/web/concrete/core/models/permission/keys/custom/add_block.php
PHP | 62 lines | 53 code | 9 blank | 0 comment | 17 complexity | 1585c2ee65d960a927495709a41566b2 MD5 | raw file
Possible License(s): MIT, LGPL-2.1, BSD-3-Clause
- <?
- defined('C5_EXECUTE') or die("Access Denied.");
-
- class Concrete5_Model_AddBlockBlockTypePermissionKey extends BlockTypePermissionKey {
-
- protected function getAllowedBlockTypeIDs() {
-
- $u = new User();
- $pae = $this->getPermissionAccessObject();
- if (!is_object($pae)) {
- return array();
- }
- $accessEntities = $u->getUserAccessEntityObjects();
- $accessEntities = $pae->validateAndFilterAccessEntities($accessEntities);
- $list = $this->getAccessListItems(PermissionKey::ACCESS_TYPE_ALL, $accessEntities);
- $list = PermissionDuration::filterByActive($list);
-
- $db = Loader::db();
- $btIDs = array();
- if (count($list) > 0) {
- $dsh = Loader::helper('concrete/dashboard');
- if ($dsh->inDashboard()) {
- $allBTIDs = $db->GetCol('select btID from BlockTypes');
- } else {
- $allBTIDs = $db->GetCol('select btID from BlockTypes where btIsInternal = 0');
- }
- foreach($list as $l) {
- if ($l->getBlockTypesAllowedPermission() == 'N') {
- $btIDs = array();
- }
- if ($l->getBlockTypesAllowedPermission() == 'C') {
- if ($l->getAccessType() == PermissionKey::ACCESS_TYPE_EXCLUDE) {
- $btIDs = array_values(array_diff($btIDs, $l->getBlockTypesAllowedArray()));
- } else {
- $btIDs = array_unique(array_merge($btIDs, $l->getBlockTypesAllowedArray()));
- }
- }
- if ($l->getBlockTypesAllowedPermission() == 'A') {
- $btIDs = $allBTIDs;
- }
- }
- }
-
- return $btIDs;
- }
-
- public function validate($bt = false) {
- $u = new User();
- if ($u->isSuperUser()) {
- return true;
- }
-
- $types = $this->getAllowedBlockTypeIDs();
- if ($bt != false) {
- return in_array($bt->getBlockTypeID(), $types);
- } else {
- return count($types) > 0;
- }
- }
-
-
- }