Account Suspended
Account Suspended
This Account has been suspended.
Contact your hosting provider for more information.
 All Data Structures Functions Variables Pages
ActionSecurityUtil.php
1 <?php
2  /*********************************************************************************
3  * Zurmo is a customer relationship management program developed by
4  * Zurmo, Inc. Copyright (C) 2017 Zurmo Inc.
5  *
6  * Zurmo is free software; you can redistribute it and/or modify it under
7  * the terms of the GNU Affero General Public License version 3 as published by the
8  * Free Software Foundation with the addition of the following permission added
9  * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
10  * IN WHICH THE COPYRIGHT IS OWNED BY ZURMO, ZURMO DISCLAIMS THE WARRANTY
11  * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
12  *
13  * Zurmo is distributed in the hope that it will be useful, but WITHOUT
14  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
15  * FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
16  * details.
17  *
18  * You should have received a copy of the GNU Affero General Public License along with
19  * this program; if not, see http://www.gnu.org/licenses or write to the Free
20  * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
21  * 02110-1301 USA.
22  *
23  * You can contact Zurmo, Inc. with a mailing address at 27 North Wacker Drive
24  * Suite 370 Chicago, IL 60606. or at email address contact@zurmo.com.
25  *
26  * The interactive user interfaces in original and modified versions
27  * of this program must display Appropriate Legal Notices, as required under
28  * Section 5 of the GNU Affero General Public License version 3.
29  *
30  * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
31  * these Appropriate Legal Notices must retain the display of the Zurmo
32  * logo and Zurmo copyright notice. If the display of the logo is not reasonably
33  * feasible for technical reasons, the Appropriate Legal Notices must display the words
34  * "Copyright Zurmo Inc. 2017. All rights reserved".
35  ********************************************************************************/
36 
41  {
45  public static function canCurrentUserPerformAction($actionType, $model)
46  {
47  return self::canUserPerformAction($actionType, $model, Yii::app()->user->userModel);
48  }
49 
63  public static function canUserPerformAction($actionType, $model, $user)
64  {
65  assert('$user instanceof User && $user->id > 0');
66  assert('$actionType == null || is_string($actionType)');
67  if (!$model instanceof SecurableItem)
68  {
69  return true;
70  }
71  if ($actionType == null)
72  {
73  return true;
74  }
75 
77  $actionType,
78  $model,
79  $user);
80 
81  return $actionSecurity->canUserPerformAction();
82  }
83 
98  public static function resolveLinkToModelForCurrentUser(
99  $attributeString,
100  $model,
101  $moduleClassName,
102  $linkRoute,
103  $offset = null,
104  $additionalParams = array())
105  {
106  assert('is_string($attributeString)');
107  assert('$model instanceof Item');
108  assert('is_string($moduleClassName)');
109  assert('is_string($linkRoute)');
110  assert('$offset === null || is_int($offset)');
111  if ($model->id <= 0)
112  {
113  return null;
114  }
115  if (!ActionSecurityUtil::canCurrentUserPerformAction('Details', $model))
116  {
117  return null;
118  }
119  if (RightsUtil::canUserAccessModule($moduleClassName, Yii::app()->user->userModel))
120  {
121  $params = array("id" => $model->id);
122  if (is_array($additionalParams) && count($additionalParams) > 0)
123  {
124  $params = array_merge($params, $additionalParams);
125  }
126  if ($offset !== null)
127  {
128  $params['stickyOffset'] = $offset;
129  }
130  return ZurmoHtml::link($attributeString, Yii::app()->createUrl($linkRoute, $params));
131  }
132  return $attributeString;
133  }
134 
149  public static function resolveLinkToEditModelForCurrentUser(
150  $attributeString,
151  $model,
152  $moduleClassName,
153  $linkRoute,
154  $redirectUrl = null)
155  {
156  assert('is_string($attributeString)');
157  assert('$model instanceof Item');
158  assert('is_string($moduleClassName)');
159  assert('is_string($linkRoute)');
160  assert('is_string($redirectUrl) || $redirectUrl == null');
162  {
163  return null;
164  }
165  if (RightsUtil::canUserAccessModule($moduleClassName, Yii::app()->user->userModel))
166  {
167  return ZurmoHtml::link($attributeString,
168  Yii::app()->createUrl($linkRoute, array("id" => $model->id, 'redirectUrl' => $redirectUrl)));
169  }
170  return $attributeString;
171  }
172  }
173 ?>
static createActionSecurityFromActionType($actionType, $model, $user)
static resolveLinkToEditModelForCurrentUser($attributeString, $model, $moduleClassName, $linkRoute, $redirectUrl=null)
static canUserAccessModule($moduleClassName, $user)
Definition: RightsUtil.php:103
static canCurrentUserPerformAction($actionType, $model)
static resolveLinkToModelForCurrentUser($attributeString, $model, $moduleClassName, $linkRoute, $offset=null, $additionalParams=array())
static canUserPerformAction($actionType, $model, $user)
Generated on Thu Jul 2 2020 07:10:38
Account Suspended
Account Suspended
This Account has been suspended.
Contact your hosting provider for more information.