Esempio n. 1
0
File: Tools.php Progetto: valizr/MMA
 public static function hasAccess($roleId, $resourceConst, $displayNone = NULL)
 {
     //if isAdmin no need for futher verification
     if (self::isAdmin($roleId)) {
         if ($displayNone) {
             return '';
         }
         return true;
     }
     //find resource
     $result = false;
     $resourceModel = new Default_Model_Resource();
     $select2 = $resourceModel->getMapper()->getDbTable()->select()->from(array('resource'), array('id'))->where('resource = ?', $resourceConst);
     $resourceModel->fetchRow($select2);
     if ($resourceModel->getId() != null) {
         //find resource and role connection, if there is any
         $resourceRole = new Default_Model_ResourceRole();
         $select3 = $resourceRole->getMapper()->getDbTable()->select()->where('idResource = ?', $resourceModel->getId())->where('idRole = ?', $roleId);
         $resourceRole->fetchRow($select3);
         if ($resourceRole->getId() != NULL) {
             $result = true;
         }
     }
     if ($displayNone && !$result) {
         $result = ' style="display:none"';
     } elseif ($displayNone) {
         return '';
     }
     return $result;
 }
Esempio n. 2
0
File: Roles.php Progetto: valizr/MMA
    public static function getAllResources($coreRoleId, $isAdmin = false, $canAddResourceRole = false, $roleId = null, $searchText = null)
    {
        if ($roleId == null) {
            $roleId = $coreRoleId;
        }
        $return = '<input type="hidden" name="roleId" value="' . $roleId . '" />';
        //hidden input to send the role id
        //select the logged in rol resources that he has access to
        $model = new Default_Model_Resource();
        $select = $model->getMapper()->getDbTable()->select()->from(array('r' => 'resource'), array('r.id', 'r.idGroup', 'r.description'));
        if (!self::isAdmin($coreRoleId)) {
            $select->joinLeft(array('rr' => 'resource_role'), 'r.id = rr.idResource', array('rid' => 'rr.id'))->where('rr.idRole = ?', $coreRoleId);
        }
        if ($searchText != null) {
            $select->where('r.description LIKE (?)', '%' . $searchText . '%');
        }
        $select->where('NOT r.deleted')->order(array('r.idGroup ASC', 'r.id ASC'));
        $select->setIntegrityCheck(false);
        //		echo 	$select;
        $result = $model->fetchAll($select);
        if ($result) {
            $var = null;
            foreach ($result as $value) {
                //BEGIN:Display resource category
                if (($var == NULL || $var != $value->getIdGroup()) && $value->getIdGroup() != null) {
                    if ($var != null) {
                        $return .= '</div>';
                        $return .= '</div>';
                    }
                    $return .= "<div class='resourceRole'>\n\t\t\t\t\t\t\t\t\t<h3>{$value->getResourceGroup()->getName()}</h3>\n\t\t\t\t\t\t\t\t\t<div>";
                }
                //END:Display resource category
                //Check if role id has access to resource,and check;
                $checked = '';
                if (self::hasAccessbyId($roleId, $value->getId())) {
                    $checked = 'checked ';
                }
                //If admin disable checkbox
                $readonly = '';
                if ($canAddResourceRole == false || $roleId == $coreRoleId) {
                    //$readonly = 'disabled="disabled"';
                    $isAdmin = self::isAdmin($coreRoleId) ? true : false;
                    if ($isAdmin) {
                        $checked = 'checked ';
                    }
                } else {
                    if ($isAdmin) {
                        $checked = 'checked ';
                        //$readonly = 'disabled="disabled"';
                    } else {
                        //BEGIN:If parent role doesn't have the resource, disable checkbox
                        //get parent roleId if there is any
                        $role = new Default_Model_Role();
                        $role->find($roleId);
                        if (!self::isAdmin($role->getIdParent())) {
                            if ($role->getIdParent() != null && !self::hasAccessbyId($role->getIdParent(), $value->getId())) {
                                //$readonly = 'disabled="disabled"';
                            }
                        }
                        //END:If parent role doesn't have the resource, disable checkbox
                    }
                }
                $return .= '<div class="resourceName">
								<input type="checkbox" class="roleResource" value="' . $value->getId() . '" name="roleResource[]" ' . $checked . $readonly . ' />' . $value->getDescription() . '
						   </div>';
                $var = $value->getIdGroup();
            }
            $return .= '</div>';
            $return .= '</div>';
        } else {
            $return .= 'Nu a fost gasit nici un rezultat.';
        }
        return $return;
    }
Esempio n. 3
0
 public function preDispatch(Zend_Controller_Request_Abstract $request)
 {
     if (!empty($_POST['PHPSESSID'])) {
         session_id($_POST['PHPSESSID']);
     }
     // GET MODULE/CONTROLLER/ACTION
     $module = $request->getModuleName();
     $controller = $request->getControllerName();
     $action = $request->getActionName();
     $auth = Zend_Auth::getInstance()->setStorage(new Zend_Auth_Storage_Session());
     // SEND MODULE/CONTROLLER/ACTION
