Jingga/oms-News
1
0
Fork 0
mirror of https://github.com/Karaka-Management/oms-News.git synced 2026-02-16 16:38:41 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

More permission implementations

Browse Source
This commit is contained in:
Dennis Eichhorn 2017-09-15 19:09:52 +02:00
parent 55566853bd
commit ec95df463d
2 changed files with 113 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

81
Controller.php
View File

@ -15,12 +15,16 @@ declare(strict_types=1);
namespace Modules\News; namespace Modules\News;
use Model\Message\FormValidation; use Model\Message\FormValidation;
use Modules\News\Models\BadgeMapper;
use Modules\News\Models\NewsArticle; use Modules\News\Models\NewsArticle;
use Modules\News\Models\NewsArticleMapper; use Modules\News\Models\NewsArticleMapper;
use Modules\News\Models\NewsStatus; use Modules\News\Models\NewsStatus;
use Modules\News\Models\NewsType; use Modules\News\Models\NewsType;
use Modules\News\Models\PermissionState;
use phpOMS\Account\Account; use phpOMS\Account\Account;
use phpOMS\Account\PermissionType;
use phpOMS\Localization\ISO639Enum; use phpOMS\Localization\ISO639Enum;
use phpOMS\Message\Http\RequestStatusCode;
use phpOMS\Message\RequestAbstract; use phpOMS\Message\RequestAbstract;
use phpOMS\Message\ResponseAbstract; use phpOMS\Message\ResponseAbstract;
use phpOMS\Module\ModuleAbstract; use phpOMS\Module\ModuleAbstract;
@ -64,6 +68,14 @@ class Controller extends ModuleAbstract implements WebInterface
*/ */
/* public */ const MODULE_NAME = 'News'; /* public */ const MODULE_NAME = 'News';
/**
* Module id.
*
* @var int
* @since 1.0.0
*/
/* public */ const MODULE_ID = 1000600000;
/** /**
* Providing. * Providing.
* *
@ -93,6 +105,14 @@ class Controller extends ModuleAbstract implements WebInterface
public function viewNewsDashboard(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable public function viewNewsDashboard(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable
{ {
$view = new View($this->app, $request, $response); $view = new View($this->app, $request, $response);
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::READ, 1, $this->app->appName, self::MODULE_ID, PermissionState::DASHBOARD)
) {
$view->setTemplate('/Web/Backend/Error/403_inline');
return $view;
}
$view->setTemplate('/Modules/News/Theme/Backend/news-dashboard'); $view->setTemplate('/Modules/News/Theme/Backend/news-dashboard');
$view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response)); $view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response));
@ -125,10 +145,21 @@ class Controller extends ModuleAbstract implements WebInterface
public function viewNewsArticle(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable public function viewNewsArticle(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable
{ {
$view = new View($this->app, $request, $response); $view = new View($this->app, $request, $response);
$article = NewsArticleMapper::get((int) $request->getData('id'));
$accountId = $request->getHeader()->getAccount();
if (!$article->getCreatedBy()->getId() === $accountId
|| !$this->app->accountManager->get($accountId)->hasPermission(
PermissionType::READ, 1, $this->app->appName, self::MODULE_ID, PermissionState::ARTICLE, $article->getId())
) {
$view->setTemplate('/Web/Backend/Error/403_inline');
return $view;
}
$view->setTemplate('/Modules/News/Theme/Backend/news-single'); $view->setTemplate('/Modules/News/Theme/Backend/news-single');
$view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response)); $view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response));
$article = NewsArticleMapper::get((int) $request->getData('id'));
$view->addData('news', $article); $view->addData('news', $article);
return $view; return $view;
@ -146,6 +177,14 @@ class Controller extends ModuleAbstract implements WebInterface
public function viewNewsArchive(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable public function viewNewsArchive(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable
{ {
$view = new View($this->app, $request, $response); $view = new View($this->app, $request, $response);
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::READ, 1, $this->app->appName, self::MODULE_ID, PermissionState::ARCHIVE)
) {
$view->setTemplate('/Web/Backend/Error/403_inline');
return $view;
}
$view->setTemplate('/Modules/News/Theme/Backend/news-archive'); $view->setTemplate('/Modules/News/Theme/Backend/news-archive');
$view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response)); $view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response));
