user.admin.inc 37.5 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13
<?php

/**
 * @file
 * Admin page callback file for the user module.
 */

function user_admin($callback_arg = '') {
  $op = isset($_POST['op']) ? $_POST['op'] : $callback_arg;

  switch ($op) {
    case t('Create new account'):
    case 'create':
14
      $build['user_register'] = drupal_get_form('user_register_form');
15 16
      break;
    default:
17
      if (!empty($_POST['accounts']) && isset($_POST['operation']) && ($_POST['operation'] == 'cancel')) {
18
        $build['user_multiple_cancel_confirm'] = drupal_get_form('user_multiple_cancel_confirm');
19 20
      }
      else {
21 22
        $build['user_filter_form'] = drupal_get_form('user_filter_form');
        $build['user_admin_account'] = drupal_get_form('user_admin_account');
23 24
      }
  }
25
  return $build;
26 27 28 29
}

/**
 * Form builder; Return form for user administration filters.
30
 *
31
 * @ingroup forms
32
 * @see user_filter_form_submit()
33 34
 */
function user_filter_form() {
35
  $session = isset($_SESSION['user_overview_filter']) ? $_SESSION['user_overview_filter'] : array();
36 37 38
  $filters = user_filters();

  $i = 0;
39 40 41
  $form['filters'] = array(
    '#type' => 'fieldset',
    '#title' => t('Show only users where'),
42
    '#theme' => 'exposed_filters__user',
43
  );
44 45
  foreach ($session as $filter) {
    list($type, $value) = $filter;
46 47 48 49 50 51 52 53 54
    if ($type == 'permission') {
      // Merge arrays of module permissions into one.
      // Slice past the first element '[any]' whose value is not an array.
      $options = call_user_func_array('array_merge', array_slice($filters[$type]['options'], 1));
      $value = $options[$value];
    }
    else {
      $value = $filters[$type]['options'][$value];
    }
55
    $t_args = array('%property' => $filters[$type]['title'], '%value' => $value);
56
    if ($i++) {
57
      $form['filters']['current'][] = array('#markup' => t('and where %property is %value', $t_args));
58 59
    }
    else {
60
      $form['filters']['current'][] = array('#markup' => t('%property is %value', $t_args));
61
    }
62 63
  }

64 65 66 67 68 69 70 71 72
  $form['filters']['status'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('clearfix')),
    '#prefix' => ($i ? '<div class="additional-filters">' . t('and where') . '</div>' : ''),
  );
  $form['filters']['status']['filters'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('filters')),
  );
73
  foreach ($filters as $key => $filter) {
74
    $form['filters']['status']['filters'][$key] = array(
75 76
      '#type' => 'select',
      '#options' => $filter['options'],
77 78
      '#title' => $filter['title'],
      '#default_value' => '[any]',
79
    );
80 81
  }

82
  $form['filters']['status']['actions'] = array(
83 84
    '#type' => 'actions',
    '#attributes' => array('class' => array('container-inline')),
85
  );
86
  $form['filters']['status']['actions']['submit'] = array(
87 88 89
    '#type' => 'submit',
    '#value' => (count($session) ? t('Refine') : t('Filter')),
  );
90
  if (count($session)) {
91
    $form['filters']['status']['actions']['undo'] = array(
92 93 94
      '#type' => 'submit',
      '#value' => t('Undo'),
    );
95
    $form['filters']['status']['actions']['reset'] = array(
96 97 98
      '#type' => 'submit',
      '#value' => t('Reset'),
    );
99 100
  }

101
  drupal_add_library('system', 'drupal.form');
102

103 104 105 106 107 108 109 110 111 112
  return $form;
}

/**
 * Process result from user administration filter form.
 */
function user_filter_form_submit($form, &$form_state) {
  $op = $form_state['values']['op'];
  $filters = user_filters();
  switch ($op) {
113 114 115 116 117
    case t('Filter'):
    case t('Refine'):
      // Apply every filter that has a choice selected other than 'any'.
      foreach ($filters as $filter => $options) {
        if (isset($form_state['values'][$filter]) && $form_state['values'][$filter] != '[any]') {
118
          $_SESSION['user_overview_filter'][] = array($filter, $form_state['values'][$filter]);
119 120 121 122 123 124 125
        }
      }
      break;
    case t('Undo'):
      array_pop($_SESSION['user_overview_filter']);
      break;
    case t('Reset'):
126
      $_SESSION['user_overview_filter'] = array();
127 128 129 130 131
      break;
    case t('Update'):
      return;
  }

