nextcloud /
passman
@@ -43,23 +43,39 @@ discard block |
||
| 43 | 43 | public function updateCredential($credential) { |
| 44 | 44 | return $this->credentialMapper->updateCredential($credential); |
| 45 | 45 | } |
| 46 | + |
|
| 47 | + /** |
|
| 48 | + * @param Credential $credential |
|
| 49 | + */ |
|
| 46 | 50 | public function upd($credential) { |
| 47 | 51 | return $this->credentialMapper->upd($credential); |
| 48 | 52 | } |
| 49 | 53 | |
| 54 | + /** |
|
| 55 | + * @param Credential $credential |
|
| 56 | + */ |
|
| 50 | 57 | public function deleteCredential($credential){ |
| 51 | 58 | return $this->credentialMapper->deleteCredential($credential); |
| 52 | 59 | } |
| 53 | 60 | |
| 61 | + /** |
|
| 62 | + * @param integer $vault_id |
|
| 63 | + */ |
|
| 54 | 64 | public function getCredentialsByVaultId($vault_id, $user_id) { |
| 55 | 65 | return $this->credentialMapper->getCredentialsByVaultId($vault_id, $user_id); |
| 56 | 66 | } |
| 57 | 67 | |
| 68 | + /** |
|
| 69 | + * @param integer $vault_id |
|
| 70 | + */ |
|
| 58 | 71 | public function getRandomCredentialByVaultId($vault_id, $user_id) { |
| 59 | 72 | $credentials = $this->credentialMapper->getRandomCredentialByVaultId($vault_id, $user_id); |
| 60 | 73 | return array_pop($credentials); |
| 61 | 74 | } |
| 62 | 75 | |
| 76 | + /** |
|
| 77 | + * @param integer $timestamp |
|
| 78 | + */ |
|
| 63 | 79 | public function getExpiredCredentials($timestamp) { |
| 64 | 80 | return $this->credentialMapper->getExpiredCredentials($timestamp); |
| 65 | 81 | } |
@@ -77,6 +93,10 @@ discard block |
||
| 77 | 93 | |
| 78 | 94 | throw new DoesNotExistException("Did expect one result but found none when executing"); |
| 79 | 95 | } |
| 96 | + |
|
| 97 | + /** |
|
| 98 | + * @param integer $credential_id |
|
| 99 | + */ |
|
| 80 | 100 | public function getCredentialLabelById($credential_id){ |
| 81 | 101 | return $this->credentialMapper->getCredentialLabelById($credential_id); |
| 82 | 102 | } |
@@ -23,11 +23,11 @@ discard block |
||
| 23 | 23 | class CredentialService { |
| 24 | 24 | |
| 25 | 25 | private $credentialMapper; |
| 26 | - private $sharingACL; |
|
| 26 | + private $sharingACL; |
|
| 27 | 27 | |
| 28 | 28 | public function __construct(CredentialMapper $credentialMapper, SharingACLMapper $sharingACL) { |
| 29 | 29 | $this->credentialMapper = $credentialMapper; |
| 30 | - $this->sharingACL = $sharingACL; |
|
| 30 | + $this->sharingACL = $sharingACL; |
|
| 31 | 31 | } |
| 32 | 32 | |
| 33 | 33 | /** |
@@ -65,23 +65,23 @@ discard block |
||
| 65 | 65 | } |
| 66 | 66 | |
| 67 | 67 | public function getCredentialById($credential_id, $user_id){ |
| 68 | - $credential = $this->credentialMapper->getCredentialById($credential_id); |
|
| 69 | - if ($credential->getUserId() === $user_id){ |
|
| 70 | - return $credential; |
|
| 71 | - } |
|
| 72 | - else { |
|
| 73 | - $acl = $this->sharingACL->getItemACL($user_id, $credential->getGuid()); |
|
| 74 | - if ($acl->hasPermission(SharingACL::READ)); |
|
| 75 | - return $credential; |
|
| 76 | - } |
|
| 77 | - |
|
| 78 | - throw new DoesNotExistException("Did expect one result but found none when executing"); |
