first commit

2024-08-06 18:06:00 +05:45
commit a2fa49071a
2745 changed files with 391199 additions and 0 deletions
--- a/admininistrator/controller/user/api.php
+++ b/admininistrator/controller/user/api.php
@ -0,0 +1,372 @@
+<?php
+namespace Opencart\Admin\Controller\User;
+/**
+ * Class Api
+ *
+ * @package Opencart\Admin\Controller\User
+ */
+class Api extends \Opencart\System\Engine\Controller {
+	/**
+	 * @return void
+	 */
+	public function index(): void {
+		$this->load->language('user/api');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/api', 'user_token=' . $this->session->data['user_token'] . $url)
+		];
+
+		$data['add'] = $this->url->link('user/api.form', 'user_token=' . $this->session->data['user_token'] . $url);
+		$data['delete'] = $this->url->link('user/api.delete', 'user_token=' . $this->session->data['user_token']);
+
+		$data['list'] = $this->getList();
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/api', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function list(): void {
+		$this->load->language('user/api');
+
+		$this->response->setOutput($this->getList());
+	}
+
+	/**
+	 * @return string
+	 */
+	protected function getList(): string {
+		if (isset($this->request->get['sort'])) {
+			$sort = (string)$this->request->get['sort'];
+		} else {
+			$sort = 'username';
+		}
+
+		if (isset($this->request->get['order'])) {
+			$order = (string)$this->request->get['order'];
+		} else {
+			$order = 'ASC';
+		}
+
+		if (isset($this->request->get['page'])) {
+			$page = (int)$this->request->get['page'];
+		} else {
+			$page = 1;
+		}
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['action'] = $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		$data['apis'] = [];
+
+		$filter_data = [
+			'sort'  => $sort,
+			'order' => $order,
+			'start' => ($page - 1) * $this->config->get('config_pagination_admin'),
+			'limit' => $this->config->get('config_pagination_admin')
+		];
+
+		$this->load->model('user/api');
+
+		$user_total = $this->model_user_api->getTotalApis();
+
+		$results = $this->model_user_api->getApis($filter_data);
+
+		foreach ($results as $result) {
+			$data['apis'][] = [
+				'api_id'        => $result['api_id'],
+				'username'      => $result['username'],
+				'status'        => ($result['status'] ? $this->language->get('text_enabled') : $this->language->get('text_disabled')),
+				'date_added'    => date($this->language->get('date_format_short'), strtotime($result['date_added'])),
+				'date_modified' => date($this->language->get('date_format_short'), strtotime($result['date_modified'])),
+				'edit'          => $this->url->link('user/api.form', 'user_token=' . $this->session->data['user_token'] . '&api_id=' . $result['api_id'] . $url)
+			];
+		}
+
+		$url = '';
+
+		if ($order == 'ASC') {
+			$url .= '&order=DESC';
+		} else {
+			$url .= '&order=ASC';
+		}
+
+		$data['sort_username'] = $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . '&sort=username' . $url);
+		$data['sort_status'] = $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . '&sort=status' . $url);
+		$data['sort_date_added'] = $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . '&sort=date_added' . $url);
+		$data['sort_date_modified'] = $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . '&sort=date_modified' . $url);
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		$data['pagination'] = $this->load->controller('common/pagination', [
+			'total' => $user_total,
+			'page'  => $page,
+			'limit' => $this->config->get('config_pagination_admin'),
+			'url'   => $this->url->link('user/api.list', 'user_token=' . $this->session->data['user_token'] . $url . '&page={page}')
+		]);
+
+		$data['results'] = sprintf($this->language->get('text_pagination'), ($user_total) ? (($page - 1) * $this->config->get('config_pagination_admin')) + 1 : 0, ((($page - 1) * $this->config->get('config_pagination_admin')) > ($user_total - $this->config->get('config_pagination_admin'))) ? $user_total : ((($page - 1) * $this->config->get('config_pagination_admin')) + $this->config->get('config_pagination_admin')), $user_total, ceil($user_total / $this->config->get('config_pagination_admin')));
+
+		$data['sort'] = $sort;
+		$data['order'] = $order;
+
+		return $this->load->view('user/api_list', $data);
+	}
+
+	/**
+	 * @return void
+	 */
+	public function form(): void {
+		$this->load->language('user/api');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$data['text_form'] = !isset($this->request->get['api_id']) ? $this->language->get('text_add') : $this->language->get('text_edit');
+		$data['text_ip'] = sprintf($this->language->get('text_ip'), $this->request->server['REMOTE_ADDR']);
+
+		if (isset($this->request->get['api_id'])) {
+			$data['api_id'] = $this->request->get['api_id'];
