Prado\Security\Permissions\TUserPermissionsBehavior

Complexity

Total Complexity

10

Size/Duplication

Total Lines	72
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

6 Methods

Rating	Name	Duplication	Size	Complexity
A	setManager()	0	6	2
A	dyIsInRole()	0	4	2
A	__construct()	0	6	2
A	dyDefaultRoles()	0	4	1
A	getManager()	0	3	1
A	can()	0	8	2

<?php
/**
 * TUserPermissionsBehavior class file.
 *
 * @author Brad Anderson <belisoful@icloud.com>
 * @link https://github.com/pradosoft/prado
 * @license https://github.com/pradosoft/prado/blob/master/LICENSE
 * @package Prado\Security\Permissions
 */

namespace Prado\Security\Permissions;

use Prado\Prado;
use Prado\Util\TBehavior;

/**
 * TUserPermissionsBehavior class.
 *
 * TUserPermissionsBehavior is designed to attach to {@link TUser}.
 * This class adds {@link can} permissions functionality. It also
 * handles {@link dyDefaultRoles} and {@link dyIsInRole} of TUser.
 *
 * This passes through dyDefaultRoles and dyIsInRole to the {@link TPermissionsManager}.
 *
 * @author Brad Anderson <belisoful@icloud.com>
 * @package Prado\Security\Permissions
 * @since 4.2.0
 */
class TUserPermissionsBehavior extends TBehavior
{
	/** @var \Prado\Security\Permissions\TPermissionsManager manager object for the behavior */
	private $_manager;
	
	/**
	 * @param null|\Prado\Security\Permissions\TPermissionsManager $manager
	 */
	public function __construct($manager = null)
	{
		if ($manager) {
			$this->setManager($manager);
		}
		parent::__construct();
	}
	
	/**
	 * Gets all the rules for the permission and checks against the TUser.
	 * @param string $permission
	 * @param null|mixed $extraData
	 */
	public function can($permission, $extraData = null)
	{
		$rules = $this->getManager()->getPermissionRules($permission);
		if (!$rules) {
			return true; //Default from TAuthorizationRuleCollection::isUserAllowed
		}
		$request = Prado::getApplication()->getRequest();
		return $rules->isUserAllowed($this->getOwner(), $request->getRequestType(), $request->getUserHostAddress(), $extraData);

$this->getOwner() of type Prado\TComponent is incompatible with the type Prado\Security\IUser expected by parameter $user of Prado\Security\TAuthorizationRuleCollection::isUserAllowed().

	}
	
	/**
	 * @param string[] $roles The default roles of all users
	 * @param Prado\Util\TCallChain $callchain

The type Prado\Prado\Util\TCallChain was not found. Maybe you did not declare it correctly or list all dependencies?

	 * @return string[] the default roles of all users
	 */
	public function dyDefaultRoles($roles, $callchain)
	{
		$roles = array_merge($roles, $this->getManager()->getDefaultRoles() ?? []);
		return $callchain->dyDefaultRoles($roles);
	}
	
	/**
	 * This handles the dynamic event where the $role does not match the user
	 * roles.  It checks the hierarchy of roles/permissions
	 * @param bool $return the return value, initially false
	 * @param string $role
	 * @param Prado\Util\TCallChain $callchain
	 */
	public function dyIsInRole($return, $role, $callchain)
	{
		$inRole = $this->getManager()->isInHierarchy($this->getOwner()->getRoles(), $role);

The method getRoles() does not exist on Prado\TComponent. Since you implemented __call, consider adding a @method annotation.

		return $callchain->dyIsInRole($return, $role) || $inRole;
	}
	
	/**
	 * @param TPerm\Prado\Security\Permissions\TPermissionsManagerissionsManager $manager manages application permissions

The type Prado\Security\Permissions\TPerm\Prado\Security\Permissions\TPermissionsManagerissionsManager was not found. Maybe you did not declare it correctly or list all dependencies?

	 */
	public function getManager()
	{
		return $this->_manager;
	}
	
	/**
	 * @param \Prado\Security\Permissions\TPermissionsManager|\WeakReference $manager manages application permissions
	 */
	public function setManager($manager)
	{
		if ($manager instanceof \WeakReference) {
			$manager = $manager->get();
		}
		$this->_manager = $manager;
	}
}