2 if(!defined('sugarEntry') || !sugarEntry) die('Not A Valid Entry Point');
3 /*********************************************************************************
4 * SugarCRM Community Edition is a customer relationship management program developed by
5 * SugarCRM, Inc. Copyright (C) 2004-2012 SugarCRM Inc.
7 * This program is free software; you can redistribute it and/or modify it under
8 * the terms of the GNU Affero General Public License version 3 as published by the
9 * Free Software Foundation with the addition of the following permission added
10 * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
11 * IN WHICH THE COPYRIGHT IS OWNED BY SUGARCRM, SUGARCRM DISCLAIMS THE WARRANTY
12 * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
14 * This program is distributed in the hope that it will be useful, but WITHOUT
15 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
16 * FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
19 * You should have received a copy of the GNU Affero General Public License along with
20 * this program; if not, see http://www.gnu.org/licenses or write to the Free
21 * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
24 * You can contact SugarCRM, Inc. headquarters at 10050 North Wolfe Road,
25 * SW2-130, Cupertino, CA 95014, USA. or at email address contact@sugarcrm.com.
27 * The interactive user interfaces in modified source and object code versions
28 * of this program must display Appropriate Legal Notices, as required under
29 * Section 5 of the GNU Affero General Public License version 3.
31 * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
32 * these Appropriate Legal Notices must retain the display of the "Powered by
33 * SugarCRM" logo. If the display of the logo is not reasonably feasible for
34 * technical reasons, the Appropriate Legal Notices must display the words
35 * "Powered by SugarCRM".
36 ********************************************************************************/
38 /*********************************************************************************
40 * Description: TODO: To be written.
41 * Portions created by SugarCRM are Copyright (C) SugarCRM, Inc.
42 * All Rights Reserved.
43 * Contributor(s): ______________________________________..
44 ********************************************************************************/
46 require_once('include/SugarObjects/templates/person/Person.php');
49 // User is used to store customer information.
50 class User extends Person {
62 var $modified_user_id;
65 var $modified_by_name;
77 var $address_postalcode;
83 var $authenticated = false;
90 var $accept_status; // to support Meetings
91 //adding a property called team_id so we can populate it for use in the team widget
94 var $receive_notifications;
98 var $team_exists = false;
99 var $table_name = "users";
100 var $module_dir = 'Users';
101 var $object_name = "User";
102 var $user_preferences;
104 var $importable = true;
105 var $_userPreferenceFocus;
107 var $encodeFields = Array ("first_name", "last_name", "description");
109 // This is used to retrieve related fields from form posts.
110 var $additional_column_fields = array ('reports_to_name'
116 var $new_schema = true;
121 $this->_loadUserPreferencesFocus();
124 protected function _loadUserPreferencesFocus()
126 $this->_userPreferenceFocus = new UserPreference($this);
130 * returns an admin user
132 public function getSystemUser()
134 if (null === $this->retrieve('1'))
135 // handle cases where someone deleted user with id "1"
136 $this->retrieve_by_string_fields(array(
137 'status' => 'Active',
146 * convenience function to get user's default signature
148 function getDefaultSignature() {
149 if($defaultId = $this->getPreference('signature_default')) {
150 return $this->getSignature($defaultId);
157 * retrieves the signatures for a user
158 * @param string id ID of user_signature
159 * @return array ID, signature, and signature_html
161 public function getSignature($id)
163 $signatures = $this->getSignaturesArray();
165 return isset($signatures[$id]) ? $signatures[$id] : FALSE;
168 function getSignaturesArray() {
169 $q = 'SELECT * FROM users_signatures WHERE user_id = \''.$this->id.'\' AND deleted = 0 ORDER BY name ASC';
170 $r = $this->db->query($q);
173 $sig = array(""=>"");
175 while($a = $this->db->fetchByAssoc($r)) {
183 * retrieves any signatures that the User may have created as <select>
185 public function getSignatures(
191 $sig = $this->getSignaturesArray();
193 foreach ($sig as $key => $arr)
195 $sigs[$key] = !empty($arr['name']) ? $arr['name'] : '';
200 $change = ($forSettings) ? "onChange='displaySignatureEdit();'" : "onChange='setSigEditButtonVisibility();'";
203 $id = (!$forSettings) ? 'signature_id' : 'signature_idDisplay';
205 $out = "<select {$change} id='{$id}' name='{$id}'>";
206 $out .= get_select_options_with_id($sigs, $defaultSig).'</select>';
212 * returns buttons and JS for signatures
214 function getSignatureButtons($jscall='', $defaultDisplay=false) {
217 $jscall = empty($jscall) ? 'open_email_signature_form' : $jscall;
219 $butts = "<input class='button' onclick='javascript:{$jscall}(\"\", \"{$this->id}\");' value='{$mod_strings['LBL_BUTTON_CREATE']}' type='button'> ";
220 if($defaultDisplay) {
221 $butts .= '<span name="edit_sig" id="edit_sig" style="visibility:inherit;"><input class="button" onclick="javascript:'.$jscall.'(document.getElementById(\'signature_id\', \'\').value)" value="'.$mod_strings['LBL_BUTTON_EDIT'].'" type="button" tabindex="392">
224 $butts .= '<span name="edit_sig" id="edit_sig" style="visibility:hidden;"><input class="button" onclick="javascript:'.$jscall.'(document.getElementById(\'signature_id\', \'\').value)" value="'.$mod_strings['LBL_BUTTON_EDIT'].'" type="button" tabindex="392">
231 * performs a rudimentary check to verify if a given user has setup personal
236 public function hasPersonalEmail()
238 $focus = new InboundEmail;
239 $focus->retrieve_by_string_fields(array('group_id' => $this->id));
241 return !empty($focus->id);
244 /* Returns the User's private GUID; this is unassociated with the User's
245 * actual GUID. It is used to secure file names that must be HTTP://
246 * accesible, but obfusicated.
