user.admin.inc 37.5 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13
<?php

/**
 * @file
 * Admin page callback file for the user module.
 */

function user_admin($callback_arg = '') {
  $op = isset($_POST['op']) ? $_POST['op'] : $callback_arg;

  switch ($op) {
    case t('Create new account'):
    case 'create':
14
      $build['user_register'] = drupal_get_form('user_register_form');
15 16
      break;
    default:
17
      if (!empty($_POST['accounts']) && isset($_POST['operation']) && ($_POST['operation'] == 'cancel')) {
18
        $build['user_multiple_cancel_confirm'] = drupal_get_form('user_multiple_cancel_confirm');
19 20
      }
      else {
21 22
        $build['user_filter_form'] = drupal_get_form('user_filter_form');
        $build['user_admin_account'] = drupal_get_form('user_admin_account');
23 24
      }
  }
25
  return $build;
26 27 28 29
}

/**
 * Form builder; Return form for user administration filters.
30
 *
31
 * @ingroup forms
32
 * @see user_filter_form_submit()
33 34
 */
function user_filter_form() {
35
  $session = isset($_SESSION['user_overview_filter']) ? $_SESSION['user_overview_filter'] : array();
36 37 38
  $filters = user_filters();

  $i = 0;
39 40 41
  $form['filters'] = array(
    '#type' => 'fieldset',
    '#title' => t('Show only users where'),
42
    '#theme' => 'exposed_filters__user',
43
  );
44 45
  foreach ($session as $filter) {
    list($type, $value) = $filter;
46 47 48 49 50 51 52 53 54
    if ($type == 'permission') {
      // Merge arrays of module permissions into one.
      // Slice past the first element '[any]' whose value is not an array.
      $options = call_user_func_array('array_merge', array_slice($filters[$type]['options'], 1));
      $value = $options[$value];
    }
    else {
      $value = $filters[$type]['options'][$value];
    }
55
    $t_args = array('%property' => $filters[$type]['title'], '%value' => $value);
56
    if ($i++) {
57
      $form['filters']['current'][] = array('#markup' => t('and where %property is %value', $t_args));
58 59
    }
    else {
60
      $form['filters']['current'][] = array('#markup' => t('%property is %value', $t_args));
61
    }
62 63
  }

64 65 66 67 68 69 70 71 72
  $form['filters']['status'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('clearfix')),
    '#prefix' => ($i ? '<div class="additional-filters">' . t('and where') . '</div>' : ''),
  );
  $form['filters']['status']['filters'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('filters')),
  );
73
  foreach ($filters as $key => $filter) {
74
    $form['filters']['status']['filters'][$key] = array(
75 76
      '#type' => 'select',
      '#options' => $filter['options'],
77 78
      '#title' => $filter['title'],
      '#default_value' => '[any]',
79
    );
80 81
  }

82
  $form['filters']['status']['actions'] = array(
83 84
    '#type' => 'actions',
    '#attributes' => array('class' => array('container-inline')),
85
  );
86
  $form['filters']['status']['actions']['submit'] = array(
87 88 89
    '#type' => 'submit',
    '#value' => (count($session) ? t('Refine') : t('Filter')),
  );
90
  if (count($session)) {
91
    $form['filters']['status']['actions']['undo'] = array(
92 93 94
      '#type' => 'submit',
      '#value' => t('Undo'),
    );
95
    $form['filters']['status']['actions']['reset'] = array(
96 97 98
      '#type' => 'submit',
      '#value' => t('Reset'),
    );
99 100
  }

101
  drupal_add_library('system', 'drupal.form');
102

103 104 105 106 107 108 109 110 111 112
  return $form;
}

/**
 * Process result from user administration filter form.
 */
function user_filter_form_submit($form, &$form_state) {
  $op = $form_state['values']['op'];
  $filters = user_filters();
  switch ($op) {
113 114 115 116 117
    case t('Filter'):
    case t('Refine'):
      // Apply every filter that has a choice selected other than 'any'.
      foreach ($filters as $filter => $options) {
        if (isset($form_state['values'][$filter]) && $form_state['values'][$filter] != '[any]') {
118
          $_SESSION['user_overview_filter'][] = array($filter, $form_state['values'][$filter]);
119 120 121 122 123 124 125
        }
      }
      break;
    case t('Undo'):
      array_pop($_SESSION['user_overview_filter']);
      break;
    case t('Reset'):
126
      $_SESSION['user_overview_filter'] = array();
127 128 129 130 131
      break;
    case t('Update'):
      return;
  }