+		} else {
+			$data['api_id'] = 0;
+		}
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/api', 'user_token=' . $this->session->data['user_token'] . $url)
+		];
+
+		$data['save'] = $this->url->link('user/api.save', 'user_token=' . $this->session->data['user_token']);
+		$data['back'] = $this->url->link('user/api', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		if (isset($this->request->get['api_id'])) {
+			$this->load->model('user/api');
+
+			$api_info = $this->model_user_api->getApi($this->request->get['api_id']);
+		}
+
+		if (isset($this->request->get['api_id'])) {
+			$data['api_id'] = (int)$this->request->get['api_id'];
+		} else {
+			$data['api_id'] = 0;
+		}
+
+		if (!empty($api_info)) {
+			$data['username'] = $api_info['username'];
+		} else {
+			$data['username'] = '';
+		}
+
+		if (!empty($api_info)) {
+			$data['key'] = $api_info['key'];
+		} else {
+			$data['key'] = '';
+		}
+
+		if (!empty($api_info)) {
+			$data['status'] = $api_info['status'];
+		} else {
+			$data['status'] = 0;
+		}
+
+		// IP
+		if (!empty($api_info)) {
+			$data['api_ips'] = $this->model_user_api->getIps($this->request->get['api_id']);
+		} else {
+			$data['api_ips'] = [];
+		}
+
+		// Session
+		$data['api_sessions'] = [];
+
+		if (!empty($api_info)) {
+			$results = $this->model_user_api->getSessions($this->request->get['api_id']);
+
+			foreach ($results as $result) {
+				$data['api_sessions'][] = [
+					'api_session_id' => $result['api_session_id'],
+					'session_id'     => $result['session_id'],
+					'ip'             => $result['ip'],
+					'date_added'     => date($this->language->get('datetime_format'), strtotime($result['date_added'])),
+					'date_modified'  => date($this->language->get('datetime_format'), strtotime($result['date_modified']))
+				];
+			}
+		}
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/api_form', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function save(): void {
+		$this->load->language('user/api');
+
+		$json = [];
+
+		if (!$this->user->hasPermission('modify', 'user/api')) {
+			$json['error']['warning'] = $this->language->get('error_permission');
+		}
+
+		if ((oc_strlen($this->request->post['username']) < 3) || (oc_strlen($this->request->post['username']) > 64)) {
+			$json['error']['username'] = $this->language->get('error_username');
+		}
+
+		if ((oc_strlen($this->request->post['key']) < 64) || (oc_strlen($this->request->post['key']) > 256)) {
+			$json['error']['key'] = $this->language->get('error_key');
+		}
+
+		if (!isset($json['error']['warning']) && !isset($this->request->post['api_ip'])) {
+			$json['error']['warning'] = $this->language->get('error_ip');
+		}
+
+		if (!$json) {
+			$this->load->model('user/api');
+
+			if (!$this->request->post['api_id']) {
+				$json['api_id'] = $this->model_user_api->addApi($this->request->post);
+			} else {
+				$this->model_user_api->editApi($this->request->post['api_id'], $this->request->post);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function delete(): void {
+		$this->load->language('user/api');
+
+		$json = [];
+
+		if (isset($this->request->post['selected'])) {
+			$selected = $this->request->post['selected'];
+		} else {
+			$selected = [];
+		}
+
+		if (!$this->user->hasPermission('modify', 'user/api')) {
+			$json['error'] = $this->language->get('error_permission');
+		}
+
+		if (!$json) {
+			$this->load->model('user/api');
+
+			foreach ($selected as $api_id) {
+				$this->model_user_api->deleteApi($api_id);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function deleteSession(): void {
+		$this->load->language('user/api');
+
+		$json = [];
+
+		if (!$this->user->hasPermission('modify', 'user/api')) {
+			$json['error'] = $this->language->get('error_permission');
+		}
+
+		if (!$json) {
+			$this->load->model('user/api');
+
+			$this->model_user_api->deleteSession($this->request->get['api_session_id']);
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+}
--- a/admininistrator/controller/user/profile.php
+++ b/admininistrator/controller/user/profile.php
@ -0,0 +1,149 @@
+<?php
+namespace Opencart\Admin\Controller\User;
+/**
+ * Class Profile
+ *
+ * @package Opencart\Admin\Controller\User
+ */
+class Profile extends \Opencart\System\Engine\Controller {
+	/**
+	 * @return void
+	 */
+	public function index(): void {
+		$this->load->language('user/profile');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/profile', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['save'] = $this->url->link('user/profile.save', 'user_token=' . $this->session->data['user_token']);
+		$data['back'] = $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token']);
+
+		$this->load->model('user/user');
+