248 function getUserPrivGuid() {
249 $userPrivGuid = $this->getPreference('userPrivGuid', 'global', $this);
251 return $userPrivGuid;
253 $this->setUserPrivGuid();
254 if (!isset ($_SESSION['setPrivGuid'])) {
255 $_SESSION['setPrivGuid'] = true;
256 $userPrivGuid = $this->getUserPrivGuid();
257 return $userPrivGuid;
259 sugar_die("Breaking Infinite Loop Condition: Could not setUserPrivGuid.");
264 function setUserPrivGuid() {
265 $privGuid = create_guid();
266 //($name, $value, $nosession=0)
267 $this->setPreference('userPrivGuid', $privGuid, 0, 'global', $this);
271 * Interface for the User object to calling the UserPreference::setPreference() method in modules/UserPreferences/UserPreference.php
273 * @see UserPreference::setPreference()
275 * @param string $name Name of the preference to set
276 * @param string $value Value to set preference to
277 * @param null $nosession For BC, ignored
278 * @param string $category Name of the category to retrieve
280 public function setPreference(
288 if ( func_num_args() > 4 ) {
289 $user = func_get_arg(4);
290 $GLOBALS['log']->deprecated('User::setPreferences() should not be used statically.');
295 $user->_userPreferenceFocus->setPreference($name, $value, $category);
299 * Interface for the User object to calling the UserPreference::resetPreferences() method in modules/UserPreferences/UserPreference.php
301 * @see UserPreference::resetPreferences()
303 * @param string $category category to reset
305 public function resetPreferences(
310 if ( func_num_args() > 1 ) {
311 $user = func_get_arg(1);
312 $GLOBALS['log']->deprecated('User::resetPreferences() should not be used statically.');
317 $user->_userPreferenceFocus->resetPreferences($category);
321 * Interface for the User object to calling the UserPreference::savePreferencesToDB() method in modules/UserPreferences/UserPreference.php
323 * @see UserPreference::savePreferencesToDB()
325 public function savePreferencesToDB()
328 if ( func_num_args() > 0 ) {
329 $user = func_get_arg(0);
330 $GLOBALS['log']->deprecated('User::savePreferencesToDB() should not be used statically.');
335 $user->_userPreferenceFocus->savePreferencesToDB();
339 * Unconditionally reloads user preferences from the DB and updates the session
340 * @param string $category name of the category to retreive, defaults to global scope
341 * @return bool successful?
343 public function reloadPreferences($category = 'global')
345 return $this->_userPreferenceFocus->reloadPreferences($category = 'global');
349 * Interface for the User object to calling the UserPreference::getUserDateTimePreferences() method in modules/UserPreferences/UserPreference.php
351 * @see UserPreference::getUserDateTimePreferences()
353 * @return array 'date' - date format for user ; 'time' - time format for user
355 public function getUserDateTimePreferences()
358 if ( func_num_args() > 0 ) {
359 $user = func_get_arg(0);
360 $GLOBALS['log']->deprecated('User::getUserDateTimePreferences() should not be used statically.');
365 return $user->_userPreferenceFocus->getUserDateTimePreferences();
369 * Interface for the User object to calling the UserPreference::loadPreferences() method in modules/UserPreferences/UserPreference.php
371 * @see UserPreference::loadPreferences()
373 * @param string $category name of the category to retreive, defaults to global scope
374 * @return bool successful?
376 public function loadPreferences(
381 if ( func_num_args() > 1 ) {
382 $user = func_get_arg(1);
383 $GLOBALS['log']->deprecated('User::loadPreferences() should not be used statically.');
388 return $user->_userPreferenceFocus->loadPreferences($category);
392 * Interface for the User object to calling the UserPreference::setPreference() method in modules/UserPreferences/UserPreference.php
394 * @see UserPreference::getPreference()
396 * @param string $name name of the preference to retreive
397 * @param string $category name of the category to retreive, defaults to global scope
398 * @return mixed the value of the preference (string, array, int etc)
400 public function getPreference(
406 if ( func_num_args() > 2 ) {
407 $user = func_get_arg(2);
408 $GLOBALS['log']->deprecated('User::getPreference() should not be used statically.');
413 return $user->_userPreferenceFocus->getPreference($name, $category);
419 * This function increments any ETag seed needed for a particular user's
420 * UI. For example, if the user changes their theme, the ETag seed for the
421 * main menu needs to be updated, so you call this function with the seed name
424 * UserPreference::incrementETag("mainMenuETag");
426 * @param string $tag ETag seed name.
429 public function incrementETag($tag){
430 $val = $this->getETagSeed($tag);
431 if($val == 2147483648){
435 $this->setPreference($tag, $val, 0, "ETag");
441 * This function is a wrapper to encapsulate getting the ETag seed and
442 * making sure it's sanitized for use in the app.
444 * @param string $tag ETag seed name.
445 * @return integer numeric value of the seed
447 public function getETagSeed($tag){
448 $val = $this->getPreference($tag, "ETag");
457 * Get WHERE clause that fetches all users counted for licensing purposes
460 public static function getLicensedUsersWhere()
462 return "deleted=0 AND status='Active' AND user_name IS NOT NULL AND is_group=0 AND portal_only=0 AND ".$GLOBALS['db']->convert('user_name', 'length').">0";
466 function save($check_notify = false) {
467 $isUpdate = !empty($this->id) && !$this->new_with_id;
470 $query = "SELECT count(id) as total from users WHERE ".self::getLicensedUsersWhere();
473 // wp: do not save user_preferences in this table, see user_preferences module
474 $this->user_preferences = '';
476 // if this is an admin user, do not allow is_group or portal_only flag to be set.
477 if ($this->is_admin) {
479 $this->portal_only = 0;
483 // set some default preferences when creating a new user
484 $setNewUserPreferences = empty($this->id) || !empty($this->new_with_id);
488 parent::save($check_notify);
491 // set some default preferences when creating a new user
492 if ( $setNewUserPreferences ) {
493 if(!$this->getPreference('calendar_publish_key')) {
494 $this->setPreference('calendar_publish_key', create_guid());
498 $this->savePreferencesToDB();
503 * @return boolean true if the user is a member of the role_name, false otherwise
504 * @param string $role_name - Must be the exact name of the acl_role
505 * @param string $user_id - The user id to check for the role membership, empty string if current user
506 * @desc Determine whether or not a user is a member of an ACL Role. This function caches the
507 * results in the session or to prevent running queries after the first time executed.
508 * Portions created by SugarCRM are Copyright (C) SugarCRM, Inc..
509 * All Rights Reserved..
510 * Contributor(s): ______________________________________..
512 function check_role_membership($role_name, $user_id = ''){
514 global $current_user;
517 $user_id = $current_user->id;
519 // Check the Sugar External Cache to see if this users memberships were cached
520 $role_array = sugar_cache_retrieve("RoleMemberships_".$user_id);
522 // If we are pulling the roles for the current user
523 if($user_id == $current_user->id){
524 // If the Session doesn't contain the values
525 if(!isset($_SESSION['role_memberships'])){
526 // This means the external cache already had it loaded
527 if(!empty($role_array))
528 $_SESSION['role_memberships'] = $role_array;
530 $_SESSION['role_memberships'] = ACLRole::getUserRoleNames($user_id);
531 $role_array = $_SESSION['role_memberships'];
534 // else the session had the values, so we assign to the role array
536 $role_array = $_SESSION['role_memberships'];
540 // If the external cache didn't contain the values, we get them and put them in cache
542 $role_array = ACLRole::getUserRoleNames($user_id);
543 sugar_cache_put("RoleMemberships_".$user_id, $role_array);
547 // If the role doesn't exist in the list of the user's roles
548 if(!empty($role_array) && in_array($role_name, $role_array))
554 function get_summary_text() {
555 //$this->_create_proper_name_field();
561 * @param string $user_name - Must be non null and at least 2 characters
562 * @param string $user_password - Must be non null and at least 1 character.
