PermissionsTrait::assignRole() - Code Metrics - Inspection of "Feature email templates payments subscriptions" - bakaphp/phalcon-api - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#65)

by Rafael

created 2019-03-18 20:24 UTC

PermissionsTrait::assignRole() A

↳ Parent: PermissionsTrait

Complexity

Conditions	4
Paths	4

Size

Total Lines	25
Code Lines	15

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	8
CRAP Score	6

Importance

Changes

Metric	Value
cc	4
eloc	15
nc	4
nop	1
dl	0
loc	25
ccs	8
cts	16
cp	0.5
crap	6
rs	9.7666
c	0
b	0
f	0

<?php

declare(strict_types=1);

namespace Gewaer\Traits;

use Gewaer\Models\Roles;
use Gewaer\Models\UserRoles;
use Gewaer\Exception\ServerErrorHttpException;
use Gewaer\Exception\ModelException;

/**
 * Trait FractalTrait
 *
 * @package Gewaer\Traits
 */
trait PermissionsTrait
{
    /**
     * Assigne a user this role
     * Example: App.Role
     *
     * @param string $role
     * @return boolean
     */
    public function assignRole(string $role): bool
    {
        $role = Roles::getByAppName($role, $this->defaultCompany);

        if (!is_object($role)) {
            throw new ServerErrorHttpException('Role not found in DB');
        }

        $userRole = UserRoles::findFirst([
            'conditions' => 'users_id = ?0 and roles_id = ?1 and apps_id = ?2 and companies_id = ?3',
            'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId()]
        ]);

        if (!is_object($userRole)) {
            $userRole = new UserRoles();
            $userRole->users_id = $this->getId();
            $userRole->roles_id = $role->getId();
            $userRole->apps_id = $role->apps_id;
            $userRole->companies_id = $this->currentCompanyId();
            if (!$userRole->save()) {
                throw new ModelException((string) current($userRole->getMessages()));
            }
        }

        return true;
    }

    /**
     * Remove a role for the current user
     * Example: App.Role
     *
     * @param string $role
     * @return boolean
     */
    public function removeRole(string $role): bool
    {
        $role = Roles::getByAppName($role, $this->defaultCompany);

        if (!is_object($role)) {
            throw new ServerErrorHttpException('Role not found in DB');
        }

        $userRole = UserRoles::findFirst([
            'conditions' => 'users_id = ?0 and roles_id = ?1 and apps_id = ?2 and companies_id = ?3',
            'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId()]
        ]);

        if (is_object($userRole)) {
            return $userRole->delete();
        }

        return false;
    }

    /**
     * Check if the user has this role
     *
     * @param string $role
     * @return boolean
     */
    public function hasRole(string $role): bool
    {
        $role = Roles::getByAppName($role, $this->defaultCompany);

        if (!is_object($role)) {
            throw new ServerErrorHttpException('Role not found in DB');
        }

        $userRole = UserRoles::findFirst([
            'conditions' => 'users_id = ?0 and roles_id = ?1 and (apps_id = ?2 or apps_id = ?4) and companies_id = ?3',
            'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId(), $this->di->getApp()->getId()]
        ]);

        if (is_object($userRole)) {
            return true;
        }

        return false;
    }

    /**
     * At this current system / app can you do this?
     *
     * Example: resource.action
     *  Leads.add || leads.updates || lead.delete
     *
     * @param string $action
     * @return boolean
     */
    public function can(string $action): bool
    {
        //if we find the . then les
        if (strpos($action, '.') === false) {
            throw new ServerErrorHttpException('ACL - We are expecting the resource for this action');
        }

