ENH: refs #0340. Add controller and view for deleting a user as admin

zachmullen · zachmullen · commit 29f5465a408f · 2012-01-13T14:40:57.000-05:00
diff --git a/core/controllers/UserController.php b/core/controllers/UserController.php
@@ -709,6 +709,8 @@ public function userpageAction()
     $this->view->feeds = $this->Feed->getFeedsByUser($this->userSession->Dao, $userDao);
 
     $this->view->isViewAction = ($this->logged && ($this->userSession->Dao->getKey() == $userDao->getKey() || $this->userSession->Dao->isAdmin()));
+    $this->view->currentUser = $this->userSession->Dao;
+    $this->view->isAdmin = $this->logged && $this->userSession->Dao->isAdmin();
     $this->view->information = array();
 
     $this->view->disableFeedImages = true;
@@ -773,4 +775,55 @@ public function manageAction()
     $this->view->userCommunities = $communities;
     $this->view->userCommunityFolders = $communityFolders;
     }
-  }//end class
+
+  /** Render the dialog related to user deletion */
+  public function deletedialogAction()
+    {
+    $this->requireAdminPrivileges();
+    $this->disableLayout();
+    $userId = $this->_getParam('userId');
+
+    if(!isset($userId))
+      {
+      throw new Zend_Exception('Must set a userId parameter');
+      }
+    $user = $this->User->load($userId);
+    if(!$user)
+      {
+      throw new Zend_Exception('Invalid user id');
+      }
+    $this->view->user = $user;
+    }
+
+  /** Delete a user */
+  public function deleteAction()
+    {
+    // make sure this gets completed even if user navigates away or it takes a long time
+    set_time_limit(0);
+    ignore_user_abort(true);
+
+    $this->requireAdminPrivileges();
+    $userId = $this->_getParam('userId');
+
+    if(!isset($userId))
+      {
+      throw new Zend_Exception('Must set a userId parameter');
+      }
+    $user = $this->User->load($userId);
+    if(!$user)
+      {
+      throw new Zend_Exception('Invalid user id');
+      }
+    if($user->isAdmin())
+      {
+      throw new Zend_Exception('Cannot delete an admin user');
+      }
+    $this->_helper->viewRenderer->setNoRender();
+    $this->disableLayout();
+
+    $name = $user->getFirstname().' '.$user->getLastname();
+    $this->User->delete($user);
+    $this->getLogger()->info('User '.$name.' successfully deleted');
+    echo JsonComponent::encode(array(true, 'User '.$name.' successfully deleted'));
+    }
+  }//end class
diff --git a/core/public/css/user/user.deletedialog.css b/core/public/css/user/user.deletedialog.css
@@ -0,0 +1,8 @@
+span#deleteDialogUserName {
+  font-weight: bold;
+}
+
+span#deleteDialogCaution {
+  font-weight: bolder;
+  color: #bb0000;
+}
diff --git a/core/public/js/user/user.deletedialog.js b/core/public/js/user/user.deletedialog.js
@@ -0,0 +1,65 @@
+var midas = midas || {};
+midas.user = midas.user || {};
+midas.user.deletedialog = {};
+
+/**
+ * Toggles the Delete button based on the state of the agreement checkbox
+ * in order to make the operation safer
+ */
+midas.user.deletedialog.agreeCheckboxChanged = function()
+  {
+  if($(this).attr('checked') == 'checked')
+    {
+    $('#deleteDialogDeleteButton').removeAttr('disabled');
+    }
+  else
+    {
+    $('#deleteDialogDeleteButton').attr('disabled', 'disabled');
+    }
+  }
+
+/**
+ * When the user confirms deletion request, this will get called before ajax submission
+ */
+midas.user.deletedialog.confirm = function()
+  {
+  $('#deleteDialogDeleteButton').attr('disabled', 'disabled');
+  $('#deleteDialogCancelButton').attr('disabled', 'disabled');
+  $('#deleteDialogAgreeCheckbox').attr('disabled', 'disabled');
+  $('img#deleteDialogLoadingGif').show();
+  // TODO add please wait message?
+  }
+
+/**
+ * Called when our ajax request to delete the user returns
+ */
+midas.user.deletedialog.success = function(responseText, statusText, xhr, form)
+  {
+  $('div.MainDialog').dialog('close');
+  $('#deleteDialogCancelButton').removeAttr('disabled');
+  $('#deleteDialogAgreeCheckbox').removeAttr('disabled');
+  $('#deleteDialogAgreeCheckbox').removeAttr('checked');
+  $('input#declineApplyRecursive').removeAttr('disabled');
+  $('img#deleteDialogLoadingGif').hide();
+  jsonResponse = $.parseJSON(responseText);
+  
+  if(jsonResponse == null)
+    {
+    createNotice('Error', 4000);
+    return;
+    }
+  createNotice(jsonResponse[1], 4000);
+  window.location.replace(json.global.webroot + '/user/index');
+  }
+
+$(document).ready(function() {
+  $('#deleteDialogAgreeCheckbox').change(midas.user.deletedialog.agreeCheckboxChanged);
+  $('#deleteDialogCancelButton').click(function() {
+    $('div.MainDialog').dialog('close');
+    });
+
+  $('#deleteDialogForm').ajaxForm({
+    beforeSubmit: midas.user.deletedialog.confirm,
+    success: midas.user.deletedialog.success
+  });
+});
diff --git a/core/public/js/user/user.userpage.js b/core/public/js/user/user.userpage.js
@@ -1,5 +1,8 @@
+var midas = midas || {};
+midas.user = midas.user || {};
+
   $(document).ready(function() {
-    
+
     $( "#tabsGeneric" ).tabs({
       select: function(event, ui) {
         $('div.genericAction').show();
@@ -13,7 +16,7 @@
       });
     $("#tabsGeneric").show();
     $('img.tabsLoading').hide();
-    
+
     $("#browseTable").treeTable({
       onFirstInit: enableRangeSelect,
       onNodeShow: enableRangeSelect,
@@ -27,8 +30,8 @@
     $("img.tableLoading").hide();
     $("table#browseTable").show();
   });
-  
-  
+
+
     //dependance: common/browser.js
     var ajaxSelectRequest='';
     function callbackSelect(node)
@@ -40,16 +43,24 @@
       $('div.websiteBlock').hide();
       $('div.viewInfo').show();
       $('div.viewAction').show();
-      genericCallbackSelect(node);  
+      genericCallbackSelect(node);
     }
 
