コード例 #1
0
ファイル: Log.php プロジェクト: soundintheory/fuel-cmf
 /**
  * Creates a log entry with the given data
  * @param \CMF\Model\User $user User to log against
  * @param \CMF\Model\Base $item Item to log against
  * @param string $action The name of the action that has happened
  * @param string $message An additional verbose message if required
  * @return void
  */
 public static function add($user = null, $item = null, $action = 'view', $message = '')
 {
     $log = array();
     // Set the user info
     if ($user === null) {
         $user = \CMF\Auth::current_user();
     }
     if ($user !== null) {
         $log['user_id'] = $user->id;
         $log['user_type'] = get_class($user);
     } else {
         $log['user_id'] = $log['user_type'] = null;
     }
     // Set the item data
     if ($item === null) {
         $item = \CMF::currentModel();
     }
     if ($item !== null) {
         $log['item_id'] = $item->id;
         $log['item_type'] = get_class($item);
         $log['item_label'] = strip_tags($item->display());
     } else {
         $log['item_id'] = $log['item_type'] = $log['item_label'] = null;
     }
     // Action and message
     $log['action'] = $action;
     $log['message'] = $message;
     // Add the log
     static::$logs_made[] = $log;
     \DB::insert('logs')->columns(array('date', 'user_id', 'user_type', 'item_id', 'item_type', 'item_label', 'action', 'message'))->values(array(\Date::forge()->format('mysql'), $log['user_id'], $log['user_type'], $log['item_id'], $log['item_type'], $log['item_label'], $log['action'], $log['message']))->execute();
 }
コード例 #2
0
ファイル: auth.php プロジェクト: soundintheory/fuel-cmf
 public function action_logout()
 {
     if (\CMF\Auth::logout()) {
         \Session::delete('cmf.admin.language');
         \Response::redirect('/admin/login', 'location');
     }
 }
コード例 #3
0
ファイル: base.php プロジェクト: soundintheory/fuel-cmf
 public function after($response)
 {
     // If a response has been provided, just go with it
     if (!is_null($response)) {
         return $response;
     }
     // Populate the sidebar
     $this->sidebar = \Admin::getSidebarConfig();
     // Add assets
     $this->data['assets'] = array('js' => \Arr::get($this->assets, 'js', array()), 'css' => \Arr::get($this->assets, 'css', array()));
     // JSON encode the JS
     $this->js['settings'] = $this->getSettings();
     $this->data['js_data'] = json_encode($this->js);
     // Info about the user
     $user = \CMF\Auth::current_user();
     $this->user = array('account' => '/admin/users/' . $user->id . '/edit', 'username' => $user->username, 'super_user' => $user->super_user);
     // Some vital settings
     $this->admin_title = \Lang::get('admin.title', array(), \Config::get("cmf.admin.title", ''));
     $this->base_url = \Admin::$base;
     $this->modules = \Config::get('cmf.admin.modules', false);
     $this->current_module = \Admin::$current_module;
     $this->current_class = \Admin::$current_class;
     $this->dashboard_title = \Lang::get('admin.modules.' . \Admin::$current_module . '.title', array(), \Config::get('cmf.admin.modules.' . \Admin::$current_module . '.title', \Lang::get('admin.common.dashboard', array(), 'Dashboard')));
     $this->headers['X-XSS-Protection'] = 0;
     return \Response::forge(\View::forge($this->template, $this->data, false), $this->status, $this->headers);
 }
コード例 #4
0
ファイル: session.php プロジェクト: soundintheory/fuel-cmf
 /**
  * Create an API key for a user in a particular scope
  * @return \CMF\Model\User\Apikey
  */
 public function getKey($user, $type, $scope)
 {
     $key = new \Model_User_Apikey();
     $key->populate(array('user_id' => $user->id, 'user_type' => $type, 'expires_at' => new \DateTime('@' . (strtotime('now') + 25 * 60 * 60)), 'access_token' => \CMF\Auth::forge()->generate_token(), 'scope' => $scope));
