• About
  • Mission Statement
  • Features
  • License
  • Commercial Editions
  • Contact Us
• Community
  • Blog
  • Forums
  • Translations
  • Events
  • Live Chat
• Development
  • Get Involved
  • Report a Bug
  • Roadmap
  • Continuous Integration
• Documentation
  • Wiki
  • Tutorials
  • Screencasts
  • Class Reference
  • Live Demo
• Download

• Facebook
• Twitter
• LinkedIn
• BitBucket
• Pivotal Tracker
• RSS

Search for:

/home/apizurmo/zurmo/app/protected/modules/zurmo/utils/security/ControllerSecurityUtil.php

<?php
    /*********************************************************************************
     * Zurmo is a customer relationship management program developed by
     * Zurmo, Inc. Copyright (C) 2017 Zurmo Inc.
     *
     * Zurmo is free software; you can redistribute it and/or modify it under
     * the terms of the GNU Affero General Public License version 3 as published by the
     * Free Software Foundation with the addition of the following permission added
     * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
     * IN WHICH THE COPYRIGHT IS OWNED BY ZURMO, ZURMO DISCLAIMS THE WARRANTY
     * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
     *
     * Zurmo is distributed in the hope that it will be useful, but WITHOUT
     * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
     * FOR A PARTICULAR PURPOSE.  See the GNU Affero General Public License for more
     * details.
     *
     * You should have received a copy of the GNU Affero General Public License along with
     * this program; if not, see http://www.gnu.org/licenses or write to the Free
     * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
     * 02110-1301 USA.
     *
     * You can contact Zurmo, Inc. with a mailing address at 27 North Wacker Drive
     * Suite 370 Chicago, IL 60606. or at email address contact@zurmo.com.
     *
     * The interactive user interfaces in original and modified versions
     * of this program must display Appropriate Legal Notices, as required under
     * Section 5 of the GNU Affero General Public License version 3.
     *
     * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
     * these Appropriate Legal Notices must retain the display of the Zurmo
     * logo and Zurmo copyright notice. If the display of the logo is not reasonably
     * feasible for technical reasons, the Appropriate Legal Notices must display the words
     * "Copyright Zurmo Inc. 2017. All rights reserved".
     ********************************************************************************/

    class ControllerSecurityUtil
    {
        public static function doesCurrentUserHavePermissionOnSecurableItem($securableItem, $permissionToCheck)
        {
            assert('$permissionToCheck == Permission::READ || $permissionToCheck == Permission::WRITE ||
                    $permissionToCheck == Permission::DELETE');
            if (!$securableItem instanceof SecurableItem)
            {
                return true;
            }
            try
            {
                $securableItem->checkPermissionsHasAnyOf($permissionToCheck);
                return true;
            }
            catch (AccessDeniedSecurityException $e)
            {
                return false;
            }
        }

        public static function resolveAccessCanCurrentUserReadModel(RedBeanModel $model, $fromAjax = false)
        {
            if (ControllerSecurityUtil::doesCurrentUserHavePermissionOnSecurableItem($model, Permission::READ))
            {
                return;
            }
            static::processAccessFailure($fromAjax);
            Yii::app()->end(0, false);
        }

        public static function resolveAccessCanCurrentUserWriteModel(RedBeanModel $model, $fromAjax = false)
        {
            if (ControllerSecurityUtil::doesCurrentUserHavePermissionOnSecurableItem($model, Permission::WRITE))
            {
                return;
            }
            static::processAccessFailure($fromAjax);
            Yii::app()->end(0, false);
        }

        public static function resolveAccessCanCurrentUserDeleteModel(RedBeanModel $model, $fromAjax = false)
        {
            if (ControllerSecurityUtil::doesCurrentUserHavePermissionOnSecurableItem($model, Permission::DELETE))
            {
                return;
            }
            static::processAccessFailure($fromAjax);
            Yii::app()->end(0, false);
        }

        public static function resolveAccessCanCurrentUserWriteModule($moduleClassName, $fromAjax = false)
        {
            assert('is_string($moduleClassName)');
            $item       = NamedSecurableItem::getByName($moduleClassName);
            if (ControllerSecurityUtil::doesCurrentUserHavePermissionOnSecurableItem($item, Permission::WRITE))
            {
                return;
            }
            static::processAccessFailure($fromAjax);
            Yii::app()->end(0, false);
        }

        public static function resolveCanCurrentUserAccessModule($moduleClassName, $fromAjax = false)
        {
            assert('is_string($moduleClassName)');
            if (RightsUtil::canUserAccessModule($moduleClassName, Yii::app()->user->userModel))
            {
                return;
            }
            static::processAccessFailure($fromAjax);
            Yii::app()->end(0, false);
        }

        protected static function processAccessFailure($fromAjax = false, $nonAjaxFailureMessageContent = null)
        {
            static::renderAccessFailureContent($fromAjax, $nonAjaxFailureMessageContent);
        }

        protected static function renderAccessFailureContent($fromAjax = false, $nonAjaxFailureMessageContent = null)
        {
            if ($fromAjax)
            {
                $messageView = new AccessFailureAjaxView();
                $view        = new AjaxPageView($messageView);
            }
            else
            {
                $messageView = new AccessFailureView($nonAjaxFailureMessageContent);
                $view        = new AccessFailurePageView($messageView);
            }
            echo $view->render();
        }
    }
?>

Generated on Sun Oct 20 07:10:50 2019

Zurmo

• About
• Features
• License
• Commercial Editions
• Contact Us

Community

• Blog
• Forums
• Translations
• Live Chat

Development

• Download
• Get Involved
• Report a Bug
• Roadmap
• Continuous Integration
• Zurmo Platform

Documentation

• Wiki
• Tutorials
• Screencasts
• Class Reference
• Live Demo
• Download

• Zurmo CRM on Facebook
• Zurmo CRM on Twitter
• Zurmo CRM on LinkedIn
• Zurmo CRM on BitBucket
• Zurmo CRM on Pivotal Tracker
• Zurmo CRM RSS

• |Contact Us
• |License
• |Trademark
• |Privacy Policy

Copyright © 2019 by Zurmo Inc. All Rights Reserved.