public function indexAction()
{
$this->_addHeadTitle("Permissions");
$this->view->permissions = AclPermission::findAll();
$this->view->resources = AclResource::findAll();
$this->view->roles = AclRole::findAll();
}
/**
* Update a role and his permissions
* @param array $params
* @return int
*/
public static function edit($params)
{
$class = __CLASS__;
$aclRole = Doctrine_Query::create()->update("{$class} r")->set("r.name", "'{$params['name']}'")->set("r.description", "'{$params['description']}'")->where("r.id = {$params['aclrole_id']}")->execute();
if (!empty($params['resources']) || !empty($params['resources_available'])) {
$params['resources'] = isset($params['resources']) ? $params['resources'] : array();
$params['resources_available'] = isset($params['resources_available']) ? $params['resources_available'] : array();
AclPermission::deleteRolePermissions($params['aclrole_id'], $params['resources']);
foreach ($params['resources_available'] as $resource) {
$permission = new AclPermission();
$permission->resource_id = $resource;
$permission->role_id = $params['aclrole_id'];
$permission->save();
}
}
return $aclRole;
}
public function processrolesAction()
{
$session = SessionWrapper::getInstance();
$this->_helper->layout->disableLayout();
$this->_helper->viewRenderer->setNoRender(TRUE);
$this->_translate = Zend_Registry::get("translate");
$post_array = $this->_getAllParams();
// debugMessage($this->_getAllParams()); exit;
$id = $post_array['id'];
$post_array['id'] = decode($id);
$perms = $post_array['permissions'];
unset($post_array['permissions']);
if (isEmptyString($id)) {
// add new role first
$newrole = new AclGroup();
$post_array['createdby'] = $session->getVar('userid');
$newrole->processPost($post_array);
// debugMessage($newrole->toArray()); debugMessage('error is '.$newrole->getErrorStackAsString());
$newrole->save();
$post_array['id'] = $newrole->getID();
} else {
// update role first
$newrole = new AclGroup();
$newrole->populate(decode($id));
$newrole->processPost($post_array);
// debugMessage($newrole->toArray()); debugMessage('error is '.$newrole->getErrorStackAsString()); // exit();
$newrole->save();
}
// exit;
$role = new AclGroup();
$role->populate($post_array['id']);
$permissions = $role->getPermissions();
$permissions_array = $permissions->toArray();
$post_array['permissions'] = $perms;
// set audit entry before save
if (!isArrayKeyAnEmptyString('permissions', $post_array)) {
$data = array();
foreach ($post_array['permissions'] as $key => $value) {
$data[$key] = $value;
$post_array['permissions'][$key]['groupid'] = $post_array['id'];
if (isArrayKeyAnEmptyString('flag', $value)) {
$post_array['permissions'][$key]['flag'] = 0;
} else {
$post_array['permissions'][$key]['flag'] = trim(intval($value['flag']));
}
if (isArrayKeyAnEmptyString('create', $value)) {
$post_array['permissions'][$key]['create'] = 0;
} else {
$post_array['permissions'][$key]['create'] = trim(intval($value['create']));
}
if (isArrayKeyAnEmptyString('edit', $value)) {
$post_array['permissions'][$key]['edit'] = 0;
} else {
$post_array['permissions'][$key]['edit'] = trim(intval($value['edit']));
}
if (isArrayKeyAnEmptyString('view', $value)) {
$post_array['permissions'][$key]['view'] = 0;
} else {
$post_array['permissions'][$key]['view'] = trim(intval($value['view']));
}
if (isArrayKeyAnEmptyString('list', $value)) {
$post_array['permissions'][$key]['list'] = 0;
} else {
$post_array['permissions'][$key]['list'] = trim(intval($value['list']));
}
if (isArrayKeyAnEmptyString('delete', $value)) {
$post_array['permissions'][$key]['delete'] = 0;
} else {
