3 # Create, modify or delete a webmin group
5 require './acl-lib.pl';
8 # Check for special button clicks, and redirect
9 if ($in{'but_clone'}) {
10 &redirect("edit_group.cgi?clone=".&urlize($in{'old'}));
13 elsif ($in{'but_delete'}) {
14 &redirect("delete_group.cgi?group=".&urlize($in{'old'}));
19 # Get the original group
21 $old = &get_group($in{'old'});
22 $old || &error($text{'gedit_egone'});
23 $group{'members'} = $old->{'members'};
24 $group{'proto'} = $old->{'proto'};
25 $group{'id'} = $old->{'id'};
27 &error_setup($text{'gsave_err'});
29 # Check for duplicate group names
30 $in{'name'} =~ /^[A-z0-9\-\_\.\@]+$/ && $in{'name'} !~ /^\@/ ||
31 &error(&text('gsave_ename', $in{'name'}));
32 $in{'name'} eq 'webmin' && &error($text{'gsave_enamewebmin'});
33 if (!$in{'old'} || $in{'old'} ne $in{'name'}) {
34 $clash = &get_group($in{'name'});
35 $clash && &error(&text('gsave_edup', $in{'name'}));
37 $in{'desc'} !~ /:/ || &error($text{'gsave_edesc'});
39 # Find the current parent group
41 foreach $g (&list_groups()) {
42 if (&indexof('@'.$in{'old'}, @{$g->{'members'}}) >= 0) {
48 if (defined($in{'group'})) {
49 # Check if group is allowed
50 if ($access{'gassign'} ne '*') {
51 local @gcan = split(/\s+/, $access{'gassign'});
52 $in{'group'} && &indexof($in{'group'}, @gcan) >= 0 ||
53 !$in{'group'} && &indexof('_none', @gcan) >= 0 ||
54 $oldgroup && $oldgroup->{'name'} eq $in{'group'} ||
55 &error($text{'save_egroup'});
58 # Store parent group membership
59 $newgroup = &get_group($in{'group'});
60 if ($in{'group'} ne ($oldgroup ? $oldgroup->{'name'} : '')) {
61 # Group has changed - update the member lists
63 $oldgroup->{'members'} =
64 [ grep { $_ ne '@'.$in{'old'} }
65 @{$oldgroup->{'members'}} ];
66 &modify_group($oldgroup->{'name'}, $oldgroup);
69 push(@{$newgroup->{'members'}}, '@'.$in{'name'});
70 &modify_group($in{'group'}, $newgroup);
75 # Work out group modules
76 @mods = split(/\0/, $in{'mod'});
79 # Remove modules from the old parent group
80 @mods = grep { &indexof($_, @{$oldgroup->{'modules'}}) < 0 } @mods;
84 # Add modules from parent group to list
88 if (&indexof($m, @{$newgroup->{'modules'}}) < 0);
90 @mods = &unique(@mods, @{$newgroup->{'modules'}});
91 $group{'ownmods'} = \@ownmods;
93 # Copy ACL files for parent group
94 local $name = $in{'old'} ? $in{'old'} : $in{'name'};
95 ©_group_acl_files($in{'group'}, $name,
96 [ @{$newgroup->{'modules'}}, "" ]);
100 $group{'modules'} = \@mods;
101 $group{'name'} = $in{'name'};
102 $group{'desc'} = $in{'desc'};
106 &modify_group($in{'old'}, \%group);
108 # recursively update all member users and groups
109 @glist = &list_groups();
110 @ulist = &list_users();
111 &update_members(\@ulist, \@glist, $group{'modules'},
116 &create_group(\%group, $in{'clone'});
119 if ($in{'old'} && $in{'acl_security_form'}) {
120 # Update group's global ACL
121 &foreign_require("", "acl_security.pl");
122 &foreign_call("", "acl_security_save", \%uaccess, \%in);
123 $aclfile = "$config_directory/$in{'name'}.gacl";
124 &lock_file($aclfile);
125 &save_group_module_acl(\%uaccess, $in{'name'}, "", 1);
126 chmod(0640, $aclfile) if (-r $aclfile);
127 &unlock_file($aclfile);
132 &webmin_log("modify", "group", $in{'old'}, \%in);
135 &webmin_log("create", "group", $group{'name'}, \%in);