132
  $form_state['redirect'] = 'admin/people';
133 134 135 136 137 138 139
  return;
}

/**
 * Form builder; User administration page.
 *
 * @ingroup forms
140 141
 * @see user_admin_account_validate()
 * @see user_admin_account_submit()
142 143 144 145
 */
function user_admin_account() {

  $header = array(
146 147 148 149 150 151
    'username' => array('data' => t('Username'), 'field' => 'u.name'),
    'status' => array('data' => t('Status'), 'field' => 'u.status'),
    'roles' => array('data' => t('Roles')),
    'member_for' => array('data' => t('Member for'), 'field' => 'u.created', 'sort' => 'desc'),
    'access' => array('data' => t('Last access'), 'field' => 'u.access'),
    'operations' => array('data' => t('Operations')),
152 153
  );

154
  $query = db_select('users', 'u');
155 156
  $query->condition('u.uid', 0, '<>');
  user_build_filter_query($query);
157

158
  $count_query = clone $query;
159
  $count_query->addExpression('COUNT(u.uid)');
160

161 162 163
  $query = $query
    ->extend('Drupal\Core\Database\Query\PagerSelectExtender')
    ->extend('TableSort');
164 165 166
  $query
    ->fields('u', array('uid', 'name', 'status', 'created', 'access'))
    ->limit(50)
167
    ->orderByHeader($header)
168 169
    ->setCountQuery($count_query);
  $result = $query->execute();
170 171 172 173

  $form['options'] = array(
    '#type' => 'fieldset',
    '#title' => t('Update options'),
174
    '#attributes' => array('class' => array('container-inline')),
175 176 177 178 179 180 181
  );
  $options = array();
  foreach (module_invoke_all('user_operations') as $operation => $array) {
    $options[$operation] = $array['label'];
  }
  $form['options']['operation'] = array(
    '#type' => 'select',
182 183
    '#title' => t('Operation'),
    '#title_display' => 'invisible',
184 185 186
    '#options' => $options,
    '#default_value' => 'unblock',
  );
187
  $options = array();
188 189 190 191 192 193 194 195
  $form['options']['submit'] = array(
    '#type' => 'submit',
    '#value' => t('Update'),
  );

  $destination = drupal_get_destination();

  $status = array(t('blocked'), t('active'));
196
  $roles = array_map('check_plain', user_roles(TRUE));
197
  $accounts = array();
198
  foreach ($result as $account) {
199
    $users_roles = array();
200 201
    $roles_result = db_query('SELECT rid FROM {users_roles} WHERE uid = :uid', array(':uid' => $account->uid));
    foreach ($roles_result as $user_role) {
202
      $users_roles[] = $roles[$user_role->rid];
203
    }
204
    asort($users_roles);
205

206
    $options[$account->uid] = array(
207
      'username' => theme('username', array('account' => $account)),
208
      'status' =>  $status[$account->status],
209
      'roles' => theme('item_list', array('items' => $users_roles)),
210 211
      'member_for' => format_interval(REQUEST_TIME - $account->created),
      'access' =>  $account->access ? t('@time ago', array('@time' => format_interval(REQUEST_TIME - $account->access))) : t('never'),
212
      'operations' => array('data' => array('#type' => 'link', '#title' => t('edit'), '#href' => "user/$account->uid/edit", '#options' => array('query' => $destination))),
213
    );
214
  }
215

