-
Notifications
You must be signed in to change notification settings - Fork 67
/
PermissionsModuleInstaller.php
135 lines (118 loc) · 4.42 KB
/
PermissionsModuleInstaller.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
<?php
declare(strict_types=1);
/*
* This file is part of the Zikula package.
*
* Copyright Zikula Foundation - https://ziku.la/
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
namespace Zikula\PermissionsModule;
use Exception;
use Zikula\Core\AbstractExtensionInstaller;
use Zikula\PermissionsModule\Entity\PermissionEntity;
use Zikula\PermissionsModule\Entity\Repository\PermissionRepository;
/**
* Installation and upgrade routines for the permissions module.
*/
class PermissionsModuleInstaller extends AbstractExtensionInstaller
{
public function install(): bool
{
// create the table
try {
$this->schemaTool->create([
PermissionEntity::class
]);
} catch (Exception $exception) {
return false;
}
$this->createDefaultData();
// Initialisation successful
return true;
}
public function upgrade(string $oldVersion): bool
{
// Upgrade dependent on old version number
switch ($oldVersion) {
case '1.1.1':
$lastPerm = $this->container->get(PermissionRepository::class)
->findOneBy([], ['sequence' => 'DESC']);
// allow access to non-html themes
$record = new PermissionEntity();
$record['gid'] = -1;
$record['sequence'] = $lastPerm->getSequence();
$record['realm'] = 0;
$record['component'] = 'ZikulaThemeModule::ThemeChange';
$record['instance'] = ':(ZikulaRssTheme|ZikulaPrinterTheme|ZikulaAtomTheme):';
$record['level'] = ACCESS_COMMENT; // 300
$record['bond'] = 0;
$this->entityManager->persist($record);
$lastPerm->setSequence($record->getSequence() + 1);
$this->entityManager->flush();
//$this->addFlash('success', $this->__('A permission rule was added to allow users access to "utility" themes. Please check the sequence.'));
case '1.1.2':
// future upgrade routines
}
// Update successful
return true;
}
public function uninstall(): bool
{
// Deletion not allowed
return false;
}
/**
* Create the default data for the Permissions module.
*/
public function createDefaultData(): void
{
// give administrator group full access to everything as top priority
$record = new PermissionEntity();
$record['gid'] = 2;
$record['sequence'] = 1;
$record['realm'] = 0;
$record['component'] = '.*';
$record['instance'] = '.*';
$record['level'] = ACCESS_ADMIN; // 800
$record['bond'] = 0;
$this->entityManager->persist($record);
// allow access to non-html themes
$record = new PermissionEntity();
$record['gid'] = -1;
$record['sequence'] = 2;
$record['realm'] = 0;
$record['component'] = 'ZikulaThemeModule::ThemeChange';
$record['instance'] = ':(ZikulaRssTheme|ZikulaPrinterTheme|ZikulaAtomTheme):';
$record['level'] = ACCESS_COMMENT; // 300
$record['bond'] = 0;
$this->entityManager->persist($record);
// give user group comment access to everything as second priority
$record = new PermissionEntity();
$record['gid'] = 1;
$record['sequence'] = 2;
$record['realm'] = 0;
$record['component'] = '.*';
$record['instance'] = '.*';
$record['level'] = ACCESS_COMMENT; // 300
$record['bond'] = 0;
$this->entityManager->persist($record);
// allow unregistered users only read access to everything as lowest priority
$record = new PermissionEntity();
$record['gid'] = 0;
$record['sequence'] = 3;
$record['realm'] = 0;
$record['component'] = '.*';
$record['instance'] = '.*';
$record['level'] = ACCESS_READ; // 200
$record['bond'] = 0;
$this->entityManager->persist($record);
$this->entityManager->flush();
$this->setVar('lockadmin', 1);
$this->setVar('adminid', 1);
$this->setVar('filter', 1);
$this->setVar('rowview', 25);
$this->setVar('rowedit', 35);
}
}