     $layout = Zend_Layout::getMvcInstance();
     $layout->getView()->module = $module;
     $layout->getView()->controller = $controller;
     $layout->getView()->action = $action;
     // Read ini file
     $options['nestSeparator'] = '.';
     $iniSettings = new Zend_Config_Ini(APPLICATION_PATH . '/configs/application.ini', APPLICATION_ENV, $options);
     $db = new Zend_Db_Adapter_Pdo_Mysql(array('host' => $iniSettings->resources->db->params->host, 'username' => $iniSettings->resources->db->params->username, 'password' => $iniSettings->resources->db->params->password, 'dbname' => $iniSettings->resources->db->params->dbname));
     Zend_Registry::set('DB', $db);
     // BEGIN: Translate
     setlocale(LC_ALL, 'en_US.UTF-8');
     Zend_Registry::set('lang', 'ro');
     Zend_Registry::set('lang_id', '1');
     $adminLang = 'ro';
     $translate = new Zend_Translate('csv', 'data/lang/' . $adminLang . '.csv', $adminLang);
     $translate->setLocale($adminLang);
     Zend_Registry::set('translate', $translate);
     // END: Translate
     $acl = new Zend_Acl();
     $acl->add(new Zend_Acl_Resource('default:auth'));
     $acl->add(new Zend_Acl_Resource('default:index'));
     //BEGIN:ROLES
     $acl->addRole(new Zend_Acl_Role('guest'));
     $acl->allow('guest', 'default:auth', 'login');
     $acl->allow('guest', 'default:auth', 'index');
     $roles = Needs_Roles::fetchAllRoles();
     if ($roles) {
         foreach ($roles as $value) {
             $acl->addRole(new Zend_Acl_Role($value->getId()));
             $acl->deny($value->getId(), 'default:auth', 'login');
         }
     }
     //END:ROLES
     $accountRole = 'guest';
     if ($auth->hasIdentity()) {
         $accountAuth = $auth->getStorage()->read();
         Zend_Registry::set('user', $accountAuth);
         if ($accountAuth) {
             $accountRole = $accountAuth->getIdRole();
             $isAdmin = false;
             if (Needs_Roles::isAdmin($accountAuth->getIdRole())) {
                 $isAdmin = true;
             }
             Zend_Registry::set('isAdmin', $isAdmin);
             //BEGIN:NOTIFICARI
             $result_array = Needs_Tools::notifications($accountAuth->getId());
             Zend_Layout::getMvcInstance()->assign('notifications', $result_array[1]);
             Zend_Layout::getMvcInstance()->assign('notification_results', $result_array[0]);
             //BEGIN:NOTIFICARI
         }
     }
     //BEGIN:SETTING
     $settingsAll = new Default_Model_Setting();
     $select = $settingsAll->getMapper()->getDbTable()->select();
     $resultSettings = $settingsAll->fetchAll($select);
     if (null != $resultSettings) {
         foreach ($resultSettings as $value) {
             defined(strtoupper($value->getConst())) || define(strtoupper($value->getConst()), $value->getValue());
         }
     }
     //END:SETTING
     switch ($module) {
         //front-end
         default:
             $layout->setLayout('admin');
             //if ($auth->hasIdentity()) {
             //BEGIN:MENIU+RESOURCES
             $arrResources = array('default:index', 'default:auth');
             $resourcesGroup = Needs_Roles::fetchAllResourceGroups();
             if ($resourcesGroup) {
                 foreach ($resourcesGroup as $key => $modelMenu) {
                     //fetch resources by resource group
                     $submenu = new Default_Model_Resource();
                     $select = $submenu->getMapper()->getDbTable()->select()->where('deleted = ?', 0)->where('idGroup = ?', $modelMenu->getId());
                     $arrSubMenu = $submenu->fetchAll($select);
                     foreach ($arrSubMenu as $submenu) {
                         if ($submenu->getController() == NULL) {
                             continue;
                         }
                         $modul = $submenu->getModule() != NULL ? $submenu->getModule() : 'default';
                         $resource = $modul . ':' . $submenu->getController() . ':' . $submenu->getAction();
                         //chack if has access
                         $hasaccess = Needs_Roles::hasAccessbyId($accountRole, $submenu->getId());
                         //check if resource is already made
                         if (!in_array($resource, $arrResources)) {
                             //add resource to acl and to $arrResources
                             $acl->add(new Zend_Acl_Resource($resource));
                             $arrResources[] = $resource;
                             if ($hasaccess) {
                                 //allow on modul:controller (resource)
                                 $acl->allow($accountRole, $resource);
                             }
                         }
                         //BEGIN:allow on action
                         //								if($hasaccess){
                         //									//echo $resource.','.$submenu->getAction().'<br/>';
                         //									$acl->allow($accountRole, $resource, $submenu->getAction());
                         //								}else{
                         //									//$acl->deny($accountRole, $resource,$submenu->getAction());
                         //								}
                         //END:allow on action
                         if ($submenu->getInMeniu()) {
                             //BEGIN:TOP MENIU
                             $visible = $submenu->getVisible() ? true : false;
                             if ($submenu->getFirstNode()) {
