Dominique.Fournier/DomFramework
1
0
Fork 0
Code Issues Pull Requests Projects Releases Activity

routeSQL : beginning of authorization

Browse Source 
git-svn-id: https://svn.fournier38.fr/svn/ProgSVN/trunk@2016 bf3deb0d-5f1a-0410-827f-c0cc1f45334c
This commit is contained in:
Dominique Fournier
2015-03-11 22:30:41 +00:00
parent 2ab0c08a1b
commit 0c0e207b3d
1 changed files with 116 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

127
routeSQL.php
View File

@@ -40,6 +40,8 @@ class routeSQL
/** The cookie path used to determine the old parameters /** The cookie path used to determine the old parameters
It is automatically generated with the URL */ It is automatically generated with the URL */
public $path = ""; public $path = "";
/** Authentication */
public $auth = array ("email"=>"anonymous");
/** The model file containing the database description */ /** The model file containing the database description */
private $model_file = ""; private $model_file = "";
/** The model class included in the model file */ /** The model class included in the model file */
@@ -245,7 +247,7 @@ class routeSQL
} }
/** Create the routes and the associated actions */ /** Create the routes and the associated actions */
public function routes () public function routesHTML ()
{ {
/** Add HTML routes */ /** Add HTML routes */
$route = new route (); $route = new route ();
@@ -254,10 +256,18 @@ class routeSQL
$route->redirect ("/".$this->url_prefix, ""); $route->redirect ("/".$this->url_prefix, "");
}); });
$route->get ($this->url_prefix."(\?({p1}=({v1})?)(&{p2}=({v2})?(&{p3}=({v3})?)?)?)?", $route->get ($this->url_prefix.
"(\?({p1}=({v1})?)(&{p2}=({v2})?(&{p3}=({v3})?)?)?)?",
function ($p1, $v1, $p2, $v2, $p3, $v3) use ($route) function ($p1, $v1, $p2, $v2, $p3, $v3) use ($route)
{ {
// LIST ALL THE OBJECTS OF THE TABLE // List all the objects of the table
if ($this->accessright () !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
// num is the number of elements displayed by page // num is the number of elements displayed by page
// page is the page to display // page is the page to display
// Allow the parameters to be sent in any order // Allow the parameters to be sent in any order
@@ -456,7 +466,22 @@ echo $content;
$route->get ($this->url_prefix."/{id}/delete/{token}", $route->get ($this->url_prefix."/{id}/delete/{token}",
function ($id, $token) function ($id, $token)
{ {
echo "DELETE AN EXISTING OBJECT IF THE TOKEN IS VALID !"; // Delete an existing object if the token is valid
if ($this->accessright ($id) !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->editright ($id) !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->readonly ($id) === TRUE)
throw new Exception (_("Access forbidden"), 403);
$this->connect(); $this->connect();
$csrf = new csrf (); $csrf = new csrf ();
$renderer = new renderer (); $renderer = new renderer ();
@@ -479,6 +504,21 @@ echo $content;
$route->get ($this->url_prefix."/add", function () $route->get ($this->url_prefix."/add", function ()
{ {
// Add a new entry : form to be filled by the user // Add a new entry : form to be filled by the user
if ($this->accessright () !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->editright () !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->readonly () === TRUE)
throw new Exception (_("Access forbidden"), 403);
$this->connect(); $this->connect();
$content = $this->showflash (); $content = $this->showflash ();
$values = array (); $values = array ();
@@ -525,6 +565,21 @@ echo $content;
$route->post ($this->url_prefix."/add", function () use ($route) $route->post ($this->url_prefix."/add", function () use ($route)
{ {
// Add a new entry : effective save of the datas // Add a new entry : effective save of the datas
if ($this->accessright () !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->editright () !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->readonly () === TRUE)
throw new Exception (_("Access forbidden"), 403);
$this->connect(); $this->connect();
$f = new form (); $f = new form ();
$values = $f->values (); $values = $f->values ();
@@ -560,7 +615,16 @@ echo $content;
$route->get ($this->url_prefix."/{id}", function ($id) $route->get ($this->url_prefix."/{id}", function ($id)
{ {
// LIST THE DETAILS OF ONE EXISTING OBJECT ! // List the details of one existing object
if ($this->accessright ($id) !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
$editright = $this->editright ($id);
$readonly = $this->readonly ($id);
$this->connect(); $this->connect();
$content = $this->showflash (); $content = $this->showflash ();
$values = array (); $values = array ();
@@ -595,15 +659,20 @@ echo $content;
$field->mandatory = true; $field->mandatory = true;
if (in_array ("autoincrement", $this->objectDB->fields[$key])) if (in_array ("autoincrement", $this->objectDB->fields[$key]))
$field->type = "hidden"; $field->type = "hidden";
if ($readonly === true || $editright === false)
$field->readonly = true;
$fields[] = $field; $fields[] = $field;
unset ($field); unset ($field);
} }
$field = new formfield ("submit", _("Save the zone")); if ($readonly === false && $editright === true)
$field->defaults = _("Save the zone"); {
$field->type = "submit"; $field = new formfield ("submit", _("Save the datas"));
$fields[] = $field; $field->defaults = _("Save the datas");
unset ($field); $field->type = "submit";
$fields[] = $field;
unset ($field);
}
$f->fields ($fields); $f->fields ($fields);
$content .= $f->printHTML ("post", $values, $errors); $content .= $f->printHTML ("post", $values, $errors);
echo $content; echo $content;
@@ -611,7 +680,22 @@ echo $content;
$route->post ($this->url_prefix."/{id}", function ($id) use ($route) $route->post ($this->url_prefix."/{id}", function ($id) use ($route)
{ {
// SAVE THE DETAILS OF ONE EXISTING OBJECT ! // Save the details of one existing object
if ($this->accessright ($id) !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->editright ($id) !== TRUE)
{
if ($this->auth["email"] === "anonymous")
throw new Exception (_("Anonymous not allowed"), 401);
throw new Exception (_("Access forbidden"), 403);
}
if ($this->readonly ($id) === TRUE)
throw new Exception (_("Access forbidden"), 403);
$this->connect(); $this->connect();
$oldvalues = $this->objectDB->read (array (array $oldvalues = $this->objectDB->read (array (array
($this->objectDB->primary, $id))); ($this->objectDB->primary, $id)));
@@ -652,4 +736,25 @@ echo $content;
$route->redirect ("/".$this->url_prefix."/$id", ""); $route->redirect ("/".$this->url_prefix."/$id", "");
}); });
} }
/** Authorization : Return TRUE if the user right allow to see the datas
Return FALSE else */
public function accessright ()
{
return TRUE;
}
/** Authorization : Return TRUE if the user right allow to edit the datas
Return FALSE else */
public function editright ()
{
return TRUE;
}
/** Authorization : Return TRUE if the $id is in READONLY for the user or
FALSE if the user have the RW rights */
public function readonly ()
{
return FALSE;
}
} }