public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
// Extra security
R3Security::checkEnergyMeterForBuilding($this->act, $this->bu_id, $this->id, array('method' => $this->method, 'skip_methods' => array('fetchUDM', 'getEnergySourceList', 'getUtilityProductList')));
}
public function checkPerm()
{
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if (!in_array($this->act, array('list', 'add'))) {
R3Security::checkBuilding($this->id);
}
}
public function checkPerm()
{
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if (!in_array($this->act, array('list', 'add'))) {
if (!in_array($this->method, array('updateLastOpenCloseStatus'))) {
R3Security::checkGlobalResult($this->ge_id);
}
}
}
public function checkPerm()
{
$mu_id = $this->auth->getParam('mu_id');
$this->act = $mu_id == '' ? $this->act : 'show';
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if (!in_array($this->act, array('list', 'add'))) {
if ($mu_id != '' && $this->id == '') {
// Nothing do check
} else {
R3Security::checkGlobalStrategy($this->id);
}
}
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if ($this->act == 'open') {
// Download
R3Security::checkDocumentByFileId($this->file_id);
} else {
// Attribute
R3Security::checkDocumentForObject($this->act, $this->doc_object_id, $this->id, array('kind' => $this->type));
}
}
public function checkPerm()
{
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if ($this->act == 'list' && $this->bu_id != '') {
// Arrivo da edificio
R3Security::checkActionCatalogForBuilding($this->act, $this->bu_id, $this->id, array('method' => $this->method, 'skip_methods' => array('checkSubActionMapLink')));
} else {
if (!in_array($this->act, array('list', 'add'))) {
R3Security::checkActionCatalog($this->id);
}
}
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = 'GLOBAL_PLAIN_TABLE';
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
R3Security::checkGlobalPlain($this->gp_id);
}
public function checkPerm()
{
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
R3Security::checkGlobalPlain($this->gp_id);
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = 'GLOBAL_PLAIN_TABLE';
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if ($this->act == 'list') {
return true;
}
if ($this->act == 'add') {
//R3Security::checkGlobalPlain($this->gp_id);
} else {
// Can edit/delete the given id
if (!in_array($this->method, array())) {
if ($this->gpr_id == null) {
$this->gpr_id = $this->id;
}
R3Security::checkGlobalPlainRow($this->gpr_id);
}
}
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
// Extra security
R3Security::checkDeviceForEnergyMeter($this->act, $this->em_id, $this->id);
}
public static function checkDocumentForObject($act, $object_id, $doc_id, array $opt = array())
{
$opt = array_merge(array('method' => '', 'skip_methods' => array(), 'kind' => null), $opt);
if (!in_array($opt['method'], $opt['skip_methods'])) {
if ($act == 'add' || $act == 'list' && $object_id != '') {
switch ($opt['kind']) {
case 'building':
R3Security::checkBuilding($object_id);
break;
case 'street_lighting':
R3Security::checkStreetlighting($object_id);
break;
case 'global_entry':
R3Security::checkGlobalEntry($object_id);
break;
case 'global_plain':
R3Security::checkGlobalPlain($object_id);
break;
default:
throw new Exception("Invalid kind \"{$opt['kind']}\" for document#{$doc_id}");
}
} else {
R3Security::checkDocument($doc_id);
}
}
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
if ($this->act == 'add') {
R3Security::checkGlobalEntry($this->ge_id);
} else {
// Can edit/delete the given id
if (!in_array($this->method, array('getEnergySource', 'getEnergyUDM'))) {
R3Security::checkGlobalSubcategory($this->id);
}
}
}
public function checkPerm()
{
$db = ezcDbInstance::get();
$act = $this->act == 'list' ? 'SHOW' : strToUpper($this->act);
$name = strToUpper($this->baseName);
if (!$this->auth->hasPerm($act, $name)) {
die(sprintf(_("PERMISSION DENIED [%s/%s]"), $act, $name));
}
// Extra security
$id = $this->kind == 'street_lighting' ? $this->sl_id : $this->em_id;
R3Security::checkConsumptionForEnergyMeter($this->act, $id, $this->id, array('kind' => $this->kind));
}
