misuzu/src/perms.php

<?php
define('MSZ_PERMS_GENERAL', 'general');
define('MSZ_PERMS_USER', 'user');
define('MSZ_PERMS_CHANGELOG', 'changelog');
define('MSZ_PERMS_NEWS', 'news');
define('MSZ_PERMS_FORUM', 'forum');
define('MSZ_PERMS_COMMENTS', 'comments');

define('MSZ_PERM_MODES', [
    MSZ_PERMS_GENERAL, MSZ_PERMS_USER, MSZ_PERMS_CHANGELOG,
    MSZ_PERMS_NEWS, MSZ_PERMS_FORUM, MSZ_PERMS_COMMENTS,
]);

define('MSZ_PERMS_ALLOW', 'allow');
define('MSZ_PERMS_DENY', 'deny');

function perms_get_keys(array $modes = MSZ_PERM_MODES): array
{
    $perms = [];

    foreach (MSZ_PERM_MODES as $mode) {
        $perms[] = [
            perms_get_key($mode, MSZ_PERMS_ALLOW),
            perms_get_key($mode, MSZ_PERMS_DENY),
        ];
    }

    return $perms;
}

function perms_create(array $modes = MSZ_PERM_MODES): array
{
    return array_fill_keys(perms_get_keys($modes), 0);
}

function perms_get_key(string $prefix, string $suffix): string
{
    return $prefix . '_perms_' . $suffix;
}

function perms_get_select(array $modes = MSZ_PERM_MODES, string $allow = MSZ_PERMS_ALLOW, string $deny = MSZ_PERMS_DENY): string
{
    $select = '';

    if (empty($select)) {
        foreach ($modes as $mode) {
            $select .= sprintf(
                '(BIT_OR(`%1$s_perms_%2$s`) &~ BIT_OR(`%1$s_perms_%3$s`)) AS `%1$s`,',
                $mode, $allow, $deny
            );
        }

        $select = substr($select, 0, -1);
    }

    return $select;
}

function perms_get_blank(array $modes = MSZ_PERM_MODES): array
{
    return array_fill_keys($modes, 0);
}

function perms_get_user(int $user): array
{
    if ($user < 1) {
        return perms_get_blank();
    }

    static $memo = [];

    if (array_key_exists($user, $memo)) {
        return $memo[$user];
    }

    $getPerms = db_prepare(sprintf(
        '
            SELECT %s
            FROM `msz_permissions`
            WHERE (`user_id` = :user_id_1 AND `role_id` IS NULL)
            OR (
                `user_id` IS NULL
                AND `role_id` IN (
                    SELECT `role_id`
                    FROM `msz_user_roles`
                    WHERE `user_id` = :user_id_2
                )
            )
        ',
        perms_get_select()
    ));
    $getPerms->bindValue('user_id_1', $user);
    $getPerms->bindValue('user_id_2', $user);

    return $memo[$user] = db_fetch($getPerms);
}

function perms_delete_user(int $user): bool
{
    if ($user < 1) {
        return false;
    }

    $deletePermissions = db_prepare('
        DELETE FROM `msz_permissions`
        WHERE `role_id` IS NULL
        AND `user_id` = :user_id
    ');
    $deletePermissions->bindValue('user_id', $user);
    return $deletePermissions->execute();
}

function perms_get_role(int $role): array
{
    if ($role < 1) {
        return perms_get_blank();
    }

    static $memo = [];

    if (array_key_exists($role, $memo)) {
        return $memo[$role];
    }

    $getPerms = db_prepare(sprintf(
        '
            SELECT %s
            FROM `msz_permissions`
            WHERE `role_id` = :role_id
            AND `user_id` IS NULL
        ',
        perms_get_select()
    ));
    $getPerms->bindValue('role_id', $role);

    return $memo[$role] = db_fetch($getPerms);
}

function perms_get_user_raw(int $user): array
{
    if ($user < 1) {
        return perms_create();
    }

