foreach (glob("$tagdir/*") as $tag) {
$tagname = pathinfo($tag, PATHINFO_BASENAME);
$target = "$tag/{$user['name']}";
- $tags[$tagname] = file_exists($tagname);
+ $val = file_exists($target);
+ $tags[$tagname] = ['value' => $val];
+ if (empty($User['admin'])) {
+ continue; # forbidden
+ }
+ if (!is_writable($tag)) {
+ continue; # locked tag directory
+ }
+ if ($val and !is_writable($target)) {
+ continue; # existing file locked
+ }
+ $tags[$tagname]['target'] = $target;
}
if ($tags) {
'<input type="hidden" name="tags[%1$s]" value="" />' .
'<input type="checkbox" name="tags[%s]" value="1"%s%s /> %s',
$tag,
- $val ? ' checked' : '',
- ' readonly',
+ $val['value'] ? ' checked' : '',
+ isset($val['target']) ? '' : ' readonly',
ucfirst($tag)
);
}
$cols['tags'] = [
'label' => 'groepen',
'input' => $options,
+ 'values' => $tags,
];
}
}
}
}
+ if (isset($cols['tags']) and !empty($_POST['tags'])) {
+ $tagok = [];
+ foreach ($_POST['tags'] as $col => $val) {
+ $tag = $cols['tags']['values'][$col];
+ if (!isset($tag['target'])) {
+ $tagok[$col] = 'forbidden';
+ }
+ if ($tag['value'] === !empty($val)) {
+ $tagok[$col] = NULL; # unaltered
+ }
+ elseif (empty($val)) {
+ $tagok[$col] = !@unlink($tag['target']);
+ }
+ else {
+ $tagok[$col] = !@symlink("../../{$user['name']}", $tag['target']);
+ }
+ }
+ if ($tagok = array_filter($tagok)) {
+ $colwarn['tags'] = "Wijziging niet opgeslagen voor "
+ . implode(', ', array_keys($tagok));
+ }
+ }
+
foreach ($_FILES as $col => $val) {
if (!isset($cols[$col]) and @$cols[$col]['type'] == 'file') {
continue; # unknown