diff options
| author | frank <frank@schokilade.de> | 2005-02-20 11:45:06 +0100 |
|---|---|---|
| committer | frank <frank@schokilade.de> | 2005-02-20 11:45:06 +0100 |
| commit | 10a76f6fd45bbbf4443fb8626d35aae3a388c490 (patch) | |
| tree | ad76b39e0b739d7e87cd2b595bd9f10cf9a5ae76 /inc/acl_admin.php | |
| parent | 3a8a9050bc97ca54a26f0163fb9b8d50c82f8b3d (diff) | |
| download | rpg-10a76f6fd45bbbf4443fb8626d35aae3a388c490.tar.gz rpg-10a76f6fd45bbbf4443fb8626d35aae3a388c490.tar.bz2 | |
acl-administration rc1
darcs-hash:20050220104506-b7c55-01c85b4b688597c8405987e0f7ea30aa4fb1472f.gz
Diffstat (limited to 'inc/acl_admin.php')
| -rw-r--r-- | inc/acl_admin.php | 121 |
1 files changed, 121 insertions, 0 deletions
diff --git a/inc/acl_admin.php b/inc/acl_admin.php new file mode 100644 index 000000000..f7cd7fbd7 --- /dev/null +++ b/inc/acl_admin.php @@ -0,0 +1,121 @@ +<?php +/** + * $ID is pagename, reads matching lines from $AUTH_ACL, + * also reads acls from namespace + * returns multi-array with key=pagename and value=array(user, acl) + * + * @author Frank Schubert <frank@schokilade.de> + */ +function get_acl_config($ID){ + global $AUTH_ACL; + + $acl_config=array(); + + // match exact name + $matches = preg_grep('/^'.$ID.'\s+.*/',$AUTH_ACL); + if(count($matches)){ + foreach($matches as $match){ + $match = preg_replace('/#.*$/','',$match); //ignore comments + $acl = preg_split('/\s+/',$match); + //0 is pagename, 1 is user, 2 is acl + $acl_config["$acl[0]"][]=array($acl[1],$acl[2]); + } + } + + $specific_found=array(); + // match ns + if(($ID=getNS($ID)) !== false){ + $matches = preg_grep('/^'.$ID.':\*\s+.*/',$AUTH_ACL); + if(count($matches)){ + foreach($matches as $match){ + $match = preg_replace('/#.*$/','',$match); //ignore comments + $acl = preg_split('/\s+/',$match); + //0 is pagename, 1 is user, 2 is acl + $acl_config["$acl[0]"][]=array($acl[1],$acl[2]); + $specific_found[]=$acl[1]; + } + } + } + + //include *-config + $matches = preg_grep('/^\*\s+.*/',$AUTH_ACL); + if(count($matches)){ + foreach($matches as $match){ + $match = preg_replace('/#.*$/','',$match); //ignore comments + $acl = preg_split('/\s+/',$match); + // only include * for this user if not already found in ns + if(!in_array($acl[1], $specific_found)){ + //0 is pagename, 1 is user, 2 is acl + $acl_config["$acl[0]"][]=array($acl[1],$acl[2]); + } + } + } + + //sort + //FIXME: better sort algo: first sort by key, then sort by first value + krsort($acl_config, SORT_STRING); + + return($acl_config); +} + +/** + * adds new acl-entry to conf/acl.auth + * + * @author Frank Schubert <frank@schokilade.de> + */ +function acl_admin_add($acl_scope, $acl_user, $acl_level){ + if($acl_scope === '' || $acl_user === '' || $acl_level === '') { return false; } + + $acl_config = join("",file('conf/acl.auth')); + + // max level for pagenames is 2 + if(strpos("*", $acl_scope) === false) { + if($acl_level > 2) { $acl_level = 2; } + } + + $new_acl = "$acl_scope\t$acl_user\t$acl_level\n"; + + $new_config = $acl_config.$new_acl; + + return io_saveFile("conf/acl.auth", $new_config); +} + +/** + * remove acl-entry from conf/acl.auth + * + * @author Frank Schubert <frank@schokilade.de> + */ +function acl_admin_del($acl_scope, $acl_user, $acl_level){ + if($acl_scope === '' || $acl_user === '' || $acl_level === '') { return false; } + + $acl_pattern = preg_quote($acl_scope)."\s+".$acl_user."\s+".$acl_level."\n"; + + $acl_config = file('conf/acl.auth'); + + // save all non!-matching + $new_config = preg_grep("/$acl_pattern/", $acl_config, PREG_GREP_INVERT); + + return io_saveFile("conf/acl.auth", join("",$new_config)); +} + +/** + * change existing acl entries + * + * @author Frank Schubert <frank@schokilade.de> + */ +function acl_admin_change($acl_scope, $acl_user, $acl_level, $acl_checkbox){ + + $new_level = 0; + if(is_array($acl_checkbox)) { + foreach($acl_checkbox as $acl_num => $value){ + if( ($value == "on") && + ($acl_num > $new_level)) { + $new_level = $acl_num; + } + } + } + + acl_admin_del($acl_scope, $acl_user, $acl_level); + acl_admin_add($acl_scope, $acl_user, $new_level); +} +?> |