132
  $form_state['redirect'] = 'admin/people';
133 134 135 136 137 138 139
  return;
}

/**
 * Form builder; User administration page.
 *
 * @ingroup forms
140 141
 * @see user_admin_account_validate()
 * @see user_admin_account_submit()
142 143 144 145
 */
function user_admin_account() {

  $header = array(
146 147 148 149 150 151
    'username' => array('data' => t('Username'), 'field' => 'u.name'),
    'status' => array('data' => t('Status'), 'field' => 'u.status'),
    'roles' => array('data' => t('Roles')),
    'member_for' => array('data' => t('Member for'), 'field' => 'u.created', 'sort' => 'desc'),
    'access' => array('data' => t('Last access'), 'field' => 'u.access'),
    'operations' => array('data' => t('Operations')),
152 153
  );

154
  $query = db_select('users', 'u');
155 156
  $query->condition('u.uid', 0, '<>');
  user_build_filter_query($query);
157

158
  $count_query = clone $query;
159
  $count_query->addExpression('COUNT(u.uid)');
160 161 162 163 164

  $query = $query->extend('PagerDefault')->extend('TableSort');
  $query
    ->fields('u', array('uid', 'name', 'status', 'created', 'access'))
    ->limit(50)
165
    ->orderByHeader($header)
166 167
    ->setCountQuery($count_query);
  $result = $query->execute();
168 169 170 171

  $form['options'] = array(
    '#type' => 'fieldset',
    '#title' => t('Update options'),
172
    '#attributes' => array('class' => array('container-inline')),
173 174 175 176 177 178 179
  );
  $options = array();
  foreach (module_invoke_all('user_operations') as $operation => $array) {
    $options[$operation] = $array['label'];
  }
  $form['options']['operation'] = array(
    '#type' => 'select',
180 181
    '#title' => t('Operation'),
    '#title_display' => 'invisible',
182 183 184
    '#options' => $options,
    '#default_value' => 'unblock',
  );
185
  $options = array();
186 187 188 189 190 191 192 193
  $form['options']['submit'] = array(
    '#type' => 'submit',
    '#value' => t('Update'),
  );

  $destination = drupal_get_destination();

  $status = array(t('blocked'), t('active'));
194
  $roles = array_map('check_plain', user_roles(TRUE));
195
  $accounts = array();
196
  foreach ($result as $account) {
197
    $users_roles = array();
198 199
    $roles_result = db_query('SELECT rid FROM {users_roles} WHERE uid = :uid', array(':uid' => $account->uid));
    foreach ($roles_result as $user_role) {
200
      $users_roles[] = $roles[$user_role->rid];
201
    }
202
    asort($users_roles);
203

204
    $options[$account->uid] = array(
205
      'username' => theme('username', array('account' => $account)),
206
      'status' =>  $status[$account->status],
207
      'roles' => theme('item_list', array('items' => $users_roles)),
208 209
      'member_for' => format_interval(REQUEST_TIME - $account->created),
      'access' =>  $account->access ? t('@time ago', array('@time' => format_interval(REQUEST_TIME - $account->access))) : t('never'),
210
      'operations' => array('data' => array('#type' => 'link', '#title' => t('edit'), '#href' => "user/$account->uid/edit", '#options' => array('query' => $destination))),
211
    );
212
  }
213

