Dominique.Fournier/DomFramework
1
0
Fork 0
Code Issues Pull Requests Projects Releases Activity

authzgroups : add titles translation to definition of tables to be easily integrated

Browse Source 
git-svn-id: https://svn.fournier38.fr/svn/ProgSVN/trunk@1832 bf3deb0d-5f1a-0410-827f-c0cc1f45334c
This commit is contained in:
Dominique Fournier
2014-09-19 07:28:02 +00:00
parent a09ce0f6c3
commit b2b1048bee
1 changed files with 11 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
authzgroups.php
View File

@@ -5,14 +5,6 @@
require_once ("domframework/dblayer.php");
// TODO : Create a function to get from database an array with object=>right for
// a module/user. Store in $_SESSION if it exists. Return the RW right for an
// object if more than one group provide the RW right. (Example : group1=>RO,
// group2=>RW --> Result=>RW)
// TODO : Create a function to get a right for an object. Look at the previous
// function for the datas (and in $_SESSION if the datas are already saved).
// Don't forget to parse all the tree !! If one node is not defined, NO ACCESS
/** All the needed functions to authorize or deny access to an authenticated
user by its groups membership */
class authzgroups
@@ -91,7 +83,10 @@ class authzgroups
public function allow ($module, $user, $object)
{
$ressource = $this->userrightsget ($module, $user);
// Limit to allowed trees : if a member of the path is not recorded (is
// The complete tree should not be readable for the user : it can have
// access to a card, but not to all the cards (group -> reject,
// group/XXX->allow)
/*// Limit to allowed trees : if a member of the path is not recorded (is
// unreadable), return NO.
// Can be the last entry (the complete object) too
$path = explode ("/", $object);
@@ -107,7 +102,9 @@ class authzgroups
echo "DEBUG allow : REJECT because $completePath is not found\n";
return "NO";
}
}
}*/
if (! isset ($ressource[$object]))
return "NO";
return $ressource[$object];
}
@@ -141,6 +138,10 @@ class authzgroups
"comment"=>array ("varchar", "255"));
$this->dbGroup->primary = "idgroup";
$this->dbGroup->unique = array ("idgroup", array ("module","group"));
$this->dbGroup->titles = array ("idobject"=>_("idobject"),
"module"=>_("Module"),
"object"=>_("Object"),
"comment"=>_("Comment"));
$this->dbGroupMember = new dblayer ($dsn, $username, $password,
$driver_options);