/
ViewUserAttributesUserAccess.php
89 lines (80 loc) · 4.47 KB
/
ViewUserAttributesUserAccess.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
<?php
namespace Concrete\Core\Permission\Access;
use Database;
use Concrete\Core\Permission\Key\Key as PermissionKey;
class ViewUserAttributesUserAccess extends UserAccess
{
public function save($args = array())
{
parent::save();
$db = Database::connection();
$db->executeQuery('delete from UserPermissionViewAttributeAccessList where paID = ?', array($this->getPermissionAccessID()));
$db->executeQuery('delete from UserPermissionViewAttributeAccessListCustom where paID = ?', array($this->getPermissionAccessID()));
if (isset($args['viewAttributesIncluded']) && is_array($args['viewAttributesIncluded'])) {
foreach ($args['viewAttributesIncluded'] as $peID => $permission) {
$v = array($this->getPermissionAccessID(), $peID, $permission);
$db->executeQuery('insert into UserPermissionViewAttributeAccessList (paID, peID, permission) values (?, ?, ?)', $v);
}
}
if (isset($args['viewAttributesExcluded']) && is_array($args['viewAttributesExcluded'])) {
foreach ($args['viewAttributesExcluded'] as $peID => $permission) {
$v = array($this->getPermissionAccessID(), $peID, $permission);
$db->executeQuery('insert into UserPermissionViewAttributeAccessList (paID, peID, permission) values (?, ?, ?)', $v);
}
}
if (isset($args['akIDInclude']) && is_array($args['akIDInclude'])) {
foreach ($args['akIDInclude'] as $peID => $akIDs) {
foreach ($akIDs as $akID) {
$v = array($this->getPermissionAccessID(), $peID, $akID);
$db->executeQuery('insert into UserPermissionViewAttributeAccessListCustom (paID, peID, akID) values (?, ?, ?)', $v);
}
}
}
if (isset($args['akIDExclude']) && is_array($args['akIDExclude'])) {
foreach ($args['akIDExclude'] as $peID => $akIDs) {
foreach ($akIDs as $akID) {
$v = array($this->getPermissionAccessID(), $peID, $akID);
$db->executeQuery('insert into UserPermissionViewAttributeAccessListCustom (paID, peID, akID) values (?, ?, ?)', $v);
}
}
}
}
public function duplicate($newPA = false)
{
$newPA = parent::duplicate($newPA);
$db = Database::connection();
$r = $db->executeQuery('select * from UserPermissionViewAttributeAccessList where paID = ?', array($this->getPermissionAccessID()));
while ($row = $r->fetch()) {
$v = array($row['peID'], $newPA->getPermissionAccessID(), $row['permission']);
$db->executeQuery('insert into UserPermissionViewAttributeAccessList (peID, paID, permission) values (?, ?, ?)', $v);
}
$r = $db->executeQuery('select * from UserPermissionViewAttributeAccessListCustom where paID = ?', array($this->getPermissionAccessID()));
while ($row = $r->fetch()) {
$v = array($row['peID'], $newPA->getPermissionAccessID(), $row['akID']);
$db->executeQuery('insert into UserPermissionViewAttributeAccessListCustom (peID, paID, akID) values (?, ?, ?)', $v);
}
return $newPA;
}
public function getAccessListItems($accessType = PermissionKey::ACCESS_TYPE_INCLUDE, $filterEntities = array(), $checkCache = true)
{
$db = Database::connection();
$list = parent::getAccessListItems($accessType, $filterEntities);
foreach ($list as $l) {
$pe = $l->getAccessEntityObject();
if (isset($this->permissionObjectToCheck) && ($this->permissionObjectToCheck instanceof Page) && ($l->getAccessType() == PermissionKey::ACCESS_TYPE_INCLUDE)) {
$permission = 'A';
} else {
$permission = $db->fetchColumn('select permission from UserPermissionViewAttributeAccessList where paID = ? and peID = ?', array($l->getPermissionAccessID(), $pe->getAccessEntityID()));
if ($permission != 'N' && $permission != 'C') {
$permission = 'A';
}
}
$l->setAttributesAllowedPermission($permission);
if ($permission == 'C') {
$akIDs = $db->GetCol('select akID from UserPermissionViewAttributeAccessListCustom where paID = ? and peID = ?', array($l->getPermissionAccessID(), $pe->getAccessEntityID()));
$l->setAttributesAllowedArray($akIDs);
}
}
return $list;
}
}