+		$user_info = $this->model_user_user->getUser($this->user->getId());
+
+		if (!empty($user_info)) {
+			$data['username'] = $user_info['username'];
+		} else {
+			$data['username'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['firstname'] = $user_info['firstname'];
+		} else {
+			$data['firstname'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['lastname'] = $user_info['lastname'];
+		} else {
+			$data['lastname'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['email'] = $user_info['email'];
+		} else {
+			$data['email'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['image'] = $user_info['image'];
+		} else {
+			$data['image'] = '';
+		}
+
+		$this->load->model('tool/image');
+
+		$data['placeholder'] = $this->model_tool_image->resize('no_image.png', 100, 100);
+
+		if (is_file(DIR_IMAGE . html_entity_decode($data['image'], ENT_QUOTES, 'UTF-8'))) {
+			$data['thumb'] = $this->model_tool_image->resize(html_entity_decode($data['image'], ENT_QUOTES, 'UTF-8'), 100, 100);
+		} else {
+			$data['thumb'] = $data['placeholder'];
+		}
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/profile', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function save(): void {
+		$this->load->language('user/profile');
+
+		$json = [];
+
+		if (!$this->user->hasPermission('modify', 'user/profile')) {
+			$json['error']['warning'] = $this->language->get('error_permission');
+		}
+
+		if ((oc_strlen($this->request->post['username']) < 3) || (oc_strlen($this->request->post['username']) > 20)) {
+			$json['error']['username'] = $this->language->get('error_username');
+		}
+
+		$this->load->model('user/user');
+
+		$user_info = $this->model_user_user->getUserByUsername($this->request->post['username']);
+
+		if ($user_info && ($this->user->getId() != $user_info['user_id'])) {
+			$json['error']['warning'] = $this->language->get('error_username_exists');
+		}
+
+		if ((oc_strlen($this->request->post['firstname']) < 1) || (oc_strlen($this->request->post['firstname']) > 32)) {
+			$json['error']['firstname'] = $this->language->get('error_firstname');
+		}
+
+		if ((oc_strlen($this->request->post['lastname']) < 1) || (oc_strlen($this->request->post['lastname']) > 32)) {
+			$json['error']['lastname'] = $this->language->get('error_lastname');
+		}
+
+		if ((oc_strlen($this->request->post['email']) > 96) || !filter_var($this->request->post['email'], FILTER_VALIDATE_EMAIL)) {
+			$json['error']['email'] = $this->language->get('error_email');
+		}
+
+		$user_info = $this->model_user_user->getUserByEmail($this->request->post['email']);
+
+		if ($user_info && ($this->user->getId() != $user_info['user_id'])) {
+			$json['error']['warning'] = $this->language->get('error_email_exists');
+		}
+
+		if ($this->request->post['password']) {
+			if ((oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) < 4) || (oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) > 40)) {
+				$json['error']['password'] = $this->language->get('error_password');
+			}
+
+			if ($this->request->post['password'] != $this->request->post['confirm']) {
+				$json['error']['confirm'] = $this->language->get('error_confirm');
+			}
+		}
+
+		if (!$json) {
+			$user_data = array_merge($this->request->post, [
+				'user_group_id' => $this->user->getGroupId(),
+				'status'        => 1,
+			]);
+
+			$this->model_user_user->editUser($this->user->getId(), $user_data);
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+}
--- a/admininistrator/controller/user/user.php
+++ b/admininistrator/controller/user/user.php
@ -0,0 +1,551 @@
+<?php
+namespace Opencart\Admin\Controller\User;
+/**
+ * Class User
+ *
+ * @package Opencart\Admin\Controller\User
+ */
+class User extends \Opencart\System\Engine\Controller {
+	/**
+	 * @return void
+	 */
+	public function index(): void {
+		$this->load->language('user/user');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/user', 'user_token=' . $this->session->data['user_token'] . $url)
+		];
+
+		$data['add'] = $this->url->link('user/user.form', 'user_token=' . $this->session->data['user_token'] . $url);
+		$data['delete'] = $this->url->link('user/user.delete', 'user_token=' . $this->session->data['user_token']);
+
+		$data['list'] = $this->getList();
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/user', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function list(): void {
+		$this->load->language('user/user');
+
+		$this->response->setOutput($this->getList());
+	}
+
+	/**
+	 * @return string
+	 */
+	protected function getList(): string {
+		if (isset($this->request->get['sort'])) {
+			$sort = (string)$this->request->get['sort'];
+		} else {
+			$sort = 'username';
+		}
+
+		if (isset($this->request->get['order'])) {
+			$order = (string)$this->request->get['order'];
+		} else {
