projects / civicrm-core.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
INFRA-132 comments to end with full stops
[civicrm-core.git] / CRM / Profile / Page / Dynamic.php
1 <?php
2 /*
3 +--------------------------------------------------------------------+
4 | CiviCRM version 4.6 |
5 +--------------------------------------------------------------------+
6 | Copyright CiviCRM LLC (c) 2004-2014 |
7 +--------------------------------------------------------------------+
8 | This file is a part of CiviCRM. |
9 | |
10 | CiviCRM is free software; you can copy, modify, and distribute it |
11 | under the terms of the GNU Affero General Public License |
12 | Version 3, 19 November 2007 and the CiviCRM Licensing Exception. |
13 | |
14 | CiviCRM is distributed in the hope that it will be useful, but |
15 | WITHOUT ANY WARRANTY; without even the implied warranty of |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. |
17 | See the GNU Affero General Public License for more details. |
18 | |
19 | You should have received a copy of the GNU Affero General Public |
20 | License and the CiviCRM Licensing Exception along |
21 | with this program; if not, contact CiviCRM LLC |
22 | at info[AT]civicrm[DOT]org. If you have questions about the |
23 | GNU Affero General Public License or the licensing of CiviCRM, |
24 | see the CiviCRM license FAQ at http://civicrm.org/licensing |
25 +--------------------------------------------------------------------+
26 */
27
28 /**
29 *
30 * @package CRM
31 * @copyright CiviCRM LLC (c) 2004-2014
32 * $Id$
33 *
34 */
35
36 /**
37 * Create a page for displaying CiviCRM Profile Fields.
38 *
39 * Heart of this class is the run method which checks
40 * for action type and then displays the appropriate
41 * page.
42 *
43 */
44 class CRM_Profile_Page_Dynamic extends CRM_Core_Page {
45
46 /**
47 * The contact id of the person we are viewing.
48 *
49 * @var int
50 */
51 protected $_id;
52
53 /**
54 * The profile group are are interested in.
55 *
56 * @var int
57 */
58 protected $_gid;
59
60 /**
61 * The profile types we restrict this page to display.
62 *
63 * @var string
64 */
65 protected $_restrict;
66
67 /**
68 * Should we bypass permissions.
69 *
70 * @var boolean
71 */
72 protected $_skipPermission;
73
74 /**
75 * Store profile ids if multiple profile ids are passed using comma separated.
76 * Currently lets implement this functionality only for dialog mode
77 */
78 protected $_profileIds = array();
79
80 /**
81 * Contact profile having activity fields?
82 *
83 * @var string
84 */
85 protected $_isContactActivityProfile = FALSE;
86
87 /**
88 * Activity Id connected to the profile.
89 *
90 * @var string
91 */
92 protected $_activityId = NULL;
93
94 protected $_multiRecord = NULL;
95
96 protected $_recordId = NULL;
97
98 /*
99 * fetch multirecord as well as non-multirecord fields
100 */
101 protected $_allFields = NULL;
102
103 /**
104 * Class constructor.
105 *
106 * @param int $id
107 * The contact id.
108 * @param int $gid
109 * The group id.
