/** * Return the subsites that the current user can access. * Look for one of the given permission codes on the site. * * Sites and Templates will only be included if they have a Title * * @param $permCode array|string Either a single permission code or an array of permission codes. * @param $includeMainSite If true, the main site will be included if appropriate. * @param $mainSiteTitle The label to give to the main site */ function accessible_sites($permCode, $includeMainSite = false, $mainSiteTitle = "Main site", $member = null) { // Rationalise member arguments if (!$member) { $member = Member::currentUser(); } if (!$member) { return new DataObjectSet(); } if (!is_object($member)) { $member = DataObject::get_by_id('Member', $member); } if (is_array($permCode)) { $SQL_codes = "'" . implode("', '", Convert::raw2sql($permCode)) . "'"; } else { $SQL_codes = "'" . Convert::raw2sql($permCode) . "'"; } $templateClassList = "'" . implode("', '", ClassInfo::subclassesFor("Subsite_Template")) . "'"; $subsites = DataObject::get('Subsite', "\"Subsite\".\"Title\" != ''", '', "LEFT JOIN \"Group_Subsites\" \n\t\t\t\tON \"Group_Subsites\".\"SubsiteID\" = \"Subsite\".\"ID\"\n\t\t\tINNER JOIN \"Group\" ON \"Group\".\"ID\" = \"Group_Subsites\".\"GroupID\"\n\t\t\t\tOR \"Group\".\"AccessAllSubsites\" = 1\n\t\t\tINNER JOIN \"Group_Members\" \n\t\t\t\tON \"Group_Members\".\"GroupID\"=\"Group\".\"ID\"\n\t\t\t\tAND \"Group_Members\".\"MemberID\" = {$member->ID}\n\t\t\tINNER JOIN \"Permission\" \n\t\t\t\tON \"Group\".\"ID\"=\"Permission\".\"GroupID\"\n\t\t\t\tAND \"Permission\".\"Code\" IN ({$SQL_codes}, 'ADMIN')"); $rolesSubsites = DataObject::get('Subsite', "\"Subsite\".\"Title\" != ''", '', "LEFT JOIN \"Group_Subsites\" \n\t\t\t\tON \"Group_Subsites\".\"SubsiteID\" = \"Subsite\".\"ID\"\n\t\t\tINNER JOIN \"Group\" ON \"Group\".\"ID\" = \"Group_Subsites\".\"GroupID\"\n\t\t\t\tOR \"Group\".\"AccessAllSubsites\" = 1\n\t\t\tINNER JOIN \"Group_Members\" \n\t\t\t\tON \"Group_Members\".\"GroupID\"=\"Group\".\"ID\"\n\t\t\t\tAND \"Group_Members\".\"MemberID\" = {$member->ID}\n\t\t\tINNER JOIN \"Group_Roles\"\n\t\t\t\tON \"Group_Roles\".\"GroupID\"=\"Group\".\"ID\"\n\t\t\tINNER JOIN \"PermissionRole\"\n\t\t\t\tON \"Group_Roles\".\"PermissionRoleID\"=\"PermissionRole\".\"ID\"\n\t\t\tINNER JOIN \"PermissionRoleCode\"\n\t\t\t\tON \"PermissionRole\".\"ID\"=\"PermissionRoleCode\".\"RoleID\"\n\t\t\t\tAND \"PermissionRoleCode\".\"Code\" IN ({$SQL_codes}, 'ADMIN')"); if (!$subsites && $rolesSubsites) { return $rolesSubsites; } if ($rolesSubsites) { foreach ($rolesSubsites as $subsite) { if (!$subsites->containsIDs(array($subsite->ID))) { $subsites->push($subsite); } } } // Include the main site if (!$subsites) { $subsites = new DataObjectSet(); } if ($includeMainSite) { if (!is_array($permCode)) { $permCode = array($permCode); } if (self::hasMainSitePermission($member, $permCode)) { $mainSite = new Subsite(); $mainSite->Title = $mainSiteTitle; $subsites->insertFirst($mainSite); } } return $subsites; }