user.admin.inc 38 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13
<?php

/**
 * @file
 * Admin page callback file for the user module.
 */

function user_admin($callback_arg = '') {
  $op = isset($_POST['op']) ? $_POST['op'] : $callback_arg;

  switch ($op) {
    case t('Create new account'):
    case 'create':
14 15
      $account = entity_create('user', array());
      $build['user_register'] = entity_get_form($account, 'register');
16 17
      break;
    default:
18
      if (!empty($_POST['accounts']) && isset($_POST['operation']) && ($_POST['operation'] == 'cancel')) {
19
        $build['user_multiple_cancel_confirm'] = drupal_get_form('user_multiple_cancel_confirm');
20 21
      }
      else {
22 23
        $build['user_filter_form'] = drupal_get_form('user_filter_form');
        $build['user_admin_account'] = drupal_get_form('user_admin_account');
24 25
      }
  }
26
  return $build;
27 28 29 30
}

/**
 * Form builder; Return form for user administration filters.
31
 *
32
 * @ingroup forms
33
 * @see user_filter_form_submit()
34 35
 */
function user_filter_form() {
36
  $session = isset($_SESSION['user_overview_filter']) ? $_SESSION['user_overview_filter'] : array();
37 38 39
  $filters = user_filters();

  $i = 0;
40 41 42
  $form['filters'] = array(
    '#type' => 'fieldset',
    '#title' => t('Show only users where'),
43
    '#theme' => 'exposed_filters__user',
44
  );
45 46
  foreach ($session as $filter) {
    list($type, $value) = $filter;
47 48 49 50 51 52 53 54 55
    if ($type == 'permission') {
      // Merge arrays of module permissions into one.
      // Slice past the first element '[any]' whose value is not an array.
      $options = call_user_func_array('array_merge', array_slice($filters[$type]['options'], 1));
      $value = $options[$value];
    }
    else {
      $value = $filters[$type]['options'][$value];
    }
56
    $t_args = array('%property' => $filters[$type]['title'], '%value' => $value);
57
    if ($i++) {
58
      $form['filters']['current'][] = array('#markup' => t('and where %property is %value', $t_args));
59 60
    }
    else {
61
      $form['filters']['current'][] = array('#markup' => t('%property is %value', $t_args));
62
    }
63 64
  }

65 66 67 68 69 70 71 72 73
  $form['filters']['status'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('clearfix')),
    '#prefix' => ($i ? '<div class="additional-filters">' . t('and where') . '</div>' : ''),
  );
  $form['filters']['status']['filters'] = array(
    '#type' => 'container',
    '#attributes' => array('class' => array('filters')),
  );
74
  foreach ($filters as $key => $filter) {
75
    $form['filters']['status']['filters'][$key] = array(
76 77
      '#type' => 'select',
      '#options' => $filter['options'],
78 79
      '#title' => $filter['title'],
      '#default_value' => '[any]',
80
    );
81 82
  }

83
  $form['filters']['status']['actions'] = array(
84 85
    '#type' => 'actions',
    '#attributes' => array('class' => array('container-inline')),
86
  );
87
  $form['filters']['status']['actions']['submit'] = array(
88 89 90
    '#type' => 'submit',
    '#value' => (count($session) ? t('Refine') : t('Filter')),
  );
91
  if (count($session)) {
92
    $form['filters']['status']['actions']['undo'] = array(
93 94 95
      '#type' => 'submit',
      '#value' => t('Undo'),
    );
96
    $form['filters']['status']['actions']['reset'] = array(
97 98 99
      '#type' => 'submit',
      '#value' => t('Reset'),
    );
100 101
  }

102
  drupal_add_library('system', 'drupal.form');
103

104 105 106 107 108 109 110 111 112 113
  return $form;
}

/**
 * Process result from user administration filter form.
 */
function user_filter_form_submit($form, &$form_state) {
  $op = $form_state['values']['op'];
  $filters = user_filters();
  switch ($op) {
114 115 116 117 118
    case t('Filter'):
    case t('Refine'):
      // Apply every filter that has a choice selected other than 'any'.
      foreach ($filters as $filter => $options) {
        if (isset($form_state['values'][$filter]) && $form_state['values'][$filter] != '[any]') {
119
          $_SESSION['user_overview_filter'][] = array($filter, $form_state['values'][$filter]);
120 121 122 123 124 125 126
        }
      }
      break;
    case t('Undo'):
      array_pop($_SESSION['user_overview_filter']);
      break;
    case t('Reset'):
127
      $_SESSION['user_overview_filter'] = array();
128 129 130 131 132
      break;
    case t('Update'):
      return;
  }