$post_array['permissions'][$key]['delete'] = trim(intval($value['delete']));
}
if (isArrayKeyAnEmptyString('approve', $value)) {
$post_array['permissions'][$key]['approve'] = 0;
} else {
$post_array['permissions'][$key]['approve'] = trim(intval($value['approve']));
}
if (isArrayKeyAnEmptyString('export', $value)) {
$post_array['permissions'][$key]['export'] = 0;
} else {
$post_array['permissions'][$key]['export'] = trim(intval($value['export']));
}
if (isArrayKeyAnEmptyString('id', $value)) {
$post_array['permissions'][$key]['id'] = NULL;
}
$post_array['permissions'][$key]['createdby'] = $session->getVar('userid');
$post_array['permissions'][$key]['datecreated'] = getCurrentMysqlTimestamp();
if (!isArrayKeyAnEmptyString('id', $value)) {
$post_array['permissions'][$key]['lastupdatedby'] = $session->getVar('userid');
$post_array['permissions'][$key]['lastupdatedate'] = getCurrentMysqlTimestamp();
} else {
$post_array['createdby'] = $session->getVar('userid');
}
}
// end loop through permissions to unset empty groupids
}
// debugMessage($post_array); exit();
if (!isEmptyString($id)) {
$beforesave = $post_array['permissions'];
// debugMessage($beforesave);
}
$perm_collection = new Doctrine_Collection(Doctrine_Core::getTable("AclPermission"));
foreach ($post_array['permissions'] as $key => $value) {
$perm = new AclPermission();
if (!isArrayKeyAnEmptyString('id', $value)) {
$perm->populate($value['id']);
}
$perm->processPost($value);
if ($perm->isValid()) {
$perm_collection->add($perm);
} else {
debugMessage('Error: ' . $perm->getErrorStackAsString());
exit;
}
}
try {
$perm_collection->save();
if (isEmptyString($id)) {
# add log to audit trail
$url = $this->view->serverUrl($this->view->baseUrl('role/view/id/' . encode($newrole->getID())));
$usecase = '0.4';
$module = '0';
$type = SYSTEM_CREATEROLE;
$details = "Role <a href='" . $url . "' class='blockanchor'>" . $newrole->getName() . "</a> created";
} else {
$url = $this->view->serverUrl($this->view->baseUrl('role/view/id/' . encode($newrole->getID())));
$usecase = '0.5';
$module = '0';
$type = SYSTEM_UPDATEROLE;
$details = "Role <a href='" . $url . "' class='blockanchor'>" . $newrole->getName() . "</a> updated";
$prejson = json_encode($beforesave);
$after = $perm_collection->toArray();
debugMessage($after);
$postjson = json_encode($post_array);
// debugMessage($postjson);
// $diff = array_diff($beforesave, $after); // debugMessage($diff);
$jsondiff = '';
// debugMessage($jsondiff);
}
$browser = new Browser();
$audit_values = $session->getVar('browseraudit');
$audit_values['module'] = $module;
$audit_values['usecase'] = $usecase;
$audit_values['transactiontype'] = $type;
$audit_values['status'] = "Y";
$audit_values['userid'] = $session->getVar('userid');
$audit_values['transactiondetails'] = $details;
$audit_values['url'] = $url;
if (!isEmptyString($id)) {
$audit_values['isupdate'] = 1;
$audit_values['prejson'] = $prejson;
$audit_values['postjson'] = $postjson;
$audit_values['jsondiff'] = $jsondiff;
}
// debugMessage($audit_values);
$this->notify(new sfEvent($this, $type, $audit_values));
if (!isEmptyString($this->_getParam(SUCCESS_MESSAGE))) {
$session->setVar(SUCCESS_MESSAGE, $this->_translate->translate($this->_getParam(SUCCESS_MESSAGE)));
}
$this->_helper->redirector->gotoUrl($this->view->baseUrl("role/view/id/" . encode($role->getID())));
} catch (Exception $e) {
// debugMessage($perm_collection->toArray());
// debugMessage('error in save. '.$e->getMessage());
$session->setVar(ERROR_MESSAGE, $e->getMessage());
$this->_helper->redirector->gotoUrl(decode($this->_getParam(URL_FAILURE)));
}
}