214
  $form['accounts'] = array(
215 216 217 218
    '#type' => 'tableselect',
    '#header' => $header,
    '#options' => $options,
    '#empty' => t('No people available.'),
219
  );
220
  $form['pager'] = array('#markup' => theme('pager'));
221 222 223 224 225 226 227 228

  return $form;
}

/**
 * Submit the user administration update form.
 */
function user_admin_account_submit($form, &$form_state) {
229
  $operations = module_invoke_all('user_operations', $form, $form_state);
230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257
  $operation = $operations[$form_state['values']['operation']];
  // Filter out unchecked accounts.
  $accounts = array_filter($form_state['values']['accounts']);
  if ($function = $operation['callback']) {
    // Add in callback arguments if present.
    if (isset($operation['callback arguments'])) {
      $args = array_merge(array($accounts), $operation['callback arguments']);
    }
    else {
      $args = array($accounts);
    }
    call_user_func_array($function, $args);

    drupal_set_message(t('The update has been performed.'));
  }
}

function user_admin_account_validate($form, &$form_state) {
  $form_state['values']['accounts'] = array_filter($form_state['values']['accounts']);
  if (count($form_state['values']['accounts']) == 0) {
    form_set_error('', t('No users selected.'));
  }
}

/**
 * Form builder; Configure user settings for this site.
 *
 * @ingroup forms
258
 * @see system_settings_form()
259 260
 */
function user_admin_settings() {
261 262 263 264 265 266 267 268 269 270 271 272
  // Settings for anonymous users.
  $form['anonymous_settings'] = array(
    '#type' => 'fieldset',
    '#title' => t('Anonymous users'),
  );
  $form['anonymous_settings']['anonymous'] = array(
    '#type' => 'textfield',
    '#title' => t('Name'),
    '#default_value' => variable_get('anonymous', t('Anonymous')),
    '#description' => t('The name used to indicate anonymous users.'),
    '#required' => TRUE,
  );
273

274 275 276
  // Administrative role option.
  $form['admin_role'] = array(
    '#type' => 'fieldset',
277
    '#title' => t('Administrator role'),
278 279
  );

280
  // Do not allow users to set the anonymous or authenticated user roles as the
281 282
  // administrator role.
  $roles = user_roles();
283 284
  unset($roles[DRUPAL_ANONYMOUS_RID]);
  unset($roles[DRUPAL_AUTHENTICATED_RID]);
285 286 287 288 289 290 291 292 293 294
  $roles[0] = t('disabled');

  $form['admin_role']['user_admin_role'] = array(
    '#type' => 'select',
    '#title' => t('Administrator role'),
    '#default_value' => variable_get('user_admin_role', 0),
    '#options' => $roles,
    '#description' => t('This role will be automatically assigned new permissions whenever a module is enabled. Changing this setting will not affect existing permissions.'),
  );

295 296
  // User registration settings.
  $form['registration_cancellation'] = array(
297
    '#type' => 'fieldset',
298 299 300 301 302
    '#title' => t('Registration and cancellation'),
  );
  $form['registration_cancellation']['user_register'] = array(
    '#type' => 'radios',
    '#title' => t('Who can register accounts?'),
303
    '#default_value' => variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL),
304
    '#options' => array(
305 306 307
      USER_REGISTER_ADMINISTRATORS_ONLY => t('Administrators only'),
      USER_REGISTER_VISITORS => t('Visitors'),
      USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL => t('Visitors, but administrator approval is required'),
308 309 310 311 312 313
    )
  );
  $form['registration_cancellation']['user_email_verification'] = array(
    '#type' => 'checkbox',
    '#title' => t('Require e-mail verification when a visitor creates an account.'),
    '#default_value' => variable_get('user_email_verification', TRUE),
314
    '#description' => t('New users will be required to validate their e-mail address prior to logging into the site, and will be assigned a system-generated password. With this setting disabled, users will be logged in immediately upon registering, and may select their own passwords during registration.')
315
  );
316 317
  module_load_include('inc', 'user', 'user.pages');
  $form['registration_cancellation']['user_cancel_method'] = array(
318 319
    '#type' => 'item',
    '#title' => t('When cancelling a user account'),
320
    '#description' => t('Users with the %select-cancel-method or %administer-users <a href="@permissions-url">permissions</a> can override this default method.', array('%select-cancel-method' => t('Select method for cancelling account'), '%administer-users' => t('Administer users'), '@permissions-url' => url('admin/people/permissions'))),
321
  );
322 323
  $form['registration_cancellation']['user_cancel_method'] += user_cancel_methods();
  foreach (element_children($form['registration_cancellation']['user_cancel_method']) as $element) {
324 325
    // Remove all account cancellation methods that have #access defined, as
    // those cannot be configured as default method.
326 327
    if (isset($form['registration_cancellation']['user_cancel_method'][$element]['#access'])) {
      $form['registration_cancellation']['user_cancel_method'][$element]['#access'] = FALSE;
328 329 330
    }
    // Remove the description (only displayed on the confirmation form).
    else {
331
      unset($form['registration_cancellation']['user_cancel_method'][$element]['#description']);
332 333 334
    }
  }

