mirror of
https://github.com/kamilwylegala/cakephp2-php8.git
synced 2025-01-22 12:36:16 +00:00
677a39a445
Revision: [1761] Removing old db_acl.sql Revision: [1759] Removed unneeded calls to uses(). Changed basics.php listClasses() no longer using folder class. Starting corrections in DboPostgres class. Adding missing DboPostgres::query(). Added missing doc blocks to AjaxHelper. Fixed undefined keys in FormHelper::generateFields() Reformatted FormHelper::generateFields() adding open and close brackets where needed Revision: [1758] Fixed typo Revision: [1757] Fixed errors found when using PHP 4. Fixed a scaffold error Revision: [1756] Merging changes to model_php4.php Revision: [1755] Fixed scaffolding for the changes made to the model. Fixed Model::isForeignKey(), replaced array_key_exists with in_array, other function was failing Revision: [1754] Committing changes from bundt model to beta. DataSources will not be in the beta release Revision: [1751] Cleaning up a little more in the code. Removing loading of log.php unless it is really needed. Refactored dispatcher to speed up the stripslashes code if it is called Revision: [1748] removing all references to error_messages and deleting the file Revision: [1747] updated more error messages Revision: [1746] removing all error message defines Revision: [1745] added _() method from 1.0 to basics.php only used to return string right now Revision: [1744] Adding fix for ticket #220 Revision: [1743] More work on ErrorHandler class Revision: [1742] Renaming error view for missing database connection Revision: [1741] More work on ErrorHandler class Revision: [1740] More work on error class Revision: [1739] Replacing all $_SERVER variable check with env() in basics.php Revision: [1738] Adding env() to basic Revision: [1737] Updated session to use env() Revision: [1736] Removing ternary operators from Dispatcher Revision: [1735] Per nates request I am rolling back ACL to [1373] Revision: [1734] Removed the IP in the session class this was not very reliable. Added a time setting that generates current time adding the Security::inactiveMins() to the session Removed code that was added to basics.php to replace gethostbyaddr(). Added CAKE_SESSION_STRING define to core.php which is used in the by the Session class to generate a hashed key. Revision: [1733] Moving errors messages to ErrorHandler class. Updating errors view for use with new class. Updating Scaffold to use new class. Updated Dispatcher to use new class. Removing methods from Object class Revision: [1732] Adding ErrorHandler class Revision: [1731] Adding fix for Ticket #223 git-svn-id: https://svn.cakephp.org/repo/trunk/cake@1762 3807eeeb-6ff5-0310-8944-8be069107fe0
351 lines
No EOL
8.1 KiB
PHP
351 lines
No EOL
8.1 KiB
PHP
<?php
|
|
/* SVN FILE: $Id$ */
|
|
|
|
/**
|
|
* This is core configuration file.
|
|
*
|
|
* Use it to configure core behaviour ofCake.
|
|
*
|
|
* PHP versions 4 and 5
|
|
*
|
|
* CakePHP : Rapid Development Framework <http://www.cakephp.org/>
|
|
* Copyright (c) 2005, Cake Software Foundation, Inc.
|
|
* 1785 E. Sahara Avenue, Suite 490-204
|
|
* Las Vegas, Nevada 89104
|
|
*
|
|
* Licensed under The MIT License
|
|
* Redistributions of files must retain the above copyright notice.
|
|
*
|
|
* @filesource
|
|
* @copyright Copyright (c) 2005, Cake Software Foundation, Inc.
|
|
* @link http://www.cakefoundation.org/projects/info/cakephp CakePHP Project
|
|
* @package cake
|
|
* @subpackage cake.cake.app.controllers.componenets.dbacl
|
|
* @since CakePHP v 0.2.9
|
|
* @version $Revision$
|
|
* @modifiedby $LastChangedBy$
|
|
* @lastmodified $Date$
|
|
* @license http://www.opensource.org/licenses/mit-license.php The MIT License
|
|
*/
|
|
|
|
uses('inflector');
|
|
uses('controller'.DS.'components'.DS.'acl_base');
|
|
uses('controller'.DS.'components'.DS.'dbacl'.DS.'models'.DS.'aclnode');
|
|
uses('controller'.DS.'components'.DS.'dbacl'.DS.'models'.DS.'aco');
|
|
uses('controller'.DS.'components'.DS.'dbacl'.DS.'models'.DS.'acoaction');
|
|
uses('controller'.DS.'components'.DS.'dbacl'.DS.'models'.DS.'aro');
|
|
uses('controller'.DS.'components'.DS.'dbacl'.DS.'models'.DS.'aros_aco');
|
|
|
|
/**
|
|
* In this file you can extend the AclBase.