133
  $form_state['redirect'] = 'admin/people';
134 135 136 137 138 139 140
  return;
}

/**
 * Form builder; User administration page.
 *
 * @ingroup forms
141 142
 * @see user_admin_account_validate()
 * @see user_admin_account_submit()
143 144 145 146
 */
function user_admin_account() {

  $header = array(
147 148 149 150 151 152
    'username' => array('data' => t('Username'), 'field' => 'u.name'),
    'status' => array('data' => t('Status'), 'field' => 'u.status'),
    'roles' => array('data' => t('Roles')),
    'member_for' => array('data' => t('Member for'), 'field' => 'u.created', 'sort' => 'desc'),
    'access' => array('data' => t('Last access'), 'field' => 'u.access'),
    'operations' => array('data' => t('Operations')),
153 154
  );

155
  $query = db_select('users', 'u');
156 157
  $query->condition('u.uid', 0, '<>');
  user_build_filter_query($query);
158

159
  $count_query = clone $query;
160
  $count_query->addExpression('COUNT(u.uid)');
161

162 163
  $query = $query
    ->extend('Drupal\Core\Database\Query\PagerSelectExtender')
164
    ->extend('Drupal\Core\Database\Query\TableSortExtender');
165 166 167
  $query
    ->fields('u', array('uid', 'name', 'status', 'created', 'access'))
    ->limit(50)
168
    ->orderByHeader($header)
169 170
    ->setCountQuery($count_query);
  $result = $query->execute();
171 172 173 174

  $form['options'] = array(
    '#type' => 'fieldset',
    '#title' => t('Update options'),
175
    '#attributes' => array('class' => array('container-inline')),
176 177 178 179 180 181 182
  );
  $options = array();
  foreach (module_invoke_all('user_operations') as $operation => $array) {
    $options[$operation] = $array['label'];
  }
  $form['options']['operation'] = array(
    '#type' => 'select',
183 184
    '#title' => t('Operation'),
    '#title_display' => 'invisible',
185 186 187
    '#options' => $options,
    '#default_value' => 'unblock',
  );
188
  $options = array();
189 190 191 192 193 194 195 196
  $form['options']['submit'] = array(
    '#type' => 'submit',
    '#value' => t('Update'),
  );

  $destination = drupal_get_destination();

  $status = array(t('blocked'), t('active'));
197
  $roles = array_map('check_plain', user_roles(TRUE));
198
  $accounts = array();
199
  foreach ($result as $account) {
200
    $users_roles = array();
201 202
    $roles_result = db_query('SELECT rid FROM {users_roles} WHERE uid = :uid', array(':uid' => $account->uid));
    foreach ($roles_result as $user_role) {
203
      $users_roles[] = $roles[$user_role->rid];
204
    }
205
    asort($users_roles);
206

207
    $options[$account->uid] = array(
208
      'username' => theme('username', array('account' => $account)),
209
      'status' =>  $status[$account->status],
210
      'roles' => theme('item_list', array('items' => $users_roles)),
211 212
      'member_for' => format_interval(REQUEST_TIME - $account->created),
      'access' =>  $account->access ? t('@time ago', array('@time' => format_interval(REQUEST_TIME - $account->access))) : t('never'),
213
      'operations' => array('data' => array('#type' => 'link', '#title' => t('edit'), '#href' => "user/$account->uid/edit", '#options' => array('query' => $destination))),
214
    );
215
  }
216

