public function testBizRuleViaParams() { $perm = new Permission(['code' => 'test', 'name' => 'Test codename', 'is_default' => true, 'bizrule' => '$params["foo"]=="bar"']); $this->assertTrue($perm->isValid()); $this->assertTrue($perm->save()); $user = User::objects()->createUser('foo', 'bar', '*****@*****.**'); $this->assertEquals(1, $user->permissions->count()); $this->p->fetchData(); $this->assertTrue($this->app->permissions->canBizRule('test', ['foo' => 'bar'])); $this->assertFalse($this->app->permissions->canBizRule('test', ['foo' => 'default'])); $this->assertTrue($user->can('test', ['foo' => 'bar'], false)); $this->assertFalse($user->can('test', ['foo' => 'default'], false)); }
/** * Create not privileged user * @param $username * @param $password * @param $email * @param array $extra * @return array|\Modules\User\Models\User Errors or created model */ public function createUser($username, $password, $email = null, array $extra = []) { /** @var \Modules\User\PasswordHasher\IPasswordHasher $hasher */ $auth = Mindy::app()->auth; $hasher = $auth->getPasswordHasher(isset($extra['hash_type']) ? $extra['hash_type'] : $this->defaultPasswordHasher); $model = $this->getModel(); $model->setAttributes(array_merge(['username' => $username, 'email' => $email, 'password' => $hasher->hashPassword($password), 'activation_key' => $this->generateActivationKey()], $extra)); if ($model->isValid() && $model->save()) { $groups = Group::objects()->filter(['is_default' => true])->all(); foreach ($groups as $group) { $model->groups->link($group); } $permission = Permission::objects()->filter(['is_default' => true])->all(); foreach ($permission as $perm) { $model->permissions->link($perm); } $eventManager = $this->getEventManager(); $module = Mindy::app()->getModule('User'); if ($module->sendUserCreateMail) { $eventManager->send($model, 'createUser', $model); } else { if ($module->sendUserCreateRawMail) { $eventManager->send($model, 'createRawUser', $model, $password); } } } return $model; }
public function testInit() { $this->assertEquals(0, User::objects()->count()); $this->assertEquals(0, Group::objects()->count()); $this->assertEquals(0, Permission::objects()->count()); $this->assertEquals(0, UserPermission::objects()->count()); $this->assertEquals(0, GroupPermission::objects()->count()); $this->assertEquals(0, Key::objects()->count()); $this->assertEquals(0, Session::objects()->count()); }
public static function getFields() { return ['user' => ['class' => ForeignField::className(), 'modelClass' => User::className(), 'verboseName' => self::t("User")], 'permission' => ['class' => ForeignField::className(), 'modelClass' => Permission::className(), 'verboseName' => self::t("Permission")]]; }
public static function getFields() { return ['user_group' => ['class' => ForeignField::className(), 'modelClass' => Group::className(), 'verboseName' => UserModule::t("Group")], 'permission' => ['class' => ForeignField::className(), 'modelClass' => Permission::className(), 'verboseName' => UserModule::t("Permission")]]; }
/** * Функция хелпер для установки прав доступа по pk на владельца по переданному типу * @param $permId * @param $ownerId * @param $type */ public function setId($permId, $ownerId, $type) { // Проверяем корректность переданного типа if (in_array($type, array(self::TYPE_USER, self::TYPE_GROUP)) === false) { return false; } // Находим код прав доступа $model = Permission::objects()->filter(['pk' => $permId])->get(); if ($model === null) { return false; } return $this->set($model->code, $ownerId, $type); }