110 *
111 * @param $restrict
112 * @param bool $skipPermission
113 * @param null $profileIds
114 *
115 * @return \CRM_Profile_Page_Dynamic
116 */
117 public function __construct($id, $gid, $restrict, $skipPermission = FALSE, $profileIds = NULL) {
118 parent::__construct();
119
120 $this->_id = $id;
121 $this->_gid = $gid;
122 $this->_restrict = $restrict;
123 $this->_skipPermission = $skipPermission;
124
125 if (!array_key_exists('multiRecord', $_GET)) {
126 $this->set('multiRecord', NULL);
127 }
128 if (!array_key_exists('recordId', $_GET)) {
129 $this->set('recordId', NULL);
130 }
131 if (!array_key_exists('allFields', $_GET)) {
132 $this->set('allFields', NULL);
133 }
134
135 //specifies the action being done on a multi record field
136 $multiRecordAction = CRM_Utils_Request::retrieve('multiRecord', 'String', $this);
137
138 $this->_multiRecord = (!is_numeric($multiRecordAction)) ? CRM_Core_Action::resolve($multiRecordAction) : $multiRecordAction;
139 if ($this->_multiRecord) {
140 $this->set('multiRecord', $this->_multiRecord);
141 }
142
143 if ($this->_multiRecord & CRM_Core_Action::VIEW) {
144 $this->_recordId = CRM_Utils_Request::retrieve('recordId', 'Positive', $this);
145 $this->_allFields = CRM_Utils_Request::retrieve('allFields', 'Integer', $this);
146 }
147
148 if ($profileIds) {
149 $this->_profileIds = $profileIds;
150 }
151 else {
152 $this->_profileIds = array($gid);
153 }
154
155 $this->_activityId = CRM_Utils_Request::retrieve('aid', 'Positive', $this, FALSE, 0, 'GET');
156 if (is_numeric($this->_activityId)) {
157 $latestRevisionId = CRM_Activity_BAO_Activity::getLatestActivityId($this->_activityId);
158 if ($latestRevisionId) {
159 $this->_activityId = $latestRevisionId;
160 }
161 }
162 $this->_isContactActivityProfile = CRM_Core_BAO_UFField::checkContactActivityProfileType($this->_gid);
163 }
164
165 /**
166 * Get the action links for this page.
167 *
168 * @return array
169 */
170 public function &actionLinks() {
171 return NULL;
172 }
173
174 /**
175 * Run the page.
176 *
177 * This method is called after the page is created. It checks for the
178 * type of action and executes that action.
179 *
180 * @return void
181 */
182 public function run() {
183 $template = CRM_Core_Smarty::singleton();
184 if ($this->_id && $this->_gid) {
185
186 // first check that id is part of the limit group id, CRM-4822
187 $limitListingsGroupsID = CRM_Core_DAO::getFieldValue('CRM_Core_DAO_UFGroup',
188 $this->_gid,
189 'limit_listings_group_id'
190 );
191 $config = CRM_Core_Config::singleton();
192 if ($limitListingsGroupsID) {
193
194 if (!CRM_Contact_BAO_GroupContact::isContactInGroup($this->_id,
195 $limitListingsGroupsID
196 )
197 ) {
198 CRM_Utils_System::setTitle(ts('Profile View - Permission Denied'));
199 return CRM_Core_Session::setStatus(ts('You do not have permission to view this contact record. Contact the site administrator if you need assistance.'), ts('Permission Denied'), 'error');
200 }
201 }
202
203 $session = CRM_Core_Session::singleton();
204 $userID = $session->get('userID');
205
206 $this->_isPermissionedChecksum = FALSE;
207 $permissionType = CRM_Core_Permission::VIEW;
208 if ($this->_id != $userID) {
209 // do not allow edit for anon users in joomla frontend, CRM-4668, unless u have checksum CRM-5228
210 if ($config->userFrameworkFrontend) {
211 $this->_isPermissionedChecksum = CRM_Contact_BAO_Contact_Permission::validateOnlyChecksum($this->_id, $this, FALSE);
212 }
213 else {
214 $this->_isPermissionedChecksum = CRM_Contact_BAO_Contact_Permission::validateChecksumContact($this->_id, $this, FALSE);