216
  $form['accounts'] = array(
217 218 219 220
    '#type' => 'tableselect',
    '#header' => $header,
    '#options' => $options,
    '#empty' => t('No people available.'),
221
  );
222
  $form['pager'] = array('#markup' => theme('pager'));
223 224 225 226 227 228 229 230

  return $form;
}

/**
 * Submit the user administration update form.
 */
function user_admin_account_submit($form, &$form_state) {
231
  $operations = module_invoke_all('user_operations', $form, $form_state);
232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259
  $operation = $operations[$form_state['values']['operation']];
  // Filter out unchecked accounts.
  $accounts = array_filter($form_state['values']['accounts']);
  if ($function = $operation['callback']) {
    // Add in callback arguments if present.
    if (isset($operation['callback arguments'])) {
      $args = array_merge(array($accounts), $operation['callback arguments']);
    }
    else {
      $args = array($accounts);
    }
    call_user_func_array($function, $args);

    drupal_set_message(t('The update has been performed.'));
  }
}

function user_admin_account_validate($form, &$form_state) {
  $form_state['values']['accounts'] = array_filter($form_state['values']['accounts']);
  if (count($form_state['values']['accounts']) == 0) {
    form_set_error('', t('No users selected.'));
  }
}

/**
 * Form builder; Configure user settings for this site.
 *
 * @ingroup forms
260
 * @see system_settings_form()
261 262
 */
function user_admin_settings() {
263 264 265 266 267 268 269 270 271 272 273 274
  // Settings for anonymous users.
  $form['anonymous_settings'] = array(
    '#type' => 'fieldset',
    '#title' => t('Anonymous users'),
  );
  $form['anonymous_settings']['anonymous'] = array(
    '#type' => 'textfield',
    '#title' => t('Name'),
    '#default_value' => variable_get('anonymous', t('Anonymous')),
    '#description' => t('The name used to indicate anonymous users.'),
    '#required' => TRUE,
  );
275

276 277 278
  // Administrative role option.
  $form['admin_role'] = array(
    '#type' => 'fieldset',
279
    '#title' => t('Administrator role'),
280 281
  );

282
  // Do not allow users to set the anonymous or authenticated user roles as the
283 284
  // administrator role.
  $roles = user_roles();
285 286
  unset($roles[DRUPAL_ANONYMOUS_RID]);
  unset($roles[DRUPAL_AUTHENTICATED_RID]);
287 288 289 290 291 292 293 294 295 296
  $roles[0] = t('disabled');

  $form['admin_role']['user_admin_role'] = array(
    '#type' => 'select',
    '#title' => t('Administrator role'),
    '#default_value' => variable_get('user_admin_role', 0),
    '#options' => $roles,
    '#description' => t('This role will be automatically assigned new permissions whenever a module is enabled. Changing this setting will not affect existing permissions.'),
  );

297 298
  // User registration settings.
  $form['registration_cancellation'] = array(
299
    '#type' => 'fieldset',
300 301 302 303 304
    '#title' => t('Registration and cancellation'),
  );
  $form['registration_cancellation']['user_register'] = array(
    '#type' => 'radios',
    '#title' => t('Who can register accounts?'),
305
    '#default_value' => variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL),
306
    '#options' => array(
307 308 309
      USER_REGISTER_ADMINISTRATORS_ONLY => t('Administrators only'),
      USER_REGISTER_VISITORS => t('Visitors'),
      USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL => t('Visitors, but administrator approval is required'),
310 311 312 313 314 315
    )
  );
  $form['registration_cancellation']['user_email_verification'] = array(
    '#type' => 'checkbox',
    '#title' => t('Require e-mail verification when a visitor creates an account.'),
    '#default_value' => variable_get('user_email_verification', TRUE),
316
    '#description' => t('New users will be required to validate their e-mail address prior to logging into the site, and will be assigned a system-generated password. With this setting disabled, users will be logged in immediately upon registering, and may select their own passwords during registration.')
317
  );
318 319
  module_load_include('inc', 'user', 'user.pages');
  $form['registration_cancellation']['user_cancel_method'] = array(
320 321
    '#type' => 'item',
    '#title' => t('When cancelling a user account'),
322
    '#description' => t('Users with the %select-cancel-method or %administer-users <a href="@permissions-url">permissions</a> can override this default method.', array('%select-cancel-method' => t('Select method for cancelling account'), '%administer-users' => t('Administer users'), '@permissions-url' => url('admin/people/permissions'))),
323
  );
324 325
  $form['registration_cancellation']['user_cancel_method'] += user_cancel_methods();
  foreach (element_children($form['registration_cancellation']['user_cancel_method']) as $element) {
326 327
    // Remove all account cancellation methods that have #access defined, as
    // those cannot be configured as default method.
328 329
    if (isset($form['registration_cancellation']['user_cancel_method'][$element]['#access'])) {
      $form['registration_cancellation']['user_cancel_method'][$element]['#access'] = FALSE;
330 331 332
    }
    // Remove the description (only displayed on the confirmation form).
    else {
333
      unset($form['registration_cancellation']['user_cancel_method'][$element]['#description']);
334 335 336
    }
  }