|
| 68 | + $credential = $this->credentialMapper->getCredentialById($credential_id); |
|
| 69 | + if ($credential->getUserId() === $user_id){ |
|
| 70 | + return $credential; |
|
| 71 | + } |
|
| 72 | + else { |
|
| 73 | + $acl = $this->sharingACL->getItemACL($user_id, $credential->getGuid()); |
|
| 74 | + if ($acl->hasPermission(SharingACL::READ)); |
|
| 75 | + return $credential; |
|
| 76 | + } |
|
| 77 | + |
|
| 78 | + throw new DoesNotExistException("Did expect one result but found none when executing"); |
|
| 79 | 79 | } |
| 80 | 80 | public function getCredentialLabelById($credential_id){ |
| 81 | 81 | return $this->credentialMapper->getCredentialLabelById($credential_id); |
| 82 | 82 | } |
| 83 | 83 | |
| 84 | 84 | public function getCredentialByGUID($credential_guid, $user_id = null){ |
| 85 | - return $this->credentialMapper->getCredentialByGUID($credential_guid, $user_id); |
|
| 86 | - } |
|
| 85 | + return $this->credentialMapper->getCredentialByGUID($credential_guid, $user_id); |
|
| 86 | + } |
|
| 87 | 87 | } |
| 88 | 88 | \ No newline at end of file |
@@ -47,7 +47,7 @@ discard block |
||
| 47 | 47 | return $this->credentialMapper->upd($credential); |
| 48 | 48 | } |
| 49 | 49 | |
| 50 | - public function deleteCredential($credential){ |
|
| 50 | + public function deleteCredential($credential) { |
|
| 51 | 51 | return $this->credentialMapper->deleteCredential($credential); |
| 52 | 52 | } |
| 53 | 53 | |
@@ -64,9 +64,9 @@ discard block |
||
| 64 | 64 | return $this->credentialMapper->getExpiredCredentials($timestamp); |
| 65 | 65 | } |
| 66 | 66 | |
| 67 | - public function getCredentialById($credential_id, $user_id){ |
|
| 67 | + public function getCredentialById($credential_id, $user_id) { |
|
| 68 | 68 | $credential = $this->credentialMapper->getCredentialById($credential_id); |
| 69 | - if ($credential->getUserId() === $user_id){ |
|
| 69 | + if ($credential->getUserId() === $user_id) { |
|
| 70 | 70 | return $credential; |
| 71 | 71 | } |
| 72 | 72 | else { |
@@ -77,11 +77,11 @@ discard block |
||
| 77 | 77 | |
| 78 | 78 | throw new DoesNotExistException("Did expect one result but found none when executing"); |
| 79 | 79 | } |
| 80 | - public function getCredentialLabelById($credential_id){ |
|
| 80 | + public function getCredentialLabelById($credential_id) { |
|
| 81 | 81 | return $this->credentialMapper->getCredentialLabelById($credential_id); |
| 82 | 82 | } |
| 83 | 83 | |
| 84 | - public function getCredentialByGUID($credential_guid, $user_id = null){ |
|
| 84 | + public function getCredentialByGUID($credential_guid, $user_id = null) { |
|
| 85 | 85 | return $this->credentialMapper->getCredentialByGUID($credential_guid, $user_id); |
| 86 | 86 | } |
| 87 | 87 | } |
| 88 | 88 | \ No newline at end of file |
@@ -16,81 +16,81 @@ |
||
| 16 | 16 | use OCA\Passman\Utility\Utils; |
| 17 | 17 | |
| 18 | 18 | class SharingACLMapper extends Mapper { |
| 19 | - const TABLE_NAME = '*PREFIX*passman_sharing_acl'; |
|
| 19 | + const TABLE_NAME = '*PREFIX*passman_sharing_acl'; |
|
| 20 | 20 | |
| 21 | - public function __construct(IDBConnection $db, Utils $utils) { |