217
  $form['accounts'] = array(
218 219 220 221
    '#type' => 'tableselect',
    '#header' => $header,
    '#options' => $options,
    '#empty' => t('No people available.'),
222
  );
223
  $form['pager'] = array('#markup' => theme('pager'));
224 225 226 227 228 229 230 231

  return $form;
}

/**
 * Submit the user administration update form.
 */
function user_admin_account_submit($form, &$form_state) {
232
  $operations = module_invoke_all('user_operations', $form, $form_state);
233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260
  $operation = $operations[$form_state['values']['operation']];
  // Filter out unchecked accounts.
  $accounts = array_filter($form_state['values']['accounts']);
  if ($function = $operation['callback']) {
    // Add in callback arguments if present.
    if (isset($operation['callback arguments'])) {
      $args = array_merge(array($accounts), $operation['callback arguments']);
    }
    else {
      $args = array($accounts);
    }
    call_user_func_array($function, $args);

    drupal_set_message(t('The update has been performed.'));
  }
}

function user_admin_account_validate($form, &$form_state) {
  $form_state['values']['accounts'] = array_filter($form_state['values']['accounts']);
  if (count($form_state['values']['accounts']) == 0) {
    form_set_error('', t('No users selected.'));
  }
}

/**
 * Form builder; Configure user settings for this site.
 *
 * @ingroup forms
261
 * @see user_admin_settings_submit()
262
 */
263 264
function user_admin_settings($form, &$form_state) {
  $config = config('user.settings');
265 266 267 268 269 270 271 272
  // Settings for anonymous users.
  $form['anonymous_settings'] = array(
    '#type' => 'fieldset',
    '#title' => t('Anonymous users'),
  );
  $form['anonymous_settings']['anonymous'] = array(
    '#type' => 'textfield',
    '#title' => t('Name'),
273
    '#default_value' => $config->get('anonymous'),
274 275 276
    '#description' => t('The name used to indicate anonymous users.'),
    '#required' => TRUE,
  );
277

278 279 280
  // Administrative role option.
  $form['admin_role'] = array(
    '#type' => 'fieldset',
281
    '#title' => t('Administrator role'),
282 283
  );

284
  // Do not allow users to set the anonymous or authenticated user roles as the
285 286
  // administrator role.
  $roles = user_roles();
287 288
  unset($roles[DRUPAL_ANONYMOUS_RID]);
  unset($roles[DRUPAL_AUTHENTICATED_RID]);
289 290 291 292 293
  $roles[0] = t('disabled');

  $form['admin_role']['user_admin_role'] = array(
    '#type' => 'select',
    '#title' => t('Administrator role'),
294
    '#default_value' => $config->get('admin_role'),
295 296 297 298
    '#options' => $roles,
    '#description' => t('This role will be automatically assigned new permissions whenever a module is enabled. Changing this setting will not affect existing permissions.'),
  );

299 300
  // User registration settings.
  $form['registration_cancellation'] = array(
301
    '#type' => 'fieldset',
302 303 304 305 306
    '#title' => t('Registration and cancellation'),
  );
  $form['registration_cancellation']['user_register'] = array(
    '#type' => 'radios',
    '#title' => t('Who can register accounts?'),
307
    '#default_value' => $config->get('register'),
308
    '#options' => array(
309 310 311
      USER_REGISTER_ADMINISTRATORS_ONLY => t('Administrators only'),
      USER_REGISTER_VISITORS => t('Visitors'),
      USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL => t('Visitors, but administrator approval is required'),
312 313 314 315 316
    )
  );
  $form['registration_cancellation']['user_email_verification'] = array(
    '#type' => 'checkbox',
    '#title' => t('Require e-mail verification when a visitor creates an account.'),
317
    '#default_value' => $config->get('verify_mail'),
318
    '#description' => t('New users will be required to validate their e-mail address prior to logging into the site, and will be assigned a system-generated password. With this setting disabled, users will be logged in immediately upon registering, and may select their own passwords during registration.')
319
  );
320 321
  module_load_include('inc', 'user', 'user.pages');
  $form['registration_cancellation']['user_cancel_method'] = array(
322 323
    '#type' => 'item',
    '#title' => t('When cancelling a user account'),
324
    '#description' => t('Users with the %select-cancel-method or %administer-users <a href="@permissions-url">permissions</a> can override this default method.', array('%select-cancel-method' => t('Select method for cancelling account'), '%administer-users' => t('Administer users'), '@permissions-url' => url('admin/people/permissions'))),
325
  );
326 327
  $form['registration_cancellation']['user_cancel_method'] += user_cancel_methods();
  foreach (element_children($form['registration_cancellation']['user_cancel_method']) as $element) {
328 329
    // Remove all account cancellation methods that have #access defined, as
    // those cannot be configured as default method.
330 331
    if (isset($form['registration_cancellation']['user_cancel_method'][$element]['#access'])) {
      $form['registration_cancellation']['user_cancel_method'][$element]['#access'] = FALSE;
332 333 334
    }
    // Remove the description (only displayed on the confirmation form).
    else {
335
      unset($form['registration_cancellation']['user_cancel_method'][$element]['#description']);
336 337 338
    }
  }