     \D::manager()->persist($key);
     \D::manager()->flush();
     return $key;
 }
コード例 #5
0
 /** inheritdoc */
 public static function displayForm($value, &$settings, $model)
 {
     // Set up the values for the select
     $values = array();
     if (isset($value) && $value instanceof \Doctrine\Common\Collections\Collection) {
         foreach ($value as $val) {
             $values[] = strval($val->get('id'));
         }
     }
     $target_prop = $settings['mapping']['isOwningSide'] === true ? $settings['mapping']['inversedBy'] : $settings['mapping']['mappedBy'];
     if (empty($target_prop) || is_null($model->id)) {
         $target_prop = false;
     }
     // Set up the values for the template
     $settings = static::settings($settings);
     $target_class = $settings['mapping']['targetEntity'];
     $target_table = \CMF\Admin::getTableForClass($target_class);
     $options = $target_class::options(\Arr::get($settings, 'filters', array()), array(), null, null, null, is_array($settings['select2']), \Arr::get($settings, 'group_by'));
     $settings['required'] = isset($settings['required']) ? $settings['required'] : false;
     $errors = $model->getErrorsForField($settings['mapping']['fieldName']);
     $has_errors = count($errors) > 0;
     $settings['title'] = $settings['title'] . ($settings['required'] ? ' *' : '') . ($has_errors ? ' - ' . $errors[0] : '');
     $settings['cid'] = 'field_' . md5($settings['mapping']['fieldName'] . static::type());
     $settings['add_link'] = \Uri::create('/admin/' . $target_table . '/create?_mode=inline&_cid=' . $settings['cid'] . ($target_prop !== false ? '&' . $target_prop . '=' . $model->id : ''));
     $settings['singular'] = $target_class::singular();
     $settings['icon'] = $target_class::icon();
     $settings['is_select2'] = false;
     // Permissions
     $settings['can_edit'] = \CMF\Auth::can('edit', $target_class);
     $settings['can_create'] = \CMF\Auth::can('create', $target_class) && $settings['can_edit'];
     $settings['create'] = $settings['create'] && $settings['can_create'];
     $settings['edit'] = $settings['edit'] && $settings['can_edit'];
     if ($settings['transfer'] === true) {
         $settings['input_attributes']['class'] .= ' input-xxlarge';
         $transfer_options = array();
         foreach ($options as $key => $value) {
             $transfer_options[] = array('value' => $key, 'content' => $value);
         }
         $content = strval(\View::forge('admin/fields/collection/multiselect.twig', array('settings' => $settings, 'options' => $options, 'values' => $values), false));
         return array('content' => $content, 'widget' => $settings['widget'], 'assets' => array('js' => array('/admin/assets/js/bootstrap-transfer.js', '/admin/assets/js/fields/collection/transfer.js'), 'css' => array('/admin/assets/css/bootstrap-transfer.css')), 'js_data' => array('options' => $transfer_options, 'values' => $values, 'edit' => $settings['edit'], 'create' => $settings['create']));
     } else {
         if (is_array($settings['select2'])) {
             $settings['sortable'] = $settings['select2']['sortable'] = $target_class::sortable() && isset($settings['mapping']['orderBy']) && isset($settings['mapping']['orderBy']['pos']) && $settings['mapping']['orderBy']['pos'] == 'ASC';
             $settings['is_select2'] = true;
             $settings['input_attributes']['class'] .= 'input-xxlarge select2';
             $content = strval(\View::forge('admin/fields/collection/multiselect.twig', array('settings' => $settings, 'options' => $options, 'values' => $values), false));
             $settings['select2']['placeholder'] = 'click to select a ' . strtolower($settings['singular']) . '...';
             $settings['select2']['target_table'] = $target_table;
             // Permissions