215 }
216 }
217 // CRM-10853
218 // Users with create or edit permission should be allowed to view their own profile
219 if ($this->_id == $userID || $this->_isPermissionedChecksum) {
220 if (!CRM_Core_Permission::check('profile view')) {
221 if (CRM_Core_Permission::check('profile create') || CRM_Core_Permission::check('profile edit')) {
222 $this->_skipPermission = TRUE;
223 }
224 }
225 }
226
227 // make sure we dont expose all fields based on permission
228 $admin = FALSE;
229 if ((!$config->userFrameworkFrontend &&
230 (CRM_Core_Permission::check('administer users') ||
231 CRM_Core_Permission::check('view all contacts') ||
232 CRM_Contact_BAO_Contact_Permission::allow($this->_id)
233 )
234 ) ||
235 $this->_id == $userID ||
236 $this->_isPermissionedChecksum
237 ) {
238 $admin = TRUE;
239 }
240
241 $values = array();
242 $fields = CRM_Core_BAO_UFGroup::getFields($this->_profileIds, FALSE, CRM_Core_Action::VIEW,
243 NULL, NULL, FALSE, $this->_restrict,
244 $this->_skipPermission, NULL,
245 $permissionType
246 );
247
248 if ($this->_multiRecord & CRM_Core_Action::VIEW && $this->_recordId && !$this->_allFields) {
249 CRM_Core_BAO_UFGroup::shiftMultiRecordFields($fields, $multiRecordFields);
250 $fields = $multiRecordFields;
251 }
252 if ($this->_isContactActivityProfile && $this->_gid) {
253 $errors = CRM_Profile_Form::validateContactActivityProfile($this->_activityId, $this->_id, $this->_gid);
254 if (!empty($errors)) {
255 CRM_Core_Error::fatal(array_pop($errors));
256 }
257 }
258
259 //reformat fields array
260 foreach ($fields as $name => $field) {
261 // also eliminate all formatting fields
262 if (CRM_Utils_Array::value('field_type', $field) == 'Formatting') {
263 unset($fields[$name]);
264 }
265
266 // make sure that there is enough permission to expose this field
267 if (!$admin && $field['visibility'] == 'User and User Admin Only') {
268 unset($fields[$name]);
269 }
270 }
271
272 if ($this->_isContactActivityProfile) {
273 $contactFields = $activityFields = array();
274
275 foreach ($fields as $fieldName => $field) {
276 if (CRM_Utils_Array::value('field_type', $field) == 'Activity') {
277 $activityFields[$fieldName] = $field;
278 }
279 else {
280 $contactFields[$fieldName] = $field;
281 }
282 }
283
284 CRM_Core_BAO_UFGroup::getValues($this->_id, $contactFields, $values);
285 if ($this->_activityId) {
286 CRM_Core_BAO_UFGroup::getValues(
287 NULL,
288 $activityFields,
289 $values,
290 TRUE,
291 array(array('activity_id', '=', $this->_activityId, 0, 0))
292 );
293 }
294 }
295 else {
296 $customWhereClause = NULL;
297 if ($this->_multiRecord & CRM_Core_Action::VIEW && $this->_recordId) {
298 if ($this->_allFields) {
299 $copyFields = $fields;
300 CRM_Core_BAO_UFGroup::shiftMultiRecordFields($copyFields, $multiRecordFields);
301 $fieldKey = key($multiRecordFields);
302 }
303 else {
304 $fieldKey = key($fields);
305 }
306 if ($fieldID = CRM_Core_BAO_CustomField::getKeyID($fieldKey)) {
307 $tableColumnGroup = CRM_Core_BAO_CustomField::getTableColumnGroup($fieldID);
308 $columnName = "{$tableColumnGroup[0]}.id";
309 $customWhereClause = $columnName . ' = ' . $this->_recordId;
310 }
311 }
312 CRM_Core_BAO_UFGroup::getValues($this->_id, $fields, $values, TRUE, NULL, FALSE, $customWhereClause);
313 }
314
315 // $profileFields array can be used for customized display of field labels and values in Profile/View.tpl
316 $profileFields = array();
317 $labels = array();
318
319 foreach ($fields as $name => $field) {
320 //CRM-14338
321 // Create a unique, non-empty index for each field.