339 340
  // Account settings.
  $form['personalization'] = array(
341
    '#type' => 'fieldset',
342 343 344 345 346
    '#title' => t('Personalization'),
  );
  $form['personalization']['user_signatures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable signatures.'),
347
    '#default_value' => $config->get('signatures'),
348 349 350
  );
  // If picture support is enabled, check whether the picture directory exists.
  if (variable_get('user_pictures', 0)) {
351
    $picture_path =  file_default_scheme() . '://' . variable_get('user_picture_path', 'pictures');
352 353
    if (!file_prepare_directory($picture_path, FILE_CREATE_DIRECTORY)) {
      form_set_error('user_picture_path', t('The directory %directory does not exist or is not writable.', array('%directory' => $picture_path)));
354
      watchdog('file system', 'The directory %directory does not exist or is not writable.', array('%directory' => $picture_path), WATCHDOG_ERROR);
355
    }
356 357 358 359 360 361 362 363 364
  }
  $picture_support = variable_get('user_pictures', 0);
  $form['personalization']['user_pictures'] = array(
    '#type' => 'checkbox',
    '#title' => t('Enable user pictures.'),
    '#default_value' => $picture_support,
  );
  drupal_add_js(drupal_get_path('module', 'user') . '/user.js');
  $form['personalization']['pictures'] = array(
365 366 367 368 369 370 371
    '#type' => 'container',
    '#states' => array(
      // Hide the additional picture settings when user pictures are disabled.
      'invisible' => array(
        'input[name="user_pictures"]' => array('checked' => FALSE),
      ),
    ),
372 373 374 375 376 377 378
  );
  $form['personalization']['pictures']['user_picture_path'] = array(
    '#type' => 'textfield',
    '#title' => t('Picture directory'),
    '#default_value' => variable_get('user_picture_path', 'pictures'),
    '#size' => 30,
    '#maxlength' => 255,
379
    '#description' => t('Subdirectory in the file upload directory where pictures will be stored.'),
380 381 382 383 384 385 386 387 388
  );
  $form['personalization']['pictures']['user_picture_default'] = array(
    '#type' => 'textfield',
    '#title' => t('Default picture'),
    '#default_value' => variable_get('user_picture_default', ''),
    '#size' => 30,
    '#maxlength' => 255,
    '#description' => t('URL of picture to display for users with no custom picture selected. Leave blank for none.'),
  );
389 390 391
  if (module_exists('image')) {
    $form['personalization']['pictures']['settings']['user_picture_style'] = array(
      '#type' => 'select',
392
      '#title' => t('Picture display style'),
393 394
      '#options' => image_style_options(TRUE),
      '#default_value' => variable_get('user_picture_style', ''),
395
      '#description' => t('The style selected will be used on display, while the original image is retained. Styles may be configured in the <a href="!url">Image styles</a> administration area.', array('!url' => url('admin/config/media/image-styles'))),
396 397
    );
  }
398 399
  $form['personalization']['pictures']['user_picture_dimensions'] = array(
    '#type' => 'textfield',
400
    '#title' => t('Picture upload dimensions'),
401
    '#default_value' => variable_get('user_picture_dimensions', '85x85'),
402
    '#size' => 10,
403
    '#maxlength' => 10,
404
    '#field_suffix' => ' ' . t('pixels'),
405
    '#description' => t('Pictures larger than this will be scaled down to this size.'),
406 407
  );
  $form['personalization']['pictures']['user_picture_file_size'] = array(
408
    '#type' => 'number',
409
    '#title' => t('Picture upload file size'),
410
    '#default_value' => variable_get('user_picture_file_size', '30'),
411
    '#min' => 0,
412
    '#field_suffix' => ' ' . t('KB'),
413
    '#description' => t('Maximum allowed file size for uploaded pictures. Upload size is normally limited only by the PHP maximum post and file upload settings, and images are automatically scaled down to the dimensions specified above.'),
414 415 416 417 418 419 420 421 422 423 424 425 426 427
  );
  $form['personalization']['pictures']['user_picture_guidelines'] = array(
    '#type' => 'textarea',
    '#title' => t('Picture guidelines'),
    '#default_value' => variable_get('user_picture_guidelines', ''),
    '#description' => t("This text is displayed at the picture upload form in addition to the default guidelines. It's useful for helping or instructing your users."),
  );