    $getPerms = db_prepare(sprintf('
        SELECT `%s`
        FROM `msz_permissions`
        WHERE `user_id` = :user_id
        AND `role_id` IS NULL
    ', implode('`, `', perms_get_keys())));
    $getPerms->bindValue('user_id', $user);
    $perms = db_fetch($getPerms);

    if (empty($perms)) {
        return perms_create();
    }

    return $perms;
}

function perms_set_user_raw(int $user, array $perms): bool
{
    if ($user < 1) {
        return false;
    }

    $realPerms = perms_create();
    $permKeys = array_keys($realPerms);

    foreach ($permKeys as $perm) {
        $realPerms[$perm] = (int)($perms[$perm] ?? 0);
    }

    $setPermissions = db_prepare(sprintf(
        '
            REPLACE INTO `msz_permissions`
                (`role_id`, `user_id`, `%s`)
            VALUES
                (NULL, :user_id, :%s)
        ',
        implode('`, `', $permKeys),
        implode(', :', $permKeys)
    ));
    $setPermissions->bindValue('user_id', $user);

    foreach ($realPerms as $key => $value) {
        $setPermissions->bindValue($key, $value);
    }

    return $setPermissions->execute();
}

function perms_get_role_raw(int $role): array
{
    if ($role < 1) {
        return perms_create();
    }

    $getPerms = db_prepare(sprintf('
        SELECT `%s`
        FROM `msz_permissions`
        WHERE `user_id` IS NULL
        AND `role_id` = :role_id
    ', implode('`, `', perms_get_keys())));
    $getPerms->bindValue('role_id', $role);
    $perms = db_fetch($getPerms);

    if (empty($perms)) {
        return perms_create();
    }

    return $perms;
}

function perms_check(int $perms, int $perm): bool
{
    return ($perms & $perm) > 0;
}

function perms_check_user(string $prefix, ?int $userId, int $perm): bool
{
    return $userId > 0 && perms_check(perms_get_user($userId)[$prefix] ?? 0, $perm);
}

function perms_check_bulk(int $perms, array $set): array
{
    foreach ($set as $key => $perm) {
        $set[$key] = perms_check($perms, $perm);
    }

    return $set;
}

function perms_check_user_bulk(string $prefix, ?int $userId, array $set): array
{
    $perms = perms_get_user($userId)[$prefix] ?? 0;
    return perms_check_bulk($perms, $set);
}
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`<?php`
Some permissions stuff. 2018-07-10 23:24:00 +02:00			`define('MSZ_PERMS_GENERAL', 'general');`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`define('MSZ_PERMS_USER', 'user');`
			`define('MSZ_PERMS_CHANGELOG', 'changelog');`
Added permissions system. 2018-07-08 21:24:59 +02:00			`define('MSZ_PERMS_NEWS', 'news');`
Some permissions stuff. 2018-07-10 23:24:00 +02:00			`define('MSZ_PERMS_FORUM', 'forum');`
			`define('MSZ_PERMS_COMMENTS', 'comments');`
Added permissions system. 2018-07-08 21:24:59 +02:00
			`define('MSZ_PERM_MODES', [`
Some permissions stuff. 2018-07-10 23:24:00 +02:00			`MSZ_PERMS_GENERAL, MSZ_PERMS_USER, MSZ_PERMS_CHANGELOG,`
			`MSZ_PERMS_NEWS, MSZ_PERMS_FORUM, MSZ_PERMS_COMMENTS,`
Added permissions system. 2018-07-08 21:24:59 +02:00			`]);`

			`define('MSZ_PERMS_ALLOW', 'allow');`
			`define('MSZ_PERMS_DENY', 'deny');`

Rewrote forum permission backend (removed all WITH RECURSIVE statements). 2019-04-30 22:55:12 +02:00			`function perms_get_keys(array $modes = MSZ_PERM_MODES): array`
Added permissions system. 2018-07-08 21:24:59 +02:00			`{`
			`$perms = [];`

			`foreach (MSZ_PERM_MODES as $mode) {`
Rewrote forum permission backend (removed all WITH RECURSIVE statements). 2019-04-30 22:55:12 +02:00			`$perms[] = [`
			`perms_get_key($mode, MSZ_PERMS_ALLOW),`
			`perms_get_key($mode, MSZ_PERMS_DENY),`
			`];`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

			`return $perms;`
			`}`

Rewrote forum permission backend (removed all WITH RECURSIVE statements). 2019-04-30 22:55:12 +02:00			`function perms_create(array $modes = MSZ_PERM_MODES): array`
Added permissions system. 2018-07-08 21:24:59 +02:00			`{`
Rewrote forum permission backend (removed all WITH RECURSIVE statements). 2019-04-30 22:55:12 +02:00			`return array_fill_keys(perms_get_keys($modes), 0);`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

			`function perms_get_key(string $prefix, string $suffix): string`
			`{`
			`return $prefix . '_perms_' . $suffix;`
			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`function perms_get_select(array $modes = MSZ_PERM_MODES, string $allow = MSZ_PERMS_ALLOW, string $deny = MSZ_PERMS_DENY): string`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`{`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`$select = '';`

			`if (empty($select)) {`
			`foreach ($modes as $mode) {`
			`$select .= sprintf(`
			'(BIT_OR(`%1$s_perms_%2$s`) &~ BIT_OR(`%1$s_perms_%3$s`)) AS `%1$s`,',
			`$mode, $allow, $deny`
			`);`
			`}`

			`$select = substr($select, 0, -1);`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`return $select;`
			`}`

			`function perms_get_blank(array $modes = MSZ_PERM_MODES): array`
			`{`
			`return array_fill_keys($modes, 0);`
			`}`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`function perms_get_user(int $user): array`
			`{`
			`if ($user < 1) {`
			`return perms_get_blank();`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`static $memo = [];`
// Permissions stuff 2018-12-11 20:08:59 +01:00
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`if (array_key_exists($user, $memo)) {`
			`return $memo[$user];`
			`}`

			`$getPerms = db_prepare(sprintf(`
			`'`
			`SELECT %s`
Reverted addition of permission override flagset. 2018-12-28 21:20:38 +01:00			FROM `msz_permissions`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			WHERE (`user_id` = :user_id_1 AND `role_id` IS NULL)
Reverted addition of permission override flagset. 2018-12-28 21:20:38 +01:00			`OR (`
			`user_id` IS NULL
			AND `role_id` IN (
			SELECT `role_id`
			FROM `msz_user_roles`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			WHERE `user_id` = :user_id_2
// unfuck the permissions a bit so i can push to release 2018-12-16 22:52:41 +01:00			`)`
Reverted addition of permission override flagset. 2018-12-28 21:20:38 +01:00			`)`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`',`
			`perms_get_select()`
			`));`
			`$getPerms->bindValue('user_id_1', $user);`
			`$getPerms->bindValue('user_id_2', $user);`

			`return $memo[$user] = db_fetch($getPerms);`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`}`

Updated user management styling a little bit. 2019-02-04 22:10:00 +01:00			`function perms_delete_user(int $user): bool`
			`{`
			`if ($user < 1) {`
			`return false;`
			`}`

			`$deletePermissions = db_prepare('`
			DELETE FROM `msz_permissions`
			WHERE `role_id` IS NULL
			AND `user_id` = :user_id
			`');`
			`$deletePermissions->bindValue('user_id', $user);`
			`return $deletePermissions->execute();`
			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`function perms_get_role(int $role): array`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`{`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`if ($role < 1) {`
			`return perms_get_blank();`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`static $memo = [];`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`if (array_key_exists($role, $memo)) {`
			`return $memo[$role];`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00			`}`

Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`$getPerms = db_prepare(sprintf(`
			`'`
			`SELECT %s`
			FROM `msz_permissions`
			WHERE `role_id` = :role_id
			AND `user_id` IS NULL
			`',`
			`perms_get_select()`
			`));`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`$getPerms->bindValue('role_id', $role);`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00
			`return $memo[$role] = db_fetch($getPerms);`
Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`}`

Added permissions system. 2018-07-08 21:24:59 +02:00			`function perms_get_user_raw(int $user): array`
			`{`
			`if ($user < 1) {`
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`return perms_create();`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