|
| 22 | - parent::__construct($db, 'passman_sharing_acl'); |
|
| 23 | - $this->utils = $utils; |
|
| 24 | - } |
|
| 21 | + public function __construct(IDBConnection $db, Utils $utils) { |
|
| 22 | + parent::__construct($db, 'passman_sharing_acl'); |
|
| 23 | + $this->utils = $utils; |
|
| 24 | + } |
|
| 25 | 25 | |
| 26 | - /** |
|
| 27 | - * Gets all the credential data for the given user |
|
| 28 | - * @param $userId |
|
| 29 | - * @param $item_guid |
|
| 30 | - * @return SharingACL[] |
|
| 31 | - */ |
|
| 32 | - public function getCredentialPermissions(IUser $userId, $item_guid){ |
|
| 33 | - $sql = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND item_guid = ?"; |
|
| 26 | + /** |
|
| 27 | + * Gets all the credential data for the given user |
|
| 28 | + * @param $userId |
|
| 29 | + * @param $item_guid |
|
| 30 | + * @return SharingACL[] |
|
| 31 | + */ |
|
| 32 | + public function getCredentialPermissions(IUser $userId, $item_guid){ |
|
| 33 | + $sql = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND item_guid = ?"; |
|
| 34 | 34 | |
| 35 | - return $this->findEntities($sql, [$userId, $item_guid]); |
|
| 36 | - } |
|
| 35 | + return $this->findEntities($sql, [$userId, $item_guid]); |
|
| 36 | + } |
|
| 37 | 37 | |
| 38 | - public function createACLEntry(SharingACL $acl){ |
|
| 39 | - return $this->insert($acl); |
|
| 40 | - } |
|
| 38 | + public function createACLEntry(SharingACL $acl){ |
|
| 39 | + return $this->insert($acl); |
|
| 40 | + } |
|
| 41 | 41 | |
| 42 | - /** |
|
| 43 | - * Gets the currently accepted share requests from the given user for the given vault guid |
|
| 44 | - * @param $user_id |
|
| 45 | - * @param $vault_id |
|
| 46 | - * @return SharingACL[] |
|
| 47 | - */ |
|
| 48 | - public function getVaultEntries($user_id, $vault_id) { |
|
| 49 | - $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND vault_guid = ?"; |
|
| 50 | - return $this->findEntities($q, [$user_id, $vault_id]); |
|
| 51 | - } |
|
| 42 | + /** |
|
| 43 | + * Gets the currently accepted share requests from the given user for the given vault guid |
|
| 44 | + * @param $user_id |
|
| 45 | + * @param $vault_id |
|
| 46 | + * @return SharingACL[] |
|
| 47 | + */ |
|
| 48 | + public function getVaultEntries($user_id, $vault_id) { |
|
| 49 | + $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND vault_guid = ?"; |
|
| 50 | + return $this->findEntities($q, [$user_id, $vault_id]); |
|
| 51 | + } |
|
| 52 | 52 | |
| 53 | - /** |
|
| 54 | - * Gets the acl for a given item guid |
|
| 55 | - * @param $user_id |
|
| 56 | - * @param $item_guid |
|
| 57 | - * @return SharingACL |
|
| 58 | - */ |
|
| 59 | - public function getItemACL($user_id, $item_guid) { |
|
| 60 | - $q = "SELECT * FROM " . self::TABLE_NAME . " WHERE item_guid = ? AND "; |
|
| 61 | - $filter = [$item_guid]; |
|
| 62 | - if ($user_id === null){ |
|
| 63 | - $q .= 'user_id is null'; |
|
| 64 | - } |
|
| 65 | - else { |
|
| 66 | - $q .= 'user_id = ? '; |
|
| 67 | - $filter[] = $user_id; |
|
| 68 | - } |
|
| 69 | - return $this->findEntity($q, $filter); |
|
| 70 | - } |
|
| 53 | + /** |
|
| 54 | + * Gets the acl for a given item guid |
