summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--RightRolesBeauty.html519
-rw-r--r--application/modules/user/controllers/FilterController.php45
-rw-r--r--application/modules/user/controllers/IndexController.php5
3 files changed, 552 insertions, 17 deletions
diff --git a/RightRolesBeauty.html b/RightRolesBeauty.html
new file mode 100644
index 0000000..6f5965b
--- /dev/null
+++ b/RightRolesBeauty.html
@@ -0,0 +1,519 @@
+<!--
+mysql-query:
+ SELECT rc.title, r.title, shortcut
+ FROM pbs_right r, pbs_rightcategory rc
+ WHERE r.`rightcategoryID` = rc.`rightcategoryID`
+-->
+<style>
+td, th{font-family:verdana, arial, courier;}
+tr.odd{background-color:#CCC;}
+tr.even{background-color:#FFF;}
+</style>
+<table class="data" id="table_results">
+<thead><tr>
+ <th colspan="3"></th>
+</tr>
+<tr>
+ <th>
+<a>title</a>
+</th><th>
+<a>title</a>
+</th><th>
+<a>shortcut</a>
+</th></tr>
+</thead>
+ <tbody>
+ <tr class="odd">
+<td class="">Person</td>
+<td class="">Edit own profiledetails</td>
+<td class="">peod</td>
+</tr>
+
+ <tr class="even">
+<td class="">Person</td>
+<td class="">Show own profiledetails</td>
+<td class="">psod</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Person</td>
+<td class="">Delete own account</td>
+<td class="">pdo</td>
+</tr>
+
+ <tr class="even">
+<td class="">Person</td>
+<td class="">Delete account of other</td>
+<td class="">pd</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Person</td>
+<td class="">Show other profiledetails</td>
+<td class="">psood</td>
+</tr>
+
+ <tr class="even">
+<td class="">Person</td>
+<td class="">Edit account from other</td>
+<td class="">peoa</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Person</td>
+<td class="">Suspend account</td>
+<td class="">psa</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Show overview of group</td>
+<td class="">gso</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Show details of own group</td>
+<td class="">gsdo</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Show details of other group</td>
+<td class="">gsdog</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Show members of group</td>
+<td class="">gsmg</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Create group</td>
+<td class="">gc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Delete group</td>
+<td class="">gd</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Delete group with all child groups</td>
+<td class="">gdlwc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Request membership</td>
+<td class="">grm</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Accect membership request</td>
+<td class="">gam</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Decline membership request</td>
+<td class="">gdm</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Delete membership in own group</td>
+<td class="">gdmo</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Group</td>
+<td class="">Delete membership in other group</td>
+<td class="">gdmog</td>
+</tr>
+
+ <tr class="even">
+<td class="">Group</td>
+<td class="">Suspend membership</td>
+<td class="">gsm</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Role</td>
+<td class="">Add role</td>
+<td class="">ra</td>
+</tr>
+
+ <tr class="even">
+<td class="">Role</td>
+<td class="">Display details of role</td>
+<td class="">rdd</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Role</td>
+<td class="">Delete role</td>
+<td class="">rd</td>
+</tr>
+
+ <tr class="even">
+<td class="">Role</td>
+<td class="">Change role of membership</td>
+<td class="">rcr</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Role</td>
+<td class="">Add right to role</td>
+<td class="">rar</td>
+</tr>
+
+ <tr class="even">
+<td class="">Role</td>
+<td class="">Remove right of role</td>
+<td class="">rrr</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Role</td>
+<td class="">Inherit role</td>
+<td class="">rir</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMedia</td>
+<td class="">Show admin interface of BootMedia</td>
+<td class="">bai</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMedia</td>
+<td class="">Show user interface of BootMedia</td>
+<td class="">bui</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMedia</td>
+<td class="">Create new BootMedia</td>
+<td class="">bc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMedia</td>
+<td class="">Edit BootMedia</td>
+<td class="">be</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMedia</td>
+<td class="">Delete BootMedia</td>
+<td class="">bd</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMedia</td>
+<td class="">Download BootMedia</td>
+<td class="">bdld</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMedia</td>
+<td class="">Edit metadata (Description, Title) of a BootMedia</td>
+<td class="">bem</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Preboot</td>
+<td class="">Show overview of preboots</td>
+<td class="">pro</td>
+</tr>
+
+ <tr class="even">
+<td class="">Preboot</td>
+<td class="">Create preboot</td>
+<td class="">prc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Preboot</td>
+<td class="">Edit preboot</td>
+<td class="">pre</td>
+</tr>
+
+ <tr class="even">
+<td class="">Preboot</td>
+<td class="">Delete preboot</td>
+<td class="">prd</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Preboot</td>
+<td class="">Update preboot</td>
+<td class="">pru</td>
+</tr>
+
+ <tr class="even">
+<td class="">Preboot</td>
+<td class="">Edit metadata (Description, Title) of a preboot</td>
+<td class="">prem</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Config</td>