        $action = explode('.', $action);
        $resource = $action[0];
        $action = $action[1];
        //get your user account role for this app or the canvas ecosystem
        $role = $this->getPermission('apps_id in (' . \Phalcon\DI::getDefault()->getConfig()->app->id . ',' . Roles::DEFAULT_ACL_APP_ID . ')')->roles->name;

        return $this->di->getAcl()->isAllowed($role, $resource, $action);
    }
}


1		<?php
2
3		declare(strict_types=1);
4
5		namespace Gewaer\Traits;
6
7		use Gewaer\Models\Roles;
8		use Gewaer\Models\UserRoles;
9		use Gewaer\Exception\ServerErrorHttpException;
10		use Gewaer\Exception\ModelException;
11
12		/**
13		* Trait FractalTrait
14		*
15		* @package Gewaer\Traits
16		*/
17		trait PermissionsTrait
18		{
19		/**
20		* Assigne a user this role
21		* Example: App.Role
22		*
23		* @param string $role
24		* @return boolean
25		*/
26	1	public function assignRole(string $role): bool
27		{
28	1	$role = Roles::getByAppName($role, $this->defaultCompany);
29
30	1	if (!is_object($role)) {
31		throw new ServerErrorHttpException('Role not found in DB');
32		}
33
34	1	$userRole = UserRoles::findFirst([
35	1	'conditions' => 'users_id = ?0 and roles_id = ?1 and apps_id = ?2 and companies_id = ?3',
36	1	'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId()]
37		]);
38
39	1	if (!is_object($userRole)) {
40		$userRole = new UserRoles();
41		$userRole->users_id = $this->getId();
42		$userRole->roles_id = $role->getId();
43		$userRole->apps_id = $role->apps_id;
44		$userRole->companies_id = $this->currentCompanyId();
45		if (!$userRole->save()) {
46		throw new ModelException((string) current($userRole->getMessages()));
47		}
48		}
49
50	1	return true;
51		}
52
53		/**
54		* Remove a role for the current user
55		* Example: App.Role
56		*
57		* @param string $role
58		* @return boolean
59		*/
60	1	public function removeRole(string $role): bool
61		{
62	1	$role = Roles::getByAppName($role, $this->defaultCompany);
63
64	1	if (!is_object($role)) {
65		throw new ServerErrorHttpException('Role not found in DB');
66		}
67
68	1	$userRole = UserRoles::findFirst([
69	1	'conditions' => 'users_id = ?0 and roles_id = ?1 and apps_id = ?2 and companies_id = ?3',
70	1	'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId()]
71		]);
72
73	1	if (is_object($userRole)) {
74	1	return $userRole->delete();
75		}
76
77		return false;
78		}
79
80		/**
81		* Check if the user has this role
82		*
83		* @param string $role
84		* @return boolean
85		*/
86		public function hasRole(string $role): bool
87		{
88		$role = Roles::getByAppName($role, $this->defaultCompany);
89
90		if (!is_object($role)) {
91		throw new ServerErrorHttpException('Role not found in DB');
92		}
93
94		$userRole = UserRoles::findFirst([
95		'conditions' => 'users_id = ?0 and roles_id = ?1 and (apps_id = ?2 or apps_id = ?4) and companies_id = ?3',
96		'bind' => [$this->getId(), $role->getId(), $role->apps_id, $this->currentCompanyId(), $this->di->getApp()->getId()]
97		]);
98
99		if (is_object($userRole)) {
100		return true;
101		}
102
103		return false;
104		}
105
106		/**
107		* At this current system / app can you do this?
108		*
109		* Example: resource.action
110		* Leads.add \|\| leads.updates \|\| lead.delete
111		*
112		* @param string $action
113		* @return boolean
114		*/
115	2	public function can(string $action): bool
116		{
117		//if we find the . then les
118	2	if (strpos($action, '.') === false) {
119		throw new ServerErrorHttpException('ACL - We are expecting the resource for this action');
120		}
121
122	2	$action = explode('.', $action);
123	2	$resource = $action[0];
124	2	$action = $action[1];
125		//get your user account role for this app or the canvas ecosystem
126	2	$role = $this->getPermission('apps_id in (' . \Phalcon\DI::getDefault()->getConfig()->app->id . ',' . Roles::DEFAULT_ACL_APP_ID . ')')->roles->name;
127
128	2	return $this->di->getAcl()->isAllowed($role, $resource, $action);
129		}
130		}
131

bakaphp / phalcon-api

Pull Request — master (#65)

PermissionsTrait::assignRole() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like