Sign upLogin

modxcms/revolution

View on GitHub
Star
core/model/modx/modaccessnamespace.class.php

Summary

Maintainability
A
3 hrs
Test Coverage
<?php
/*
 * This file is part of MODX Revolution.
 *
 * Copyright (c) MODX, LLC. All Rights Reserved.
 *
 * For complete copyright and license information, see the COPYRIGHT and LICENSE
 * files found in the top-level directory of this distribution.
 */

/**
 * @package modx
 * @subpackage mysql
 */
class modAccessNamespace extends modAccess {
    /**
     * Load the attributes for the ACLs for the context
     *
     * @static
     * @param modX $modx A reference to the modX instance
     * @param string $context The context to load from. If empty, will use the current context.
     * @param int $userId The ID of the user to grab ACL records for.
     * @return array An array of loaded attributes
     */
    public static function loadAttributes(&$modx, $context = '', $userId = 0) {
        $attributes = array();

        $accessTable = $modx->getTableName('modAccessNamespace');
        $policyTable = $modx->getTableName('modAccessPolicy');
        $memberTable = $modx->getTableName('modUserGroupMember');
        $memberRoleTable = $modx->getTableName('modUserGroupRole');
        if ($userId > 0) {
            $sql = "SELECT acl.target, acl.principal, mr.authority, acl.policy, p.data FROM {$accessTable} acl " .
                "LEFT JOIN {$policyTable} p ON p.id = acl.policy " .
                "JOIN {$memberTable} mug ON acl.principal_class = 'modUserGroup' " .
                "AND mug.member = :principal " .
                "AND mug.user_group = acl.principal " .
                "JOIN {$memberRoleTable} mr ON mr.id = mug.role " .
                "AND mr.authority <= acl.authority " .
                "ORDER BY acl.target, acl.principal, mr.authority, acl.policy";
            $bindings = array(
                ':principal' => $userId
            );
            $query = new xPDOCriteria($modx, $sql, $bindings);
            if ($query->stmt && $query->stmt->execute()) {
                while ($row = $query->stmt->fetch(PDO::FETCH_ASSOC)) {
                    $attributes[$row['target']][] = array(
                        'principal' => $row['principal'],
                        'authority' => $row['authority'],
                        'policy' => $row['data'] ? $modx->fromJSON($row['data'], true) : array(),
                    );
                }
            }
        } else {
            $sql = "SELECT acl.target, acl.principal, 0 AS authority, acl.policy, p.data FROM {$accessTable} acl " .
                "LEFT JOIN {$policyTable} p ON p.id = acl.policy " .
                "WHERE acl.principal_class = 'modUserGroup' " .
                "AND acl.principal = 0 " .
                "ORDER BY acl.target, acl.principal, acl.authority, acl.policy";
            $query = new xPDOCriteria($modx, $sql);
            if ($query->stmt && $query->stmt->execute()) {
                while ($row = $query->stmt->fetch(PDO::FETCH_ASSOC)) {
                    $attributes[$row['target']][] = array(
                        'principal' => 0,
                        'authority' => $row['authority'],
                        'policy' => $row['data'] ? $modx->fromJSON($row['data'], true) : array(),
                    );
                }
            }
        }

        return $attributes;
    }
}