147 lines
3.6 KiB
PHP
147 lines
3.6 KiB
PHP
<?php
|
|
/**
|
|
* Holds the global permissions handler.
|
|
*
|
|
* @package Sakura
|
|
*/
|
|
|
|
namespace Sakura;
|
|
|
|
/**
|
|
* Global permissions handler.
|
|
*
|
|
* @package Sakura
|
|
* @author Julian van de Groep <me@flash.moe>
|
|
*/
|
|
class Perms
|
|
{
|
|
/**
|
|
* SITE permission mode, used for general permissions.
|
|
*/
|
|
const SITE = 'permissions\permissions_site';
|
|
|
|
/**
|
|
* MANAGE permission mode, used for site management actions.
|
|
*/
|
|
const MANAGE = 'permissions\permissions_manage';
|
|
|
|
/**
|
|
* FORUM permission mode, used per forum.
|
|
*/
|
|
const FORUM = 'forum_permissions\forum_perms';
|
|
|
|
/**
|
|
* The table containing the permissions.
|
|
*
|
|
* @var string
|
|
*/
|
|
protected $table = '';
|
|
|
|
/**
|
|
* The column containing the permissions.
|
|
*
|
|
* @var string
|
|
*/
|
|
protected $column = '';
|
|
|
|
/**
|
|
* Constructor.
|
|
*
|
|
* @param string $mode One of the modes above.
|
|
*/
|
|
public function __construct($mode)
|
|
{
|
|
$this->mode($mode);
|
|
}
|
|
|
|
/**
|
|
* Set a permission mode.
|
|
*
|
|
* @param string $mode One of the modes above.
|
|
*/
|
|
public function mode($mode)
|
|
{
|
|
// Split the mode variable
|
|
$mode = explode('\\', $mode);
|
|
|
|
// Assign $table, $column and $selectors
|
|
$this->table = $mode[0];
|
|
$this->column = $mode[1];
|
|
}
|
|
|
|
/**
|
|
* Compare a permission flag.
|
|
*
|
|
* @param int $flag The permission flag.
|
|
* @param int $perm The permissions of the user.
|
|
*
|
|
* @return bool Success indicator.
|
|
*/
|
|
public function check($flag, $perm)
|
|
{
|
|
return ($flag & $perm) > 0;
|
|
}
|
|
|
|
/**
|
|
* Get the permissions from a rank.
|
|
*
|
|
* @param int $rid The ID of the rank in question.
|
|
* @param array $conditions Additional SQL conditions.
|
|
* @param int $perm A permission flag to append to.
|
|
*
|
|
* @return int A permission flag.
|
|
*/
|
|
public function rank($rid, $conditions = [], $perm = 0)
|
|
{
|
|
// Merge rank id and additional conditions
|
|
$conditions = array_merge(['rank_id' => [$rid, '='], 'user_id' => [0, '=']], $conditions);
|
|
|
|
// Fetch from the db
|
|
$get = Database::fetch($this->table, false, $conditions);
|
|
|
|
// Check if anything was returned
|
|
if ($get && array_key_exists($this->column, $get) && $get['rank_id']) {
|
|
// Perform a bitwise OR
|
|
$perm = $perm | bindec((string) $get[$this->column]);
|
|
}
|
|
|
|
// Return the value
|
|
return $perm;
|
|
}
|
|
|
|
/**
|
|
* Get the permissions from a user.
|
|
*
|
|
* @param int $uid The ID of the user in question.
|
|
* @param array $conditions Additional SQL conditions.
|
|
* @param int $perm A permission flag to append to.
|
|
*
|
|
* @return int A permission flag.
|
|
*/
|
|
public function user($uid, $conditions = [], $perm = 0)
|
|
{
|
|
// Create a user object
|
|
$user = User::construct($uid);
|
|
|
|
// Get data from ranks
|
|
foreach (array_keys($user->ranks) as $rank) {
|
|
$perm = $perm | $this->rank($rank, $conditions, $perm);
|
|
}
|
|
|
|
// Merge user id and additional conditions
|
|
$conditions = array_merge(['user_id' => [$uid, '='], 'rank_id' => [0, '=']], $conditions);
|
|
|
|
// Fetch from the db
|
|
$get = Database::fetch($this->table, false, $conditions);
|
|
|
|
// Check if anything was returned
|
|
if ($get && array_key_exists($this->column, $get) && $get['user_id']) {
|
|
// Perform a bitwise OR
|
|
$perm = $perm | bindec((string) $get[$this->column]);
|
|
}
|
|
|
|
// Return the value
|
|
return $perm;
|
|
}
|
|
}
|