322 $index = $field['title'];
323 if ($index === '') {
324 $index = ' ';
325 }
326 while (array_key_exists($index, $labels)) {
327 $index .= ' ';
328 }
329
330 $labels[$index] = preg_replace('/\s+|\W+/', '_', $name);
331 }
332
333 foreach ($values as $title => $value) {
334 $profileFields[$labels[$title]] = array(
335 'label' => $title,
336 'value' => $value,
337 );
338 }
339
340 $template->assign_by_ref('row', $values);
341 $template->assign_by_ref('profileFields', $profileFields);
342 }
343
344 $name = CRM_Core_DAO::getFieldValue('CRM_Core_DAO_UFGroup', $this->_gid, 'name');
345 $this->assign('ufGroupName', $name);
346 CRM_Utils_Hook::viewProfile($name);
347
348 if (strtolower($name) == 'summary_overlay') {
349 $template->assign('overlayProfile', TRUE);
350 }
351
352 if (($this->_multiRecord & CRM_Core_Action::VIEW) && $this->_recordId && !$this->_allFields) {
353 $fieldDetail = reset($fields);
354 $fieldId = CRM_Core_BAO_CustomField::getKeyID($fieldDetail['name']);
355 $customGroupDetails = CRM_Core_BAO_CustomGroup::getGroupTitles(array($fieldId));
356 $multiRecTitle = $customGroupDetails[$fieldId]['groupTitle'];
357 }
358 else {
359 $title = CRM_Core_DAO::getFieldValue('CRM_Core_DAO_UFGroup', $this->_gid, 'title');
360 }
361
362 //CRM-4131.
363 $displayName = CRM_Core_DAO::getFieldValue('CRM_Contact_DAO_Contact', $this->_id, 'display_name');
364 if ($displayName) {
365 $session = CRM_Core_Session::singleton();
366 $config = CRM_Core_Config::singleton();
367 if ($session->get('userID') &&
368 CRM_Core_Permission::check('access CiviCRM') &&
369 CRM_Contact_BAO_Contact_Permission::allow($session->get('userID'), CRM_Core_Permission::VIEW) &&
370 !$config->userFrameworkFrontend
371 ) {
372 $contactViewUrl = CRM_Utils_System::url('civicrm/contact/view', "action=view&reset=1&cid={$this->_id}", TRUE);
373 $this->assign('displayName', $displayName);
374 $displayName = "<a href=\"$contactViewUrl\">{$displayName}</a>";
375 }
376 $title .= ' - ' . $displayName;
377 }
378
379 $title = isset($multiRecTitle) ? ts('View %1 Record', array(1 => $multiRecTitle)) : $title;
380 CRM_Utils_System::setTitle($title);
381
382 // invoke the pagRun hook, CRM-3906
383 CRM_Utils_Hook::pageRun($this);
384
385 return trim($template->fetch($this->getHookedTemplateFileName()));
386 }
387
388 /**
389 * @param string $suffix
390 *
391 * @return null|string
392 */
393 public function checkTemplateFileExists($suffix = '') {
394 if ($this->_gid) {
395 $templateFile = "CRM/Profile/Page/{$this->_gid}/Dynamic.{$suffix}tpl";
396 $template = CRM_Core_Page::getTemplate();
397 if ($template->template_exists($templateFile)) {
398 return $templateFile;
399 }
400
401 // lets see if we have customized by name
402 $ufGroupName = CRM_Core_DAO::getFieldValue('CRM_Core_DAO_UFGroup', $this->_gid, 'name');
403 if ($ufGroupName) {
404 $templateFile = "CRM/Profile/Page/{$ufGroupName}/Dynamic.{$suffix}tpl";
405 if ($template->template_exists($templateFile)) {
406 return $templateFile;
407 }
408 }
409 }
410 return NULL;
411 }
412
413 /**
414 * Use the form name to create the tpl file name.
415 *
416 * @return string
417 */
418 /**
419 * @return string
420 */
421 public function getTemplateFileName() {
422 $fileName = $this->checkTemplateFileExists();
423 return $fileName ? $fileName : parent::getTemplateFileName();
424 }
425
426 /**
427 * Default extra tpl file basically just replaces .tpl with .extra.tpl
428 * i.e. we dont override
429 *
430 * @return string
431 */
432 /**
433 * @return string
434 */
435 public function overrideExtraTemplateFileName() {
436 $fileName = $this->checkTemplateFileExists('extra.');
437 return $fileName ? $fileName : parent::overrideExtraTemplateFileName();
438 }
439
440 }