epsylon
/
Elgg-Lorea-Hydra


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224
							<?php
/**
 * All event handler callback functions are handled in this file
 */

/**
 * Event is called when an user is made admin on the site
 *
 * @param string   $event make_admin
 * @param string   $type  user
 * @param ElggUser $user  the affected user
 *
 * @return void
 */
function security_tools_make_admin_handler($event, $type, ElggUser $user) {
	
	if (empty($user) || !elgg_instanceof($user, "user")) {
		return;
	}
	
	$site = elgg_get_site_entity();
	$logged_in_user = elgg_get_logged_in_user_entity();
	
	// notify other administrators about this
	$setting = elgg_get_plugin_setting("mails_admin_admins", "security_tools");
	if ($setting != "no") {
		// get all the site administrators
		$options = array(
			"limit" => false,
			"joins" => array("JOIN " . elgg_get_config("dbprefix") . "entity_relationships r ON e.guid = r.guid_one"),
			"wheres" => array("(r.relationship = 'member_of_site' AND r.guid_two = " . $site->getGUID() . ")")
		);
		$admins = elgg_get_admins($options);
		
		// allow other plugins to modify the admins
		$params = array(
			"event" => "make_admin",
			"admins" => $admins,
			"user" => $user
		);
		$admins = elgg_trigger_plugin_hook("notify_admins", "security_tools", $params, $admins);
		// if we have administrators left, notify them
		if (!empty($admins) && is_array($admins)) {
			$subject = elgg_echo("security_tools:notify_admins:make_admin:subject", array($site->name));
			$message = elgg_echo("security_tools:notify_admins:make_admin:message", array(
				$user->name,
				$logged_in_user->name,
				$user->getURL(),
				$site->url
			));
			
			foreach ($admins as $admin) {
				// force notifications to email so nobody misses this
				notify_user($admin->getGUID(), $site->getGUID(), $subject, $message, null, "email");
			}
		}
	}
	
	// notify the user about this
	$setting = elgg_get_plugin_setting("mails_admin_user", "security_tools");
	if ($setting == "yes") {
		$notify = true;
		// allow other plugins to block this notification
		$params = array(
			"event" => "make_admin",
			"user" => $user,
		);
		$notify = elgg_trigger_plugin_hook("notify_user", "security_tools", $params, $notify);
		if ($notify) {
			$subject = elgg_echo("security_tools:notify_user:make_admin:subject", array($site->name));
			$message = elgg_echo("security_tools:notify_user:make_admin:message", array(
				$user->name,
				$logged_in_user->name,
				$site->url
			));
			
			notify_user($user->getGUID(), $site->getGUID(), $subject, $message, null, "email");
		}
	}
}

/**
 * Event is called when the admin rights of an user are removed
 *
 * @param string   $event remove_admin
 * @param string   $type  user
 * @param ElggUser $user  the affected user
 *
 * @return void
 */
function security_tools_remove_admin_handler($event, $type, ElggUser $user) {
	
	if (empty($user) || !elgg_instanceof($user, "user")) {
		return;
	}
	
	$site = elgg_get_site_entity();
	$logged_in_user = elgg_get_logged_in_user_entity();
	
	// notify other administrators about this
	$setting = elgg_get_plugin_setting("mails_admin_admins", "security_tools");
	if ($setting != "no") {
		// get all the site administrators
		$options = array(
			"limit" => false,
			"joins" => array("JOIN " . elgg_get_config("dbprefix") . "entity_relationships r ON e.guid = r.guid_one"),
			"wheres" => array(
				"(r.relationship = 'member_of_site' AND r.guid_two = " . $site->getGUID() . ")",
				"(e.guid <> " . $user->getGUID() . ")"
			)
		);
		$admins = elgg_get_admins($options);
		
		// allow other plugins to modify the admins
		$params = array(
			"event" => "remove_admin",
			"admins" => $admins,
			"user" => $user
		);
		$admins = elgg_trigger_plugin_hook("notify_admins", "security_tools", $params, $admins);
		// if we have administrators left, notify them
		if (!empty($admins) && is_array($admins)) {
			$subject = elgg_echo("security_tools:notify_admins:remove_admin:subject", array($site->name));
			$message = elgg_echo("security_tools:notify_admins:remove_admin:message", array(
				$user->name,
				$logged_in_user->name,
				$user->getURL(),
				$site->url
			));
			
			foreach ($admins as $admin) {
				// force notifications to email so nobody misses this
				notify_user($admin->getGUID(), $site->getGUID(), $subject, $message, null, "email");
			}
		}
	}
	
	// notify the user about this
	$setting = elgg_get_plugin_setting("mails_admin_user", "security_tools");
	if ($setting == "yes") {
		$notify = true;
		// allow other plugins to block this notification
		$params = array(
			"event" => "remove_admin",
			"user" => $user,
		);
		$notify = elgg_trigger_plugin_hook("notify_user", "security_tools", $params, $notify);
		if ($notify) {
			$subject = elgg_echo("security_tools:notify_user:remove_admin:subject", array($site->name));
			$message = elgg_echo("security_tools:notify_user:remove_admin:message", array(
				$user->name,
				$logged_in_user->name
			));
			
			notify_user($user->getGUID(), $site->getGUID(), $subject, $message, null, "email");
		}
	}
}

/**
 * Event to notify a user that he is banned
 *
 * @param string   $event ban
 * @param string   $type  user
 * @param ElggUser $user  the affected user
 *
 * @return void
 */
function security_tools_ban_user_handler($event, $type, ElggUser $user) {
	
	if (empty($user) || !elgg_instanceof($user, "user")) {
		return;
	}
	
	// should we notify the user about this
	$setting = elgg_get_plugin_setting("mails_banned", "security_tools");
	if ($setting != "yes") {
		return;
	}
	
	$site = elgg_get_site_entity();
	
	$subject = elgg_echo("security_tools:notify_user:ban:subject", array($site->name));
	$message = elgg_echo("security_tools:notify_user:ban:message", array(
		$user->name,
		$site->name
	));
	
	notify_user($user->getGUID(), $site->getGUID(), $subject, $message, null, "email");
}

/**
 * Event to notify a user that he is unbanned
 *
 * @param string   $event unban
 * @param string   $type  user
 * @param ElggUser $user  the affected user
 *
 * @return void
 */
function security_tools_unban_user_handler($event, $type, ElggUser $user) {
	
	if (empty($user) || !elgg_instanceof($user, "user")) {
		return;
	}
	
	// should we notify the user about this
	$setting = elgg_get_plugin_setting("mails_banned", "security_tools");
	if ($setting != "yes") {
		return;
	}
	
	$site = elgg_get_site_entity();
	
	$subject = elgg_echo("security_tools:notify_user:unban:subject", array($site->name));
	$message = elgg_echo("security_tools:notify_user:unban:message", array(
		$user->name,
		$site->name,
		$site->url
	));
	
	notify_user($user->getGUID(), $site->getGUID(), $subject, $message, null, "email");
}