@ -167,6 +206,14 @@ class Controller extends ModuleAbstract implements WebInterface
public function viewNewsCreate(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable public function viewNewsCreate(RequestAbstract $request, ResponseAbstract $response, $data = null) : \Serializable
{ {
$view = new View($this->app, $request, $response); $view = new View($this->app, $request, $response);
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::CREATE, 1, $this->app->appName, self::MODULE_ID, PermissionState::ARTICLE)
) {
$view->setTemplate('/Web/Backend/Error/403_inline');
return $view;
}
$view->setTemplate('/Modules/News/Theme/Backend/news-create'); $view->setTemplate('/Modules/News/Theme/Backend/news-create');
$view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response)); $view->addData('nav', $this->app->moduleManager->get('Navigation')->createNavigationMid(1000701001, $request, $response));
@ -210,6 +257,13 @@ class Controller extends ModuleAbstract implements WebInterface
*/ */
public function apiNewsCreate(RequestAbstract $request, ResponseAbstract $response, $data = null) public function apiNewsCreate(RequestAbstract $request, ResponseAbstract $response, $data = null)
{ {
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::CREATE, 1, $this->app->appName, self::MODULE_ID, PermissionState::ARTICLE)
) {
$response->set('news_create', null);
$response->getHeader()->setStatusCode(RequestStatusCode::R_403);
}
if (!empty($val = $this->validateNewsCreate($request))) { if (!empty($val = $this->validateNewsCreate($request))) {
$response->set('news_create', new FormValidation($val)); $response->set('news_create', new FormValidation($val));
@ -262,6 +316,13 @@ class Controller extends ModuleAbstract implements WebInterface
*/ */
public function apiBadgeCreate(RequestAbstract $request, ResponseAbstract $response, $data = null) public function apiBadgeCreate(RequestAbstract $request, ResponseAbstract $response, $data = null)
{ {
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::CREATE, 1, $this->app->appName, self::MODULE_ID, PermissionState::BADGE)
) {
$response->set('badge_create', null);
$response->getHeader()->setStatusCode(RequestStatusCode::R_403);
}
if (!empty($val = $this->validateBadgeCreate($request))) { if (!empty($val = $this->validateBadgeCreate($request))) {
$response->set('badge_create', new FormValidation($val)); $response->set('badge_create', new FormValidation($val));
@ -336,13 +397,27 @@ class Controller extends ModuleAbstract implements WebInterface
public function apiDeleteNewsArticle(RequestAbstract $request, ResponseAbstract $response, $data = null) public function apiDeleteNewsArticle(RequestAbstract $request, ResponseAbstract $response, $data = null)
{ {
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::DELETE, 1, $this->app->appName, self::MODULE_ID, PermissionState::ARTICLE)
) {
$response->set('news_delete', null);
$response->getHeader()->setStatusCode(RequestStatusCode::R_403);
}
NewsArticleMapper::delete((int) $request->getData('id')); NewsArticleMapper::delete((int) $request->getData('id'));
$response->set('news', (int) $request->getData('id')); $response->set('news_delete', (int) $request->getData('id'));
} }
public function apiDeleteNewsBadge(RequestAbstract $request, ResponseAbstract $response, $data = null) public function apiDeleteNewsBadge(RequestAbstract $request, ResponseAbstract $response, $data = null)
{ {
if (!$this->app->accountManager->get($request->getHeader()->getAccount())->hasPermission(
PermissionType::DELETE, 1, $this->app->appName, self::MODULE_ID, PermissionState::BADGE)
) {
$response->set('badge_delete', null);
$response->getHeader()->setStatusCode(RequestStatusCode::R_403);
}
BadgeMapper::delete((int) $request->getData('id')); BadgeMapper::delete((int) $request->getData('id'));
$response->set('badge', (int) $request->getData('id')); $response->set('badge_delete', (int) $request->getData('id'));
} }
} }

35
Models/PermissionState.php Normal file
View File

@ -0,0 +1,35 @@
<?php
/**
* Orange Management
*
* PHP Version 7.1
*
* @category TBD
* @package TBD
* @copyright Dennis Eichhorn
* @license OMS License 1.0
* @version 1.0.0
* @link http://orange-management.com
*/
declare(strict_types=1);
namespace Modules\News\Models;
use phpOMS\Stdlib\Base\Enum;
/**
* Task priority enum.
*
* @category Tasks
* @package Modules
* @license OMS License 1.0
* @link http://orange-management.com
* @since 1.0.0
*/
abstract class PermissionState extends Enum
{
/* public */ const DASHBOARD = 1;
/* public */ const ARCHIVE = 2;
/* public */ const ARTICLE = 3;
/* public */ const BADGE = 4;
}