+<td class="">Show admin overview of config</td>
+<td class="">csai</td>
+</tr>
+
+ <tr class="even">
+<td class="">Config</td>
+<td class="">Show user overview of config</td>
+<td class="">csui</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Config</td>
+<td class="">Create config</td>
+<td class="">cc</td>
+</tr>
+
+ <tr class="even">
+<td class="">Config</td>
+<td class="">Edit config</td>
+<td class="">ce</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Config</td>
+<td class="">Delete config</td>
+<td class="">cd</td>
+</tr>
+
+ <tr class="even">
+<td class="">Config</td>
+<td class="">Update config</td>
+<td class="">cu</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Config</td>
+<td class="">Edit metadata (Description, Title) of config</td>
+<td class="">cem</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootOs</td>
+<td class="">Create BootOs</td>
+<td class="">boc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootOs</td>
+<td class="">Show admin interface of BootOs</td>
+<td class="">boai</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootOs</td>
+<td class="">Show user interface of BootOs</td>
+<td class="">boui</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootOs</td>
+<td class="">Edit BootOs</td>
+<td class="">boe</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootOs</td>
+<td class="">Delete BootOs</td>
+<td class="">bod</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootOs</td>
+<td class="">Update BootOs</td>
+<td class="">bou</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootOs</td>
+<td class="">Edit metadata (Description, Title) of config</td>
+<td class="">boem</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMenu</td>
+<td class="">Show admin interface of BootMenu</td>
+<td class="">booai</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMenu</td>
+<td class="">Show user interface of BootMenu</td>
+<td class="">booui</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMenu</td>
+<td class="">Create BootMenu</td>
+<td class="">booc</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMenu</td>
+<td class="">Delete BootMenu</td>
+<td class="">bood</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMenu</td>
+<td class="">Edit BootMenu</td>
+<td class="">booe</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMenu</td>
+<td class="">Delete entry of BootMenu</td>
+<td class="">boode</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMenu</td>
+<td class="">Add entry to a BootMenu</td>
+<td class="">booae</td>
+</tr>
+
+ <tr class="even">
+<td class="">BootMenu</td>
+<td class="">Edit an entry of a BootMenu</td>
+<td class="">booee</td>
+</tr>
+
+ <tr class="odd">
+<td class="">BootMenu</td>
+<td class="">Edit metadata (Description, Title) of an entry of </td>
+<td class="">booeem</td>
+</tr>
+
+ <tr class="even">
+<td class="">Client</td>
+<td class="">Show overview of Clients</td>
+<td class="">clo</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Client</td>
+<td class="">Add new Clients</td>
+<td class="">cla</td>
+</tr>
+
+ <tr class="even">
+<td class="">Client</td>
+<td class="">Edit Clients</td>
+<td class="">cle</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Client</td>
+<td class="">Delete Clients</td>
+<td class="">cld</td>
+</tr>
+
+ <tr class="even">
+<td class="">Pool</td>
+<td class="">Show overview of Pool</td>
+<td class="">poo</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Pool</td>
+<td class="">Create new Pool</td>
+<td class="">poc</td>
+</tr>
+
+ <tr class="even">
+<td class="">Pool</td>
+<td class="">Edit Pool</td>
+<td class="">poe</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Pool</td>
+<td class="">Delete Pool</td>
+<td class="">pod</td>
+</tr>
+
+ <tr class="even">
+<td class="">Pool</td>
+<td class="">Unlink client to pool</td>
+<td class="">pouc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Pool</td>
+<td class="">Link client to pool</td>
+<td class="">polc</td>
+</tr>
+
+ <tr class="even">
+<td class="">Pool</td>
+<td class="">Show unlinked Clients</td>
+<td class="">posuc</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Filter</td>
+<td class="">Show overview of Pool</td>
+<td class="">fo</td>
+</tr>
+
+ <tr class="even">
+<td class="">Filter</td>
+<td class="">Create new Filter</td>
+<td class="">fa</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Filter</td>
+<td class="">Edit Filter</td>
+<td class="">fe</td>
+</tr>
+
+ <tr class="even">
+<td class="">Filter</td>
+<td class="">Edit Filterpriority</td>
+<td class="">fefp</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Filter</td>
+<td class="">Delete Filter</td>
+<td class="">fd</td>
+</tr>
+
+ <tr class="even">
+<td class="">Filter</td>
+<td class="">Add additional Filterentry to a Filter</td>
+<td class="">ffa</td>
+</tr>
+
+ <tr class="odd">
+<td class="">Filter</td>
+<td class="">Edit Filterentry of a Filter</td>
+<td class="">ffe</td>
+</tr>
+
+ <tr class="even">
+<td class="">Filter</td>
+<td class="">Delete Filterentry of a Filter</td>
+<td class="">ffd</td>
+</tr>
+
+</tbody>
+</table>
diff --git a/application/modules/user/controllers/FilterController.php b/application/modules/user/controllers/FilterController.php
index fd8eaf5..bf04f23 100644
--- a/application/modules/user/controllers/FilterController.php
+++ b/application/modules/user/controllers/FilterController.php
@@ -26,7 +26,9 @@ class User_FilterController extends Zend_Controller_Action
public function indexAction()
{
- // TODO: ACL: is he authorized to see this?
