szurubooru/src/Helpers/PrivilegesHelper.php

<?php
class PrivilegesHelper
{
	private static $privileges = [];

	public static function init()
	{
		self::$privileges = [];
		foreach (\Chibi\Registry::getConfig()->privileges as $key => $minAccessRankName)
		{
			if (strpos($key, '.') === false)
				$key .= '.';
			list ($privilegeName, $subPrivilegeName) = explode('.', $key);
			$privilegeName = TextHelper::camelCaseToKebabCase($privilegeName);
			$subPrivilegeName = TextHelper::camelCaseToKebabCase($subPrivilegeName);
			$key = rtrim($privilegeName . '.' . $subPrivilegeName, '.');

			$minAccessRank = TextHelper::resolveConstant($minAccessRankName, 'AccessRank');
			self::$privileges[$key] = $minAccessRank;
		}
	}

	public static function confirm($privilege, $subPrivilege = null)
	{
		$user = \Chibi\Registry::getContext()->user;
		$minAccessRank = AccessRank::Admin;

		$key = TextHelper::camelCaseToKebabCase(Privilege::toString($privilege));
		if (isset(self::$privileges[$key]))
		{
			$minAccessRank = self::$privileges[$key];
		}
		if ($subPrivilege != null)
		{
			$key2 = $key . '.' . strtolower($subPrivilege);
			if (isset(self::$privileges[$key2]))
			{
				$minAccessRank = self::$privileges[$key2];
			}
		}

		return intval($user->access_rank) >= $minAccessRank;
	}

	public static function confirmWithException($privilege, $subPrivilege = null)
	{
		if (!self::confirm($privilege, $subPrivilege))
		{
			throw new SimpleException('Insufficient privileges');
		}
	}

	public static function getIdentitySubPrivilege($user)
	{
		if (!$user)
			return 'all';
		$userFromContext = \Chibi\Registry::getContext()->user;
		return $user->id == $userFromContext->id ? 'own' : 'all';
	}

	public static function confirmEmail($user)
	{
		if (!$user->email_confirmed)
			throw new SimpleException('Need e-mail address confirmation to continue');
	}

	public static function getAllowedSafety()
	{
		$context = \Chibi\Registry::getContext();
		return array_filter(PostSafety::getAll(), function($safety) use ($context)
		{
			return PrivilegesHelper::confirm(Privilege::ListPosts, PostSafety::toString($safety)) and
				$context->user->hasEnabledSafety($safety);
		});
	}
}

PrivilegesHelper::init();
Added privileges support 2013-10-06 13:21:16 +02:00			`<?php`
			`class PrivilegesHelper`
			`{`
			`private static $privileges = [];`

			`public static function init()`
			`{`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`self::$privileges = [];`
			`foreach (\Chibi\Registry::getConfig()->privileges as $key => $minAccessRankName)`
Added privileges support 2013-10-06 13:21:16 +02:00			`{`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`if (strpos($key, '.') === false)`
			`$key .= '.';`
Closed #43 2013-10-18 00:09:50 +02:00			`list ($privilegeName, $subPrivilegeName) = explode('.', $key);`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`$privilegeName = TextHelper::camelCaseToKebabCase($privilegeName);`
Closed #43 2013-10-18 00:09:50 +02:00			`$subPrivilegeName = TextHelper::camelCaseToKebabCase($subPrivilegeName);`
			`$key = rtrim($privilegeName . '.' . $subPrivilegeName, '.');`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00
Added privileges support 2013-10-06 13:21:16 +02:00			`$minAccessRank = TextHelper::resolveConstant($minAccessRankName, 'AccessRank');`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`self::$privileges[$key] = $minAccessRank;`
Added privileges support 2013-10-06 13:21:16 +02:00			`}`
			`}`

Closed #43 2013-10-18 00:09:50 +02:00			`public static function confirm($privilege, $subPrivilege = null)`
Added privileges support 2013-10-06 13:21:16 +02:00			`{`
Closed #43 2013-10-18 00:09:50 +02:00			`$user = \Chibi\Registry::getContext()->user;`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`$minAccessRank = AccessRank::Admin;`

			`$key = TextHelper::camelCaseToKebabCase(Privilege::toString($privilege));`
			`if (isset(self::$privileges[$key]))`
			`{`
			`$minAccessRank = self::$privileges[$key];`
			`}`
Closed #43 2013-10-18 00:09:50 +02:00			`if ($subPrivilege != null)`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`{`
Closed #43 2013-10-18 00:09:50 +02:00			`$key2 = $key . '.' . strtolower($subPrivilege);`
Safety-related privileges; internals 2013-10-07 23:17:33 +02:00			`if (isset(self::$privileges[$key2]))`
			`{`
			`$minAccessRank = self::$privileges[$key2];`
			`}`
			`}`

Fixed bug in privilege checking 2013-10-06 19:20:54 +02:00			`return intval($user->access_rank) >= $minAccessRank;`
Added privileges support 2013-10-06 13:21:16 +02:00			`}`

Closed #43 2013-10-18 00:09:50 +02:00			`public static function confirmWithException($privilege, $subPrivilege = null)`
Added privileges support 2013-10-06 13:21:16 +02:00			`{`
Closed #43 2013-10-18 00:09:50 +02:00			`if (!self::confirm($privilege, $subPrivilege))`
Added privileges support 2013-10-06 13:21:16 +02:00			`{`
			`throw new SimpleException('Insufficient privileges');`
			`}`
			`}`
Closed #32 2013-10-16 18:07:23 +02:00
Closed #43 2013-10-18 00:09:50 +02:00			`public static function getIdentitySubPrivilege($user)`
			`{`
Faster queries, fixed foreign keys When user is removed, their posts and comments get null user ID now 2013-10-19 18:14:19 +02:00			`if (!$user)`
Closed #52 - fixes for anonymous accounts - Anonymous account is no longer created when commenting/uploading - Anonymous users can now switch safety, if it's available - Anonymous users can delete their own posts - Refurbished session and logging in/out mechanism - Possible fixes for registration/activation/account deletion issues 2013-10-27 20:39:32 +01:00			`return 'all';`
Closed #43 2013-10-18 00:09:50 +02:00			`$userFromContext = \Chibi\Registry::getContext()->user;`
			`return $user->id == $userFromContext->id ? 'own' : 'all';`
			`}`

Closed #32 2013-10-16 18:07:23 +02:00			`public static function confirmEmail($user)`
			`{`
			`if (!$user->email_confirmed)`
			`throw new SimpleException('Need e-mail address confirmation to continue');`
			`}`
Tag list respects safety settings 2013-10-30 16:22:46 +01:00
			`public static function getAllowedSafety()`
			`{`
			`$context = \Chibi\Registry::getContext();`
			`return array_filter(PostSafety::getAll(), function($safety) use ($context)`
			`{`
			`return PrivilegesHelper::confirm(Privilege::ListPosts, PostSafety::toString($safety)) and`
			`$context->user->hasEnabledSafety($safety);`
			`});`
			`}`
Added privileges support 2013-10-06 13:21:16 +02:00			`}`

			`PrivilegesHelper::init();`