstname' : 'lastname')." LIKE '$needle%' AND status NOT IN(".DRH.", ".SESSIONADMIN.", ".STUDENT_BOSS.") AND user.user_id NOT IN ($user_anonymous, $current_user_id, $user_id) $without_assigned_users AND access_url_id = ".api_get_current_access_url_id()." $order_clause "; } else { $sql = "SELECT user_id, username, lastname, firstname FROM $tbl_user user WHERE ".(api_sort_by_first_name() ? 'firstname' : 'lastname')." LIKE '$needle%' AND status NOT IN(".DRH.", ".SESSIONADMIN.", ".STUDENT_BOSS.") AND user_id NOT IN ($user_anonymous, $current_user_id, $user_id) $without_assigned_users $order_clause "; } $rs = Database::query($sql); $xajax_response->addAssign('ajax_list_users_multiple', 'innerHTML', api_utf8_encode($return)); if ($type == 'single') { $tbl_user_rel_access_url = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER); $access_url_id = api_get_current_access_url_id(); $sql = 'SELECT user.user_id, username, lastname, firstname FROM '.$tbl_user.' user INNER JOIN '.$tbl_user_rel_access_url.' url_user ON (url_user.user_id=user.user_id) WHERE access_url_id = '.$access_url_id.' AND ( username LIKE "'.$needle.'%" OR firstname LIKE "'.$needle.'%" OR lastname LIKE "'.$needle.'%" ) AND '; switch ($userStatus) { case DRH: $sql .= " user.status <> 6 AND user.status <> ".DRH; break; case STUDENT_BOSS: $sql .= " user.status <> 6 AND user.status <> ".STUDENT_BOSS; break; } $sql .= " $order_clause LIMIT 11"; $rs = Database::query($sql); $i = 0; while ($user = Database :: fetch_array($rs)) { $i++; if ($i <= 10) { $person_name = api_get_person_name($user['firstname'], $user['lastname']); $return .= ''.$person_name.' ('.$user['username'].')
'; } else { $return .= '...
'; } } $xajax_response->addAssign( 'ajax_list_users_single', 'innerHTML', api_utf8_encode($return) ); } else { $return .= ''; $xajax_response->addAssign('ajax_list_users_multiple', 'innerHTML', api_utf8_encode($return)); } } return $xajax_response; } $xajax->processRequests(); $htmlHeadXtra[] = $xajax->getJavascript('../inc/lib/xajax/'); $htmlHeadXtra[] = ''; $formSent = 0; $errorMsg = ''; $UserList = array(); // Filters $filters = array( array('type' => 'text', 'name' => 'username', 'label' => get_lang('Username')), array('type' => 'text', 'name' => 'firstname', 'label' => get_lang('FirstName')), array('type' => 'text', 'name' => 'lastname', 'label' => get_lang('LastName')), array('type' => 'text', 'name' => 'official_code', 'label' => get_lang('OfficialCode')), array('type' => 'text', 'name' => 'email', 'label' => get_lang('Email')) ); $searchForm = new FormValidator('search', 'get', api_get_self().'?user='.$user_id); $searchForm->addHeader(get_lang('AdvancedSearch')); $renderer = & $searchForm->defaultRenderer(); $searchForm->addElement('hidden', 'user', $user_id); foreach ($filters as $param) { $searchForm->addElement($param['type'], $param['name'], $param['label']); } $searchForm->addButtonSearch(get_lang('Search')); $filterData = array(); if ($searchForm->validate()) { $filterData = $searchForm->getSubmitValues(); } $conditions = array(); if (!empty($filters) && !empty($filterData)) { foreach ($filters as $filter) { if (isset($filter['name']) && isset($filterData[$filter['name']])) { $value = $filterData[$filter['name']]; if (!empty($value)) { $conditions[$filter['name']] = $value; } } } } if (isset($_POST['formSent']) && intval($_POST['formSent']) == 1) { $user_list = $_POST['UsersList']; switch ($userStatus) { case DRH: //no break; case PLATFORM_ADMIN: $affected_rows = UserManager::subscribeUsersToHRManager($user_id, $user_list); break; case STUDENT_BOSS: $affected_rows = UserManager::subscribeBossToUsers($user_id, $user_list); break; default: $affected_rows = 0; } Display::addFlash( Display::return_message( get_lang('AssignedUsersHaveBeenUpdatedSuccessfully'), 'normal' ) ); } // Display header Display::display_header($tool_name); // actions $actionsLeft = ''; if ($userStatus != STUDENT_BOSS) { $actionsLeft = Display::url( Display::return_icon('course-add.png', get_lang('AssignCourses'), null, ICON_SIZE_MEDIUM), "dashboard_add_courses_to_user.php?user=$user_id" ); $actionsLeft .= Display::url( Display::return_icon('session-add.png', get_lang('AssignSessions'), null, ICON_SIZE_MEDIUM), "dashboard_add_sessions_to_user.php?user=$user_id" ); } $actionsRight = Display::url( ' '.get_lang('AdvancedSearch'), '#', array('class' => 'btn btn-default advanced_options', 'id' => 'advanced_search') ); $toolbar = Display::toolbarAction('toolbar-dashboard', [$actionsLeft, $actionsRight]); echo $toolbar; echo ''; echo Display::page_header( sprintf( get_lang('AssignUsersToX'), api_get_person_name($user_info['firstname'], $user_info['lastname']) ), null, 'h3' ); $assigned_users_to_hrm = array(); switch ($userStatus) { case DRH: //no break; case PLATFORM_ADMIN: $assigned_users_to_hrm = UserManager::get_users_followed_by_drh($user_id); break; case STUDENT_BOSS: $assigned_users_to_hrm = UserManager::getUsersFollowedByStudentBoss($user_id); break; } $assigned_users_id = array_keys($assigned_users_to_hrm); $without_assigned_users = ''; if (count($assigned_users_id) > 0) { $without_assigned_users = " user.user_id NOT IN(".implode(',', $assigned_users_id).") AND "; } $search_user = ''; if (!empty($firstLetterUser)) { $needle = Database::escape_string($firstLetterUser); $search_user = "AND ".(api_sort_by_first_name() ? 'firstname' : 'lastname')." LIKE '$needle%'"; } $sqlConditions = null; if (!empty($conditions)) { $temp_conditions = array(); foreach ($conditions as $field => $value) { $field = Database::escape_string($field); $value = Database::escape_string($value); $temp_conditions[] = $field.' LIKE \'%'.$value.'%\''; } if (!empty($temp_conditions)) { $sqlConditions .= implode(' AND ', $temp_conditions); } if (!empty($sqlConditions)) { $sqlConditions = " AND $sqlConditions"; } } if (api_is_multiple_url_enabled()) { $sql = "SELECT user.user_id, username, lastname, firstname FROM $tbl_user user LEFT JOIN $tbl_access_url_rel_user au ON (au.user_id = user.user_id) WHERE $without_assigned_users user.user_id NOT IN ($user_anonymous, $current_user_id, $user_id) AND status NOT IN(".DRH.", ".SESSIONADMIN.") $search_user AND access_url_id = ".api_get_current_access_url_id()." $sqlConditions ORDER BY firstname"; } else { $sql = "SELECT user_id, username, lastname, firstname FROM $tbl_user user WHERE $without_assigned_users user_id NOT IN ($user_anonymous, $current_user_id, $user_id) AND status NOT IN(".DRH.", ".SESSIONADMIN.") $search_user $sqlConditions ORDER BY firstname "; } $result = Database::query($sql); ?>
>

'.$tool_name.''; ?>