  $form['email_title'] = array(
    '#type' => 'item',
    '#title' => t('E-mails'),
  );
  $form['email'] = array(
    '#type' => 'vertical_tabs',
428 429 430
  );
  // These email tokens are shared for all settings, so just define
  // the list once to help ensure they stay in sync.
431
  $email_token_help = t('Available variables are: [site:name], [site:url], [user:name], [user:mail], [site:login-url], [site:url-brief], [user:edit-url], [user:one-time-login-url], [user:cancel-url].');
432

433
  $form['email_admin_created'] = array(
434
    '#type' => 'fieldset',
435
    '#title' => t('Welcome (new user created by administrator)'),
436
    '#collapsible' => TRUE,
437
    '#collapsed' => ($config->get('register') != USER_REGISTER_ADMINISTRATORS_ONLY),
438
    '#description' => t('Edit the welcome e-mail messages sent to new member accounts created by an administrator.') . ' ' . $email_token_help,
439
    '#group' => 'email',
440
  );
441
  $form['email_admin_created']['user_mail_register_admin_created_subject'] = array(
442 443
    '#type' => 'textfield',
    '#title' => t('Subject'),
444
    '#default_value' => _user_mail_text('register_admin_created_subject', NULL, array(), FALSE),
445 446
    '#maxlength' => 180,
  );
447
  $form['email_admin_created']['user_mail_register_admin_created_body'] = array(
448 449
    '#type' => 'textarea',
    '#title' => t('Body'),
450
    '#default_value' => _user_mail_text('register_admin_created_body', NULL, array(), FALSE),
451 452 453
    '#rows' => 15,
  );

454
  $form['email_pending_approval'] = array(
455
    '#type' => 'fieldset',
456
    '#title' => t('Welcome (awaiting approval)'),
457
    '#collapsible' => TRUE,
458
    '#collapsed' => ($config->get('register') != USER_REGISTER_VISITORS_ADMINISTRATIVE_APPROVAL),
459
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when administrative approval is required.') . ' ' . $email_token_help,
460
    '#group' => 'email',
461
  );
462
  $form['email_pending_approval']['user_mail_register_pending_approval_subject'] = array(
463 464
    '#type' => 'textfield',
    '#title' => t('Subject'),
465
    '#default_value' => _user_mail_text('register_pending_approval_subject', NULL, array(), FALSE),
466 467
    '#maxlength' => 180,
  );
468
  $form['email_pending_approval']['user_mail_register_pending_approval_body'] = array(
469 470
    '#type' => 'textarea',
    '#title' => t('Body'),
471
    '#default_value' => _user_mail_text('register_pending_approval_body', NULL, array(), FALSE),
472
    '#rows' => 8,
473 474
  );

475
  $form['email_no_approval_required'] = array(
476
    '#type' => 'fieldset',
477
    '#title' => t('Welcome (no approval required)'),
478
    '#collapsible' => TRUE,
479
    '#collapsed' => ($config->get('register') != USER_REGISTER_VISITORS),
480
    '#description' => t('Edit the welcome e-mail messages sent to new members upon registering, when no administrator approval is required.') . ' ' . $email_token_help,
481
    '#group' => 'email',
482
  );
483
  $form['email_no_approval_required']['user_mail_register_no_approval_required_subject'] = array(
484 485
    '#type' => 'textfield',
    '#title' => t('Subject'),
486
    '#default_value' => _user_mail_text('register_no_approval_required_subject', NULL, array(), FALSE),
487 488
    '#maxlength' => 180,
  );
489
  $form['email_no_approval_required']['user_mail_register_no_approval_required_body'] = array(
490 491
    '#type' => 'textarea',
    '#title' => t('Body'),
492
    '#default_value' => _user_mail_text('register_no_approval_required_body', NULL, array(), FALSE),
493
    '#rows' => 15,
494
  );
495