|
|
*
|
|
* @package cake
|
|
* @subpackage cake.cake.app.controllers.components.dbacl
|
|
*/
|
|
|
|
class DB_ACL extends AclBase
|
|
{
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
*/
|
|
function __construct()
|
|
{
|
|
|
|
}
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
* @param unknown_type $aro
|
|
* @param unknown_type $aco
|
|
* @param unknown_type $action
|
|
* @return unknown
|
|
*/
|
|
function check($aro, $aco, $action = "*")
|
|
{
|
|
|
|
$Perms = new ArosAco();
|
|
$Aro = new Aro();
|
|
$Aco = new Aco();
|
|
|
|
if($aro == null || $aco == null)
|
|
{
|
|
return false;
|
|
}
|
|
|
|
$permKeys = $this->_getAcoKeys($Perms->loadInfo());
|
|
$aroPath = $Aro->getPath($aro);
|
|
$tmpAcoPath = $Aco->getPath($aco);
|
|
$acoPath = array();
|
|
|
|
if($action != '*' && !in_array($permKeys, '_' . $action))
|
|
{
|
|
trigger_error('ACO permissions key "' . $action . '" does not exist in DB_ACL::check()', E_USER_ERROR);
|
|
}
|
|
|
|
foreach($tmpAcoPath as $a)
|
|
{
|
|
$acoPath[] = $a['Aco']['id'];
|
|
}
|
|
$acoPath = implode(", ", $acoPath);
|
|
|
|
for($i = count($aroPath) - 1; $i >= 0; $i--)
|
|
{
|
|
$perms = $Perms->findBySql("select aros_acos.* from aros_acos left join acos on aros_acos.aco_id = acos.id where aros_acos.aro_id = " . $aroPath[$i]['Aro']['id'] . " and aros_acos.aco_id in ({$acoPath}) order by acos.lft asc");
|
|
if($perms == null || count($perms) == 0)
|
|
{
|
|
continue;
|
|
}
|
|
else
|
|
{
|
|
foreach($perms as $perm)
|
|
{
|
|
if($action == '*')
|
|
{
|
|
// ARO must be cleared for ALL ACO actions
|
|
foreach($permKeys as $key)
|
|
{
|
|
if(isset($perm['aros_acos']))
|
|
{
|
|
if($perm['aros_acos'][$key] != 1)
|
|
{
|
|
return false;
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
else
|
|
{
|
|
switch($perm['aros_acos']['_' . $action])
|
|
{
|
|
case -1:
|
|
return false;
|
|
case 0:
|
|
continue;
|
|
break;
|
|
case 1:
|
|
return true;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Allow
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function allow($aro, $aco, $action = "*", $value = 1)
|
|
{
|
|
$Perms = new ArosAco();
|
|
$perms = $this->getAclLink($aro, $aco);
|
|
$permKeys = $this->_getAcoKeys($Perms->loadInfo());
|
|
$save = array();
|
|
|
|
|
|
if($perms == false)
|
|
{
|
|
// One of the nodes does not exist
|
|
return false;
|
|
}
|
|
|
|
if(isset($perms[0]))
|
|
{
|
|
$save = $perms[0]['aros_acos'];
|
|
}
|
|
|
|
if($action == "*")
|
|
{
|
|
$permKeys = $this->_getAcoKeys($Perms->loadInfo());
|
|
foreach($permKeys as $key)
|
|
{
|
|
$save[$key] = $value;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
if(in_array('_' . $action, $permKeys))
|
|
{
|
|
$save['_' . $action] = $value;
|
|
}
|
|
else
|
|
{
|
|
// Raise an error
|
|
return false;
|
|
}
|
|
}
|
|
|
|
$save['aro_id'] = $perms['aro'];
|
|
$save['aco_id'] = $perms['aco'];
|
|
|
|
if($perms['link'] != null && count($perms['link']) > 0)
|
|
{
|
|
$save['id'] = $perms['link'][0]['aros_acos']['id'];
|
|
}
|
|
//return $Perms->save(array('ArosAco' => $save));
|
|
|
|
if(isset($save['id']))
|
|
{
|
|
$q = 'update aros_acos set ';
|
|
$saveKeys = array();
|
|
foreach($save as $key => $val)
|
|
{
|
|
if($key != 'id')
|
|
{
|
|