             $settings['select2']['create'] = $settings['create'];
             $settings['select2']['edit'] = $settings['edit'];
             return array('content' => $content, 'widget' => $settings['widget'], 'assets' => array('css' => array('/admin/assets/select2/select2.css'), 'js' => array('/admin/assets/select2/select2.min.js', '/admin/assets/js/fields/select2.js')), 'js_data' => $settings['select2']);
         }
     }
     $settings['input_attributes']['class'] .= ' input-xxlarge';
     return array('content' => strval(\View::forge('admin/fields/collection/multiselect.twig', array('settings' => $settings, 'options' => $options, 'values' => $values), false)), 'assets' => array('js' => array('/admin/assets/js/fields/collection/multiselect.js')), 'widget' => false);
     return;
 }
コード例 #6
0
ファイル: ManyToOne.php プロジェクト: soundintheory/fuel-cmf
 /** inheritdoc */
 public static function displayForm($value, &$settings, $model)
 {
     $id = isset($value) ? $value->id : '';
     $settings = static::settings($settings);
     $settings['cid'] = 'field_' . md5($settings['mapping']['fieldName'] . static::type());
     $required = isset($settings['required']) ? $settings['required'] : false;
     $include_label = isset($settings['label']) ? $settings['label'] : true;
     $target_class = $settings['mapping']['targetEntity'];
     $target_table = \CMF\Admin::getTableForClass($target_class);
     $target_prop = $settings['mapping']['isOwningSide'] === true ? $settings['mapping']['inversedBy'] : $settings['mapping']['mappedBy'];
     if (empty($target_prop) || is_null($model->id)) {
         $target_prop = false;
     }
     $add_link = \Uri::create('/admin/' . $target_table . '/create?_mode=inline&_cid=' . $settings['cid'] . ($target_prop !== false ? '&' . $target_prop . '=' . $model->id : ''));
     $options = $target_class::options(\Arr::get($settings, 'filters', array()), array(), null, null, null, is_array($settings['select2']), \Arr::get($settings, 'group_by'));
     $has_controls = $settings['create'] !== false;
     // Description?
     $description = isset($settings['description']) ? '<span class="help-block">' . $settings['description'] . '</span>' : '';
     if ($settings['allow_empty']) {
         $options = array('' => '') + $options;
     }
     $errors = $model->getErrorsForField($settings['mapping']['fieldName']);
     $has_errors = count($errors) > 0;
     $input_attributes = $settings['input_attributes'];
     $label = !$include_label ? '' : \Form::label($settings['title'] . ($required ? ' *' : '') . ($has_errors ? ' - ' . $errors[0] : ''), $settings['mapping']['fieldName'], array('class' => 'item-label'));
     $add_link = html_tag('a', array('href' => $add_link, 'class' => 'btn btn-mini btn-create'), '<i class="fa fa-plus"></i> &nbsp;create ' . strtolower($target_class::singular()));
     // Permissions
     $settings['can_edit'] = \CMF\Auth::can('edit', $target_class);
     $settings['can_create'] = \CMF\Auth::can('create', $target_class) && $settings['can_edit'];
     $settings['create'] = $settings['create'] && $settings['can_create'];
     $settings['edit'] = $settings['edit'] && $settings['can_edit'];
     if ($settings['create'] === false) {
         $add_link = " ";
     }
     $controls_top = html_tag('div', array('class' => 'controls-top'), $add_link);
     if (is_array($settings['select2'])) {
         $input_attributes['class'] .= 'input-xxlarge select2';
         $input = \Form::select($settings['mapping']['fieldName'], $id, $options, $input_attributes);
         $settings['select2']['placeholder'] = 'click to select ' . strtolower($target_class::singular()) . '...';
         $settings['select2']['target_table'] = $target_table;
         // Permissions
         $settings['select2']['create'] = $settings['create'];
         $settings['select2']['edit'] = $settings['edit'];