+ // ACL: Is he allowed to see the overview
+ if(!Pbs_Acl::checkRight('fo'))
+ $this->_redirect('/user');
$result = $this->_request->getParam('addresult');
if($result != ""){
@@ -56,7 +58,10 @@ class User_FilterController extends Zend_Controller_Action
public function addfilterAction()
{
- // TODO: ACL: is he authorized to add a filter?
+ // ACL: Is he allowed to add a Filter
+ if(!Pbs_Acl::checkRight('fa'))
+ $this->_redirect('/user');
+
$bmmapper = new Application_Model_BootMenuMapper();
$result = $bmmapper->findBy('groupID',$this->membership->getGroupID());
foreach($result as $rr){
@@ -102,7 +107,10 @@ class User_FilterController extends Zend_Controller_Action
{
$filterID = $this->_request->getParam('filterID');
$filtermapper = new Application_Model_FilterMapper();
- // TODO: ACL implementieren ob er den filter löschen darf
+
+ // ACL: Is he allowed to remove the filter
+ if(!Pbs_Acl::checkRight('fd'))
+ $this->_redirect('/user');
if(is_numeric($filterID)){
$filter = new Application_Model_Filter();
@@ -132,8 +140,10 @@ class User_FilterController extends Zend_Controller_Action
$bm->setID($rr['bootmenuID']);
$bootmenus[] = $bm;
}
- // TODO: ACL is he allowed to edit this ?
- // edit filter or edit filterpriority
+ // ACL: Is he allowed to edit the filter or the filterpriority?
+ if(!Pbs_Acl::checkRight('fe') && !Pbs_Acl::checkRight('fefp'))
+ $this->_redirect('/user');
+
if (!isset($_POST["add"])){
$filterID = $this->_request->getParam('filterID');
$filter = new Application_Model_Filter();
@@ -165,8 +175,8 @@ class User_FilterController extends Zend_Controller_Action
$newfilterentry->setGroupID($this->membership->getGroupID());
$newfilterentry->setMembershipID($this->membership->getID());
- // TODO: ACL: if he is only allowed to edit filterpriority
- if(false){
+ // ACL: if he is only allowed to edit filterpriority
+ if(Pbs_Acl::checkRight('fefp')){
$DBfilterentry = new Application_Model_Filter();
$filtermapper->find($this->_request->getParam('filterID'),$DBfilterentry);
@@ -179,8 +189,8 @@ class User_FilterController extends Zend_Controller_Action
$this->_redirect('/user/filter/index/modifyresult/forbidden');
}
}
- // TODO: ACL: he is allowed to edit the filter
- elseif(true){
+ // ACL: he is allowed to edit the filter
+ elseif(Pbs_Acl::checkRight('fe')){
$filtermapper->save($newfilterentry);
$this->_redirect('/user/filter/index/modifyresult/ok');
}
@@ -207,7 +217,7 @@ class User_FilterController extends Zend_Controller_Action
$membershipMapper = new Application_Model_MembershipMapper();
$memberships = $membershipMapper->findBY('groupID',$this->membership->getGroupID());
- // TODO: get all child groups
+
$grouppMapper = new Application_Model_GroupMapper();
$group = new Application_Model_Group();
$grouppMapper->find($this->membership->getGroupID(),$group);
@@ -226,7 +236,10 @@ class User_FilterController extends Zend_Controller_Action
public function addfilterentryAction()
{
- // TODO: ACL: is he allowed to create a new filterentry?
+ // ACL: is he allowed to create a new filterentry?
+ if(!Pbs_Acl::checkRight('ffa'))
+ $this->_redirect('/user');
+
$filterID = $this->_request->getParam('filterID');
$filterMapper = new Application_Model_FilterMapper();
$filter = new Application_Model_Filter();
@@ -288,7 +301,10 @@ class User_FilterController extends Zend_Controller_Action
public function editfilterentryAction()
{
- //TODO: ACL: is he allowed to edit filterentrys ?
+ //ACL: is he allowed to edit filterentrys ?
+ if(!Pbs_Acl::checkRight('ffe'))
+ $this->_redirect('/user');
+
$selectData = $this->prepareFormData();
if (!isset($_POST["add"])){
try{
@@ -375,7 +391,10 @@ class User_FilterController extends Zend_Controller_Action
public function removefilterentryAction()
{
- //TODO: ACL: is he autohorized to delete a filterentry?
+ //ACL: is he autohorized to delete a filterentry?
+ if(!Pbs_Acl::checkRight('ffd'))
+ $this->_redirect('/user');
+
$filterentriesID = $this->_request->getParam('filterentriesID');
if(is_numeric($filterentriesID)){
$filterentriesmapper = new Application_Model_FilterEntriesMapper();
diff --git a/application/modules/user/controllers/IndexController.php b/application/modules/user/controllers/IndexController.php
index 1e15768..8974286 100644
--- a/application/modules/user/controllers/IndexController.php
+++ b/application/modules/user/controllers/IndexController.php
@@ -22,10 +22,7 @@ class User_IndexController extends Zend_Controller_Action
'/user/bootmenu' => 'Create your Bootmenu',
);
$this->view->links = $links;
- }
-
-
-
+ }
}
}