563 * @desc Take an unencrypted username and password and return the encrypted password
564 * @return string encrypted password for storage in DB and comparison against DB password.
566 function encrypt_password($user_password)
568 // encrypt the password.
569 $salt = substr($this->user_name, 0, 2);
570 $encrypted_password = crypt($user_password, $salt);
572 return $encrypted_password;
576 * Authenicates the user; returns true if successful
578 * @param string $password MD5-encoded password
581 public function authenticate_user($password)
583 $row = self::findUserPassword($this->user_name, $password);
587 $this->id = $row['id'];
593 * retrieves an User bean
594 * preformat name & full_name attribute with first/last
595 * loads User's preferences
597 * @param string id ID of the User
598 * @param bool encode encode the result
599 * @return object User bean
600 * @return null null if no User found
602 function retrieve($id, $encode = true, $deleted = true) {
603 $ret = parent::retrieve($id, $encode, $deleted);
605 if (isset ($_SESSION)) {
606 $this->loadPreferences();
612 function retrieve_by_email_address($email) {
614 $email1= strtoupper($email);
617 select id from users where id in ( SELECT er.bean_id AS id FROM email_addr_bean_rel er,
618 email_addresses ea WHERE ea.id = er.email_address_id
619 AND ea.deleted = 0 AND er.deleted = 0 AND er.bean_module = 'Users' AND email_address_caps IN ('{$email1}') )
623 $res=$this->db->query($q);
624 $row=$this->db->fetchByAssoc($res);
626 if (!empty($row['id'])) {
627 return $this->retrieve($row['id']);
632 function bean_implements($interface) {
634 case 'ACL':return true;
641 * Load a user based on the user_name in $this
642 * @param string $user_password Password
643 * @param bool $password_encoded Is password md5-encoded or plain text?
644 * @return -- this if load was successul and null if load failed.
646 function load_user($user_password, $password_encoded = false)
649 unset($GLOBALS['login_error']);
650 if(isset ($_SESSION['loginattempts'])) {
651 $_SESSION['loginattempts'] += 1;
653 $_SESSION['loginattempts'] = 1;
655 if($_SESSION['loginattempts'] > 5) {
656 $GLOBALS['log']->fatal('SECURITY: '.$this->user_name.' has attempted to login '.$_SESSION['loginattempts'].' times from IP address: '.$_SERVER['REMOTE_ADDR'].'.');
660 $GLOBALS['log']->debug("Starting user load for $this->user_name");
662 if (!isset ($this->user_name) || $this->user_name == "" || !isset ($user_password) || $user_password == "")
665 if(!$password_encoded) {
666 $user_password = md5($user_password);
668 $row = self::findUserPassword($this->user_name, $user_password);
669 if(empty($row) || !empty ($GLOBALS['login_error'])) {
670 $GLOBALS['log']->fatal('SECURITY: User authentication for '.$this->user_name.' failed - could not Load User from Database');
674 // now fill in the fields.
675 $this->loadFromRow($row);
676 $this->loadPreferences();
678 require_once ('modules/Versions/CheckVersions.php');
679 $invalid_versions = get_invalid_versions();
681 if (!empty ($invalid_versions)) {
682 if (isset ($invalid_versions['Rebuild Relationships'])) {
683 unset ($invalid_versions['Rebuild Relationships']);
685 // flag for pickup in DisplayWarnings.php
686 $_SESSION['rebuild_relationships'] = true;
689 if (isset ($invalid_versions['Rebuild Extensions'])) {
690 unset ($invalid_versions['Rebuild Extensions']);
692 // flag for pickup in DisplayWarnings.php
693 $_SESSION['rebuild_extensions'] = true;
696 $_SESSION['invalid_versions'] = $invalid_versions;
698 if ($this->status != "Inactive")
699 $this->authenticated = true;
701 unset ($_SESSION['loginattempts']);
706 * Generate a new hash from plaintext password
707 * @param string $password
709 public static function getPasswordHash($password)
711 if(!defined('CRYPT_MD5') || !constant('CRYPT_MD5')) {
712 // does not support MD5 crypt - leave as is
713 if(defined('CRYPT_EXT_DES') && constant('CRYPT_EXT_DES')) {
714 return crypt(strtolower(md5($password)),
715 "_.012".substr(str_shuffle('./ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789'), -4));
717 // plain crypt cuts password to 8 chars, which is not enough
718 // fall back to old md5
719 return strtolower(md5($password));
721 return crypt(strtolower(md5($password)));
725 * Check that password matches existing hash
726 * @param string $password Plaintext password
727 * @param string $user_hash DB hash
729 public static function checkPassword($password, $user_hash)
731 return self::checkPasswordMD5(md5($password), $user_hash);
735 * Check that md5-encoded password matches existing hash
736 * @param string $password MD5-encoded password
737 * @param string $user_hash DB hash
738 * @return bool Match or not?
740 public static function checkPasswordMD5($password_md5, $user_hash)
742 if(empty($user_hash)) return false;
743 if($user_hash[0] != '$' && strlen($user_hash) == 32) {
744 // Old way - just md5 password
745 return strtolower($password_md5) == $user_hash;
747 return crypt(strtolower($password_md5), $user_hash) == $user_hash;
751 * Find user with matching password
752 * @param string $name Username
753 * @param string $password MD5-encoded password
754 * @param string $where Limiting query
755 * @return the matching User of false if not found
757 public static function findUserPassword($name, $password, $where = '')
760 $name = $db->quote($name);
761 $query = "SELECT * from users where user_name='$name'";
763 $query .= " AND $where";
765 $result = $db->limitQuery($query,0,1,false);
766 if(!empty($result)) {
767 $row = $db->fetchByAssoc($result);
768 if(self::checkPasswordMD5($password, $row['user_hash'])) {
776 * Sets new password and resets password expiration timers
777 * @param string $new_password
779 public function setNewPassword($new_password, $system_generated = '0')
781 $user_hash = self::getPasswordHash($new_password);
782 $this->setPreference('loginexpiration','0');
783 $this->setPreference('lockout','');
784 $this->setPreference('loginfailed','0');
785 $this->savePreferencesToDB();
787 $now = TimeDate::getInstance()->nowDb();
788 $query = "UPDATE $this->table_name SET user_hash='$user_hash', system_generated_password='$system_generated', pwd_last_changed='$now' where id='$this->id'";
789 $this->db->query($query, true, "Error setting new password for $this->user_name: ");
790 $_SESSION['hasExpiredPassword'] = '0';
794 * Verify that the current password is correct and write the new password to the DB.
