Added subprivilege authentication
This commit is contained in:
Marcin Kurczewski
parent
334cca8197
commit
3cdaa85511
5 changed files with 30 additions and 8 deletions
|
|
@ -7,12 +7,21 @@ class Api
|
|||
|
||||
return \Chibi\Database::transaction(function() use ($job, $jobArgs)
|
||||
{
|
||||
$job->prepare($jobArgs);
|
||||
|
||||
if ($job->requiresAuthentication())
|
||||
Access::assertAuthentication();
|
||||
|
||||
if ($job->requiresConfirmedEmail())
|
||||
Access::assertEmailConfirmation();
|
||||
|
||||
$p = $job->requiresPrivilege();
|
||||
list ($privilege, $subPrivilege) = is_array($p)
|
||||
? $p
|
||||
: [$p, null];
|
||||
if ($privilege !== null)
|
||||
Access::assert($privilege, $subPrivilege);
|
||||
|
||||
return $job->execute($jobArgs);
|
||||
});
|
||||
}
|
||||
|
|
|
|||
|
|
@ -1,6 +1,10 @@
|
|||
<?php
|
||||
abstract class AbstractJob
|
||||
{
|
||||
public function prepare($arguments)
|
||||
{
|
||||
}
|
||||
|
||||
public abstract function execute($arguments);
|
||||
|
||||
public abstract function requiresAuthentication();
|
||||
|
|
|
|||
|
|
@ -3,8 +3,8 @@ class AddCommentJob extends AbstractJob
|
|||
{
|
||||
public function execute($arguments)
|
||||
{
|
||||
$post = PostModel::findById($arguments['post-id']);
|
||||
$user = Auth::getCurrentUser();
|
||||
$post = PostModel::findById($arguments['post-id']);
|
||||
$text = CommentModel::validateText($arguments['text']);
|
||||
|
||||
$comment = CommentModel::spawn();
|
||||
|
|
@ -15,7 +15,7 @@ class AddCommentJob extends AbstractJob
|
|||
|
||||
CommentModel::save($comment);
|
||||
LogHelper::log('{user} commented on {post}', [
|
||||
'user' => TextHelper::reprUser(Auth::getCurrentUser()),
|
||||
'user' => TextHelper::reprUser($user),
|
||||
'post' => TextHelper::reprPost($comment->getPost()->id)]);
|
||||
|
||||
return $comment;
|
||||
|
|
|
|||
|
|
@ -1,18 +1,24 @@
|
|||
<?php
|
||||
class EditCommentJob extends AbstractJob
|
||||
{
|
||||
protected $comment;
|
||||
|
||||
public function prepare($arguments)
|
||||
{
|
||||
$this->comment = CommentModel::findById($arguments['comment-id']);
|
||||
}
|
||||
|
||||
public function execute($arguments)
|
||||
{
|
||||
$user = Auth::getCurrentUser();
|
||||
$comment = CommentModel::findById($arguments['comment-id']);
|
||||
$text = CommentModel::validateText($arguments['text']);
|
||||
$comment = $this->comment;
|
||||
|
||||
$comment->commentDate = time();
|
||||
$comment->text = $text;
|
||||
$comment->text = CommentModel::validateText($arguments['text']);
|
||||
|
||||
CommentModel::save($comment);
|
||||
LogHelper::log('{user} edited comment in {post}', [
|
||||
'user' => TextHelper::reprUser(Auth::getCurrentUser()),
|
||||
'user' => TextHelper::reprUser($user),
|
||||
'post' => TextHelper::reprPost($comment->getPost())]);
|
||||
|
||||
return $comment;
|
||||
|
|
@ -20,7 +26,11 @@ class EditCommentJob extends AbstractJob
|
|||
|
||||
public function requiresPrivilege()
|
||||
{
|
||||
return Privilege::EditComment;
|
||||
return
|
||||
[
|
||||
Privilege::EditComment,
|
||||
Access::getIdentity($this->comment->getCommenter())
|
||||
];
|
||||
}
|
||||
|
||||
public function requiresAuthentication()
|
||||
|
|
|
|||
|
|
@ -10,7 +10,6 @@ class PreviewCommentJob extends AbstractJob
|
|||
$comment->setCommenter($user);
|
||||
$comment->commentDate = time();
|
||||
$comment->text = $text;
|
||||
|
||||
return $comment;
|
||||
}
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue