/** * Set one or more permissions for a user on an object * * @param array $permissions * @param string $object_id * @param string $user_id * @param boolean $cascade_down */ public static function set_permissions($permissions, $object_id, $user_id, $cascade_down = true) { $error = new argent_error(); if (is_array($permissions) && count($permissions) > 0) { foreach ($permissions as $permission => $setting) { $permission = strtolower($permission); if ($permission != AG_PERMISSION_CREATE && $permission != AG_PERMISSION_READ && $permission != AG_PERMISSION_UPDATE && $permission != AG_PERMISSION_DELETE && $setting != 0 && $setting != 1) { $error->add('2020', 'Invalid permission setting', $permission, 'argent_uauth'); } } } else { $error->add('2020', 'Invalid permission setting', $permission, 'argent_uauth'); } if (!argent_meta::object_registered($object_id)) { $error->add('1038', 'Object does not exist', $object_id, 'argent_uauth'); } if (!self::object_exists($user_id)) { $error->add('1013', 'Invalid user account', $user_id, 'argent_uauth'); } if ($error->has_errors()) { return $error; } $perms = self::get_permission_record($object_id, $user_id); if (argent_error::check($perms)) { return $perms; } elseif ($perms == false) { $perms = array(); $perms['object_id'] = $object_id; $perms['user_id'] = $user_id; } $old_record = $perms['meta_guid']; $perms = array_merge($perms, $permissions); if ($cascade_down == true) { $perms['cascade'] = 1; } else { $perms['cascade'] = 0; } $perms = argent_meta::add_meta($perms); $db = new argent_database(); $db->start_transaction(); $save = argent_meta::save_record($perms, 'ua_permissions'); if (argent_error::check($save)) { return $save; } if (!empty($old_record)) { $sql = "\r\n DELETE FROM\r\n `ua_permissions`\r\n WHERE\r\n `meta_guid` = '{$db->escape_value($old_record)}'\r\n "; return $db->query($sql); } self::cascade_permissions(); $db->end_transaction(); return true; }
public static function create_object($object_type = null, $ua_parent_object = null) { $error = new argent_error(); if (!self::valid_object_type($object_type)) { $error->add('1036', 'Unregistered object type', $object_type, 'argent_meta'); } if (!self::object_registered($ua_parent_object)) { $error->add('1038', 'Object does not exist', $ua_parent_object, 'argent_meta'); } $object = argent_meta::register_object($object_type, $ua_parent_object); if (argent_error::check($object)) { return $object; } $record = array('object_id' => $object); $record = argent_meta::add_meta($record); $table = self::type_info($object_type); argent_meta::save_record($record, $table['table']); if ($error->has_errors()) { return $error; } return $object; }