796 * @param string $user name - Must be non null and at least 1 character.
797 * @param string $user_password - Must be non null and at least 1 character.
798 * @param string $new_password - Must be non null and at least 1 character.
799 * @return boolean - If passwords pass verification and query succeeds, return true, else return false.
801 function change_password($user_password, $new_password, $system_generated = '0')
804 global $current_user;
805 $GLOBALS['log']->debug("Starting password change for $this->user_name");
807 if (!isset ($new_password) || $new_password == "") {
808 $this->error_string = $mod_strings['ERR_PASSWORD_CHANGE_FAILED_1'].$current_user->user_name.$mod_strings['ERR_PASSWORD_CHANGE_FAILED_2'];
812 // Check new password against rules set by admin
813 if (!$this->check_password_rules($new_password)) {
814 $this->error_string = $mod_strings['ERR_PASSWORD_CHANGE_FAILED_1'].$current_user->user_name.$mod_strings['ERR_PASSWORD_CHANGE_FAILED_3'];
818 if (!$current_user->isAdminForModule('Users')) {
819 //check old password first
820 $row = self::findUserPassword($this->user_name, md5($user_password));
822 $GLOBALS['log']->warn("Incorrect old password for ".$this->user_name."");
823 $this->error_string = $mod_strings['ERR_PASSWORD_INCORRECT_OLD_1'].$this->user_name.$mod_strings['ERR_PASSWORD_INCORRECT_OLD_2'];
828 $this->setNewPassword($new_password, $system_generated);
833 * Check new password against rules set by admin
834 * @param string $password
837 function check_password_rules($password) {
838 $length = mb_strlen($password);
841 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["minpwdlength"]) && $GLOBALS["sugar_config"]["passwordsetting"]["minpwdlength"] > 0 && $length < $GLOBALS["sugar_config"]["passwordsetting"]["minpwdlength"]) {
846 if(!empty($GLOBALS['sugar_config']['passwordsetting']['maxpwdlength']) && $GLOBALS['sugar_config']['passwordsetting']['maxpwdlength'] > 0 && $length > $GLOBALS['sugar_config']['passwordsetting']['maxpwdlength']) {
851 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["onelower"]) && !preg_match('/[a-z]+/', $password)){
856 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["oneupper"]) && !preg_match('/[A-Z]+/', $password)){
861 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["onenumber"]) && !preg_match('/[0-9]+/', $password)){
865 // One special character
866 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["onespecial"]) && !preg_match('/[|}{~!@#$%^&*()_+=-]+/', $password)){
871 if(!empty($GLOBALS["sugar_config"]["passwordsetting"]["customregex"]) && !preg_match($GLOBALS["sugar_config"]["passwordsetting"]["customregex"], $password)){
878 function is_authenticated() {
879 return $this->authenticated;
882 function fill_in_additional_list_fields() {
883 $this->fill_in_additional_detail_fields();
886 function fill_in_additional_detail_fields() {
889 $query = "SELECT u1.first_name, u1.last_name from users u1, users u2 where u1.id = u2.reports_to_id AND u2.id = '$this->id' and u1.deleted=0";
890 $result = $this->db->query($query, true, "Error filling in additional detail fields");
892 $row = $this->db->fetchByAssoc($result);
895 $this->reports_to_name = stripslashes($row['first_name'].' '.$row['last_name']);
897 $this->reports_to_name = '';
900 $this->_create_proper_name_field();
903 public function retrieve_user_id(
907 $userFocus = new User;
908 $userFocus->retrieve_by_string_fields(array('user_name'=>$user_name));
909 if ( empty($userFocus->id) )
912 return $userFocus->id;
916 * @return -- returns a list of all users in the system.
917 * Portions created by SugarCRM are Copyright (C) SugarCRM, Inc..
918 * All Rights Reserved..
919 * Contributor(s): ______________________________________..
921 function verify_data($ieVerified=true) {
922 global $mod_strings, $current_user;
925 if (!empty ($this->id)) {
926 // Make sure the user doesn't report to themselves.
927 $reports_to_self = 0;
928 $check_user = $this->reports_to_id;
929 $already_seen_list = array ();
930 while (!empty ($check_user)) {
931 if (isset ($already_seen_list[$check_user])) {
932 // This user doesn't actually report to themselves
933 // But someone above them does.
934 $reports_to_self = 1;
937 if ($check_user == $this->id) {
938 $reports_to_self = 1;
941 $already_seen_list[$check_user] = 1;
942 $query = "SELECT reports_to_id FROM users WHERE id='".$this->db->quote($check_user)."'";
943 $result = $this->db->query($query, true, "Error checking for reporting-loop");
944 $row = $this->db->fetchByAssoc($result);
945 echo ("fetched: ".$row['reports_to_id']." from ".$check_user."<br>");
946 $check_user = $row['reports_to_id'];
949 if ($reports_to_self == 1) {
950 $this->error_string .= $mod_strings['ERR_REPORT_LOOP'];
955 $query = "SELECT user_name from users where user_name='$this->user_name' AND deleted=0";
956 if(!empty($this->id))$query .= " AND id<>'$this->id'";
957 $result = $this->db->query($query, true, "Error selecting possible duplicate users: ");
958 $dup_users = $this->db->fetchByAssoc($result);
960 if (!empty($dup_users)) {
961 $this->error_string .= $mod_strings['ERR_USER_NAME_EXISTS_1'].$this->user_name.$mod_strings['ERR_USER_NAME_EXISTS_2'];
965 if (is_admin($current_user)) {
966 $remaining_admins = $this->db->getOne("SELECT COUNT(*) as c from users where is_admin = 1 AND deleted=0");
968 if (($remaining_admins <= 1) && ($this->is_admin != '1') && ($this->id == $current_user->id)) {
969 $GLOBALS['log']->debug("Number of remaining administrator accounts: {$remaining_admins}");
970 $this->error_string .= $mod_strings['ERR_LAST_ADMIN_1'].$this->user_name.$mod_strings['ERR_LAST_ADMIN_2'];
974 ///////////////////////////////////////////////////////////////////////
975 //// InboundEmail verification failure
978 $this->error_string .= '<br />'.$mod_strings['ERR_EMAIL_NO_OPTS'];
984 function get_list_view_data() {
986 global $current_user, $mod_strings;
987 // Bug #48555 Not User Name Format of User's locale.
