public function getPermissionsForUserGroup(UserGroupModel $userGroupModel, $includeChildrenPermissions = false) { global $DB, $app; $stat = $DB->prepare("SELECT permission_in_user_group.* FROM permission_in_user_group " . "WHERE permission_in_user_group.user_group_id = :user_group_id AND permission_in_user_group.removed_at IS NULL"); $stat->execute(array('user_group_id' => $userGroupModel->getId())); $permissions = array(); // base permissions while ($data = $stat->fetch()) { $ext = $app['extensions']->getExtensionById($data['extension_id']); if ($ext) { $per = $ext->getUserPermission($data['permission_key']); if ($per) { $permissions[] = $per; } } } // child permissions if ($includeChildrenPermissions) { // TODO } return $permissions; }
public function update(UserGroupModel $userGroup, $fields, UserAccountModel $user = null) { $alreadyInTransaction = $this->db->inTransaction(); // Make Information Data $fieldsSQL1 = array(); $fieldsParams1 = array('id' => $userGroup->getId()); foreach ($fields as $field) { $fieldsSQL1[] = " " . $field . "=:" . $field . " "; if ($field == 'title') { $fieldsParams1['title'] = substr($userGroup->getTitle(), 0, VARCHAR_COLUMN_LENGTH_USED); } else { if ($field == 'description') { $fieldsParams1['description'] = $userGroup->getDescription(); } else { if ($field == 'is_deleted') { $fieldsParams1['is_deleted'] = $userGroup->getIsDeleted() ? 1 : 0; } else { if ($field == 'is_in_index') { $fieldsParams1['is_in_index'] = $userGroup->getIsDeleted() ? 1 : 0; } else { if ($field == 'is_includes_anonymous') { $fieldsParams1['is_includes_anonymous'] = $userGroup->getIsIncludesAnonymous() ? 1 : 0; } else { if ($field == 'is_includes_users') { $fieldsParams1['is_includes_users'] = $userGroup->getIsIncludesUsers() ? 1 : 0; } else { if ($field == 'is_includes_verified_users') { $fieldsParams1['is_includes_verified_users'] = $userGroup->getIsIncludesVerifiedUsers() ? 1 : 0; } } } } } } } } // Make History Data $fieldsSQL2 = array('user_group_id', 'user_account_id', 'created_at'); $fieldsSQLParams2 = array(':user_group_id', ':user_account_id', ':created_at'); $fieldsParams2 = array('user_group_id' => $userGroup->getId(), 'user_account_id' => $user ? $user->getId() : null, 'created_at' => $this->timesource->getFormattedForDataBase()); foreach ($this->possibleFields as $field) { if (in_array($field, $fields) || $field == 'title') { $fieldsSQL2[] = " " . $field . " "; $fieldsSQLParams2[] = " :" . $field . " "; if ($field == 'title') { $fieldsParams2['title'] = substr($userGroup->getTitle(), 0, VARCHAR_COLUMN_LENGTH_USED); } else { if ($field == 'description') { $fieldsParams2['description'] = $userGroup->getDescription(); } else { if ($field == 'is_deleted') { $fieldsParams2['is_deleted'] = $userGroup->getIsDeleted() ? 1 : 0; } else { if ($field == 'is_in_index') { $fieldsParams2['is_in_index'] = $userGroup->getIsDeleted() ? 1 : 0; } else { if ($field == 'is_includes_anonymous') { $fieldsParams2['is_includes_anonymous'] = $userGroup->getIsIncludesAnonymous() ? 1 : 0; } else { if ($field == 'is_includes_users') { $fieldsParams2['is_includes_users'] = $userGroup->getIsIncludesUsers() ? 1 : 0; } else { if ($field == 'is_includes_verified_users') { $fieldsParams2['is_includes_verified_users'] = $userGroup->getIsIncludesVerifiedUsers() ? 1 : 0; } } } } } } } $fieldsSQL2[] = " " . $field . "_changed "; $fieldsSQLParams2[] = " 0 "; } else { $fieldsSQL2[] = " " . $field . "_changed "; $fieldsSQLParams2[] = " -2 "; } } try { if (!$alreadyInTransaction) { $this->db->beginTransaction(); } // Information SQL $stat = $this->db->prepare("UPDATE user_group_information SET " . implode(",", $fieldsSQL1) . " WHERE id=:id"); $stat->execute($fieldsParams1); // History SQL $stat = $this->db->prepare("INSERT INTO user_group_history (" . implode(",", $fieldsSQL2) . ") VALUES (" . implode(",", $fieldsSQLParams2) . ")"); $stat->execute($fieldsParams2); if (!$alreadyInTransaction) { $this->db->commit(); } } catch (Exception $e) { if (!$alreadyInTransaction) { $this->db->rollBack(); } throw $e; } }
public function removePermissionFromGroup(\BaseUserPermission $userPermissionModel, UserGroupModel $userGroupModel, UserAccountModel $currentUser = null) { global $DB; $stat = $DB->prepare("UPDATE permission_in_user_group SET removed_at=:removed_at, removed_by_user_account_id=:removed_by_user_account_id WHERE " . "extension_id=:extension_id AND permission_key = :permission_key AND user_group_id = :user_group_id AND removed_at IS NULL"); $stat->execute(array("extension_id" => $userPermissionModel->getUserPermissionExtensionID(), "permission_key" => $userPermissionModel->getUserPermissionKey(), "user_group_id" => $userGroupModel->getId(), "removed_at" => \TimeSource::getFormattedForDataBase(), "removed_by_user_account_id" => $currentUser ? $currentUser->getId() : null)); }