Implement RBAC migration and role management enhancements

- Added AJAX functionality to fetch role permissions for copying. - Introduced system role management with permission checks for updates. - Implemented role deletion with confirmation modal and backend handling. - Enhanced user role assignment migration scripts to transition from legacy profiles to RBAC. - Created SQL migration scripts for user roles and permissions mapping. - Updated user interface to support new role management features including copy permissions and system role indicators.
2026-01-27 15:10:21 +01:00
parent aeda4e4cb9
commit f7a91737bc
30 changed files with 1285 additions and 236 deletions
--- a/api/v2/get/user_roles.php
+++ b/api/v2/get/user_roles.php
@@ -24,7 +24,7 @@ if(isset($get_content) && $get_content!=''){
        $v = explode("=", $y);
        //INCLUDE VARIABLES IN ARRAY
        $criterias[$v[0]] = $v[1];
-        if ($v[0] == 'page' || $v[0] =='p' || $v[0] =='totals' || $v[0] =='success_msg' || $v[0] =='sort'){
+        if ($v[0] == 'page' || $v[0] =='p' || $v[0] =='totals' || $v[0] =='success_msg' || $v[0] =='sort' || $v[0] =='all'){
            //do nothing
        }
        elseif ($v[0] == 'rowid') {
@@ -50,6 +50,11 @@ if(isset($get_content) && $get_content!=''){
    }
 }

+//Filter system roles for users without delete permission on user_roles
+if (isAllowed('user_roles', $profile, $permission, 'D') !== 1) {
+    $clause .= ' AND r.is_system != 1';
+}
+
 //Build WHERE clause
 $whereclause = '';
 if ($clause != ''){
@@ -81,6 +86,12 @@ if (isset($criterias['totals']) && $criterias['totals'] ==''){
    //Request for total rows
    $sql = 'SELECT count(*) as count FROM user_roles r '.$whereclause;
 }
+elseif (isset($criterias['all']) && $criterias['all'] ==''){
+    //Return all records (no paging)
+    $sql = 'SELECT r.*,
+            (SELECT COUNT(*) FROM role_access_permissions WHERE role_id = r.rowID) as permission_count
+            FROM user_roles r '.$whereclause.' ORDER BY '.$sort;
+}
 else {
    //SQL with permission count
    $sql = 'SELECT r.*,
@@ -129,6 +140,11 @@ if(isset($criterias['totals']) && $criterias['totals']==''){
    $messages = $stmt->fetch();
    $messages = $messages[0];
 }
+elseif(isset($criterias['all']) && $criterias['all']==''){
+    //Return all records (no paging)
+    $stmt->execute();
+    $messages = $stmt->fetchAll(PDO::FETCH_ASSOC);
+}
 else {
    $current_page = isset($criterias['p']) && is_numeric($criterias['p']) ? (int)$criterias['p'] : 1;
    $stmt->bindValue('page', ($current_page - 1) * $page_rows, PDO::PARAM_INT);