/cake/libs/model/db_acl.php
PHP | 328 lines | 258 code | 17 blank | 53 comment | 23 complexity | 85aee4bd53261fdcdf8e8f811a9c673e MD5 | raw file
- <?php
- /**
- * This is core configuration file.
- *
- * Use it to configure core behaviour ofCake.
- *
- * PHP Version 5.x
- *
- * CakePHP(tm) : Rapid Development Framework (http://cakephp.org)
- * Copyright 2005-2009, Cake Software Foundation, Inc. (http://cakefoundation.org)
- *
- * Licensed under The MIT License
- * Redistributions of files must retain the above copyright notice.
- *
- * @copyright Copyright 2005-2009, Cake Software Foundation, Inc. (http://cakefoundation.org)
- * @link http://cakephp.org CakePHP(tm) Project
- * @package cake
- * @subpackage cake.cake.libs.model
- * @since CakePHP(tm) v 0.2.9
- * @license MIT License (http://www.opensource.org/licenses/mit-license.php)
- */
- /**
- * Load Model and AppModel
- */
- App::import('Model', 'App');
- /**
- * Short description for file.
- *
- *
- * @package cake
- * @subpackage cake.cake.libs.model
- */
- class AclNode extends AppModel {
- /**
- * Explicitly disable in-memory query caching for ACL models
- *
- * @var boolean
- * @access public
- */
- public $cacheQueries = false;
- /**
- * ACL models use the Tree behavior
- *
- * @var array
- * @access public
- */
- public $actsAs = array('Tree' => 'nested');
- /**
- * Constructor
- *
- */
- public function __construct() {
- $config = Configure::read('Acl.database');
- if (isset($config)) {
- $this->useDbConfig = $config;
- }
- parent::__construct();
- }
- /**
- * Retrieves the Aro/Aco node for this model
- *
- * @param mixed $ref Array with 'model' and 'foreign_key', model object, or string value
- * @return array Node found in database
- * @access public
- */
- public function node($ref = null) {
- $db = ConnectionManager::getDataSource($this->useDbConfig);
- $type = $this->alias;
- $result = null;
- if (!empty($this->useTable)) {
- $table = $this->useTable;
- } else {
- $table = Inflector::pluralize(Inflector::underscore($type));
- }
- if (empty($ref)) {
- return null;
- } elseif (is_string($ref)) {
- $path = explode('/', $ref);
- $start = $path[0];
- unset($path[0]);
- $queryData = array(
- 'conditions' => array(
- $db->name("{$type}.lft") . ' <= ' . $db->name("{$type}0.lft"),
- $db->name("{$type}.rght") . ' >= ' . $db->name("{$type}0.rght")),
- 'fields' => array('id', 'parent_id', 'model', 'foreign_key', 'alias'),
- 'joins' => array(array(
- 'table' => $db->fullTableName($this),
- 'alias' => "{$type}0",
- 'type' => 'LEFT',
- 'conditions' => array("{$type}0.alias" => $start)
- )),
- 'order' => $db->name("{$type}.lft") . ' DESC'
- );
- foreach ($path as $i => $alias) {
- $j = $i - 1;
- $queryData['joins'][] = array(
- 'table' => $db->fullTableName($this),
- 'alias' => "{$type}{$i}",
- 'type' => 'LEFT',
- 'conditions' => array(
- $db->name("{$type}{$i}.lft") . ' > ' . $db->name("{$type}{$j}.lft"),
- $db->name("{$type}{$i}.rght") . ' < ' . $db->name("{$type}{$j}.rght"),
- $db->name("{$type}{$i}.alias") . ' = ' . $db->value($alias, 'string')
- )
- );
- $queryData['conditions'] = array('or' => array(
- $db->name("{$type}.lft") . ' <= ' . $db->name("{$type}0.lft") . ' AND ' . $db->name("{$type}.rght") . ' >= ' . $db->name("{$type}0.rght"),
- $db->name("{$type}.lft") . ' <= ' . $db->name("{$type}{$i}.lft") . ' AND ' . $db->name("{$type}.rght") . ' >= ' . $db->name("{$type}{$i}.rght"))
- );
- }
- $result = $db->read($this, $queryData, -1);
- $path = array_values($path);
- if (
- !isset($result[0][$type]) ||
- (!empty($path) && $result[0][$type]['alias'] != $path[count($path) - 1]) ||
- (empty($path) && $result[0][$type]['alias'] != $start)
- ) {
- return false;
- }
- } elseif (is_object($ref) && is_a($ref, 'Model')) {
- $ref = array('model' => $ref->alias, 'foreign_key' => $ref->id);
