Account Suspended
Account Suspended
This Account has been suspended.
Contact your hosting provider for more information.
 All Data Structures Functions Variables Pages
ControllerSecurityUtil.php
1 <?php
2  /*********************************************************************************
3  * Zurmo is a customer relationship management program developed by
4  * Zurmo, Inc. Copyright (C) 2017 Zurmo Inc.
5  *
6  * Zurmo is free software; you can redistribute it and/or modify it under
7  * the terms of the GNU Affero General Public License version 3 as published by the
8  * Free Software Foundation with the addition of the following permission added
9  * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
10  * IN WHICH THE COPYRIGHT IS OWNED BY ZURMO, ZURMO DISCLAIMS THE WARRANTY
11  * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
12  *
13  * Zurmo is distributed in the hope that it will be useful, but WITHOUT
14  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
15  * FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
16  * details.
17  *
18  * You should have received a copy of the GNU Affero General Public License along with
19  * this program; if not, see http://www.gnu.org/licenses or write to the Free
20  * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
21  * 02110-1301 USA.
22  *
23  * You can contact Zurmo, Inc. with a mailing address at 27 North Wacker Drive
24  * Suite 370 Chicago, IL 60606. or at email address contact@zurmo.com.
25  *
26  * The interactive user interfaces in original and modified versions
27  * of this program must display Appropriate Legal Notices, as required under
28  * Section 5 of the GNU Affero General Public License version 3.
29  *
30  * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
31  * these Appropriate Legal Notices must retain the display of the Zurmo
32  * logo and Zurmo copyright notice. If the display of the logo is not reasonably
33  * feasible for technical reasons, the Appropriate Legal Notices must display the words
34  * "Copyright Zurmo Inc. 2017. All rights reserved".
35  ********************************************************************************/
36 
41  {
47  public static function doesCurrentUserHavePermissionOnSecurableItem($securableItem, $permissionToCheck)
48  {
49  assert('$permissionToCheck == Permission::READ || $permissionToCheck == Permission::WRITE ||
50  $permissionToCheck == Permission::DELETE');
51  if (!$securableItem instanceof SecurableItem)
52  {
53  return true;
54  }
55  try
56  {
57  $securableItem->checkPermissionsHasAnyOf($permissionToCheck);
58  return true;
59  }
61  {
62  return false;
63  }
64  }
65 
78  public static function resolveAccessCanCurrentUserReadModel(RedBeanModel $model, $fromAjax = false)
79  {
81  {
82  return;
83  }
84  static::processAccessFailure($fromAjax);
85  Yii::app()->end(0, false);
86  }
87 
94  public static function resolveAccessCanCurrentUserWriteModel(RedBeanModel $model, $fromAjax = false)
95  {
97  {
98  return;
99  }
100  static::processAccessFailure($fromAjax);
101  Yii::app()->end(0, false);
102  }
103 
110  public static function resolveAccessCanCurrentUserDeleteModel(RedBeanModel $model, $fromAjax = false)
111  {
113  {
114  return;
115  }
116  static::processAccessFailure($fromAjax);
117  Yii::app()->end(0, false);
118  }
119 
126  public static function resolveAccessCanCurrentUserWriteModule($moduleClassName, $fromAjax = false)
127  {
128  assert('is_string($moduleClassName)');
129  $item = NamedSecurableItem::getByName($moduleClassName);
131  {
132  return;
133  }
134  static::processAccessFailure($fromAjax);
135  Yii::app()->end(0, false);
136  }
137 
142  public static function resolveCanCurrentUserAccessModule($moduleClassName, $fromAjax = false)
143  {
144  assert('is_string($moduleClassName)');
145  if (RightsUtil::canUserAccessModule($moduleClassName, Yii::app()->user->userModel))
146  {
147  return;
148  }
149  static::processAccessFailure($fromAjax);
150  Yii::app()->end(0, false);
151  }
152 
153  protected static function processAccessFailure($fromAjax = false, $nonAjaxFailureMessageContent = null)
154  {
155  static::renderAccessFailureContent($fromAjax, $nonAjaxFailureMessageContent);
156  }
157 
158  protected static function renderAccessFailureContent($fromAjax = false, $nonAjaxFailureMessageContent = null)
159  {
160  if ($fromAjax)
161  {
162  $messageView = new AccessFailureAjaxView();
163  $view = new AjaxPageView($messageView);
164  }
165  else
166  {
167  $messageView = new AccessFailureView($nonAjaxFailureMessageContent);
168  $view = new AccessFailurePageView($messageView);
169  }
170  echo $view->render();
171  }
172  }
173 ?>
static doesCurrentUserHavePermissionOnSecurableItem($securableItem, $permissionToCheck)
static resolveAccessCanCurrentUserDeleteModel(RedBeanModel $model, $fromAjax=false)
static resolveCanCurrentUserAccessModule($moduleClassName, $fromAjax=false)
static resolveAccessCanCurrentUserReadModel(RedBeanModel $model, $fromAjax=false)
static canUserAccessModule($moduleClassName, $user)
Definition: RightsUtil.php:103
static resolveAccessCanCurrentUserWriteModule($moduleClassName, $fromAjax=false)
static resolveAccessCanCurrentUserWriteModel(RedBeanModel $model, $fromAjax=false)
Generated on Mon Aug 3 2020 07:10:36
Account Suspended
Account Suspended
This Account has been suspended.
Contact your hosting provider for more information.