988 $this->_create_proper_name_field();
990 $user_fields = $this->get_list_view_array();
992 $user_fields['IS_ADMIN_IMAGE'] = SugarThemeRegistry::current()->getImage('check_inline', '',null,null,'.gif',$mod_strings['LBL_CHECKMARK']);
993 elseif (!$this->is_admin) $user_fields['IS_ADMIN'] = '';
995 $user_fields['IS_GROUP_IMAGE'] = SugarThemeRegistry::current()->getImage('check_inline', '',null,null,'.gif',$mod_strings['LBL_CHECKMARK']);
997 $user_fields['IS_GROUP_IMAGE'] = '';
1000 if ($this->is_admin) {
1001 $user_fields['IS_ADMIN_IMAGE'] = SugarThemeRegistry::current()->getImage('check_inline', '',null,null,'.gif',translate('LBL_CHECKMARK', 'Users'));
1002 } elseif (!$this->is_admin) {
1003 $user_fields['IS_ADMIN'] = '';
1006 if ($this->is_group) {
1007 $user_fields['IS_GROUP_IMAGE'] = SugarThemeRegistry::current()->getImage('check_inline', '',null,null,'.gif',translate('LBL_CHECKMARK', 'Users'));
1009 $user_fields['NAME'] = empty ($this->name) ? '' : $this->name;
1012 $user_fields['REPORTS_TO_NAME'] = $this->reports_to_name;
1014 $user_fields['EMAIL1'] = $this->emailAddress->getPrimaryAddress($this);
1016 return $user_fields;
1019 function list_view_parse_additional_sections(& $list_form, $xTemplateSection) {
1029 * Returns all active and inactive users
1030 * @return Array of all users in the system
1033 public static function getAllUsers()
1035 $active_users = get_user_array(FALSE);
1036 $inactive_users = get_user_array(FALSE, "Inactive");
1037 $result = $active_users + $inactive_users;
1042 function create_export_query($order_by, $where) {
1043 include('modules/Users/field_arrays.php');
1046 foreach($fields_array['User']['export_fields'] as $field) {
1047 $cols .= (empty($cols)) ? '' : ', ';
1051 $query = "SELECT {$cols} FROM users ";
1053 $where_auto = " users.deleted = 0";
1056 $query .= " WHERE $where AND ".$where_auto;
1058 $query .= " WHERE ".$where_auto;
1060 // admin for module user is not be able to export a super-admin
1061 global $current_user;
1062 if(!$current_user->is_admin){
1063 $query .= " AND users.is_admin=0";
1066 if ($order_by != "")
1067 $query .= " ORDER BY $order_by";
1069 $query .= " ORDER BY users.user_name";
1074 /** Returns a list of the associated users
1075 * Portions created by SugarCRM are Copyright (C) SugarCRM, Inc..
1076 * All Rights Reserved..
1077 * Contributor(s): ______________________________________..
1079 function get_meetings() {
1080 // First, get the list of IDs.
1081 $query = "SELECT meeting_id as id from meetings_users where user_id='$this->id' AND deleted=0";
1082 return $this->build_related_list($query, new Meeting());
1084 function get_calls() {
1085 // First, get the list of IDs.
1086 $query = "SELECT call_id as id from calls_users where user_id='$this->id' AND deleted=0";
1087 return $this->build_related_list($query, new Call());
1091 * generates Javascript to display I-E mail counts, both personal and group
1093 function displayEmailCounts() {
1095 $new = translate('LBL_NEW', 'Emails');
1096 $default = 'index.php?module=Emails&action=ListView&assigned_user_id='.$this->id;
1098 $verts = array('Love', 'Links', 'Pipeline', 'RipCurl', 'SugarLite');
1100 if($this->hasPersonalEmail()) {
1101 $r = $this->db->query('SELECT count(*) AS c FROM emails WHERE deleted=0 AND assigned_user_id = \''.$this->id.'\' AND type = \'inbound\' AND status = \'unread\'');
1102 $a = $this->db->fetchByAssoc($r);
1103 if(in_array($theme, $verts)) {
1106 $count .= ' ';
1108 $count .= '<a href='.$default.'&type=inbound>'.translate('LBL_LIST_TITLE_MY_INBOX', 'Emails').': ('.$a['c'].' '.$new.')</a>';
1110 if(!in_array($theme, $verts)) {
1115 $r = $this->db->query('SELECT id FROM users WHERE users.is_group = 1 AND deleted = 0');
1118 while($a = $this->db->fetchByAssoc($r)) {
1119 if($groupIds != '') {$groupIds .= ', ';}
1120 $groupIds .= "'".$a['id']."'";
1124 if(strlen($groupIds) > 0) {
1125 $groupQuery = 'SELECT count(*) AS c FROM emails ';
1126 $groupQuery .= ' WHERE emails.deleted=0 AND emails.assigned_user_id IN ('.$groupIds.') AND emails.type = \'inbound\' AND emails.status = \'unread\'';
1127 $r = $this->db->query($groupQuery);
1128 if(is_resource($r)) {
1129 $a = $this->db->fetchByAssoc($r);
1135 if(in_array($theme, $verts)) $count .= '<br />';
1136 if(empty($count)) $count .= ' ';
1137 $count .= '<a href=index.php?module=Emails&action=ListViewGroup>'.translate('LBL_LIST_TITLE_GROUP_INBOX', 'Emails').': ('.$total.' '.$new.')</a>';
1139 $out = '<script type="text/javascript" language="Javascript">';
1140 $out .= 'var welcome = document.getElementById("welcome");';
1141 $out .= 'var welcomeContent = welcome.innerHTML;';
1142 $out .= 'welcome.innerHTML = welcomeContent + "'.$count.'";';
1143 $out .= '</script>';
1148 function getPreferredEmail() {
1150 $nameEmail = $this->getUsersNameAndEmail();
1151 $prefAddr = $nameEmail['email'];
1152 $fullName = $nameEmail['name'];
1153 if (empty ($prefAddr)) {
1154 $nameEmail = $this->getSystemDefaultNameAndEmail();
1155 $prefAddr = $nameEmail['email'];
1156 $fullName = $nameEmail['name'];
1158 $fullName = from_html($fullName);
1159 $ret['name'] = $fullName;
1160 $ret['email'] = $prefAddr;
1164 function getUsersNameAndEmail()
1166 // Bug #48555 Not User Name Format of User's locale.
1167 $this->_create_proper_name_field();
1169 $prefAddr = $this->emailAddress->getPrimaryAddress($this);
1171 if (empty ($prefAddr)) {
1172 $prefAddr = $this->emailAddress->getReplyToAddress($this);
1174 return array('email' => $prefAddr , 'name' => $this->name);
1178 function getSystemDefaultNameAndEmail() {
1180 $email = new Email();
1181 $return = $email->getSystemDefaultEmail();
1182 $prefAddr = $return['email'];
1183 $fullName = $return['name'];
1184 return array('email' => $prefAddr , 'name' => $fullName);
1188 * sets User email default in config.php if not already set by install - i.