- } elseif (is_array($ref) && !(isset($ref['model']) && isset($ref['foreign_key']))) {
- $name = key($ref);
- $model = ClassRegistry::init(array('class' => $name, 'alias' => $name));
- if (empty($model)) {
- trigger_error("Model class '$name' not found in AclNode::node() when trying to bind {$this->alias} object", E_USER_WARNING);
- return null;
- }
- $tmpRef = null;
- if (method_exists($model, 'bindNode')) {
- $tmpRef = $model->bindNode($ref);
- }
- if (empty($tmpRef)) {
- $ref = array('model' => $name, 'foreign_key' => $ref[$name][$model->primaryKey]);
- } else {
- if (is_string($tmpRef)) {
- return $this->node($tmpRef);
- }
- $ref = $tmpRef;
- }
- }
- if (is_array($ref)) {
- if (is_array(current($ref)) && is_string(key($ref))) {
- $name = key($ref);
- $ref = current($ref);
- }
- foreach ($ref as $key => $val) {
- if (strpos($key, $type) !== 0 && strpos($key, '.') === false) {
- unset($ref[$key]);
- $ref["{$type}0.{$key}"] = $val;
- }
- }
- $queryData = array(
- 'conditions' => $ref,
- 'fields' => array('id', 'parent_id', 'model', 'foreign_key', 'alias'),
- 'joins' => array(array(
- 'table' => $db->fullTableName($this),
- 'alias' => "{$type}0",
- 'type' => 'LEFT',
- 'conditions' => array(
- $db->name("{$type}.lft") . ' <= ' . $db->name("{$type}0.lft"),
- $db->name("{$type}.rght") . ' >= ' . $db->name("{$type}0.rght")
- )
- )),
- 'order' => $db->name("{$type}.lft") . ' DESC'
- );
- $result = $db->read($this, $queryData, -1);
- if (!$result) {
- trigger_error("AclNode::node() - Couldn't find {$type} node identified by \"" . print_r($ref, true) . "\"", E_USER_WARNING);
- }
- }
- return $result;
- }
- }
- /**
- * Access Control Object
- *
- * @package cake
- * @subpackage cake.cake.libs.model
- */
- class Aco extends AclNode {
- /**
- * Model name
- *
- * @var string
- * @access public
- */
- public $name = 'Aco';
- /**
- * Binds to ARO nodes through permissions settings
- *
- * @var array
- * @access public
- */
- public $hasAndBelongsToMany = array('Aro' => array('with' => 'Permission'));
- }
- /**
- * Action for Access Control Object
- *
- * @package cake
- * @subpackage cake.cake.libs.model
- */
- class AcoAction extends AppModel {
- /**
- * Model name
- *
- * @var string
- * @access public
- */
- public $name = 'AcoAction';
- /**
- * ACO Actions belong to ACOs
- *
- * @var array
- * @access public
- */
- public $belongsTo = array('Aco');
- }
- /**
- * Access Request Object
- *
- * @package cake
- * @subpackage cake.cake.libs.model
- */
- class Aro extends AclNode {
- /**
- * Model name
- *
- * @var string
- * @access public
- */
- public $name = 'Aro';
- /**
- * AROs are linked to ACOs by means of Permission
- *
- * @var array
- * @access public
- */
- public $hasAndBelongsToMany = array('Aco' => array('with' => 'Permission'));
- }
- /**
- * Permissions linking AROs with ACOs
- *
- * @package cake
- * @subpackage cake.cake.libs.model
- */
- class Permission extends AppModel {
- /**
- * Model name
- *
- * @var string
- * @access public
- */
- public $name = 'Permission';
- /**
- * Explicitly disable in-memory query caching
- *
- * @var boolean
- * @access public
- */
- public $cacheQueries = false;
- /**
- * Override default table name
- *
- * @var string
- * @access public
- */
- public $useTable = 'aros_acos';
- /**
- * Permissions link AROs with ACOs
- *
- * @var array
- * @access public
- */
- public $belongsTo = array('Aro', 'Aco');
- /**
- * No behaviors for this model
- *
- * @var array
- * @access public
- */
- public $actsAs = null;
- /**
- * Constructor, used to tell this model to use the
- * database configured for ACL
- */
- public function __construct() {
- $config = Configure::read('Acl.database');
- if (!empty($config)) {
- $this->useDbConfig = $config;
- }
- parent::__construct();
- }
- }
- ?>