concrete5 /web/concrete/core/models/permission/keys/custom/view_user_attributes.php

Language PHP Lines 94
MD5 Hash 064f1a078e7fcef9d144ce7ce13e570f
Repository https://github.com/glockops/concrete5.git View Raw File
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
<?
defined('C5_EXECUTE') or die("Access Denied.");

class Concrete5_Model_ViewUserAttributesUserPermissionKey extends UserPermissionKey  {

	protected function getAllowedAttributeKeyIDs($list = false) {
		if (!$list) {
			$u = new User();
			$accessEntities = $u->getUserAccessEntityObjects();
			$list = $this->getAccessListItems(UserPermissionKey::ACCESS_TYPE_ALL, $accessEntities);
			$list = PermissionDuration::filterByActive($list);
		}
		
		$db = Loader::db();
		$allakIDs = $db->GetCol('select akID from UserAttributeKeys');
		$akIDs = array();
		foreach($list as $l) {
			if ($l->getAttributesAllowedPermission() == 'N') {
				$akIDs = array();
			}
			if ($l->getAttributesAllowedPermission() == 'C') {
				if ($l->getAccessType() == PermissionKey::ACCESS_TYPE_EXCLUDE) {
					$akIDs = array_values(array_diff($akIDs, $l->getAttributesAllowedArray()));
				} else { 
					$akIDs = array_unique(array_merge($akIDs, $l->getAttributesAllowedArray()));
				}
			}
			if ($l->getAttributesAllowedPermission() == 'A') {
				$akIDs = $allakIDs;
			}
		}
		
		return $akIDs;
	}
	
	
	public function getMyAssignment() {
		$u = new User();
		$asl = new ViewUserAttributesUserPermissionAssignment();
		if ($u->isSuperUser()) {
			$asl->setAttributesAllowedPermission('A');
			return $asl;
		}

		$pae = $this->getPermissionAccessObject();
		if (!is_object($pae)) {
			return $asl;
		}
		
		$accessEntities = $u->getUserAccessEntityObjects();
		$accessEntities = $pae->validateAndFilterAccessEntities($accessEntities);
		$list = $this->getAccessListItems(UserPermissionKey::ACCESS_TYPE_ALL, $accessEntities);
		$list = PermissionDuration::filterByActive($list);

		foreach($list as $l) {
			if ($l->getAttributesAllowedPermission() == 'N') {
				$asl->setAttributesAllowedPermission('N');
			}

			if ($l->getAttributesAllowedPermission() == 'C') {
				$asl->setAttributesAllowedPermission('C');
			}

			if ($l->getAttributesAllowedPermission() == 'A') {
				$asl->setAttributesAllowedPermission('A');
			}
		}	
		
		$asl->setAttributesAllowedArray($this->getAllowedAttributeKeyIDs($list));
		return $asl;
	}
	
	public function validate($obj = false) {
		$u = new User();
		if ($u->isSuperUser()) {
			return true;
		}

		$types = $this->getAllowedAttributeKeyIDs();
		if ($obj != false) {
			if (is_object($obj)) {
				$akID = $obj->getAttributeKeyID();
			} else {
				$akID = $obj;
			}
			return in_array($akID, $types);
		} else {
			return count($types) > 0;
		}
	}	

	
}
Back to Top