|
| 55 | + * @param $user_id |
|
| 56 | + * @param $item_guid |
|
| 57 | + * @return SharingACL |
|
| 58 | + */ |
|
| 59 | + public function getItemACL($user_id, $item_guid) { |
|
| 60 | + $q = "SELECT * FROM " . self::TABLE_NAME . " WHERE item_guid = ? AND "; |
|
| 61 | + $filter = [$item_guid]; |
|
| 62 | + if ($user_id === null){ |
|
| 63 | + $q .= 'user_id is null'; |
|
| 64 | + } |
|
| 65 | + else { |
|
| 66 | + $q .= 'user_id = ? '; |
|
| 67 | + $filter[] = $user_id; |
|
| 68 | + } |
|
| 69 | + return $this->findEntity($q, $filter); |
|
| 70 | + } |
|
| 71 | 71 | |
| 72 | - /** |
|
| 73 | - * Update the acl for a given item guid |
|
| 74 | - * @param $user_id |
|
| 75 | - * @param $item_guid |
|
| 76 | - * @return SharingACL |
|
| 77 | - */ |
|
| 78 | - public function updateCredentialACL(SharingACL $sharingACL) { |
|
| 79 | - return $this->update($sharingACL); |
|
| 80 | - } |
|
| 72 | + /** |
|
| 73 | + * Update the acl for a given item guid |
|
| 74 | + * @param $user_id |
|
| 75 | + * @param $item_guid |
|
| 76 | + * @return SharingACL |
|
| 77 | + */ |
|
| 78 | + public function updateCredentialACL(SharingACL $sharingACL) { |
|
| 79 | + return $this->update($sharingACL); |
|
| 80 | + } |
|
| 81 | 81 | |
| 82 | - /** |
|
| 83 | - * Gets the currently accepted share requests from the given user for the given vault guid |
|
| 84 | - * @param $user_id |
|
| 85 | - * @param $vault_id |
|
| 86 | - * @return SharingACL[] |
|
| 87 | - */ |
|
| 88 | - public function getCredentialAclList($item_guid) { |
|
| 89 | - $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE item_guid = ?"; |
|
| 90 | - return $this->findEntities($q, [$item_guid]); |
|
| 91 | - } |
|
| 82 | + /** |
|
| 83 | + * Gets the currently accepted share requests from the given user for the given vault guid |
|
| 84 | + * @param $user_id |
|
| 85 | + * @param $vault_id |
|
| 86 | + * @return SharingACL[] |
|
| 87 | + */ |
|
| 88 | + public function getCredentialAclList($item_guid) { |
|
| 89 | + $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE item_guid = ?"; |
|
| 90 | + return $this->findEntities($q, [$item_guid]); |
|
| 91 | + } |
|
| 92 | 92 | |
| 93 | - public function deleteShareACL(SharingACL $ACL){ |
|
| 94 | - return $this->delete($ACL); |
|
| 93 | + public function deleteShareACL(SharingACL $ACL){ |
|
| 94 | + return $this->delete($ACL); |
|
| 95 | 95 | } |
| 96 | 96 | } |
| 97 | 97 | \ No newline at end of file |
@@ -29,13 +29,13 @@ discard block |
||
| 29 | 29 | * @param $item_guid |
| 30 | 30 | * @return SharingACL[] |
| 31 | 31 | */ |
| 32 | - public function getCredentialPermissions(IUser $userId, $item_guid){ |
|
| 33 | - $sql = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND item_guid = ?"; |
|
| 32 | + public function getCredentialPermissions(IUser $userId, $item_guid) { |
|
| 33 | + $sql = "SELECT * FROM " . self::TABLE_NAME . " WHERE user_id = ? AND item_guid = ?"; |
|
| 34 | 34 | |
| 35 | 35 | return $this->findEntities($sql, [$userId, $item_guid]); |
| 36 | 36 | } |
| 37 | 37 | |
| 38 | - public function createACLEntry(SharingACL $acl){ |
|
| 38 | + public function createACLEntry(SharingACL $acl) { |