335 336
  // Account settings.
  $form['personalization'] = array(
337
    '#type' => 'fieldset',
338 339 340 341 342 343 344 345 346
    '#title' => t('Personalization'),
  );
  $form['personalization']['user_signatures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable signatures.'),
    '#default_value' => variable_get('user_signatures', 0),
  );
  // If picture support is enabled, check whether the picture directory exists.
  if (variable_get('user_pictures', 0)) {
347
    $picture_path =  file_default_scheme() . '://' . variable_get('user_picture_path', 'pictures');
348 349
    if (!file_prepare_directory($picture_path, FILE_CREATE_DIRECTORY)) {
      form_set_error('user_picture_path', t('The directory %directory does not exist or is not writable.', array('%directory' => $picture_path)));
350
      watchdog('file system', 'The directory %directory does not exist or is not writable.', array('%directory' => $picture_path), WATCHDOG_ERROR);
351
    }
352 353 354 355 356 357 358 359 360
  }
  $picture_support = variable_get('user_pictures', 0);
  $form['personalization']['user_pictures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable user pictures.'),
    '#default_value' => $picture_support,
  );
  drupal_add_js(drupal_get_path('module', 'user') . '/user.js');
  $form['personalization']['pictures'] = array(
361 362 363 364 365 366 367
    '#type' => 'container',
    '#states' => array(
      // Hide the additional picture settings when user pictures are disabled.
      'invisible' => array(
        'input[name="user_pictures"]' => array('checked' => FALSE),
      ),
    ),
368 369 370 371 372 373 374
  );
  $form['personalization']['pictures']['user_picture_path'] = array(
    '#type' => 'textfield',
    '#title' => t('Picture directory'),
    '#default_value' => variable_get('user_picture_path', 'pictures'),
    '#size' => 30,
    '#maxlength' => 255,
375
    '#description' => t('Subdirectory in the file upload directory where pictures will be stored.'),
376 377 378 379 380 381 382 383 384
  );
  $form['personalization']['pictures']['user_picture_default'] = array(
    '#type' => 'textfield',
    '#title' => t('Default picture'),
    '#default_value' => variable_get('user_picture_default', ''),
    '#size' => 30,
    '#maxlength' => 255,
    '#description' => t('URL of picture to display for users with no custom picture selected. Leave blank for none.'),
  );
385 386 387
  if (module_exists('image')) {
    $form['personalization']['pictures']['settings']['user_picture_style'] = array(
      '#type' => 'select',
388
      '#title' => t('Picture display style'),
389 390
      '#options' => image_style_options(TRUE),
      '#default_value' => variable_get('user_picture_style', ''),
391
      '#description' => t('The style selected will be used on display, while the original image is retained. Styles may be configured in the <a href="!url">Image styles</a> administration area.', array('!url' => url('admin/config/media/image-styles'))),
392 393
    );
  }
394 395
  $form['personalization']['pictures']['user_picture_dimensions'] = array(
    '#type' => 'textfield',
396
    '#title' => t('Picture upload dimensions'),
397
    '#default_value' => variable_get('user_picture_dimensions', '85x85'),
398
    '#size' => 10,
399
    '#maxlength' => 10,
400
    '#field_suffix' => ' ' . t('pixels'),
401
    '#description' => t('Pictures larger than this will be scaled down to this size.'),
402 403 404
  );
  $form['personalization']['pictures']['user_picture_file_size'] = array(
    '#type' => 'textfield',
405
    '#title' => t('Picture upload file size'),
406
    '#default_value' => variable_get('user_picture_file_size', '30'),
407
    '#size' => 10,
408
    '#maxlength' => 10,
409
    '#field_suffix' => ' ' . t('KB'),
410
    '#description' => t('Maximum allowed file size for uploaded pictures. Upload size is normally limited only by the PHP maximum post and file upload settings, and images are automatically scaled down to the dimensions specified above.'),
411 412 413 414 415 416 417 418 419 420 421 422 423 424
  );
  $form['personalization']['pictures']['user_picture_guidelines'] = array(
    '#type' => 'textarea',
    '#title' => t('Picture guidelines'),
    '#default_value' => variable_get('user_picture_guidelines', ''),
    '#description' => t("This text is displayed at the picture upload form in addition to the default guidelines. It's useful for helping or instructing your users."),
  );