$saveKeys[] = $key . ' = ' . $val;
|
|
}
|
|
}
|
|
$q .= implode(', ', $saveKeys) . ' where id = ' . $save['id'];
|
|
}
|
|
else
|
|
{
|
|
$q = 'insert into aros_acos (' . implode(', ', array_keys($save)) . ') values (' . implode(', ', $save) . ')';
|
|
}
|
|
|
|
$Perms->db->query($q);
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Deny
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function deny($aro, $aco, $action = "*")
|
|
{
|
|
return $this->allow($aro, $aco, $action, -1);
|
|
}
|
|
|
|
/**
|
|
* Inherit
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function inherit($aro, $aco, $action = "*")
|
|
{
|
|
return $this->allow($aro, $aco, $action, 0);
|
|
}
|
|
|
|
/**
|
|
* Allow alias
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function grant($aro, $aco, $action = "*")
|
|
{
|
|
return $this->allow($aro, $aco, $action);
|
|
}
|
|
|
|
/**
|
|
* Deny alias
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function revoke($aro, $aco, $action = "*")
|
|
{
|
|
return $this->deny($aro, $aco, $action);
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
* @param unknown_type $id
|
|
* @return unknown
|
|
*/
|
|
function getAro($id = null)
|
|
{
|
|
if($id == null)
|
|
{
|
|
// Raise error
|
|
}
|
|
$aro = new Aro();
|
|
$tmp = $aro->find(is_string($aro) ? "aros.alias = '" . addslashes($aro) . "'" : "aros.user_id = {$aro}");
|
|
$aro->setId($tmp['aro']['id']);
|
|
return $aro;
|
|
}
|
|
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
* @param unknown_type $id
|
|
* @return unknown
|
|
*/
|
|
function getAco($id = null)
|
|
{
|
|
if($id == null)
|
|
{
|
|
// Raise error
|
|
}
|
|
$aco = new Aco();
|
|
$tmp = $aco->find(is_string($aco) ? "acos.alias = '" . addslashes($aco) . "'" : "acos.user_id = {$aco}");
|
|
$aro->setId($tmp['aco']['id']);
|
|
return $aco;
|
|
}
|
|
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
* @param unknown_type $aro
|
|
* @param unknown_type $aco
|
|
* @return unknown
|
|
*/
|
|
function getAclLink($aro, $aco)
|
|
{
|
|
$Aro = new Aro();
|
|
$Aco = new Aco();
|
|
|
|
$qAro = (is_string($aro) ? "alias = '" . addslashes($aro) . "'" : "user_id = {$aro}");
|
|
$qAco = (is_string($aco) ? "alias = '" . addslashes($aco) . "'" : "object_id = {$aco}");
|
|
|
|
$obj = array();
|
|
$obj['Aro'] = $Aro->find($qAro);
|
|
$obj['Aco'] = $Aco->find($qAco);
|
|
$obj['Aro'] = $obj['Aro']['Aro'];
|
|
$obj['Aco'] = $obj['Aco']['Aco'];
|
|
|
|
if($obj['Aro'] == null || count($obj['Aro']) == 0 || $obj['Aco'] == null || count($obj['Aco']) == 0)
|
|
{
|
|
return false;
|
|
}
|
|
|
|
return array(
|
|
'aro' => $obj['Aro']['id'],
|
|
'aco' => $obj['Aco']['id'],
|
|
'link' => $Aro->findBySql("select * from aros_acos where aro_id = {$obj['Aro']['id']} and aco_id = {$obj['Aco']['id']}")
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Enter description here...
|
|
*
|
|
* @param unknown_type $keys
|
|
* @return unknown
|
|
*/
|
|
function _getAcoKeys($keys)
|
|
{
|
|
$newKeys = array();
|
|
$keys = $keys->value;
|
|
foreach($keys as $key)
|
|
{
|
|
if($key['name'] != 'id' && $key['name'] != 'aro_id' && $key['name'] != 'aco_id')
|
|
{
|
|
$newKeys[] = $key['name'];
|
|
}
|
|
}
|
|
return $newKeys;
|
|
}
|
|
|
|
}
|
|
|
|
?>
|