         if (!$required) {
             $settings['select2']['allowClear'] = true;
         }
         return array('content' => html_tag('div', array('class' => 'controls control-group' . ($has_controls ? ' field-with-controls' : '') . ($has_errors ? ' error' : ''), 'id' => $settings['cid']), $label . $description . $input . $controls_top) . '<div class="clear"><!-- --></div>', 'widget' => false, 'assets' => array('css' => array('/admin/assets/select2/select2.css'), 'js' => array('/admin/assets/select2/select2.min.js', '/admin/assets/js/fields/select2.js')), 'js_data' => $settings['select2']);
     }
     $input_attributes['class'] .= ' input-xxlarge';
     $input = \Form::select($settings['mapping']['fieldName'], $id, $options, $input_attributes);
     if (isset($settings['wrap']) && $settings['wrap'] === false) {
         return $label . $input;
     }
     return html_tag('div', array('class' => 'controls control-group' . ($has_controls ? ' field-with-controls' : '') . ($has_errors ? ' error' : ''), 'id' => $settings['cid']), $label . $description . $input . $controls_top) . '<div class="clear"><!-- --></div>';
 }
コード例 #7
0
ファイル: resource.php プロジェクト: soundintheory/fuel-cmf
 public function authorise()
 {
     // If there's a valid session already, allow access
     $user_type = \Input::param('user_type') ?: 'Admin\\Model_User';
     if (\CMF\Auth::logged_in(null, $user_type)) {
         return;
     }
     $auth = explode(' ', \Input::headers('Authorization', ' '));
     $sent_key = \Arr::get($auth, 1);
     // Try and find a valid key
     $key = \CMF\Model\User\Apikey::select('item')->where('item.access_token = :key')->andWhere('item.expires_at > :now')->setParameter('key', $sent_key)->setParameter('now', new \DateTime())->getQuery()->getResult();
     // Check the scope of the key, if one was found
     if (count($key)) {
         $key = $key[0];
         if ($key->scope == 'api') {
             return;
         }
     }
     throw new \HttpException('Login Required', \HttpException::UNAUTHORIZED);
 }
コード例 #8
0
 /** inheritdoc */
 public static function displayForm($value, &$settings, $model)
 {
     if (!\CMF\Auth::can(array('view', 'edit'), 'CMF\\Model\\Permission')) {
         return '';
     }
     // Kick the permissions and get the active classes
     \CMF\Auth::create_permissions();
     $all_actions = \CMF\Auth::all_actions();
     $activeClasses = \CMF\Admin::activeClasses();
     // Set up the values
     $values = array();
     if (isset($value) && ($value instanceof \Doctrine\Common\Collections\Collection || is_array($value))) {
         foreach ($value as $val) {
             $resource = $val->resource;
             $action = $val->action;
             $actions = isset($values[$resource]) ? $values[$resource] : array();
             if (!in_array($action, $actions)) {
                 $actions[] = $action;
             }
             $values[$resource] = $actions;
         }
     }
     // Get the resources defined in the config
     $extra_resources = \CMF\Auth::extra_resources();
     $resources = array();
     $resource_group = array('title' => \Lang::get('admin.common.resources'), 'classes' => array());
     $classes_index = 0;
     // Set the values of the resources
     foreach ($extra_resources as $resource_id => $extra_resource) {
         $extra_resource['values'] = isset($values[$resource_id]) ? $values[$resource_id] : array();
         $resource_group['classes'][$resource_id] = $extra_resource;
     }
     // If there are resources, add them at the top and update the classes index
     if (count($resource_group['classes']) > 0) {
         $resources[] = $resource_group;
         $classes_index = 1;
     }
     $resources[] = array('title' => \Lang::get('admin.common.content_types'), 'classes' => array());
     // Build the resources list...