// Permissions stuff 2018-12-11 20:08:59 +01:00			`$getPerms = db_prepare(sprintf('`
			SELECT `%s`
Added permissions system. 2018-07-08 21:24:59 +02:00			FROM `msz_permissions`
			WHERE `user_id` = :user_id
			AND `role_id` IS NULL
// Permissions stuff 2018-12-11 20:08:59 +01:00			', implode('`, `', perms_get_keys())));
Added permissions system. 2018-07-08 21:24:59 +02:00			`$getPerms->bindValue('user_id', $user);`
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`$perms = db_fetch($getPerms);`
Added permissions system. 2018-07-08 21:24:59 +02:00
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`if (empty($perms)) {`
			`return perms_create();`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

			`return $perms;`
			`}`

Updated user management styling a little bit. 2019-02-04 22:10:00 +01:00			`function perms_set_user_raw(int $user, array $perms): bool`
			`{`
			`if ($user < 1) {`
			`return false;`
			`}`

			`$realPerms = perms_create();`
			`$permKeys = array_keys($realPerms);`

			`foreach ($permKeys as $perm) {`
			`$realPerms[$perm] = (int)($perms[$perm] ?? 0);`
			`}`

			`$setPermissions = db_prepare(sprintf(`
			`'`
			REPLACE INTO `msz_permissions`
			(`role_id`, `user_id`, `%s`)
			`VALUES`
			`(NULL, :user_id, :%s)`
			`',`
			implode('`, `', $permKeys),
			`implode(', :', $permKeys)`
			`));`
			`$setPermissions->bindValue('user_id', $user);`

			`foreach ($realPerms as $key => $value) {`
			`$setPermissions->bindValue($key, $value);`
			`}`

			`return $setPermissions->execute();`
			`}`

Added permissions system. 2018-07-08 21:24:59 +02:00			`function perms_get_role_raw(int $role): array`
			`{`
			`if ($role < 1) {`
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`return perms_create();`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

// Permissions stuff 2018-12-11 20:08:59 +01:00			`$getPerms = db_prepare(sprintf('`
			SELECT `%s`
Added permissions system. 2018-07-08 21:24:59 +02:00			FROM `msz_permissions`
			WHERE `user_id` IS NULL
			AND `role_id` = :role_id
// Permissions stuff 2018-12-11 20:08:59 +01:00			', implode('`, `', perms_get_keys())));
Added permissions system. 2018-07-08 21:24:59 +02:00			`$getPerms->bindValue('role_id', $role);`
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`$perms = db_fetch($getPerms);`
Added permissions system. 2018-07-08 21:24:59 +02:00
Added more typesafe shorthands for fetching database operations. 2019-01-09 20:06:02 +01:00			`if (empty($perms)) {`
			`return perms_create();`
Added permissions system. 2018-07-08 21:24:59 +02:00			`}`

			`return $perms;`
			`}`

Initial permission stuffs. 2018-07-08 01:24:34 +02:00			`function perms_check(int $perms, int $perm): bool`
			`{`
			`return ($perms & $perm) > 0;`
			`}`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00
Added private Forum Leaderboard page. 2019-03-31 18:49:16 +02:00			`function perms_check_user(string $prefix, ?int $userId, int $perm): bool`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00			`{`
Reworked permission fetching. 2019-04-30 02:55:10 +02:00			`return $userId > 0 && perms_check(perms_get_user($userId)[$prefix] ?? 0, $perm);`
			`}`

			`function perms_check_bulk(int $perms, array $set): array`
			`{`
			`foreach ($set as $key => $perm) {`
			`$set[$key] = perms_check($perms, $perm);`
			`}`

			`return $set;`
			`}`

			`function perms_check_user_bulk(string $prefix, ?int $userId, array $set): array`
			`{`
			`$perms = perms_get_user($userId)[$prefix] ?? 0;`
			`return perms_check_bulk($perms, $set);`
Memoize perms (why wasn't this done already). 2019-02-27 20:24:17 +01:00			`}`