+			$order = 'ASC';
+		}
+
+		if (isset($this->request->get['page'])) {
+			$page = (int)$this->request->get['page'];
+		} else {
+			$page = 1;
+		}
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['action'] = $this->url->link('user/user.list', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		$data['users'] = [];
+
+		$filter_data = [
+			'sort'  => $sort,
+			'order' => $order,
+			'start' => ($page - 1) * $this->config->get('config_pagination_admin'),
+			'limit' => $this->config->get('config_pagination_admin')
+		];
+
+		$this->load->model('user/user');
+
+		$user_total = $this->model_user_user->getTotalUsers();
+
+		$results = $this->model_user_user->getUsers($filter_data);
+
+		foreach ($results as $result) {
+			$data['users'][] = [
+				'user_id'    => $result['user_id'],
+				'username'   => $result['username'],
+				'status'     => ($result['status'] ? $this->language->get('text_enabled') : $this->language->get('text_disabled')),
+				'date_added' => date($this->language->get('date_format_short'), strtotime($result['date_added'])),
+				'edit'       => $this->url->link('user/user.form', 'user_token=' . $this->session->data['user_token'] . '&user_id=' . $result['user_id'] . $url)
+			];
+		}
+
+		$url = '';
+
+		if ($order == 'ASC') {
+			$url .= '&order=DESC';
+		} else {
+			$url .= '&order=ASC';
+		}
+
+		$data['sort_username'] = $this->url->link('user/user.list', 'user_token=' . $this->session->data['user_token'] . '&sort=username' . $url);
+		$data['sort_status'] = $this->url->link('user/user.list', 'user_token=' . $this->session->data['user_token'] . '&sort=status' . $url);
+		$data['sort_date_added'] = $this->url->link('user/user.list', 'user_token=' . $this->session->data['user_token'] . '&sort=date_added' . $url);
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		$data['pagination'] = $this->load->controller('common/pagination', [
+			'total' => $user_total,
+			'page'  => $page,
+			'limit' => $this->config->get('config_pagination_admin'),
+			'url'   => $this->url->link('user/user.list', 'user_token=' . $this->session->data['user_token'] . $url . '&page={page}')
+		]);
+
+		$data['results'] = sprintf($this->language->get('text_pagination'), ($user_total) ? (($page - 1) * $this->config->get('config_pagination_admin')) + 1 : 0, ((($page - 1) * $this->config->get('config_pagination_admin')) > ($user_total - $this->config->get('config_pagination_admin'))) ? $user_total : ((($page - 1) * $this->config->get('config_pagination_admin')) + $this->config->get('config_pagination_admin')), $user_total, ceil($user_total / $this->config->get('config_pagination_admin')));
+
+		$data['sort'] = $sort;
+		$data['order'] = $order;
+
+		return $this->load->view('user/user_list', $data);
+	}
+
+	/**
+	 * @return void
+	 */
+	public function form(): void {
+		$this->load->language('user/user');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$data['text_form'] = !isset($this->request->get['user_id']) ? $this->language->get('text_add') : $this->language->get('text_edit');
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['save'] = $this->url->link('user/user.save', 'user_token=' . $this->session->data['user_token']);
+		$data['back'] = $this->url->link('user/user', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		if (isset($this->request->get['user_id'])) {
+			$this->load->model('user/user');
+
+			$user_info = $this->model_user_user->getUser($this->request->get['user_id']);
+		}
+
+		if (isset($this->request->get['user_id'])) {
+			$data['user_id'] = (int)$this->request->get['user_id'];
+		} else {
+			$data['user_id'] = 0;
+		}
+
+		if (!empty($user_info)) {
+			$data['username'] = $user_info['username'];
+		} else {
+			$data['username'] = '';
+		}
+
+		$this->load->model('user/user_group');
+
+		$data['user_groups'] = $this->model_user_user_group->getUserGroups();
+
+		if (!empty($user_info)) {
+			$data['user_group_id'] = $user_info['user_group_id'];
+		} else {
+			$data['user_group_id'] = 0;
+		}
+
+		if (!empty($user_info)) {
+			$data['firstname'] = $user_info['firstname'];
+		} else {
+			$data['firstname'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['lastname'] = $user_info['lastname'];
+		} else {
+			$data['lastname'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['email'] = $user_info['email'];
+		} else {
+			$data['email'] = '';
+		}
+
+		if (!empty($user_info)) {
+			$data['image'] = $user_info['image'];
+		} else {
+			$data['image'] = '';
+		}
+
+		$this->load->model('tool/image');
+
+		$data['placeholder'] = $this->model_tool_image->resize('no_image.png', 100, 100);
+
+		if (is_file(DIR_IMAGE . html_entity_decode($data['image'], ENT_QUOTES, 'UTF-8'))) {
+			$data['thumb'] = $this->model_tool_image->resize(html_entity_decode($data['image'], ENT_QUOTES, 'UTF-8'), 100, 100);