     function callbackDblClick(node)
     {
       genericCallbackDblClick(node);
     }
-    
+
     function callbackCheckboxes(node)
     {
       genericCallbackCheckboxes(node);
     }
-    
+
+/**
+ * Will render the delete user dialog for the specified user
+ */
+midas.user.showDeleteDialog = function(userId)
+  {
+  loadDialog('userId'+userId, '/user/deletedialog?userId='+userId);
+  showDialog('Delete User', false);
+  }
diff --git a/core/views/user/deletedialog.phtml b/core/views/user/deletedialog.phtml
@@ -0,0 +1,34 @@
+<?php
+/*=========================================================================
+MIDAS Server
+Copyright (c) Kitware SAS. 20 rue de la Villette. All rights reserved.
+69328 Lyon, FRANCE.
+
+See Copyright.txt for details.
+This software is distributed WITHOUT ANY WARRANTY; without even
+the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
+PURPOSE.  See the above copyright notices for more information.
+=========================================================================*/
+
+echo '<script type="text/javascript" src="'.$this->coreWebroot.'/public/js/user/user.deletedialog.js?'.time().'"></script>';
+$this->headScript()->appendFile($this->coreWebroot . '/public/js/jquery/jquery.form.js');
+?>
+<link href="<?php echo $this->coreWebroot?>/public/css/user/user.deletedialog.css" rel="stylesheet" type="text/css" />
+
+<span id="deleteDialogCaution">CAUTION:</span> Are you sure you want to delete the user
+<span id="deleteDialogUserName"><?php echo $this->user->getFirstname().' '.$this->user->getLastname(); ?></span>?
+<br /><br />
+The user's entire folder tree and all data within it will be deleted as well.  This action cannot be undone.
+<div>
+  <br />
+  <form id="deleteDialogForm" class="genericForm" method="POST" action="<?php echo $this->webroot?>/user/delete">
+    <input type='hidden' name="userId" value="<?php echo $this->user->getKey(); ?>" />
+    <input type="checkbox" id="deleteDialogAgreeCheckbox">I understand the implications and wish to proceed.</input>
+    <br /><br />
+    <input class="genericButton" disabled="disabled" type='submit' name='submitButton' id='deleteDialogDeleteButton'
+           value='<?php echo $this->t('Delete')?>' />
+    <input class="genericButton" style="margin-left: 15px;" type='button' name='deleteDialogCancelButton' id='deleteDialogCancelButton'
+           value='<?php echo $this->t('Cancel')?>' />
+  </form>
+  <img id="deleteDialogLoadingGif" style="display: none; float: left" alt="" src="<?php echo  $this->coreWebroot?>/public/images/icons/loading.gif" />
+</div>
diff --git a/core/views/user/userpage.phtml b/core/views/user/userpage.phtml
@@ -165,7 +165,19 @@ $this->headScript()->appendFile($this->coreWebroot.'/public/js/common/common.bro
     <ul>
       <li class="myAccountLink" userid="'.$this->user->getKey().'"><a><img alt="" src="'.$this->coreWebroot.'/public/images/icons/user.png"/> '.$this->t('Manage Profile').'</a></li>
       <li><a href="'.$this->webroot.'/user/manage/?userId='.$this->user->getKey().'"><img alt="" src="'.$this->coreWebroot.'/public/images/icons/data.png"/> '.$this->t('Manage Files').'</a></li>
-      <li><a onclick="createNewFolder('.$this->mainFolder->getKey().');"><img alt="" src="'.$this->coreWebroot.'/public/images/icons/folder_add.png"/> '.$this->t('Create a top level Folder').'</a></li>
+      <li><a onclick="createNewFolder('.$this->mainFolder->getKey().');"><img alt="" src="'.$this->coreWebroot.'/public/images/icons/folder_add.png"/> '.$this->t('Create a top level Folder').'</a></li>';
+      
+    if($this->isAdmin && !$this->user->isAdmin())
+      {
+      echo '
+      <li><a onclick="midas.user.showDeleteDialog('.$this->user->getKey().');"><img alt="" src="'.$this->coreWebroot.'/public/images/icons/close.png"/> '.$this->t('Delete User').'</a></li>';
+      }
+    else if(!$this->user->isAdmin() && $this->user->getKey() == $this->currentUser->getKey())
+      {
+      echo '
+      <li><a onclick="midas.user.showDeleteDialog('.$this->user->getKey().');"><img alt="" src="'.$this->coreWebroot.'/public/images/icons/close.png"/> '.$this->t('Delete My Account').'</a></li>';
+      }
+    echo '
     </ul>
   </div>';
     }