|
| 39 | 39 | return $this->insert($acl); |
| 40 | 40 | } |
| 41 | 41 | |
@@ -46,7 +46,7 @@ discard block |
||
| 46 | 46 | * @return SharingACL[] |
| 47 | 47 | */ |
| 48 | 48 | public function getVaultEntries($user_id, $vault_id) { |
| 49 | - $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE user_id = ? AND vault_guid = ?"; |
|
| 49 | + $q = "SELECT * FROM " . self::TABLE_NAME . " WHERE user_id = ? AND vault_guid = ?"; |
|
| 50 | 50 | return $this->findEntities($q, [$user_id, $vault_id]); |
| 51 | 51 | } |
| 52 | 52 | |
@@ -59,7 +59,7 @@ discard block |
||
| 59 | 59 | public function getItemACL($user_id, $item_guid) { |
| 60 | 60 | $q = "SELECT * FROM " . self::TABLE_NAME . " WHERE item_guid = ? AND "; |
| 61 | 61 | $filter = [$item_guid]; |
| 62 | - if ($user_id === null){ |
|
| 62 | + if ($user_id === null) { |
|
| 63 | 63 | $q .= 'user_id is null'; |
| 64 | 64 | } |
| 65 | 65 | else { |
@@ -86,11 +86,11 @@ discard block |
||
| 86 | 86 | * @return SharingACL[] |
| 87 | 87 | */ |
| 88 | 88 | public function getCredentialAclList($item_guid) { |
| 89 | - $q = "SELECT * FROM ". self::TABLE_NAME ." WHERE item_guid = ?"; |
|
| 89 | + $q = "SELECT * FROM " . self::TABLE_NAME . " WHERE item_guid = ?"; |
|
| 90 | 90 | return $this->findEntities($q, [$item_guid]); |
| 91 | 91 | } |
| 92 | 92 | |
| 93 | - public function deleteShareACL(SharingACL $ACL){ |
|
| 93 | + public function deleteShareACL(SharingACL $ACL) { |
|
| 94 | 94 | return $this->delete($ACL); |
| 95 | 95 | } |
| 96 | 96 | } |
| 97 | 97 | \ No newline at end of file |
@@ -71,7 +71,9 @@ discard block |
||
| 71 | 71 | } |
| 72 | 72 | |
| 73 | 73 | public function createACLEntry(SharingACL $acl) { |
| 74 | - if ($acl->getCreated() === null) $acl->setCreated((new \DateTime())->getTimestamp()); |
|
| 74 | + if ($acl->getCreated() === null) { |
|
| 75 | + $acl->setCreated((new \DateTime())->getTimestamp()); |
|
| 76 | + } |
|
| 75 | 77 | return $this->sharingACL->createACLEntry($acl); |
| 76 | 78 | } |
| 77 | 79 | |
@@ -124,12 +126,16 @@ discard block |
||
| 124 | 126 | $return = []; |
| 125 | 127 | foreach ($entries as $entry) { |
| 126 | 128 | // Check if the user can read the credential, probably unnecesary, but just to be sure |
| 127 | - if (!$entry->hasPermission(SharingACL::READ)) continue; |
|
| 129 | + if (!$entry->hasPermission(SharingACL::READ)) { |
|
| 130 | + continue; |
|
| 131 | + } |
|
| 128 | 132 | |
| 129 | 133 | $tmp = $entry->jsonSerialize(); |
| 130 | 134 | $tmp['credential_data'] = $this->credential->getCredentialById($entry->getItemId())->jsonSerialize(); |
| 131 | 135 | |
| 132 | - if (!$entry->hasPermission(SharingACL::FILES)) unset($tmp['credential_data']['files']); |
|
| 136 | + if (!$entry->hasPermission(SharingACL::FILES)) { |
|
| 137 | + unset($tmp['credential_data']['files']); |
|
| 138 | + } |
|
| 133 | 139 | unset($tmp['credential_data']['shared_key']); |
| 134 | 140 | $return[] = $tmp; |
| 135 | 141 | } |
@@ -150,12 +156,16 @@ discard block |
||
| 150 | 156 | $acl = $this->sharingACL->getItemACL($user_id, $item_guid); |
| 151 | 157 | |