1191 function setDefaultsInConfig() {
1192 global $sugar_config;
1193 $sugar_config['email_default_client'] = 'sugar';
1194 $sugar_config['email_default_editor'] = 'html';
1195 ksort($sugar_config);
1196 write_array_to_file('sugar_config', $sugar_config, 'config.php');
1197 return $sugar_config;
1201 * returns User's email address based on descending order of preferences
1203 * @param string id GUID of target user if needed
1204 * @return array Assoc array for an email and name
1206 function getEmailInfo($id='') {
1210 $user->retrieve($id);
1214 $fromName = $user->getPreference('mail_fromname');
1215 if(empty($fromName)) {
1216 // cn: bug 8586 - localized name format
1217 $fromName = $user->full_name;
1221 $fromaddr = $user->getPreference('mail_fromaddress');
1222 if(empty($fromaddr)) {
1223 if(!empty($user->email1) && isset($user->email1)) {
1224 $fromaddr = $user->email1;
1225 } elseif(!empty($user->email2) && isset($user->email2)) {
1226 $fromaddr = $user->email2;
1228 $r = $user->db->query("SELECT value FROM config WHERE name = 'fromaddress'");
1229 $a = $user->db->fetchByAssoc($r);
1230 $fromddr = $a['value'];
1234 $ret['name'] = $fromName;
1235 $ret['email'] = $fromaddr;
1241 * returns opening <a href=xxxx for a contact, account, etc
1242 * cascades from User set preference to System-wide default
1243 * @return string link
1244 * @param attribute the email addy
1245 * @param focus the parent bean
1247 * @param return_module
1248 * @param return_action
1252 function getEmailLink2($emailAddress, &$focus, $contact_id='', $ret_module='', $ret_action='DetailView', $ret_id='', $class='') {
1254 global $sugar_config;
1256 if(!isset($sugar_config['email_default_client'])) {
1257 $this->setDefaultsInConfig();
1260 $userPref = $this->getPreference('email_link_type');
1261 $defaultPref = $sugar_config['email_default_client'];
1262 if($userPref != '') {
1263 $client = $userPref;
1265 $client = $defaultPref;
1268 if($client == 'sugar') {
1271 $to_addrs_names = '';
1272 $to_addrs_emails = '';
1274 $fullName = !empty($focus->name) ? $focus->name : '';
1276 if(empty($ret_module)) $ret_module = $focus->module_dir;
1277 if(empty($ret_id)) $ret_id = $focus->id;
1278 if($focus->object_name == 'Contact') {
1279 $contact_id = $focus->id;
1280 $to_addrs_ids = $focus->id;
1281 // Bug #48555 Not User Name Format of User's locale.
1282 $focus->_create_proper_name_field();
1283 $fullName = $focus->name;
1284 $to_addrs_names = $fullName;
1285 $to_addrs_emails = $focus->email1;
1288 $emailLinkUrl = 'contact_id='.$contact_id.
1289 '&parent_type='.$focus->module_dir.
1290 '&parent_id='.$focus->id.
1291 '&parent_name='.urlencode($fullName).
1292 '&to_addrs_ids='.$to_addrs_ids.
1293 '&to_addrs_names='.urlencode($to_addrs_names).
1294 '&to_addrs_emails='.urlencode($to_addrs_emails).
1295 '&to_email_addrs='.urlencode($fullName . ' <' . $emailAddress . '>').
1296 '&return_module='.$ret_module.
1297 '&return_action='.$ret_action.
1298 '&return_id='.$ret_id;
1300 //Generate the compose package for the quick create options.
1301 //$json = getJSONobj();
1302 //$composeOptionsLink = $json->encode( array('composeOptionsLink' => $emailLinkUrl,'id' => $focus->id) );
1303 require_once('modules/Emails/EmailUI.php');
1304 $eUi = new EmailUI();
1305 $j_quickComposeOptions = $eUi->generateComposePackageForQuickCreateFromComposeUrl($emailLinkUrl, true);
1307 $emailLink = "<a href='javascript:void(0);' onclick='SUGAR.quickCompose.init($j_quickComposeOptions);' class='$class'>";
1311 $emailLink = '<a href="mailto:'.$emailAddress.'" class="'.$class.'">';
1318 * returns opening <a href=xxxx for a contact, account, etc
1319 * cascades from User set preference to System-wide default
1320 * @return string link
1321 * @param attribute the email addy
1322 * @param focus the parent bean
1324 * @param return_module
1325 * @param return_action
1329 function getEmailLink($attribute, &$focus, $contact_id='', $ret_module='', $ret_action='DetailView', $ret_id='', $class='') {
1331 global $sugar_config;
1333 if(!isset($sugar_config['email_default_client'])) {
1334 $this->setDefaultsInConfig();
1337 $userPref = $this->getPreference('email_link_type');
1338 $defaultPref = $sugar_config['email_default_client'];
1339 if($userPref != '') {
1340 $client = $userPref;
1342 $client = $defaultPref;
1345 if($client == 'sugar') {
1348 $to_addrs_names = '';
1349 $to_addrs_emails = '';
1351 $fullName = !empty($focus->name) ? $focus->name : '';
1353 if(!empty($focus->$attribute)) {
1354 $email = $focus->$attribute;
1358 if(empty($ret_module)) $ret_module = $focus->module_dir;
1359 if(empty($ret_id)) $ret_id = $focus->id;
1360 if($focus->object_name == 'Contact') {
1361 // Bug #48555 Not User Name Format of User's locale.
1362 $focus->_create_proper_name_field();
1363 $fullName = $focus->name;
1364 $contact_id = $focus->id;
1365 $to_addrs_ids = $focus->id;
1366 $to_addrs_names = $fullName;
1367 $to_addrs_emails = $focus->email1;
1370 $emailLinkUrl = 'contact_id='.$contact_id.
1371 '&parent_type='.$focus->module_dir.
1372 '&parent_id='.$focus->id.
1373 '&parent_name='.urlencode($fullName).
1374 '&to_addrs_ids='.$to_addrs_ids.
1375 '&to_addrs_names='.urlencode($to_addrs_names).
1376 '&to_addrs_emails='.urlencode($to_addrs_emails).
1377 '&to_email_addrs='.urlencode($fullName . ' <' . $email . '>').
1378 '&return_module='.$ret_module.
1379 '&return_action='.$ret_action.
1380 '&return_id='.$ret_id;
1382 //Generate the compose package for the quick create options.