337 338
  // Account settings.
  $form['personalization'] = array(
339
    '#type' => 'fieldset',
340 341 342 343 344 345 346 347 348
    '#title' => t('Personalization'),
  );
  $form['personalization']['user_signatures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable signatures.'),
    '#default_value' => variable_get('user_signatures', 0),
  );
  // If picture support is enabled, check whether the picture directory exists.
  if (variable_get('user_pictures', 0)) {
349
    $picture_path =  file_default_scheme() . '://' . variable_get('user_picture_path', 'pictures');
350 351
    if (!file_prepare_directory($picture_path, FILE_CREATE_DIRECTORY)) {
      form_set_error('user_picture_path', t('The directory %directory does not exist or is not writable.', array('%directory' => $picture_path)));
352
      watchdog('file system', 'The directory %directory does not exist or is not writable.', array('%directory' => $picture_path), WATCHDOG_ERROR);
353
    }
354 355 356 357 358 359 360 361 362
  }
  $picture_support = variable_get('user_pictures', 0);
  $form['personalization']['user_pictures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable user pictures.'),
    '#default_value' => $picture_support,
  );
  drupal_add_js(drupal_get_path('module', 'user') . '/user.js');
  $form['personalization']['pictures'] = array(
363 364 365 366 367 368 369
    '#type' => 'container',
    '#states' => array(
      // Hide the additional picture settings when user pictures are disabled.
      'invisible' => array(
        'input[name="user_pictures"]' => array('checked' => FALSE),
      ),
    ),
370 371 372 373 374 375 376
  );
  $form['personalization']['pictures']['user_picture_path'] = array(
    '#type' => 'textfield',
    '#title' => t('Picture directory'),
    '#default_value' => variable_get('user_picture_path', 'pictures'),
    '#size' => 30,
    '#maxlength' => 255,
377
    '#description' => t('Subdirectory in the file upload directory where pictures will be stored.'),
378 379 380 381 382 383 384 385 386
  );
  $form['personalization']['pictures']['user_picture_default'] = array(
    '#type' => 'textfield',
    '#title' => t('Default picture'),
    '#default_value' => variable_get('user_picture_default', ''),
    '#size' => 30,
    '#maxlength' => 255,
    '#description' => t('URL of picture to display for users with no custom picture selected. Leave blank for none.'),
  );
387 388 389
  if (module_exists('image')) {
    $form['personalization']['pictures']['settings']['user_picture_style'] = array(
      '#type' => 'select',
390
      '#title' => t('Picture display style'),
391 392
      '#options' => image_style_options(TRUE),
      '#default_value' => variable_get('user_picture_style', ''),
393
      '#description' => t('The style selected will be used on display, while the original image is retained. Styles may be configured in the <a href="!url">Image styles</a> administration area.', array('!url' => url('admin/config/media/image-styles'))),
394 395
    );
  }
396 397
  $form['personalization']['pictures']['user_picture_dimensions'] = array(
    '#type' => 'textfield',
398
    '#title' => t('Picture upload dimensions'),
399
    '#default_value' => variable_get('user_picture_dimensions', '85x85'),
400
    '#size' => 10,
401
    '#maxlength' => 10,
402
    '#field_suffix' => ' ' . t('pixels'),
403
    '#description' => t('Pictures larger than this will be scaled down to this size.'),
404 405
  );
  $form['personalization']['pictures']['user_picture_file_size'] = array(
406
    '#type' => 'number',
407
    '#title' => t('Picture upload file size'),
408
    '#default_value' => variable_get('user_picture_file_size', '30'),
409
    '#min' => 0,
410
    '#field_suffix' => ' ' . t('KB'),
411
    '#description' => t('Maximum allowed file size for uploaded pictures. Upload size is normally limited only by the PHP maximum post and file upload settings, and images are automatically scaled down to the dimensions specified above.'),
412 413 414 415 416 417 418 419 420 421 422 423 424 425
  );
  $form['personalization']['pictures']['user_picture_guidelines'] = array(
    '#type' => 'textarea',
    '#title' => t('Picture guidelines'),
    '#default_value' => variable_get('user_picture_guidelines', ''),
    '#description' => t("This text is displayed at the picture upload form in addition to the default guidelines. It's useful for helping or instructing your users."),
  );