| 152 | 158 | // Check if the user can read the credential, probably unnecesary, but just to be sure |
| 153 | - if (!$acl->hasPermission(SharingACL::READ)) throw new DoesNotExistException("Item not found or wrong access level"); |
|
| 159 | + if (!$acl->hasPermission(SharingACL::READ)) { |
|
| 160 | + throw new DoesNotExistException("Item not found or wrong access level"); |
|
| 161 | + } |
|
| 154 | 162 | |
| 155 | 163 | $tmp = $acl->jsonSerialize(); |
| 156 | 164 | $tmp['credential_data'] = $this->credential->getCredentialById($acl->getItemId())->jsonSerialize(); |
| 157 | 165 | |
| 158 | - if (!$acl->hasPermission(SharingACL::FILES)) unset($tmp['credential_data']['files']); |
|
| 166 | + if (!$acl->hasPermission(SharingACL::FILES)) { |
|
| 167 | + unset($tmp['credential_data']['files']); |
|
| 168 | + } |
|
| 159 | 169 | unset($tmp['credential_data']['shared_key']); |
| 160 | 170 | |
| 161 | 171 | return $tmp; |
@@ -170,7 +180,9 @@ discard block |
||
| 170 | 180 | */ |
| 171 | 181 | public function getItemHistory($user_id, $item_guid) { |
| 172 | 182 | $acl = $this->sharingACL->getItemACL($user_id, $item_guid); |
| 173 | - if (!$acl->hasPermission(SharingACL::READ | SharingACL::HISTORY)) return []; |
|
| 183 | + if (!$acl->hasPermission(SharingACL::READ | SharingACL::HISTORY)) { |
|
| 184 | + return []; |
|
| 185 | + } |
|
| 174 | 186 | |
| 175 | 187 | return $this->revisions->getRevisions($acl->getItemId()); |
| 176 | 188 | } |
@@ -37,7 +37,7 @@ discard block |
||
| 37 | 37 | public function expireCredentials() { |
| 38 | 38 | $this->logger->info('Passman cron test', array('app' => 'passman')); |
| 39 | 39 | $expired_credentials = $this->credentialService->getExpiredCredentials($this->utils->getTime()); |
| 40 | - foreach($expired_credentials as $credential){ |
|
| 40 | + foreach ($expired_credentials as $credential) { |
|
| 41 | 41 | $link = ''; // @TODO create direct link to credential |
| 42 | 42 | |
| 43 | 43 | $sql = 'SELECT count(*) as rows from `*PREFIX*notifications` WHERE `subject`= \'credential_expired\' AND object_id=?'; |
@@ -45,9 +45,9 @@ discard block |
||
| 45 | 45 | $id = $credential->getId(); |
| 46 | 46 | $query->bindParam(1, $id, \PDO::PARAM_INT); |
| 47 | 47 | $result = $query->execute(); |
| 48 | - $this->logger->debug($credential->getLabel() .' is expired, checking notifications!', array('app' => 'passman')); |
|
| 49 | - if($result->fetchRow()['rows'] === 0) { |
|
| 50 | - $this->logger->debug($credential->getLabel() .' is expired, adding notification!', array('app' => 'passman')); |
|
| 48 | + $this->logger->debug($credential->getLabel() . ' is expired, checking notifications!', array('app' => 'passman')); |
|
| 49 | + if ($result->fetchRow()['rows'] === 0) { |
|
| 50 | + $this->logger->debug($credential->getLabel() . ' is expired, adding notification!', array('app' => 'passman')); |
|
| 51 | 51 | |
| 52 | 52 | $this->activityService->add( |
| 53 | 53 | Activity::SUBJECT_ITEM_EXPIRED, array($credential->getLabel(), $credential->getUserId()), |
@@ -55,7 +55,7 @@ discard block |
||
| 55 | 55 | $link, $credential->getUserId(), Activity::TYPE_ITEM_EXPIRED); |