1383 require_once('modules/Emails/EmailUI.php');
1384 $eUi = new EmailUI();
1385 $j_quickComposeOptions = $eUi->generateComposePackageForQuickCreateFromComposeUrl($emailLinkUrl, true);
1386 $emailLink = "<a href='javascript:void(0);' onclick='SUGAR.quickCompose.init($j_quickComposeOptions);' class='$class'>";
1390 $emailLink = '<a href="mailto:'.$focus->$attribute.'" class="'.$class.'">';
1398 * gets a human-readable explanation of the format macro
1399 * @return string Human readable name format
1401 function getLocaleFormatDesc() {
1403 global $mod_strings;
1404 global $app_strings;
1406 $format['f'] = $mod_strings['LBL_LOCALE_DESC_FIRST'];
1407 $format['l'] = $mod_strings['LBL_LOCALE_DESC_LAST'];
1408 $format['s'] = $mod_strings['LBL_LOCALE_DESC_SALUTATION'];
1409 $format['t'] = $mod_strings['LBL_LOCALE_DESC_TITLE'];
1411 $name['f'] = $app_strings['LBL_LOCALE_NAME_EXAMPLE_FIRST'];
1412 $name['l'] = $app_strings['LBL_LOCALE_NAME_EXAMPLE_LAST'];
1413 $name['s'] = $app_strings['LBL_LOCALE_NAME_EXAMPLE_SALUTATION'];
1414 $name['t'] = $app_strings['LBL_LOCALE_NAME_EXAMPLE_TITLE'];
1416 $macro = $locale->getLocaleFormatMacro();
1420 for($i=0; $i<strlen($macro); $i++) {
1421 if(array_key_exists($macro{$i}, $format)) {
1422 $ret1 .= "<i>".$format[$macro{$i}]."</i>";
1423 $ret2 .= "<i>".$name[$macro{$i}]."</i>";
1425 $ret1 .= $macro{$i};
1426 $ret2 .= $macro{$i};
1429 return $ret1."<br />".$ret2;
1435 * Here are the multi level admin access check functions.
1439 * Helper function to remap some modules around ACL wise
1443 protected function _fixupModuleForACL($module) {
1444 if($module=='ContractTypes') {
1445 $module = 'Contracts';
1447 if(preg_match('/Product[a-zA-Z]*/',$module)) {
1448 $module = 'Products';
1454 * Helper function that enumerates the list of modules and checks if they are an admin/dev.
1455 * The code was just too similar to copy and paste.
1459 protected function _getModulesForACL($type='dev'){
1460 $isDev = $type=='dev';
1461 $isAdmin = $type=='admin';
1464 $myModules = array();
1466 if (!is_array($beanList) ) {
1470 // These modules don't take kindly to the studio trying to play about with them.
1471 static $ignoredModuleList = array('iFrames','Feeds','Home','Dashboard','Calendar','Activities','Reports');
1474 $actions = ACLAction::getUserActions($this->id);
1476 foreach ($beanList as $module=>$val) {
1477 // Remap the module name
1478 $module = $this->_fixupModuleForACL($module);
1479 if (in_array($module,$myModules)) {
1480 // Already have the module in the list
1483 if (in_array($module,$ignoredModuleList)) {
1484 // You can't develop on these modules.
1488 $focus = SugarModule::get($module)->loadBean();
1489 if ( $focus instanceOf SugarBean ) {
1490 $key = $focus->acltype;
1495 if (($this->isAdmin() && isset($actions[$module][$key]))
1497 $myModules[] = $module;
1504 * Is this user a system wide admin
1508 public function isAdmin() {
1509 if(isset($this->is_admin)
1510 &&($this->is_admin == '1' || $this->is_admin === 'on')){
1516 * Is this user a developer for any module
1520 public function isDeveloperForAnyModule() {
1521 if ($this->isAdmin()) {
1527 * List the modules a user has developer access to
1531 public function getDeveloperModules() {
1532 static $developerModules;
1533 if (!isset($_SESSION[$this->user_name.'_get_developer_modules_for_user']) ) {
1534 $_SESSION[$this->user_name.'_get_developer_modules_for_user'] = $this->_getModulesForACL('dev');
1537 return $_SESSION[$this->user_name.'_get_developer_modules_for_user'];
1540 * Is this user a developer for the specified module
1544 public function isDeveloperForModule($module) {
1545 if ($this->isAdmin()) {
1549 $devModules = $this->getDeveloperModules();
1551 $module = $this->_fixupModuleForACL($module);
1553 if (in_array($module,$devModules) ) {
1560 * List the modules a user has admin access to
1564 public function getAdminModules() {
1565 if (!isset($_SESSION[$this->user_name.'_get_admin_modules_for_user']) ) {
1566 $_SESSION[$this->user_name.'_get_admin_modules_for_user'] = $this->_getModulesForACL('admin');
1569 return $_SESSION[$this->user_name.'_get_admin_modules_for_user'];
1572 * Is this user an admin for the specified module
1576 public function isAdminForModule($module) {
1577 if ($this->isAdmin()) {
1581 $adminModules = $this->getAdminModules();
1583 $module = $this->_fixupModuleForACL($module);
1585 if (in_array($module,$adminModules) ) {
1592 * Whether or not based on the user's locale if we should show the last name first.
1596 public function showLastNameFirst(){
1598 $localeFormat = $locale->getLocaleFormatMacro($this);
1599 if ( strpos($localeFormat,'l') > strpos($localeFormat,'f') ) {
1606 function create_new_list_query($order_by, $where,$filter=array(),$params=array(), $show_deleted = 0,$join_type='', $return_array = false,$parentbean=null, $singleSelect = false)
1607 { //call parent method, specifying for array to be returned
1608 $ret_array = parent::create_new_list_query($order_by, $where,$filter,$params, $show_deleted,$join_type, true,$parentbean, $singleSelect);
1610 //if this is being called from webservices, then run additional code
1611 if(!empty($GLOBALS['soap_server_object'])){
1613 //if this is a single select, then secondary queries are being run that may result in duplicate rows being returned through the
1614 //left joins with meetings/tasks/call. We need to change the left joins to include a null check (bug 40250)
1617 //retrieve the 'from' string and make lowercase for easier manipulation
1618 $left_str = strtolower($ret_array['from']);
1619 $lefts = explode('left join', $left_str);
1622 //explode on the left joins and process each one
1623 foreach($lefts as $ljVal){
1624 //grab the join alias
1625 $onPos = strpos( $ljVal, ' on');
1626 if($onPos === false){
1627 $new_left_str .=' '.$ljVal.' ';
1630 $spacePos = strrpos(substr($ljVal, 0, $onPos),' ');
1631 $alias = substr($ljVal,$spacePos,$onPos-$spacePos);
1633 //add null check to end of the Join statement
1634 // Bug #46390 to use id_c field instead of id field for custom tables
1635 if(substr($alias, -5) != '_cstm')
1637 $ljVal =' LEFT JOIN '.$ljVal.' and '.$alias.'.id is null ';
1641 $ljVal =' LEFT JOIN '.$ljVal.' and '.$alias.'.id_c is null ';
1644 //add statement into new string
1645 $new_left_str .= $ljVal;
1647 //replace the old string with the new one
1648 $ret_array['from'] = $new_left_str;
1652 //return array or query string
1658 return $ret_array['select'] . $ret_array['from'] . $ret_array['where']. $ret_array['order_by'];
1665 * Get user first day of week.