     foreach ($activeClasses as $class_name => $classes) {
         if (count($classes) > 1) {
             $class_group = array();
             foreach ($classes as $group_class) {
                 $resource_title = $group_class::_static() ? $group_class::singular() : $group_class::plural();
                 $resource_icon = $group_class::icon();
                 $class_group[$group_class] = array('title' => $resource_title, 'icon' => $resource_icon, 'actions' => $group_class::_static() ? array('view', 'edit') : $all_actions, 'values' => isset($values[$group_class]) ? $values[$group_class] : array());
             }
             uasort($class_group, function ($a, $b) {
                 return strcmp(strtolower($a['title']), strtolower($b['title']));
             });
             $resources[] = array('title' => $class_name::plural(), 'classes' => $class_group);
         } else {
             $resource_title = $class_name::_static() ? $class_name::singular() : $class_name::plural();
             $resource_icon = $class_name::icon();
             $resources[$classes_index]['classes'][$class_name] = array('title' => $resource_title, 'icon' => $resource_icon, 'actions' => $class_name::_static() ? array('view', 'edit') : $all_actions, 'values' => isset($values[$class_name]) ? $values[$class_name] : array());
         }
     }
     uasort($resources[$classes_index]['classes'], function ($a, $b) {
         return strcmp(strtolower($a['title']), strtolower($b['title']));
     });
     $content = strval(\View::forge('admin/fields/auth/permissions.twig', array('settings' => $settings, 'resources' => $resources, 'actions' => $all_actions), false));
     return array('content' => $content, 'widget' => true, 'widget_title' => $settings['title'], 'assets' => array());
 }
コード例 #9
0
ファイル: Admin.php プロジェクト: soundintheory/fuel-cmf
 /**
  * Processes the config and generates data for the template to render the sidebar
  * @return array The sidebar config
  */
 public static function getSidebarConfig()
 {
     $sidebar_config = \Config::get(static::$sidebar_config_path, array());
     $current_group = 0;
     $output = array(array('heading' => false, 'items' => array()));
     $class_prefix = static::$current_module != '_root_' ? ucfirst(static::$current_module) . '\\' : '';
     // Check if the first item is a heading
     if (isset($sidebar_config[0]['heading'])) {
         $item = array_shift($sidebar_config);
         $output[0]['heading'] = $item['heading'];
     }
     foreach ($sidebar_config as $item) {
         if (isset($item['heading'])) {
             $current_group++;
             $output[$current_group] = array('heading' => $item['heading'], 'items' => array());
         } else {
             if (isset($item['model'])) {
                 $class_name = $class_prefix . $item['model'];
                 if (!class_exists($class_name)) {
                     $class_name = $item['model'];
                 }
                 if (!\CMF\Auth::can('view', $class_name)) {
                     continue;
                 }
                 $metadata = $class_name::metadata();
                 $output[$current_group]['items'][] = array('icon' => isset($item['icon']) ? $item['icon'] : $class_name::icon(), 'title' => isset($item['title']) ? $item['title'] : $class_name::plural(), 'href' => '/admin/' . $metadata->table['name'], 'class' => $class_name, 'active' => $class_name === static::$current_class);
             } else {
                 if (isset($item['link'])) {
                     if (!isset($item['title'])) {
                         $parts = explode('/', $item['link']);
                         $item['title'] = \Inflector::humanize(str_replace('-', ' ', array_pop($parts)));
                     }
                     $uri = trim(\Input::uri(), '/');
                     $cmp = trim($item['link'], '/');
                     $output[$current_group]['items'][] = array('icon' => isset($item['icon']) ? $item['icon'] : 'dashboard', 'title' => $item['title'], 'href' => $item['link'], 'active' => strpos($uri, $cmp) === 0);
                 }
             }
         }
     }
     return $output;
 }
コード例 #10
0
ファイル: User.php プロジェクト: soundintheory/fuel-cmf
 /**
  * Validates a user password & ensures an encrypted password is set
  *
  * @see \CMF\Model\User::_event_before_save()
  */
 private function _ensure_and_validate_password()
 {
     if (!empty($this->password)) {
         $this->encrypted_password = Auth::encrypt_password($this->password);
     }
     if (empty($this->encrypted_password)) {
         throw new \Exception(\Lang::get('admin.validation.required', array('field' => 'Password')));
     }
 }
コード例 #11
0
ファイル: item.php プロジェクト: soundintheory/fuel-cmf
 /**
  * For asyncronous saving - populates a model with the posted data and responds in JSON
  */
 public function action_populate($table_name, $id = null)
 {
     // Find class name and metadata etc
     $class_name = \Admin::getClassForTable($table_name);
     if ($class_name === false) {
         return $this->show404(null, "type");
     }
     if (!\CMF\Auth::can('edit', $class_name)) {
         return $this->show403('action_singular', array('action' => \Lang::get('admin.verbs.edit'), 'resource' => strtolower($class_name::singular())));