  $form['email_title'] = array(
    '#type' => 'item',
    '#title' => t('E-mails'),
  );
  $form['email'] = array(
    '#type' => 'vertical_tabs',
425 426 427
  );
  // These email tokens are shared for all settings, so just define
  // the list once to help ensure they stay in sync.
428
  $email_token_help = t('Available variables are: [site:name], [site:url], [user:name], [user:mail], [site:login-url], [site:url-brief], [user:edit-url], [user:one-time-login-url], [user:cancel-url].');
429

430
  $form['email_admin_created'] = array(
431
    '#type' => 'fieldset',
432
    '#title' => t('Welcome (new user created by administrator)'),
433
    '#collapsible' => TRUE,
434
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_ADMINISTRATORS_ONLY),
435
    '#description' => t('Edit the welcome e-mail messages sent to new member accounts created by an administrator.') . ' ' . $email_token_help,
436
    '#group' => 'email',
437
  );
438
  $form['email_admin_created']['user_mail_register_admin_created_subject'] = array(
439 440
    '#type' => 'textfield',
    '#title' => t('Subject'),
441
    '#default_value' => _user_mail_text('register_admin_created_subject', NULL, array(), FALSE),
442 443
    '#maxlength' => 180,
  );
444
  $form['email_admin_created']['user_mail_register_admin_created_body'] = array(
445 446
    '#type' => 'textarea',
    '#title' => t('Body'),
447
    '#default_value' => _user_mail_text('register_admin_created_body', NULL, array(), FALSE),
448 449 450
    '#rows' => 15,
  );

451
  $form['email_pending_approval'] = array(
452
    '#type' => 'fieldset',
453
    '#title' => t('Welcome (awaiting approval)'),
454
    '#collapsible' => TRUE,
455
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL),
456
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when administrative approval is required.') . ' ' . $email_token_help,
457
    '#group' => 'email',
458
  );
459
  $form['email_pending_approval']['user_mail_register_pending_approval_subject'] = array(
460 461
    '#type' => 'textfield',
    '#title' => t('Subject'),
462
    '#default_value' => _user_mail_text('register_pending_approval_subject', NULL, array(), FALSE),
463 464
    '#maxlength' => 180,
  );
465
  $form['email_pending_approval']['user_mail_register_pending_approval_body'] = array(
466 467
    '#type' => 'textarea',
    '#title' => t('Body'),
468
    '#default_value' => _user_mail_text('register_pending_approval_body', NULL, array(), FALSE),
469
    '#rows' => 8,
470 471
  );