496
  $form['email_password_reset'] = array(
497
    '#type' => 'fieldset',
498
    '#title' => t('Password recovery'),
499 500
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
501
    '#description' => t('Edit the e-mail messages sent to users who request a new password.') . ' ' . $email_token_help,
502 503
    '#group' => 'email',
    '#weight' => 10,
504
  );
505
  $form['email_password_reset']['user_mail_password_reset_subject'] = array(
506 507
    '#type' => 'textfield',
    '#title' => t('Subject'),
508
    '#default_value' => _user_mail_text('password_reset_subject', NULL, array(), FALSE),
509 510
    '#maxlength' => 180,
  );
511
  $form['email_password_reset']['user_mail_password_reset_body'] = array(
512 513
    '#type' => 'textarea',
    '#title' => t('Body'),
514
    '#default_value' => _user_mail_text('password_reset_body', NULL, array(), FALSE),
515 516 517
    '#rows' => 12,
  );

518
  $form['email_activated'] = array(
519
    '#type' => 'fieldset',
520
    '#title' => t('Account activation'),
521 522
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
523
    '#description' => t('Enable and edit e-mail messages sent to users upon account activation (when an administrator activates an account of a user who has already registered, on a site where administrative approval is required).') . ' ' . $email_token_help,
524
    '#group' => 'email',
525
  );
526
  $form['email_activated']['user_mail_status_activated_notify'] = array(
527 528
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is activated.'),
529
    '#default_value' => $config->get('notify.status_activated'),
530
  );
531 532 533 534 535 536 537 538 539 540
  $form['email_activated']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when this email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_activated_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_activated']['settings']['user_mail_status_activated_subject'] = array(
541 542
    '#type' => 'textfield',
    '#title' => t('Subject'),
543
    '#default_value' => _user_mail_text('status_activated_subject', NULL, array(), FALSE),
544 545
    '#maxlength' => 180,
  );
546
  $form['email_activated']['settings']['user_mail_status_activated_body'] = array(
547 548
    '#type' => 'textarea',
    '#title' => t('Body'),
549
    '#default_value' => _user_mail_text('status_activated_body', NULL, array(), FALSE),
550 551 552
    '#rows' => 15,
  );

553
  $form['email_blocked'] = array(
554
    '#type' => 'fieldset',
555
    '#title' => t('Account blocked'),
556 557
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
558
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are blocked.') . ' ' . $email_token_help,
559
    '#group' => 'email',
560
  );
561
  $form['email_blocked']['user_mail_status_blocked_notify'] = array(
562 563
    '#type' => 'checkbox',
    '#title' => t('Notify user when account is blocked.'),
564
    '#default_value' => $config->get('notify.status_blocked'),
565
  );
566 567 568 569 570 571 572 573 574 575
  $form['email_blocked']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
      // Hide the additional settings when the blocked email is disabled.
      'invisible' => array(
        'input[name="user_mail_status_blocked_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_blocked']['settings']['user_mail_status_blocked_subject'] = array(
576 577
    '#type' => 'textfield',
    '#title' => t('Subject'),
578
    '#default_value' => _user_mail_text('status_blocked_subject', NULL, array(), FALSE),
579 580
    '#maxlength' => 180,
  );
581
  $form['email_blocked']['settings']['user_mail_status_blocked_body'] = array(
582 583
    '#type' => 'textarea',
    '#title' => t('Body'),
584
    '#default_value' => _user_mail_text('status_blocked_body', NULL, array(), FALSE),
585 586 587
    '#rows' => 3,
  );

588
  $form['email_cancel_confirm'] = array(
589
    '#type' => 'fieldset',
590
    '#title' => t('Account cancellation confirmation'),
591 592
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
593
    '#description' => t('Edit the e-mail messages sent to users when they attempt to cancel their accounts.') . ' ' . $email_token_help,
594
    '#group' => 'email',
595
  );
596
  $form['email_cancel_confirm']['user_mail_cancel_confirm_subject'] = array(
597 598
    '#type' => 'textfield',
    '#title' => t('Subject'),
599
    '#default_value' => _user_mail_text('cancel_confirm_subject', NULL, array(), FALSE),
600 601
    '#maxlength' => 180,
  );
602
  $form['email_cancel_confirm']['user_mail_cancel_confirm_body'] = array(
603 604
    '#type' => 'textarea',
    '#title' => t('Body'),
605
    '#default_value' => _user_mail_text('cancel_confirm_body', NULL, array(), FALSE),
606 607 608
    '#rows' => 3,
  );