                                 $pages[$key] = array('label' => $modelMenu->getName(), 'title' => $modelMenu->getName(), 'module' => $modul, 'controller' => $submenu->getController(), 'action' => $submenu->getAction(), 'resource' => $resource, 'class' => $modelMenu->getIconClass(), 'visible' => $visible);
                             }
                             //END:TOP MENIU
                             //BEGIN:SUBMENIU
                             $label = $submenu->getDescription();
                             $pages[$key]['pages'][] = array('label' => $label, 'title' => $label, 'module' => $modul, 'controller' => $submenu->getController(), 'action' => $submenu->getAction(), 'resource' => $resource, 'visible' => $visible);
                             //END:SUBMENIU
                         }
                     }
                 }
                 //}
                 //allow on index if logged in
                 if ($auth->hasIdentity()) {
                     $acl->allow($accountRole, 'default:index:index');
                     $acl->deny($accountRole, 'default:auth', 'login');
                     $acl->deny($accountRole);
                 }
                 //END:MENIU+RESOURCES
             }
             // Create container from array
             $container = new Zend_Navigation($pages);
             $layout->getView()->navigation($container)->setAcl($acl)->setRole($accountRole);
             $layout->getView()->headTitle('Admin', 'SET');
             $stylesheets = $layout->getView()->headLink();
             $stylesheets->prependStylesheet(WEBROOT . 'theme/front/css/style.css');
             $stylesheets->prependStylesheet(WEBROOT . 'theme/front/css/vali.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/js/jquery-ui/css/custom-theme/jquery-ui-1.10.4.custom.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/admin/js/uploadify/uploadify.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/admin/js/fancybox/jquery.fancybox.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/js/validation/validationEngine.jquery.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/css/shThemeDefault.css')->appendStylesheet(WEBROOT . '/theme/front/js/jquery-uniform/css/uniform.default.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/css/ana.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/css/shCoreDefault.min.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/css/shThemejqPlot.min.css');
             $stylesheets->appendStylesheet(WEBROOT . 'theme/front/css/spectrum.css');
             $javascripts = $layout->getView()->headScript();
             $javascripts->prependFile(WEBROOT . 'theme/admin/js/jquery-1.8.3.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jquery-ui/js/jquery-ui-1.10.4.custom.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/admin/js/uploadify/jquery.uploadify.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/validation/jquery.validationEngine.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/validation/jquery.validationEngine-en.js');
             $javascripts->appendFile(WEBROOT . 'theme/admin/js/jquery.livequery.js');
             $javascripts->appendFile(WEBROOT . 'theme/admin/js/tipsy.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/fancybox/source/jquery.fancybox.pack.js')->appendFile(WEBROOT . 'theme/front/js/jquery-uniform/jquery.uniform.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/shCore.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/shBrushPhp.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/scripts.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jquery.jqplot.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jqplot.dateAxisRenderer.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jqplot.barRenderer.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jqplot.categoryAxisRenderer.min.js');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/jquery.editinplace.js');
             $javascripts->appendFile('http://www.google.com/jsapi');
             $javascripts->appendFile(WEBROOT . 'theme/front/js/spectrum.js');
             //
             switch ($controller) {
                 case 'error':
                     switch ($action) {
                         case 'error':
                             $layout->setLayout('error');
                             break;
                         default:
                             break;
                     }
                     break;
                 case 'iframe':
                     $layout->setLayout('iframe');
                     break;
                 case 'auth':
                     $layout->setLayout('auth');
                     switch ($action) {
                         case 'login':
                             $layout->getView()->headTitle('Login', 'SET');
                             if (!$acl->isAllowed($accountRole, 'default:auth', 'login')) {
                                 $this->_response->setRedirect(WEBROOT . 'index');
                             }
                             break;
                         default:
                             break;
                     }
                     break;
                 default:
                     $layout->setLayout('layout');
                     if (!$acl->isAllowed($accountRole, $module . ':' . $controller . ':' . $action)) {
                         $this->_response->setRedirect(WEBROOT . 'auth/login');
                     }
                     break;
             }
             break;
     }
 }