+		} else {
+			$data['thumb'] = $data['placeholder'];
+		}
+
+		if (!empty($user_info)) {
+			$data['status'] = $user_info['status'];
+		} else {
+			$data['status'] = 0;
+		}
+
+		$data['authorize'] = $this->getAuthorize();
+		$data['login'] = $this->getLogin();
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/user_form', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function save(): void {
+		$this->load->language('user/user');
+
+		$json = [];
+
+		if (!$this->user->hasPermission('modify', 'user/user')) {
+			$json['error']['warning'] = $this->language->get('error_permission');
+		}
+
+		if ((oc_strlen($this->request->post['username']) < 3) || (oc_strlen($this->request->post['username']) > 20)) {
+			$json['error']['username'] = $this->language->get('error_username');
+		}
+
+		$this->load->model('user/user');
+
+		$user_info = $this->model_user_user->getUserByUsername($this->request->post['username']);
+
+		if (!$this->request->post['user_id']) {
+			if ($user_info) {
+				$json['error']['warning'] = $this->language->get('error_username_exists');
+			}
+		} else {
+			if ($user_info && ($this->request->post['user_id'] != $user_info['user_id'])) {
+				$json['error']['warning'] = $this->language->get('error_username_exists');
+			}
+		}
+
+		if ((oc_strlen($this->request->post['firstname']) < 1) || (oc_strlen($this->request->post['firstname']) > 32)) {
+			$json['error']['firstname'] = $this->language->get('error_firstname');
+		}
+
+		if ((oc_strlen($this->request->post['lastname']) < 1) || (oc_strlen($this->request->post['lastname']) > 32)) {
+			$json['error']['lastname'] = $this->language->get('error_lastname');
+		}
+
+		if ((oc_strlen($this->request->post['email']) > 96) || !filter_var($this->request->post['email'], FILTER_VALIDATE_EMAIL)) {
+			$json['error']['email'] = $this->language->get('error_email');
+		}
+
+		$user_info = $this->model_user_user->getUserByEmail($this->request->post['email']);
+
+		if (!$this->request->post['user_id']) {
+			if ($user_info) {
+				$json['error']['warning'] = $this->language->get('error_email_exists');
+			}
+		} else {
+			if ($user_info && ($this->request->post['user_id'] != $user_info['user_id'])) {
+				$json['error']['warning'] = $this->language->get('error_email_exists');
+			}
+		}
+
+		if ($this->request->post['password'] || (!isset($this->request->post['user_id']))) {
+			if ((oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) < 4) || (oc_strlen(html_entity_decode($this->request->post['password'], ENT_QUOTES, 'UTF-8')) > 40)) {
+				$json['error']['password'] = $this->language->get('error_password');
+			}
+
+			if ($this->request->post['password'] != $this->request->post['confirm']) {
+				$json['error']['confirm'] = $this->language->get('error_confirm');
+			}
+		}
+
+		if (!$json) {
+			if (!$this->request->post['user_id']) {
+				$json['user_id'] = $this->model_user_user->addUser($this->request->post);
+			} else {
+				$this->model_user_user->editUser($this->request->post['user_id'], $this->request->post);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function delete(): void {
+		$this->load->language('user/user');
+
+		$json = [];
+
+		if (isset($this->request->post['selected'])) {
+			$selected = $this->request->post['selected'];
+		} else {
+			$selected = [];
+		}
+
+		if (!$this->user->hasPermission('modify', 'user/user')) {
+			$json['error'] = $this->language->get('error_permission');
+		}
+
+		foreach ($selected as $user_id) {
+			if ($this->user->getId() == $user_id) {
+				$json['error']['warning'] = $this->language->get('error_account');
+			}
+		}
+
+		if (!$json) {
+			$this->load->model('user/user');
+
+			foreach ($selected as $user_id) {
+				$this->model_user_user->deleteUser($user_id);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function authorize(): void {
+		$this->load->language('user/user');
+
+		$this->response->setOutput($this->getAuthorize());
+	}
+
+	/**
+	 * @return string
+	 */
+	public function getAuthorize(): string {
+		if (isset($this->request->get['user_id'])) {
+			$user_id = (int)$this->request->get['user_id'];
+		} else {
+			$user_id = 0;
+		}
+
+		if (isset($this->request->get['page']) && $this->request->get['route'] == 'user/user.login') {
+			$page = (int)$this->request->get['page'];
+		} else {
+			$page = 1;
+		}
+
+		$limit = 10;
+
+		$data['authorizes'] = [];
+
+		$this->load->model('user/user');
+
+		$results = $this->model_user_user->getAuthorizes($user_id, ($page - 1) * $limit, $limit);
+
+		foreach ($results as $result) {
+			$data['authorizes'][] = [
+				'token'      => $result['token'],
+				'ip'         => $result['ip'],
+				'user_agent' => $result['user_agent'],