609
  $form['email_canceled'] = array(
610
    '#type' => 'fieldset',
611
    '#title' => t('Account canceled'),
612 613
    '#collapsible' => TRUE,
    '#collapsed' => TRUE,
614
    '#description' => t('Enable and edit e-mail messages sent to users when their accounts are canceled.') . ' ' . $email_token_help,
615
    '#group' => 'email',
616
  );
617
  $form['email_canceled']['user_mail_status_canceled_notify'] = array(
618
    '#type' => 'checkbox',
619
    '#title' => t('Notify user when account is canceled.'),
620
    '#default_value' => $config->get('notify.status_canceled'),
621
  );
622 623 624
  $form['email_canceled']['settings'] = array(
    '#type' => 'container',
    '#states' => array(
625
      // Hide the settings when the cancel notify checkbox is disabled.
626 627 628 629 630 631
      'invisible' => array(
        'input[name="user_mail_status_canceled_notify"]' => array('checked' => FALSE),
      ),
    ),
  );
  $form['email_canceled']['settings']['user_mail_status_canceled_subject'] = array(
632 633
    '#type' => 'textfield',
    '#title' => t('Subject'),
634
    '#default_value' => _user_mail_text('status_canceled_subject', NULL, array(), FALSE),
635 636
    '#maxlength' => 180,
  );
637
  $form['email_canceled']['settings']['user_mail_status_canceled_body'] = array(
638 639
    '#type' => 'textarea',
    '#title' => t('Body'),
640
    '#default_value' => _user_mail_text('status_canceled_body', NULL, array(), FALSE),
641 642 643
    '#rows' => 3,
  );

644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660
  return system_config_form($form, $form_state);
}

/**
 * Form submission handler for user_admin_settings().
 */
function user_admin_settings_submit($form, &$form_state) {
  config('user.settings')
    ->set('anonymous', $form_state['values']['anonymous'])
    ->set('admin_role', $form_state['values']['user_admin_role'])
    ->set('register', $form_state['values']['user_register'])
    ->set('verify_mail', $form_state['values']['user_email_verification'])
    ->set('signatures', $form_state['values']['user_signatures'])
    ->set('notify.status_activated', $form_state['values']['user_mail_status_activated_notify'])
    ->set('notify.status_blocked', $form_state['values']['user_mail_status_blocked_notify'])
    ->set('notify.status_canceled', $form_state['values']['user_mail_status_canceled_notify'])
    ->save();
661 662 663 664
}

/**
 * Menu callback: administer permissions.
665
 *
666
 * @ingroup forms
667 668
 * @see user_admin_permissions_submit()
 * @see theme_user_admin_permissions()
669
 */
670
function user_admin_permissions($form, $form_state, $rid = NULL) {
671

672 673
  // Retrieve role names for columns.
  $role_names = user_roles();
674
  if (isset($rid)) {
675
    $role_names = array($rid => $role_names[$rid]);
676
  }
677 678
  // Fetch permissions for all roles or the one selected role.
  $role_permissions = user_role_permissions($role_names);
679

680 681 682 683 684
  // Store $role_names for use when saving the data.
  $form['role_names'] = array(
    '#type' => 'value',
    '#value' => $role_names,
  );
685 686
  // Render role/permission overview:
  $options = array();
687
  $module_info = system_get_info('module');
688
  $hide_descriptions = system_admin_compact_mode();
689 690 691 692

  // Get a list of all the modules implementing a hook_permission() and sort by
  // display name.
  $modules = array();
693
  foreach (module_implements('permission') as $module) {
694
    $modules[$module] = $module_info[$module]['name'];
695
  }
696
  asort($modules);
697