| 56 | 56 | $this->notificationService->credentialExpiredNotification($credential); |
| 57 | 57 | } else { |
| 58 | - $this->logger->debug($credential->getLabel() .' is expired, already notified!', array('app' => 'passman')); |
|
| 58 | + $this->logger->debug($credential->getLabel() . ' is expired, already notified!', array('app' => 'passman')); |
|
| 59 | 59 | } |
| 60 | 60 | |
| 61 | 61 | } |
@@ -13,40 +13,40 @@ |
||
| 13 | 13 | use OCP\AppFramework\Db\Entity; |
| 14 | 14 | |
| 15 | 15 | class PermissionEntity extends Entity { |
| 16 | - CONST READ = 0b00000001; |
|
| 17 | - CONST WRITE = 0b00000010; |
|
| 18 | - CONST FILES = 0b00000100; |
|
| 19 | - CONST HISTORY = 0b00001000; |
|
| 20 | - CONST OWNER = 0b10000000; |
|
| 16 | + CONST READ = 0b00000001; |
|
| 17 | + CONST WRITE = 0b00000010; |
|
| 18 | + CONST FILES = 0b00000100; |
|
| 19 | + CONST HISTORY = 0b00001000; |
|
| 20 | + CONST OWNER = 0b10000000; |
|
| 21 | 21 | |
| 22 | - /** |
|
| 23 | - * Checks wether a user matches one or more permissions at once |
|
| 24 | - * @param $permission |
|
| 25 | - * @return bool |
|
| 26 | - */ |
|
| 27 | - public function hasPermission($permission) { |
|
| 28 | - $tmp = $this->getPermissions(); |
|
| 29 | - $tmp = $tmp & $permission; |
|
| 30 | - return $tmp === $permission; |
|
| 31 | - } |
|
| 22 | + /** |
|
| 23 | + * Checks wether a user matches one or more permissions at once |
|
| 24 | + * @param $permission |
|
| 25 | + * @return bool |
|
| 26 | + */ |
|
| 27 | + public function hasPermission($permission) { |
|
| 28 | + $tmp = $this->getPermissions(); |
|
| 29 | + $tmp = $tmp & $permission; |
|
| 30 | + return $tmp === $permission; |
|
| 31 | + } |
|
| 32 | 32 | |
| 33 | - /** |
|
| 34 | - * Adds the given permission or permissions set to the user current permissions |
|
| 35 | - * @param $permission |
|
| 36 | - */ |
|
| 37 | - public function addPermission($permission) { |
|
| 38 | - $tmp = $this->getPermissions(); |
|
| 39 | - $tmp = $tmp | $permission; |
|
| 40 | - $this->setPermissions($tmp); |
|
| 41 | - } |
|
| 33 | + /** |
|
| 34 | + * Adds the given permission or permissions set to the user current permissions |
|
| 35 | + * @param $permission |
|
| 36 | + */ |
|
| 37 | + public function addPermission($permission) { |
|
| 38 | + $tmp = $this->getPermissions(); |
|
| 39 | + $tmp = $tmp | $permission; |
|
| 40 | + $this->setPermissions($tmp); |
|
| 41 | + } |
|
| 42 | 42 | |
| 43 | - /** |
|
| 44 | - * Takes the given permission or permissions out from the user |
|
| 45 | - * @param $permission |
|
| 46 | - */ |
|
| 47 | - public function removePermission($permission) { |
|
| 48 | - $tmp = $this->getPermissions(); |
|
| 49 | - $tmp = $tmp & ~$permission; |
|
| 50 | - $this->setPermissions($tmp); |
|
| 51 | - } |
|
| 43 | + /** |
|
| 44 | + * Takes the given permission or permissions out from the user |
|
| 45 | + * @param $permission |
|
| 46 | + */ |
|
| 47 | + public function removePermission($permission) { |
|
| 48 | + $tmp = $this->getPermissions(); |
|
| 49 | + $tmp = $tmp & ~$permission; |
|
| 50 | + $this->setPermissions($tmp); |
|
| 51 | + } |
|
| 52 | 52 | } |
| 53 | 53 | \ No newline at end of file |
