Home Explore Help
Register Sign In
yiguanjia
/
php
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: f54553f36a
Branches Tags
php
/
www
/
protected
/
modules
/
srbac
/
components
/
SDbAuthManager.php

SDbAuthManager.php 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * To change this template, choose Tools | Templates
    5. 

  5.  * and open the template in the editor.
    6. 

  6.  */
    7. 

  7. 

  8. /**
    9. 

  9.  * Description of SDbAuthManager
    10. 

  10.  *
    11. 

  11.  * @author ssoldatos
    12. 

  12.  */
    13. 

  13. class SDbAuthManager extends CDbAuthManager {
    14. 

  14. 

  15.   /**
    16. 

  16.    * Performs access check for the specified user.
    17. 

  17.    * @param string the name of the operation that need access check
    18. 

  18.    * @param mixed the user ID. This should can be either an integer and a string representing
    19. 

  19.    * the unique identifier of a user. See {@link IWebUser::getId}.
    20. 

  20.    * @param array name-value pairs that would be passed to biz rules associated
    21. 

  21.    * with the tasks and roles assigned to the user.
    22. 

  22.    * @return boolean whether the operations can be performed by the user.
    23. 

  23.    */
    24. 

  24.   public function checkAccess($itemName, $userId, $params=array()) {
    25. 

  25.     if (!empty($this->defaultRoles) && in_array($itemName,$this->defaultRoles)) {
    26. 

  26.       return true;
    27. 

  27.     }
    28. 

  28.     $sql = "SELECT name, type, description, t1.bizrule, t1.data, t2.bizrule AS bizrule2, t2.data AS data2 FROM {$this->itemTable} t1, {$this->assignmentTable} t2 WHERE name=itemname AND userid=:userid";
    29. 

  29.     $command = $this->db->createCommand($sql);
    30. 

  30.     $command->bindValue(':userid', $userId);
    31. 

  31. 

  32.     // check directly assigned items
    33. 

  33.     $names = array();
    34. 

  34.     foreach ($command->queryAll() as $row) {
    35. 

  35.       Yii::trace('Checking permission "' . $row['name'] . '"', 'system.web.auth.CDbAuthManager');
    36. 

  36.       if ($this->executeBizRule($row['bizrule2'], $params, unserialize($row['data2']))
    37. 

  37.         && $this->executeBizRule($row['bizrule'], $params, unserialize($row['data']))) {
    38. 

  38.         if (strtolower($row['name']) === strtolower($itemName)) {
    39. 

  39.           return true;
    40. 

  40.         }
    41. 

  41.         $names[] = $row['name'];
    42. 

  42.       }
    43. 

  43.     }
    44. 

  44. 

  45.     // check all descendant items
    46. 

  46.     while ($names !== array()) {
    47. 

  47.       $items = $this->getItemChildren($names);
    48. 

  48.       $names = array();
    49. 

  49.       foreach ($items as $item) {
    50. 

  50.         Yii::trace('Checking permission "' . $item->getName() . '"', 'system.web.auth.CDbAuthManager');
    51. 

  51.         if ($this->executeBizRule($item->getBizRule(), $params, $item->getData())) {
    52. 

  52.           if (strtolower($item->getName()) === strtolower($itemName)) {
    53. 

  53.             return true;
    54. 

  54.           }
    55. 

  55.           $names[] = $item->getName();
    56. 

  56.         }
    57. 

  57.       }
    58. 

  58.     }
    59. 

  59. 

  60.     return false;
    61. 

  61.   }
    62. 

  62. 

  63. }
    64. 

  64. ?>
    65.