     }
     // Set the output content type
     $this->headers = array("Content-Type: text/plain");
     // If $id is null, we're populating multiple items
     if ($id === null) {
         // Construct the output
         $result = array('success' => true, 'num_updated' => 0);
         $post_data = \Input::post();
         $ids = array_keys($post_data);
         $em = \D::manager();
         if (count($ids) == 0) {
             return \Response::forge(json_encode($result), $this->status, $this->headers);
         }
         // Get the items we need to save
         $items = $class_name::select('item')->where('item.id IN(?1)')->setParameter(1, $ids)->getQuery()->getResult();
         if (count($items) == 0) {
             return \Response::forge(json_encode($result), $this->status, $this->headers);
         }
         foreach ($items as $item) {
             $id = $item->id;
             if (!isset($post_data[$id])) {
                 continue;
             }
             $result['num_updated'] += 1;
             $data = $post_data[$id];
             $item->populate($data, false);
             if (!$item->validate()) {
                 $result['success'] = false;
             }
             $em->persist($item);
         }
         // Try and save them all
         try {
             $em->flush();
         } catch (\Exception $e) {
             $result['success'] = false;
             $result['error'] = $e->getMessage();
         }
         // Return the JSON response
         return \Response::forge(json_encode($result), $this->status, $this->headers);
     }
     // Find the model, return 404 if not found
     $model = $class_name::find($id);
     if (is_null($model)) {
         return $this->show404(null, "item");
     }
     // Populate with the POST data
     $model->populate(\Input::post(), false);
     // Construct the output
     $result = array('success' => false);
     // Check validation
     if ($model->validate()) {
         $result['success'] = true;
     } else {
         $result['validation_errors'] = $model->errors;
     }
     // Try and save it
     try {
         $em = \D::manager();
         $em->persist($model);
         $em->flush();
         $result['updated_at'] = $model->updated_at->format("d/m/Y \\a\\t H:i:s");
     } catch (\Exception $e) {
         $result['success'] = false;
         $result['error'] = $e->getMessage();
     }
     // Return the JSON response
     return \Response::forge(json_encode($result), $this->status, $this->headers);
 }
コード例 #12
0
ファイル: list.php プロジェクト: soundintheory/fuel-cmf
 /**
  * Gets called from action_index() when a model is found to extend CMF\Model|Node
  * @param  string $class_name
  * @return void
  */
 public function treeView($class_name)
 {
     \Admin::setCurrentClass($class_name);
     $metadata = $class_name::metadata();
     // Create static items
     \Admin::createStaticInstances($metadata);
     // Add some context for the template
     $this->plural = $class_name::plural();
     $this->singular = $class_name::singular();
     $this->icon = $class_name::icon();
     // Get permissions
     $can_create = \CMF\Auth::can('create', $class_name);
     $can_edit = \CMF\Auth::can('edit', $class_name);
     $can_delete = \CMF\Auth::can('delete', $class_name);
     $can_manage = \CMF\Auth::can(array('view', 'edit'), 'CMF\\Model\\Permission');
     $classes = array();
     $classes[$class_name] = array('plural' => $this->plural, 'singular' => $this->singular, 'icon' => $this->icon, 'table_name' => $metadata->table['name'], 'can_create' => $can_create && $can_edit, 'can_edit' => $can_edit, 'can_delete' => $can_delete, 'superclass' => $class_name::superclass(), 'allowed_children' => $class_name::allowedChildren(), 'allowed_parents' => $class_name::allowedParents());
     foreach ($metadata->subClasses as $sub_class) {
         $subclass_metadata = $sub_class::metadata();
         $classes[$sub_class] = array('static' => $sub_class::_static(), 'superlock' => $sub_class::superlock(), 'plural' => $sub_class::plural(), 'singular' => $sub_class::singular(), 'icon' => $sub_class::icon(), 'table_name' => $subclass_metadata->table['name'], 'can_create' => \CMF\Auth::can('create', $sub_class), 'can_edit' => \CMF\Auth::can('edit', $sub_class), 'can_delete' => \CMF\Auth::can('delete', $sub_class), 'superclass' => false, 'allowed_children' => $sub_class::allowedChildren(), 'allowed_parents' => $sub_class::allowedParents(), 'disallowed_children' => $sub_class::disallowedChildren(), 'disallowed_parents' => $sub_class::disallowedParents());
     }
     // Item-specific permissions
     $user = \CMF\Auth::current_user();
     $item_permissions = array();
     $ids = array();
     $excluded_ids = array();
     $root_node = $class_name::getRootNode(true);
     $repo = \D::manager()->getRepository($class_name);
     $qb = $repo->getNodesHierarchyQueryBuilder($root_node);
     $this->tree_errors = null;
     $this->tree_is_valid = true;
     // If we have URLs, join them to the query
     if ($class_name::hasUrlField()) {
         $qb->addSelect('url, alias')->leftJoin('node.url', 'url')->leftJoin('url.alias', 'alias');
     }
     $q = $qb->getQuery();
     // Set the query hint if multi lingual!
