/** * check if a valid action Id is given. if not throw an exception * * @access private * @throws Exception if no valid id is given * @return int the Id */ private function checkActionIdParam() { $id = $this->getRequest()->getParam('id'); if ($id === NULL || is_numeric($id) === FALSE || $this->dbAction->find($id)->count() === 0) { throw new Admin_Model_Acl_Exception('Invalid or no Id Parameter given'); } return (int) $id; }
/** * Change the Status of a controller (enabled/disabled) * * @view views/scripts/controller/status.phtml * @access public */ public function statusAction() { $ctrlRow = new Admin_Model_DbRow_Controller($this->dbCtrl->find($this->checkControllerIdParam())); $ctrlRow->set('enabled', $ctrlRow->get('enabled') == 1 ? 0 : 1); $this->dbCtrl->update($ctrlRow->toDbArray(array('enabled')), $ctrlRow->get('id')); // disabled all actions too, they are relevant in the ACL if ($ctrlRow->get('enabled') === 0) { $actionRow = new Admin_Model_DbRow_Action(array('enabled' => 0)); $actionDbModel = new Admin_Model_DbTable_Acl_Action(); $actionDbModel->updateWithControllerId($actionRow->toDbArray(array('enabled')), $ctrlRow->get('id')); } $this->_redirect('admin/controller/index'); }
/** * Save the Permission for an action * * @return array */ public function saveActionPermissionsAction() { $ruleModel = new Admin_Model_DbTable_Acl_Rule(); $roleModel = new Admin_Model_DbTable_Acl_Role(); $actionModel = new Admin_Model_DbTable_Acl_Action(); $data = Zend_Json::decode($this->request->getParam('permissions', array())); $return = array(); if (!is_array($data) || !empty($data['aId'])) { // if we have no array or the controller id is directly in the array // we nest the array in an array to get the foreach to work // extjs is sending object if only 1 row has changed and an array of object // if multiple changes occure $data = array($data); } foreach ($data as $el) { $role = $roleModel->find($el['roleId']); $action = $actionModel->find($el['aId']); // not an action provided or multiple controller found if ($action->count() !== 1) { continue; } // not a roleId provided or multiple roles found if ($role->count() !== 1) { continue; } $action = new Admin_Model_DbRow_Action($action->current()); $role = new Admin_Model_DbRow_Role($role->current()); if ($el['rule'] == Admin_Model_DbTable_Acl_Rule::RULE_DENY) { $rule = Admin_Model_DbTable_Acl_Rule::RULE_DB_DENY; } elseif ($el['rule'] == Admin_Model_DbTable_Acl_Rule::RULE_ALLOW) { $rule = Admin_Model_DbTable_Acl_Rule::RULE_DB_ALLOW; } else { $rule = NULL; } $ruleModel->deleteWithActionRole($action->get('id'), $role->get('id')); if ($rule !== NULL) { $permission = new Admin_Model_DbRow_Rule(array('mcId' => $action->get('mcId'), 'aId' => $action->get('id'), 'roleId' => $role->get('id'), 'rule' => $rule)); $ruleModel->insert($permission->toDbArray()); } $return[] = array('ident' => join("_", array($role->get('id'), $action->get('mcId'), $action->get('id'))), 'mcId' => $action->get('mcId'), 'aId' => $action->get('id'), 'roleName' => $role->get('name'), 'roleId' => $role->get('id'), 'rule' => $rule); } return $this->responseSuccess(array('permissions' => $return)); }