1667 * @param [User] $user user object, current user if not specified
1668 * @return int : 0 = Sunday, 1 = Monday, etc...
1670 public function get_first_day_of_week()
1672 $fdow = $this->getPreference('fdow');
1682 * Method for password generation
1685 * @return string password
1687 public static function generatePassword()
1689 $res = $GLOBALS['sugar_config']['passwordsetting'];
1691 //chars to select from
1692 $LOWERCASE = "abcdefghijklmnpqrstuvwxyz";
1693 $NUMBER = "0123456789";
1694 $UPPERCASE = "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
1695 $SPECIAL = '~!@#$%^&*()_+=-{}|';
1697 $charBKT .= $UPPERCASE . $LOWERCASE . $NUMBER;
1701 // Create random characters for the ones that doesnt have requirements
1702 for ($i=0; $i < $length - $condition; $i ++) // loop and create password
1704 $password = $password . substr ($charBKT, rand() % strlen($charBKT), 1);
1711 * Send new password or link to user
1713 * @param string $templateId Id of email template
1714 * @param array $additionalData additional params: link, url, password
1715 * @return array status: true|false, message: error message, if status = false and message = '' it means that send method has returned false
1717 public function sendEmailForPassword($templateId, array $additionalData = array())
1719 global $sugar_config, $current_user;
1720 $mod_strings = return_module_language('', 'Users');
1726 $emailTemp = new EmailTemplate();
1727 $emailTemp->disable_row_level_security = true;
1728 if ($emailTemp->retrieve($templateId) == '')
1730 $result['message'] = $mod_strings['LBL_EMAIL_TEMPLATE_MISSING'];
1734 //replace instance variables in email templates
1735 $htmlBody = $emailTemp->body_html;
1736 $body = $emailTemp->body;
1737 if (isset($additionalData['link']) && $additionalData['link'] == true)
1739 $htmlBody = str_replace('$contact_user_link_guid', $additionalData['url'], $htmlBody);
1740 $body = str_replace('$contact_user_link_guid', $additionalData['url'], $body);
1744 $htmlBody = str_replace('$contact_user_user_hash', $additionalData['password'], $htmlBody);
1745 $body = str_replace('$contact_user_user_hash', $additionalData['password'], $body);
1747 // Bug 36833 - Add replacing of special value $instance_url
1748 $htmlBody = str_replace('$config_site_url', $sugar_config['site_url'], $htmlBody);
1749 $body = str_replace('$config_site_url', $sugar_config['site_url'], $body);
1751 $htmlBody = str_replace('$contact_user_user_name', $this->user_name, $htmlBody);
1752 $htmlBody = str_replace('$contact_user_pwd_last_changed', TimeDate::getInstance()->nowDb(), $htmlBody);
1753 $body = str_replace('$contact_user_user_name', $this->user_name, $body);
1754 $body = str_replace('$contact_user_pwd_last_changed', TimeDate::getInstance()->nowDb(), $body);
1755 $emailTemp->body_html = $htmlBody;
1756 $emailTemp->body = $body;
1758 $itemail = $this->emailAddress->getPrimaryAddress($this);
1759 //retrieve IT Admin Email
1760 //_ppd( $emailTemp->body_html);
1761 //retrieve email defaults
1762 $emailObj = new Email();
1763 $defaults = $emailObj->getSystemDefaultEmail();
1764 require_once('include/SugarPHPMailer.php');
1765 $mail = new SugarPHPMailer();
1766 $mail->setMailerForSystem();
1767 //$mail->IsHTML(true);
1768 $mail->From = $defaults['email'];
1769 $mail->FromName = $defaults['name'];
1770 $mail->ClearAllRecipients();
1771 $mail->ClearReplyTos();
1772 $mail->Subject = from_html($emailTemp->subject);
1773 if ($emailTemp->text_only != 1)
1775 $mail->IsHTML(true);
1776 $mail->Body = from_html($emailTemp->body_html);
1777 $mail->AltBody = from_html($emailTemp->body);
1781 $mail->Body_html = from_html($emailTemp->body_html);
1782 $mail->Body = from_html($emailTemp->body);
1784 if ($mail->Body == '' && $current_user->is_admin)
1786 global $app_strings;
1787 $result['message'] = $app_strings['LBL_EMAIL_TEMPLATE_EDIT_PLAIN_TEXT'];
1790 if ($mail->Mailer == 'smtp' && $mail->Host =='' && $current_user->is_admin)
1792 $result['message'] = $mod_strings['ERR_SERVER_SMTP_EMPTY'];
1796 $mail->prepForOutbound();
1797 $hasRecipients = false;
1799 if (!empty($itemail))
1803 $mail->AddBCC($itemail);
1807 $mail->AddAddress($itemail);
1809 $hasRecipients = true;
1813 $result['status'] = @$mail->Send();
1816 if ($result['status'] == true)
1818 $emailObj->team_id = 1;
1819 $emailObj->to_addrs = '';
1820 $emailObj->type = 'archived';
1821 $emailObj->deleted = '0';
1822 $emailObj->name = $mail->Subject ;
1823 $emailObj->description = $mail->Body;
1824 $emailObj->description_html = null;
1825 $emailObj->from_addr = $mail->From;
1826 $emailObj->parent_type = 'User';
1827 $emailObj->date_sent = TimeDate::getInstance()->nowDb();
1828 $emailObj->modified_user_id = '1';
1829 $emailObj->created_by = '1';
1830 $emailObj->status = 'sent';
1832 if (!isset($additionalData['link']) || $additionalData['link'] == false)
1834 $this->setNewPassword($additionalData['password'], '1');
1841 // Bug #48014 Must to send password to imported user if this action is required
1842 function afterImportSave()
1845 $this->user_hash == false
1847 && !$this->portal_only
1848 && isset($GLOBALS['sugar_config']['passwordsetting']['SystemGeneratedPasswordON'])
1849 && $GLOBALS['sugar_config']['passwordsetting']['SystemGeneratedPasswordON']
1852 $backUpPost = $_POST;
1854 'userId' => $this->id
1857 require('modules/Users/GeneratePassword.php');
1858 $result = ob_get_clean();
1859 $_POST = $backUpPost;
1860 return $result == true;