     if (\CMF\Doctrine\Extensions\Translatable::enabled()) {
         $q->setHint(\Doctrine\ORM\Query::HINT_CUSTOM_OUTPUT_WALKER, 'Gedmo\\Translatable\\Query\\TreeWalker\\TranslationWalker');
     }
     //$tree = $this->processTreeNodes(\D::manager()->getRepository($class_name)->childrenHierarchy($root_node), $metadata, $ids);
     $tree = $this->processTreeNodes($repo->buildTree($q->getArrayResult()), $metadata, $ids);
     if (!$user->super_user) {
         $permissions = \CMF\Model\Permission::select('item.id, item.action, item.resource, item.item_id')->leftJoin('item.roles', 'roles')->where("item.resource = '{$class_name}'")->andWhere("item.item_id IN(?1)")->andWhere("roles IN (?2)")->setParameter(1, $ids)->setParameter(2, $user->roles->toArray())->getQuery()->getArrayResult();
         foreach ($permissions as $permission) {
             $item_actions = isset($item_permissions[$permission['item_id']]) ? $item_permissions[$permission['item_id']] : array();
             $item_actions[] = $permission['action'];
             $item_permissions[$permission['item_id']] = $item_actions;
         }
         foreach ($item_permissions as $item_id => $item_actions) {
             if (in_array('none', $item_actions) || count($item_actions) > 0 && !in_array('view', $item_actions)) {
                 $excluded_ids[] = $item_id;
             }
         }
         $tree = $this->filterTreeNodes($tree, $excluded_ids);
     } else {
         $this->tree_errors = $repo->verify();
         $this->tree_is_valid = $this->tree_errors === true;
     }
     // Import actions
     $importMethods = $class_name::importMethods();
     // Add more context for the template
     $this->table_name = $metadata->table['name'];
     $this->template = 'admin/item/tree.twig';
     $this->superlock = $class_name::superlock();
     $this->num_nodes = count($tree);
     // Permissions
     $this->can_create = $can_create && $can_edit;
     $this->can_edit = $can_edit;
     $this->can_delete = $can_delete;
     $this->can_manage = $can_manage;
     $this->can_import = !empty($importMethods) && $can_manage;
     // Add the stuff for JS
     $this->js['tree'] = $tree;
     $this->js['item_permissions'] = $item_permissions;
     $this->js['excluded_ids'] = $excluded_ids;
     $this->js['classes'] = $classes;
     $this->js['table_name'] = $metadata->table['name'];
     $this->js['plural'] = $this->plural;
     $this->js['singular'] = $this->singular;
     $this->js['class_name'] = $class_name;
     // Permissions for JS
     $this->js['can_create'] = $can_create && $can_edit;
     $this->js['can_edit'] = $can_edit;
     $this->js['can_delete'] = $can_delete;
     $this->js['can_manage'] = $can_manage;
 }