472
  $form['email_no_approval_required'] = array(
473
    '#type' => 'fieldset',
474
    '#title' => t('Welcome (no approval required)'),
475
    '#collapsible' => TRUE,
476
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_VISITORS),
477
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when no administrator approval is required.') . ' ' . $email_token_help,
478
    '#group' => 'email',
479
  );
480
  $form['email_no_approval_required']['user_mail_register_no_approval_required_subject'] = array(
481 482
    '#type' => 'textfield',
    '#title' => t('Subject'),
483
    '#default_value' => _user_mail_text('register_no_approval_required_subject', NULL, array(), FALSE),
484 485
    '#maxlength' => 180,
  );
486
  $form['email_no_approval_required']['user_mail_register_no_approval_required_body'] = array(
487 488
    '#type' => 'textarea',
    '#title' => t('Body'),
489
    '#default_value' => _user_mail_text('register_no_approval_required_body', NULL, array(), FALSE),
490
    '#rows' => 15,
491
  );
492

493
  $form['email_password_reset'] = array(
494
    '#type' => 'fieldset',
495
    '#title' => t('Password recovery'),
496 497
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
498
    '#description' => t('Edit the e-mail messages sent to users who request a new password.') . ' ' . $email_token_help,
499 500
    '#group' => 'email',
    '#weight' => 10,
501
  );
502
  $form['email_password_reset']['user_mail_password_reset_subject'] = array(
503 504
    '#type' => 'textfield',
    '#title' => t('Subject'),
505
    '#default_value' => _user_mail_text('password_reset_subject', NULL, array(), FALSE),
506 507
    '#maxlength' => 180,
  );
508
  $form['email_password_reset']['user_mail_password_reset_body'] = array(
509 510
    '#type' => 'textarea',
    '#title' => t('Body'),
511
    '#default_value' => _user_mail_text('password_reset_body', NULL, array(), FALSE),
512 513 514
    '#rows' => 12,
  );

515
  $form['email_activated'] = array(
516
    '#type' => 'fieldset',
517
    '#title' => t('Account activation'),
518 519
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
520
    '#description' => t('Enable and edit e-mail messages sent to users upon account activation (when an administrator activates an account of a user who has already registered, on a site where administrative approval is required).') . ' ' . $email_token_help,
521
    '#group' => 'email',
522
  );
523
  $form['email_activated']['user_mail_status_activated_notify'] = array(
524 525 526 527
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is activated.'),
    '#default_value' => variable_get('user_mail_status_activated_notify', TRUE),
  );
528 529 530 531 532 533 534 535 536 537
  $form['email_activated']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when this email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_activated_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_activated']['settings']['user_mail_status_activated_subject'] = array(
538 539
    '#type' => 'textfield',
    '#title' => t('Subject'),
540
    '#default_value' => _user_mail_text('status_activated_subject', NULL, array(), FALSE),
541 542
    '#maxlength' => 180,
  );
543
  $form['email_activated']['settings']['user_mail_status_activated_body'] = array(
544 545
    '#type' => 'textarea',
    '#title' => t('Body'),
546
    '#default_value' => _user_mail_text('status_activated_body', NULL, array(), FALSE),
547 548 549
    '#rows' => 15,
  );

550
  $form['email_blocked'] = array(
551
    '#type' => 'fieldset',
552
    '#title' => t('Account blocked'),
553 554
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
555
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are blocked.') . ' ' . $email_token_help,
556
    '#group' => 'email',
557
  );
558
  $form['email_blocked']['user_mail_status_blocked_notify'] = array(
559 560 561 562
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is blocked.'),
    '#default_value' => variable_get('user_mail_status_blocked_notify', FALSE),
  );
563 564 565 566 567 568 569 570 571 572
  $form['email_blocked']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when the blocked email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_blocked_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_blocked']['settings']['user_mail_status_blocked_subject'] = array(
573 574
    '#type' => 'textfield',
    '#title' => t('Subject'),
575
    '#default_value' => _user_mail_text('status_blocked_subject', NULL, array(), FALSE),
576 577
    '#maxlength' => 180,
  );
578
  $form['email_blocked']['settings']['user_mail_status_blocked_body'] = array(
579 580
    '#type' => 'textarea',
    '#title' => t('Body'),
581
    '#default_value' => _user_mail_text('status_blocked_body', NULL, array(), FALSE),
582 583 584
    '#rows' => 3,
  );