  $form['email_title'] = array(
    '#type' => 'item',
    '#title' => t('E-mails'),
  );
  $form['email'] = array(
    '#type' => 'vertical_tabs',
426 427 428
  );
  // These email tokens are shared for all settings, so just define
  // the list once to help ensure they stay in sync.
429
  $email_token_help = t('Available variables are: [site:name], [site:url], [user:name], [user:mail], [site:login-url], [site:url-brief], [user:edit-url], [user:one-time-login-url], [user:cancel-url].');
430

431
  $form['email_admin_created'] = array(
432
    '#type' => 'fieldset',
433
    '#title' => t('Welcome (new user created by administrator)'),
434
    '#collapsible' => TRUE,
435
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_ADMINISTRATORS_ONLY),
436
    '#description' => t('Edit the welcome e-mail messages sent to new member accounts created by an administrator.') . ' ' . $email_token_help,
437
    '#group' => 'email',
438
  );
439
  $form['email_admin_created']['user_mail_register_admin_created_subject'] = array(
440 441
    '#type' => 'textfield',
    '#title' => t('Subject'),
442
    '#default_value' => _user_mail_text('register_admin_created_subject', NULL, array(), FALSE),
443 444
    '#maxlength' => 180,
  );
445
  $form['email_admin_created']['user_mail_register_admin_created_body'] = array(
446 447
    '#type' => 'textarea',
    '#title' => t('Body'),
448
    '#default_value' => _user_mail_text('register_admin_created_body', NULL, array(), FALSE),
449 450 451
    '#rows' => 15,
  );

452
  $form['email_pending_approval'] = array(
453
    '#type' => 'fieldset',
454
    '#title' => t('Welcome (awaiting approval)'),
455
    '#collapsible' => TRUE,
456
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL),
457
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when administrative approval is required.') . ' ' . $email_token_help,
458
    '#group' => 'email',
459
  );
460
  $form['email_pending_approval']['user_mail_register_pending_approval_subject'] = array(
461 462
    '#type' => 'textfield',
    '#title' => t('Subject'),
463
    '#default_value' => _user_mail_text('register_pending_approval_subject', NULL, array(), FALSE),
464 465
    '#maxlength' => 180,
  );
466
  $form['email_pending_approval']['user_mail_register_pending_approval_body'] = array(
467 468
    '#type' => 'textarea',
    '#title' => t('Body'),
469
    '#default_value' => _user_mail_text('register_pending_approval_body', NULL, array(), FALSE),
470
    '#rows' => 8,
471 472
  );

473
  $form['email_no_approval_required'] = array(
474
    '#type' => 'fieldset',
475
    '#title' => t('Welcome (no approval required)'),
476
    '#collapsible' => TRUE,
477
    '#collapsed' => (variable_get('user_register', USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL) != USER_REGISTER_VISITORS),
478
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when no administrator approval is required.') . ' ' . $email_token_help,
479
    '#group' => 'email',
480
  );
481
  $form['email_no_approval_required']['user_mail_register_no_approval_required_subject'] = array(
482 483
    '#type' => 'textfield',
    '#title' => t('Subject'),
484
    '#default_value' => _user_mail_text('register_no_approval_required_subject', NULL, array(), FALSE),
485 486
    '#maxlength' => 180,
  );
487
  $form['email_no_approval_required']['user_mail_register_no_approval_required_body'] = array(
488 489
    '#type' => 'textarea',
    '#title' => t('Body'),
490
    '#default_value' => _user_mail_text('register_no_approval_required_body', NULL, array(), FALSE),
491
    '#rows' => 15,
492
  );
493

