/web/concrete/core/models/permission/keys/custom/view_user_attributes.php
PHP | 93 lines | 77 code | 16 blank | 0 comment | 24 complexity | 064f1a078e7fcef9d144ce7ce13e570f MD5 | raw file
Possible License(s): MIT, LGPL-2.1, BSD-3-Clause
- <?
- defined('C5_EXECUTE') or die("Access Denied.");
-
- class Concrete5_Model_ViewUserAttributesUserPermissionKey extends UserPermissionKey {
-
- protected function getAllowedAttributeKeyIDs($list = false) {
- if (!$list) {
- $u = new User();
- $accessEntities = $u->getUserAccessEntityObjects();
- $list = $this->getAccessListItems(UserPermissionKey::ACCESS_TYPE_ALL, $accessEntities);
- $list = PermissionDuration::filterByActive($list);
- }
-
- $db = Loader::db();
- $allakIDs = $db->GetCol('select akID from UserAttributeKeys');
- $akIDs = array();
- foreach($list as $l) {
- if ($l->getAttributesAllowedPermission() == 'N') {
- $akIDs = array();
- }
- if ($l->getAttributesAllowedPermission() == 'C') {
- if ($l->getAccessType() == PermissionKey::ACCESS_TYPE_EXCLUDE) {
- $akIDs = array_values(array_diff($akIDs, $l->getAttributesAllowedArray()));
- } else {
- $akIDs = array_unique(array_merge($akIDs, $l->getAttributesAllowedArray()));
- }
- }
- if ($l->getAttributesAllowedPermission() == 'A') {
- $akIDs = $allakIDs;
- }
- }
-
- return $akIDs;
- }
-
-
- public function getMyAssignment() {
- $u = new User();
- $asl = new ViewUserAttributesUserPermissionAssignment();
- if ($u->isSuperUser()) {
- $asl->setAttributesAllowedPermission('A');
- return $asl;
- }
-
- $pae = $this->getPermissionAccessObject();
- if (!is_object($pae)) {
- return $asl;
- }
-
- $accessEntities = $u->getUserAccessEntityObjects();
- $accessEntities = $pae->validateAndFilterAccessEntities($accessEntities);
- $list = $this->getAccessListItems(UserPermissionKey::ACCESS_TYPE_ALL, $accessEntities);
- $list = PermissionDuration::filterByActive($list);
-
- foreach($list as $l) {
- if ($l->getAttributesAllowedPermission() == 'N') {
- $asl->setAttributesAllowedPermission('N');
- }
-
- if ($l->getAttributesAllowedPermission() == 'C') {
- $asl->setAttributesAllowedPermission('C');
- }
-
- if ($l->getAttributesAllowedPermission() == 'A') {
- $asl->setAttributesAllowedPermission('A');
- }
- }
-
- $asl->setAttributesAllowedArray($this->getAllowedAttributeKeyIDs($list));
- return $asl;
- }
-
- public function validate($obj = false) {
- $u = new User();
- if ($u->isSuperUser()) {
- return true;
- }
-
- $types = $this->getAllowedAttributeKeyIDs();
- if ($obj != false) {
- if (is_object($obj)) {
- $akID = $obj->getAttributeKeyID();
- } else {
- $akID = $obj;
- }
- return in_array($akID, $types);
- } else {
- return count($types) > 0;
- }
- }
-
-
- }