585
  $form['email_cancel_confirm'] = array(
586
    '#type' => 'fieldset',
587
    '#title' => t('Account cancellation confirmation'),
588 589
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
590
    '#description' => t('Edit the e-mail messages sent to users when they attempt to cancel their accounts.') . ' ' . $email_token_help,
591
    '#group' => 'email',
592
  );
593
  $form['email_cancel_confirm']['user_mail_cancel_confirm_subject'] = array(
594 595
    '#type' => 'textfield',
    '#title' => t('Subject'),
596
    '#default_value' => _user_mail_text('cancel_confirm_subject', NULL, array(), FALSE),
597 598
    '#maxlength' => 180,
  );
599
  $form['email_cancel_confirm']['user_mail_cancel_confirm_body'] = array(
600 601
    '#type' => 'textarea',
    '#title' => t('Body'),
602
    '#default_value' => _user_mail_text('cancel_confirm_body', NULL, array(), FALSE),
603 604 605
    '#rows' => 3,
  );

606
  $form['email_canceled'] = array(
607
    '#type' => 'fieldset',
608
    '#title' => t('Account canceled'),
609 610
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
611
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are canceled.') . ' ' . $email_token_help,
612
    '#group' => 'email',
613
  );
614
  $form['email_canceled']['user_mail_status_canceled_notify'] = array(
615
    '#type' => 'checkbox',
616 617
    '#title' => t('Notify user when account is canceled.'),
    '#default_value' => variable_get('user_mail_status_canceled_notify', FALSE),
618
  );
619 620 621
  $form['email_canceled']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
622
      // Hide the settings when the cancel notify checkbox is disabled.
623 624 625 626 627 628
      'invisible' => array(
        'input[name="user_mail_status_canceled_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_canceled']['settings']['user_mail_status_canceled_subject'] = array(
629 630
    '#type' => 'textfield',
    '#title' => t('Subject'),
631
    '#default_value' => _user_mail_text('status_canceled_subject', NULL, array(), FALSE),
632 633
    '#maxlength' => 180,
  );
634
  $form['email_canceled']['settings']['user_mail_status_canceled_body'] = array(
635 636
    '#type' => 'textarea',
    '#title' => t('Body'),
637
    '#default_value' => _user_mail_text('status_canceled_body', NULL, array(), FALSE),
638 639 640
    '#rows' => 3,
  );

641
  return system_settings_form($form);
642 643 644 645
}

/**
 * Menu callback: administer permissions.
646
 *
647
 * @ingroup forms
648 649
 * @see user_admin_permissions_submit()
 * @see theme_user_admin_permissions()
650
 */
651
function user_admin_permissions($form, $form_state, $rid = NULL) {
652

653 654
  // Retrieve role names for columns.
  $role_names = user_roles();
655
  if (is_numeric($rid)) {
656
    $role_names = array($rid => $role_names[$rid]);
657
  }
658 659
  // Fetch permissions for all roles or the one selected role.
  $role_permissions = user_role_permissions($role_names);
660

661 662 663 664 665
  // Store $role_names for use when saving the data.
  $form['role_names'] = array(
    '#type' => 'value',
    '#value' => $role_names,
  );
666 667
  // Render role/permission overview:
  $options = array();
668
  $module_info = system_get_info('module');
669
  $hide_descriptions = system_admin_compact_mode();
670 671 672 673

  // Get a list of all the modules implementing a hook_permission() and sort by
  // display name.
  $modules = array();
674
  foreach (module_implements('permission') as $module) {
675
    $modules[$module] = $module_info[$module]['name'];
676
  }
677
  asort($modules);
678