494
  $form['email_password_reset'] = array(
495
    '#type' => 'fieldset',
496
    '#title' => t('Password recovery'),
497 498
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
499
    '#description' => t('Edit the e-mail messages sent to users who request a new password.') . ' ' . $email_token_help,
500 501
    '#group' => 'email',
    '#weight' => 10,
502
  );
503
  $form['email_password_reset']['user_mail_password_reset_subject'] = array(
504 505
    '#type' => 'textfield',
    '#title' => t('Subject'),
506
    '#default_value' => _user_mail_text('password_reset_subject', NULL, array(), FALSE),
507 508
    '#maxlength' => 180,
  );
509
  $form['email_password_reset']['user_mail_password_reset_body'] = array(
510 511
    '#type' => 'textarea',
    '#title' => t('Body'),
512
    '#default_value' => _user_mail_text('password_reset_body', NULL, array(), FALSE),
513 514 515
    '#rows' => 12,
  );

516
  $form['email_activated'] = array(
517
    '#type' => 'fieldset',
518
    '#title' => t('Account activation'),
519 520
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
521
    '#description' => t('Enable and edit e-mail messages sent to users upon account activation (when an administrator activates an account of a user who has already registered, on a site where administrative approval is required).') . ' ' . $email_token_help,
522
    '#group' => 'email',
523
  );
524
  $form['email_activated']['user_mail_status_activated_notify'] = array(
525 526 527 528
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is activated.'),
    '#default_value' => variable_get('user_mail_status_activated_notify', TRUE),
  );
529 530 531 532 533 534 535 536 537 538
  $form['email_activated']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when this email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_activated_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_activated']['settings']['user_mail_status_activated_subject'] = array(
539 540
    '#type' => 'textfield',
    '#title' => t('Subject'),
541
    '#default_value' => _user_mail_text('status_activated_subject', NULL, array(), FALSE),
542 543
    '#maxlength' => 180,
  );
544
  $form['email_activated']['settings']['user_mail_status_activated_body'] = array(
545 546
    '#type' => 'textarea',
    '#title' => t('Body'),
547
    '#default_value' => _user_mail_text('status_activated_body', NULL, array(), FALSE),
548 549 550
    '#rows' => 15,
  );

551
  $form['email_blocked'] = array(
552
    '#type' => 'fieldset',
553
    '#title' => t('Account blocked'),
554 555
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
556
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are blocked.') . ' ' . $email_token_help,
557
    '#group' => 'email',
558
  );
559
  $form['email_blocked']['user_mail_status_blocked_notify'] = array(
560 561 562 563
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is blocked.'),
    '#default_value' => variable_get('user_mail_status_blocked_notify', FALSE),
  );
564 565 566 567 568 569 570 571 572 573
  $form['email_blocked']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when the blocked email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_blocked_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_blocked']['settings']['user_mail_status_blocked_subject'] = array(
574 575
    '#type' => 'textfield',
    '#title' => t('Subject'),
576
    '#default_value' => _user_mail_text('status_blocked_subject', NULL, array(), FALSE),
577 578
    '#maxlength' => 180,
  );
579
  $form['email_blocked']['settings']['user_mail_status_blocked_body'] = array(
580 581
    '#type' => 'textarea',
    '#title' => t('Body'),
582
    '#default_value' => _user_mail_text('status_blocked_body', NULL, array(), FALSE),
583 584 585
    '#rows' => 3,
  );

586
  $form['email_cancel_confirm'] = array(
587
    '#type' => 'fieldset',
588
    '#title' => t('Account cancellation confirmation'),
589 590
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
591
    '#description' => t('Edit the e-mail messages sent to users when they attempt to cancel their accounts.') . ' ' . $email_token_help,
592
    '#group' => 'email',
593
  );
594
  $form['email_cancel_confirm']['user_mail_cancel_confirm_subject'] = array(
595 596
    '#type' => 'textfield',
    '#title' => t('Subject'),
597
    '#default_value' => _user_mail_text('cancel_confirm_subject', NULL, array(), FALSE),
598 599
    '#maxlength' => 180,
  );
600
  $form['email_cancel_confirm']['user_mail_cancel_confirm_body'] = array(
601 602
    '#type' => 'textarea',
    '#title' => t('Body'),
603
    '#default_value' => _user_mail_text('cancel_confirm_body', NULL, array(), FALSE),
604 605 606
    '#rows' => 3,
  );