698
  foreach ($modules as $module => $display_name) {
699
    if ($permissions = module_invoke($module, 'permission')) {
700
      $form['permission'][] = array(
701
        '#markup' => $module_info[$module]['name'],
702
        '#id' => $module,
703
      );
704
      foreach ($permissions as $perm => $perm_item) {
705 706 707 708 709 710
        // Fill in default values for the permission.
        $perm_item += array(
          'description' => '',
          'restrict access' => FALSE,
          'warning' => !empty($perm_item['restrict access']) ? t('Warning: Give to trusted roles only; this permission has security implications.') : '',
        );
711
        $options[$perm] = '';
712 713
        $form['permission'][$perm] = array(
          '#type' => 'item',
714
          '#markup' => $perm_item['title'],
715
          '#description' => theme('user_permission_description', array('permission_item' => $perm_item, 'hide' => $hide_descriptions)),
716
        );
717 718
        foreach ($role_names as $rid => $name) {
          // Builds arrays for checked boxes for each role
719
          if (isset($role_permissions[$rid][$perm])) {
720 721 722 723 724 725 726 727 728
            $status[$rid][] = $perm;
          }
        }
      }
    }
  }

  // Have to build checkboxes here after checkbox arrays are built
  foreach ($role_names as $rid => $name) {
729 730 731 732 733 734
    $form['checkboxes'][$rid] = array(
      '#type' => 'checkboxes',
      '#options' => $options,
      '#default_value' => isset($status[$rid]) ? $status[$rid] : array(),
      '#attributes' => array('class' => array('rid-' . $rid)),
    );
735
    $form['role_names'][$rid] = array('#markup' => check_plain($name), '#tree' => TRUE);
736
  }
737

738
  $form['actions'] = array('#type' => 'actions');
739
  $form['actions']['submit'] = array('#type' => 'submit', '#value' => t('Save permissions'));
740

741
  $form['#attached']['js'][] = drupal_get_path('module', 'user') . '/user.permissions.js';
742

743 744 745
  return $form;
}

746 747 748
/**
 * Save permissions selected on the administer permissions page.
 *
749
 * @see user_admin_permissions()
750
 */
751
function user_admin_permissions_submit($form, &$form_state) {
752
  foreach ($form_state['values']['role_names'] as $rid => $name) {
753
    user_role_change_permissions($rid, $form_state['values'][$rid]);
754 755 756 757
  }

  drupal_set_message(t('The changes have been saved.'));

758
  // Clear the cached pages and blocks.
759
  cache_invalidate(array('content' => TRUE));
760 761 762
}

/**
763 764 765 766 767
 * Returns HTML for the administer permissions page.
 *
 * @param $variables
 *   An associative array containing:
 *   - form: A render element representing the form.
768 769 770
 *
 * @ingroup themeable
 */
771 772 773
function theme_user_admin_permissions($variables) {
  $form = $variables['form'];

774
  $roles = user_roles();
775
  foreach (element_children($form['permission']) as $key) {
776 777 778
    $row = array();
    // Module name
    if (is_numeric($key)) {
779
      $row[] = array('data' => drupal_render($form['permission'][$key]), 'class' => array('module'), 'id' => 'module-' . $form['permission'][$key]['#id'], 'colspan' => count($form['role_names']['#value']) + 1);
780 781 782 783 784
    }
    else {
      // Permission row.
      $row[] = array(
        'data' => drupal_render($form['permission'][$key]),
785
        'class' => array('permission'),
786 787
      );
      foreach (element_children($form['checkboxes']) as $rid) {
788
        $form['checkboxes'][$rid][$key]['#title'] = $roles[$rid] . ': ' . $form['permission'][$key]['#markup'];
789 790
        $form['checkboxes'][$rid][$key]['#title_display'] = 'invisible';
        $row[] = array('data' => drupal_render($form['checkboxes'][$rid][$key]), 'class' => array('checkbox'));
791 792
      }
    }
793
    $rows[] = $row;
794 795 796
  }
  $header[] = (t('Permission'));
  foreach (element_children($form['role_names']) as $rid) {
797
    $header[] = array('data' => drupal_render($form['role_names'][$rid]), 'class' => array('checkbox'));
798
  }
799
  $output = theme('system_compact_link');
800
  $output .= theme('table', array('header' => $header, 'rows' => $rows, 'attributes' => array('id' => 'permissions')));
801
  $output .= drupal_render_children($form);
802 803 804
  return $output;
}

805
/**
806
 * Returns HTML for an individual permission description.
807 808 809 810 811