+				'status'     => $result['status'] ? $this->language->get('text_enabled') : $this->language->get('text_disabled'),
+				'total'      => $result['total'],
+				'date_added' => date($this->language->get('datetime_format'), strtotime($result['date_added'])),
+				'delete'     => $this->url->link('user/user.deleteAuthorize', 'user_token=' . $this->session->data['user_token'] . '&user_authorize_id=' . $result['user_authorize_id'])
+			];
+		}
+
+		$authorize_total = $this->model_user_user->getTotalAuthorizes($user_id);
+
+		$data['pagination'] = $this->load->controller('common/pagination', [
+			'total' => $authorize_total,
+			'page'  => $page,
+			'limit' => $limit,
+			'url'   => $this->url->link('user/user.authorize', 'user_token=' . $this->session->data['user_token'] . '&user_id=' . $user_id . '&page={page}')
+		]);
+
+		$data['results'] = sprintf($this->language->get('text_pagination'), ($authorize_total) ? (($page - 1) * $limit) + 1 : 0, ((($page - 1) * $limit) > ($authorize_total - $limit)) ? $authorize_total : ((($page - 1) * $limit) + $limit), $authorize_total, ceil($authorize_total / $limit));
+
+		return $this->load->view('user/user_authorize', $data);
+	}
+
+	/**
+	 * @return void
+	 */
+	public function deleteAuthorize(): void {
+		$this->load->language('user/user');
+
+		$json = [];
+
+		if (isset($this->request->get['user_authorize_id'])) {
+			$user_authorize_id = (int)$this->request->get['user_authorize_id'];
+		} else {
+			$user_authorize_id = 0;
+		}
+
+		if (isset($this->request->cookie['authorize'])) {
+			$token = $this->request->cookie['authorize'];
+		} else {
+			$token = '';
+		}
+
+		if (!$this->user->hasPermission('modify', 'user/user')) {
+			$json['error'] = $this->language->get('error_permission');
+		}
+
+		$this->load->model('user/user');
+
+		$login_info = $this->model_user_user->getAuthorize($user_authorize_id);
+
+		if (!$login_info) {
+			$json['error'] = $this->language->get('error_authorize');
+		}
+
+		if (!$json) {
+			$this->model_user_user->deleteAuthorize($user_authorize_id);
+
+			// If the token is still present, then we enforce the user to log out automatically.
+			if ($login_info['token'] == $token) {
+				$this->session->data['success'] = $this->language->get('text_success');
+
+				$json['redirect'] = $this->url->link('common/login', '', true);
+			} else {
+				$json['success'] = $this->language->get('text_success');
+			}
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function login(): void {
+		$this->load->language('user/user');
+
+		$this->response->setOutput($this->getLogin());
+	}
+
+	/**
+	 * @return string
+	 */
+	public function getLogin(): string {
+		if (isset($this->request->get['user_id'])) {
+			$user_id = (int)$this->request->get['user_id'];
+		} else {
+			$user_id = 0;
+		}
+
+		if (isset($this->request->get['page']) && $this->request->get['route'] == 'user/user.login') {
+			$page = (int)$this->request->get['page'];
+		} else {
+			$page = 1;
+		}
+
+		$limit = 10;
+
+		$data['logins'] = [];
+
+		$this->load->model('user/user');
+
+		$results = $this->model_user_user->getLogins($user_id, ($page - 1) * $limit, $limit);
+
+		foreach ($results as $result) {
+			$data['logins'][] = [
+				'ip'         => $result['ip'],
+				'user_agent' => $result['user_agent'],
+				'date_added' => date($this->language->get('datetime_format'), strtotime($result['date_added']))
+			];
+		}
+
+		$login_total = $this->model_user_user->getTotalLogins($user_id);
+
+		$data['pagination'] = $this->load->controller('common/pagination', [
+			'total' => $login_total,
+			'page'  => $page,
+			'limit' => $limit,
+			'url'   => $this->url->link('user/user.login', 'user_token=' . $this->session->data['user_token'] . '&user_id=' . $user_id . '&page={page}')
+		]);
+
+		$data['results'] = sprintf($this->language->get('text_pagination'), ($login_total) ? (($page - 1) * $limit) + 1 : 0, ((($page - 1) * $limit) > ($login_total - $limit)) ? $login_total : ((($page - 1) * $limit) + $limit), $login_total, ceil($login_total / $limit));
+
+		return $this->load->view('user/user_login', $data);
+	}
+}
--- a/admininistrator/controller/user/user_permission.php
+++ b/admininistrator/controller/user/user_permission.php
@ -0,0 +1,395 @@
+<?php
+namespace Opencart\Admin\Controller\User;
+/**
+ * Class User Permission
+ *
+ * @package Opencart\Admin\Controller\User
+ */
+class UserPermission extends \Opencart\System\Engine\Controller {
+	/**
+	 * @return void
+	 */
+	public function index(): void {
+		$this->load->language('user/user_group');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/user_permission', 'user_token=' . $this->session->data['user_token'] . $url)
+		];
+
+		$data['add'] = $this->url->link('user/user_permission.form', 'user_token=' . $this->session->data['user_token'] . $url);