607
  $form['email_canceled'] = array(
608
    '#type' => 'fieldset',
609
    '#title' => t('Account canceled'),
610 611
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
612
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are canceled.') . ' ' . $email_token_help,
613
    '#group' => 'email',
614
  );
615
  $form['email_canceled']['user_mail_status_canceled_notify'] = array(
616
    '#type' => 'checkbox',
617 618
    '#title' => t('Notify user when account is canceled.'),
    '#default_value' => variable_get('user_mail_status_canceled_notify', FALSE),
619
  );
620 621 622
  $form['email_canceled']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
623
      // Hide the settings when the cancel notify checkbox is disabled.
624 625 626 627 628 629
      'invisible' => array(
        'input[name="user_mail_status_canceled_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_canceled']['settings']['user_mail_status_canceled_subject'] = array(
630 631
    '#type' => 'textfield',
    '#title' => t('Subject'),
632
    '#default_value' => _user_mail_text('status_canceled_subject', NULL, array(), FALSE),
633 634
    '#maxlength' => 180,
  );
635
  $form['email_canceled']['settings']['user_mail_status_canceled_body'] = array(
636 637
    '#type' => 'textarea',
    '#title' => t('Body'),
638
    '#default_value' => _user_mail_text('status_canceled_body', NULL, array(), FALSE),
639 640 641
    '#rows' => 3,
  );

642
  return system_settings_form($form);
643 644 645 646
}

/**
 * Menu callback: administer permissions.
647
 *
648
 * @ingroup forms
649 650
 * @see user_admin_permissions_submit()
 * @see theme_user_admin_permissions()
651
 */
652
function user_admin_permissions($form, $form_state, $rid = NULL) {
653

654 655
  // Retrieve role names for columns.
  $role_names = user_roles();
656
  if (is_numeric($rid)) {
657
    $role_names = array($rid => $role_names[$rid]);
658
  }
659 660
  // Fetch permissions for all roles or the one selected role.
  $role_permissions = user_role_permissions($role_names);
661

662 663 664 665 666
  // Store $role_names for use when saving the data.
  $form['role_names'] = array(
    '#type' => 'value',
    '#value' => $role_names,
  );
667 668
  // Render role/permission overview:
  $options = array();
669
  $module_info = system_get_info('module');
670
  $hide_descriptions = system_admin_compact_mode();
671 672 673 674

  // Get a list of all the modules implementing a hook_permission() and sort by
  // display name.
  $modules = array();
675
  foreach (module_implements('permission') as $module) {
676
    $modules[$module] = $module_info[$module]['name'];
677
  }
678
  asort($modules);
679

680
  foreach ($modules as $module => $display_name) {
681
    if ($permissions = module_invoke($module, 'permission')) {
682
      $form['permission'][] = array(
683
        '#markup' => $module_info[$module]['name'],
684
        '#id' => $module,
685
      );
686
      foreach ($permissions as $perm => $perm_item) {
687 688 689 690 691 692
        // Fill in default values for the permission.
        $perm_item += array(
          'description' => '',
          'restrict access' => FALSE,
          'warning' => !empty($perm_item['restrict access']) ? t('Warning: Give to trusted roles only; this permission has security implications.') : '',
        );
693
        $options[$perm] = '';
694 695
        $form['permission'][$perm] = array(
          '#type' => 'item',
696
          '#markup' => $perm_item['title'],
697
          '#description' => theme('user_permission_description', array('permission_item' => $perm_item, 'hide' => $hide_descriptions)),
698
        );
699 700
        foreach ($role_names as $rid => $name) {
          // Builds arrays for checked boxes for each role
701
          if (isset($role_permissions[$rid][$perm])) {
702 703 704 705 706 707 708 709 710
            $status[$rid][] = $perm;
          }
        }
      }
    }
  }

  // Have to build checkboxes here after checkbox arrays are built
  foreach ($role_names as $rid => $name) {
711 712 713 714 715 716
    $form['checkboxes'][$rid] = array(
      '#type' => 'checkboxes',
      '#options' => $options,
      '#default_value' => isset($status[$rid]) ? $status[$rid] : array(),
      '#attributes' => array('class' => array('rid-' . $rid)),
    );
717
    $form['role_names'][$rid] = array('#markup' => check_plain($name), '#tree' => TRUE);
718
  }
719