679
  foreach ($modules as $module => $display_name) {
680
    if ($permissions = module_invoke($module, 'permission')) {
681
      $form['permission'][] = array(
682
        '#markup' => $module_info[$module]['name'],
683
        '#id' => $module,
684
      );
685
      foreach ($permissions as $perm => $perm_item) {
686 687 688 689 690 691
        // Fill in default values for the permission.
        $perm_item += array(
          'description' => '',
          'restrict access' => FALSE,
          'warning' => !empty($perm_item['restrict access']) ? t('Warning: Give to trusted roles only; this permission has security implications.') : '',
        );
692
        $options[$perm] = '';
693 694
        $form['permission'][$perm] = array(
          '#type' => 'item',
695
          '#markup' => $perm_item['title'],
696
          '#description' => theme('user_permission_description', array('permission_item' => $perm_item, 'hide' => $hide_descriptions)),
697
        );
698 699
        foreach ($role_names as $rid => $name) {
          // Builds arrays for checked boxes for each role
700
          if (isset($role_permissions[$rid][$perm])) {
701 702 703 704 705 706 707 708 709
            $status[$rid][] = $perm;
          }
        }
      }
    }
  }

  // Have to build checkboxes here after checkbox arrays are built
  foreach ($role_names as $rid => $name) {
710 711 712 713 714 715
    $form['checkboxes'][$rid] = array(
      '#type' => 'checkboxes',
      '#options' => $options,
      '#default_value' => isset($status[$rid]) ? $status[$rid] : array(),
      '#attributes' => array('class' => array('rid-' . $rid)),
    );
716
    $form['role_names'][$rid] = array('#markup' => check_plain($name), '#tree' => TRUE);
717
  }
718

719
  $form['actions'] = array('#type' => 'actions');
720
  $form['actions']['submit'] = array('#type' => 'submit', '#value' => t('Save permissions'));
721

722
  $form['#attached']['js'][] = drupal_get_path('module', 'user') . '/user.permissions.js';
723

724 725 726
  return $form;
}

727 728 729
/**
 * Save permissions selected on the administer permissions page.
 *
730
 * @see user_admin_permissions()
731
 */
732
function user_admin_permissions_submit($form, &$form_state) {
733
  foreach ($form_state['values']['role_names'] as $rid => $name) {
734
    user_role_change_permissions($rid, $form_state['values'][$rid]);
735 736 737 738
  }

  drupal_set_message(t('The changes have been saved.'));

739
  // Clear the cached pages and blocks.
740 741 742 743
  cache_clear_all();
}

/**
744 745 746 747 748
 * Returns HTML for the administer permissions page.
 *
 * @param $variables
 *   An associative array containing:
 *   - form: A render element representing the form.
749 750 751
 *
 * @ingroup themeable
 */
752 753 754
function theme_user_admin_permissions($variables) {
  $form = $variables['form'];

755
  $roles = user_roles();
756
  foreach (element_children($form['permission']) as $key) {
757 758 759
    $row = array();
    // Module name
    if (is_numeric($key)) {
760
      $row[] = array('data' => drupal_render($form['permission'][$key]), 'class' => array('module'), 'id' => 'module-' . $form['permission'][$key]['#id'], 'colspan' => count($form['role_names']['#value']) + 1);
761 762 763 764 765
    }
    else {
      // Permission row.
      $row[] = array(
        'data' => drupal_render($form['permission'][$key]),
766
        'class' => array('permission'),
767 768
      );
      foreach (element_children($form['checkboxes']) as $rid) {
769
        $form['checkboxes'][$rid][$key]['#title'] = $roles[$rid] . ': ' . $form['permission'][$key]['#markup'];
770 771
        $form['checkboxes'][$rid][$key]['#title_display'] = 'invisible';
        $row[] = array('data' => drupal_render($form['checkboxes'][$rid][$key]), 'class' => array('checkbox'));
772 773
      }
    }
774
    $rows[] = $row;
775 776 777
  }
  $header[] = (t('Permission'));
  foreach (element_children($form['role_names']) as $rid) {
778
    $header[] = array('data' => drupal_render($form['role_names'][$rid]), 'class' => array('checkbox'));
779
  }
780
  $output = theme('system_compact_link');
781
  $output .= theme('table', array('header' => $header, 'rows' => $rows, 'attributes' => array('id' => 'permissions')));
782
  $output .= drupal_render_children($form);
783 784 785
  return $output;
}

786
/**
787
 * Returns HTML for an individual permission description.
788 789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807