+		$data['delete'] = $this->url->link('user/user_permission.delete', 'user_token=' . $this->session->data['user_token']);
+
+		$data['list'] = $this->getList();
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/user_group', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function list(): void {
+		$this->load->language('user/user_group');
+
+		$this->response->setOutput($this->getList());
+	}
+
+	/**
+	 * @return string
+	 */
+	protected function getList(): string {
+		if (isset($this->request->get['sort'])) {
+			$sort = (string)$this->request->get['sort'];
+		} else {
+			$sort = 'name';
+		}
+
+		if (isset($this->request->get['order'])) {
+			$order = (string)$this->request->get['order'];
+		} else {
+			$order = 'ASC';
+		}
+
+		if (isset($this->request->get['page'])) {
+			$page = (int)$this->request->get['page'];
+		} else {
+			$page = 1;
+		}
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['action'] = $this->url->link('user/user_permission.list', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		$data['user_groups'] = [];
+
+		$filter_data = [
+			'sort'  => $sort,
+			'order' => $order,
+			'start' => ($page - 1) * $this->config->get('config_pagination_admin'),
+			'limit' => $this->config->get('config_pagination_admin')
+		];
+
+		$this->load->model('user/user_group');
+
+		$user_group_total = $this->model_user_user_group->getTotalUserGroups();
+
+		$results = $this->model_user_user_group->getUserGroups($filter_data);
+
+		foreach ($results as $result) {
+			$data['user_groups'][] = [
+				'user_group_id' => $result['user_group_id'],
+				'name'          => $result['name'],
+				'edit'          => $this->url->link('user/user_permission.form', 'user_token=' . $this->session->data['user_token'] . '&user_group_id=' . $result['user_group_id'] . $url)
+			];
+		}
+
+		$url = '';
+
+		if ($order == 'ASC') {
+			$url .= '&order=DESC';
+		} else {
+			$url .= '&order=ASC';
+		}
+
+		$data['sort_name'] = $this->url->link('user/user_permission.list', 'user_token=' . $this->session->data['user_token'] . '&sort=name' . $url);
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		$data['pagination'] = $this->load->controller('common/pagination', [
+			'total' => $user_group_total,
+			'page'  => $page,
+			'limit' => $this->config->get('config_pagination_admin'),
+			'url'   => $this->url->link('user/user_permission.list', 'user_token=' . $this->session->data['user_token'] . $url . '&page={page}')
+		]);
+
+		$data['results'] = sprintf($this->language->get('text_pagination'), ($user_group_total) ? (($page - 1) * $this->config->get('config_pagination_admin')) + 1 : 0, ((($page - 1) * $this->config->get('config_pagination_admin')) > ($user_group_total - $this->config->get('config_pagination_admin'))) ? $user_group_total : ((($page - 1) * $this->config->get('config_pagination_admin')) + $this->config->get('config_pagination_admin')), $user_group_total, ceil($user_group_total / $this->config->get('config_pagination_admin')));
+
+		$data['sort'] = $sort;
+		$data['order'] = $order;
+
+		return $this->load->view('user/user_group_list', $data);
+	}
+
+	/**
+	 * @return void
+	 */
+	public function form(): void {
+		$this->load->language('user/user_group');
+
+		$this->document->setTitle($this->language->get('heading_title'));
+
+		$data['text_form'] = !isset($this->request->get['user_group_id']) ? $this->language->get('text_add') : $this->language->get('text_edit');
+
+		$url = '';
+
+		if (isset($this->request->get['sort'])) {
+			$url .= '&sort=' . $this->request->get['sort'];
+		}
+
+		if (isset($this->request->get['order'])) {
+			$url .= '&order=' . $this->request->get['order'];
+		}
+
+		if (isset($this->request->get['page'])) {
+			$url .= '&page=' . $this->request->get['page'];
+		}
+
+		$data['breadcrumbs'] = [];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('text_home'),
+			'href' => $this->url->link('common/dashboard', 'user_token=' . $this->session->data['user_token'])
+		];
+
+		$data['breadcrumbs'][] = [
+			'text' => $this->language->get('heading_title'),
+			'href' => $this->url->link('user/user_permission', 'user_token=' . $this->session->data['user_token'] . $url)
+		];
+
+		$data['save'] = $this->url->link('user/user_permission.save', 'user_token=' . $this->session->data['user_token']);
+		$data['back'] = $this->url->link('user/user_permission', 'user_token=' . $this->session->data['user_token'] . $url);
+
+		if (isset($this->request->get['user_group_id'])) {
+			$this->load->model('user/user_group');
+
+			$user_group_info = $this->model_user_user_group->getUserGroup($this->request->get['user_group_id']);
+		}
+
+		if (isset($this->request->get['user_group_id'])) {
+			$data['user_group_id'] = (int)$this->request->get['user_group_id'];