720
  $form['actions'] = array('#type' => 'actions');
721
  $form['actions']['submit'] = array('#type' => 'submit', '#value' => t('Save permissions'));
722

723
  $form['#attached']['js'][] = drupal_get_path('module', 'user') . '/user.permissions.js';
724

725 726 727
  return $form;
}

728 729 730
/**
 * Save permissions selected on the administer permissions page.
 *
731
 * @see user_admin_permissions()
732
 */
733
function user_admin_permissions_submit($form, &$form_state) {
734
  foreach ($form_state['values']['role_names'] as $rid => $name) {
735
    user_role_change_permissions($rid, $form_state['values'][$rid]);
736 737 738 739
  }

  drupal_set_message(t('The changes have been saved.'));

740
  // Clear the cached pages and blocks.
741 742 743 744
  cache_clear_all();
}

/**
745 746 747 748 749
 * Returns HTML for the administer permissions page.
 *
 * @param $variables
 *   An associative array containing:
 *   - form: A render element representing the form.
750 751 752
 *
 * @ingroup themeable
 */
753 754 755
function theme_user_admin_permissions($variables) {
  $form = $variables['form'];

756
  $roles = user_roles();
757
  foreach (element_children($form['permission']) as $key) {
758 759 760
    $row = array();
    // Module name
    if (is_numeric($key)) {
761
      $row[] = array('data' => drupal_render($form['permission'][$key]), 'class' => array('module'), 'id' => 'module-' . $form['permission'][$key]['#id'], 'colspan' => count($form['role_names']['#value']) + 1);
762 763 764 765 766
    }
    else {
      // Permission row.
      $row[] = array(
        'data' => drupal_render($form['permission'][$key]),
767
        'class' => array('permission'),
768 769
      );
      foreach (element_children($form['checkboxes']) as $rid) {
770
        $form['checkboxes'][$rid][$key]['#title'] = $roles[$rid] . ': ' . $form['permission'][$key]['#markup'];
771 772
        $form['checkboxes'][$rid][$key]['#title_display'] = 'invisible';
        $row[] = array('data' => drupal_render($form['checkboxes'][$rid][$key]), 'class' => array('checkbox'));
773 774
      }
    }
775
    $rows[] = $row;
776 777 778
  }
  $header[] = (t('Permission'));
  foreach (element_children($form['role_names']) as $rid) {
779
    $header[] = array('data' => drupal_render($form['role_names'][$rid]), 'class' => array('checkbox'));
780
  }
781
  $output = theme('system_compact_link');
782
  $output .= theme('table', array('header' => $header, 'rows' => $rows, 'attributes' => array('id' => 'permissions')));
783
  $output .= drupal_render_children($form);
784 785 786
  return $output;
}

787
/**
788
 * Returns HTML for an individual permission description.
789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807 808 809 810 811 812 813 814 815 816 817
 *
 * @param $variables
 *   An associative array containing:
 *   - permission_item: An associative array representing the permission whose
 *     description is being themed. Useful keys include:
 *     - description: The text of the permission description.
 *     - warning: A security-related warning message about the permission (if
 *       there is one).
 *   - hide: A boolean indicating whether or not the permission description was
 *     requested to be hidden rather than shown.
 *
 * @ingroup themeable
 */
function theme_user_permission_description($variables) {
  if (!$variables['hide']) {
    $description = array();
    $permission_item = $variables['permission_item'];
    if (!empty($permission_item['description'])) {
      $description[] = $permission_item['description'];
    }
    if (!empty($permission_item['warning'])) {
      $description[] = '<em class="permission-warning">' . $permission_item['warning'] . '</em>';
    }
    if (!empty($description)) {
      return implode(' ', $description);
    }
  }
}

818
/**
819
 * Form to re-order roles or add a new one.
820
 *
821
 * @ingroup forms
822
 * @see theme_user_admin_roles()
823
 */
824 825 826 827 828 829 830 831 832 833 834 835
function user_admin_roles($form, $form_state) {
  $roles = user_roles();

  $form['roles'] = array(
    '#tree' => TRUE,
  );
  $order = 0;
  foreach ($roles as $rid => $name) {
    $form['roles'][$rid]['#role'] = (object) array(
      'rid' => $rid,
      'name' => $name,
      'weight' => $order,
836
    );
837 838
    $form[