+		} else {
+			$data['user_group_id'] = 0;
+		}
+
+		if (!empty($user_group_info)) {
+			$data['name'] = $user_group_info['name'];
+		} else {
+			$data['name'] = '';
+		}
+
+		// Routes to ignore
+		$ignore = [
+			'common/dashboard',
+			'common/startup',
+			'common/login',
+			'common/logout',
+			'common/forgotten',
+			'common/authorize',
+			'common/footer',
+			'common/header',
+			'common/column_left',
+			'common/language',
+			'common/pagination',
+			'error/not_found',
+			'error/permission',
+			'event/currency',
+			'event/debug',
+			'event/language',
+			'event/statistics',
+			'startup/application',
+			'startup/authorize',
+			'startup/error',
+			'startup/event',
+			'startup/extension',
+			'startup/language',
+			'startup/login',
+			'startup/notification',
+			'startup/permission',
+			'startup/sass',
+			'startup/session',
+			'startup/setting',
+			'startup/startup'
+		];
+
+		$files = [];
+
+		// Make path into an array
+		$path = [DIR_APPLICATION . 'controller/*'];
+
+		// While the path array is still populated keep looping through
+		while (count($path) != 0) {
+			$next = array_shift($path);
+
+			foreach (glob($next . '/*') as $file) {
+				// If directory add to path array
+				if (is_dir($file)) {
+					$path[] = $file;
+				}
+
+				// Add the file to the files to be deleted array
+				if (is_file($file)) {
+					$files[] = $file;
+				}
+			}
+		}
+
+		// Sort the file array
+		sort($files);
+
+		$data['permissions'] = [];
+
+		foreach ($files as $file) {
+			$controller = substr($file, strlen(DIR_APPLICATION . 'controller/'));
+
+			$permission = substr($controller, 0, strrpos($controller, '.'));
+
+			if (!in_array($permission, $ignore)) {
+				$data['permissions'][] = $permission;
+			}
+		}
+
+		$data['extensions'] = [];
+
+		// Extension permissions
+		$this->load->model('setting/extension');
+
+		$results = $this->model_setting_extension->getPaths('%/admin/controller/%.php');
+
+		foreach ($results as $result) {
+			$data['extensions'][] = 'extension/' . str_replace('admin/controller/', '', substr($result['path'], 0, strrpos($result['path'], '.')));
+		}
+
+		if (isset($user_group_info['permission']['access'])) {
+			$data['access'] = $user_group_info['permission']['access'];
+		} else {
+			$data['access'] = [];
+		}
+
+		if (isset($user_group_info['permission']['modify'])) {
+			$data['modify'] = $user_group_info['permission']['modify'];
+		} else {
+			$data['modify'] = [];
+		}
+
+		$data['user_token'] = $this->session->data['user_token'];
+
+		$data['header'] = $this->load->controller('common/header');
+		$data['column_left'] = $this->load->controller('common/column_left');
+		$data['footer'] = $this->load->controller('common/footer');
+
+		$this->response->setOutput($this->load->view('user/user_group_form', $data));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function save(): void {
+		$this->load->language('user/user_group');
+
+		$json = [];
+
+		if (!$this->user->hasPermission('modify', 'user/user_permission')) {
+			$json['error']['warning'] = $this->language->get('error_permission');
+		}
+
+		if ((oc_strlen($this->request->post['name']) < 3) || (oc_strlen($this->request->post['name']) > 64)) {
+			$json['error']['name'] = $this->language->get('error_name');
+		}
+
+		if (!$json) {
+			$this->load->model('user/user_group');
+
+			if (!$this->request->post['user_group_id']) {
+				$json['user_group_id'] = $this->model_user_user_group->addUserGroup($this->request->post);
+			} else {
+				$this->model_user_user_group->editUserGroup($this->request->post['user_group_id'], $this->request->post);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+
+	/**
+	 * @return void
+	 */
+	public function delete(): void {
+		$this->load->language('user/user_group');
+
+		$json = [];
+
+		if (isset($this->request->post['selected'])) {
+			$selected = $this->request->post['selected'];
+		} else {
+			$selected = [];
+		}
+
+		if (!$this->user->hasPermission('modify', 'user/user_permission')) {
+			$json['error'] = $this->language->get('error_permission');
+		}
+
+		$this->load->model('user/user');
+
+		foreach ($selected as $user_group_id) {
+			$user_total = $this->model_user_user->getTotalUsersByGroupId($user_group_id);
+
+			if ($user_total) {
+				$json['error'] = sprintf($this->language->get('error_user'), $user_total);
+			}
+		}
+
+		if (!$json) {
+			$this->load->model('user/user_group');
+
+			foreach ($selected as $user_group_id) {
+				$this->model_user_user_group->deleteUserGroup($user_group_id);
+			}
+
+			$json['success'] = $this->language->get('text_success');
+		}
+
+		$this->response->addHeader('Content-Type: application/json');
+		$this->response->setOutput(json_encode($json));
+	}
+}