diff options
Diffstat (limited to 'src/models/Auth.class.php')
-rw-r--r-- | src/models/Auth.class.php | 130 |
1 files changed, 130 insertions, 0 deletions
diff --git a/src/models/Auth.class.php b/src/models/Auth.class.php new file mode 100644 index 0000000..3aba0f3 --- /dev/null +++ b/src/models/Auth.class.php @@ -0,0 +1,130 @@ +<?php +require_once('MessageManager.class.php'); +require_once('Login.class.php'); +require_once('Group.class.php'); +require_once('User.class.php'); + +class Auth { + static $users = array(); + public static function getObj($uid) { + if (!isset(self::$users[$uid])) { + global $mm; + $is_group = ($mm->database()->getStatus($uid)===3); + if ($is_group) { + require_once('Group.class.php'); + $obj = new Group($uid); + } else { + require_once('User.class.php'); + $obj = new User($uid); + } + self::$users[$uid] = $obj; + } + return self::$users[$uid]; + } + + protected $db = null; + protected $uid = false; + public function __construct($uid) { + global $mm; + $this->db = $mm->database(); + $this->uid = $uid; + } + public function getUID() { + return $this->uid; + } + + /**********************************************************************\ + * The 'auth' table. * + \**********************************************************************/ + + // Row Type //////////////////////////////////////////////////////////// + /** + * @return 0=unverified 1=user 2=admin 3=group + */ + protected function getType() { + $type = $this->db->getStatus($this->uid); + return $type; + } + protected function setType($type) { + $logged_in_uid = $this->db->isLoggedIn(); + $logged_in_obj = Auth::getObj($logged_in_uid); + $is_admin = $logged_in_obj->isAdmin(); + if (!$is_admin) return false; + + return $this->db->setStatus($this->uid, $type); + } + public function isUser() { + $type = $this->getType(); + return ($type===1) || ($type===2); + } + public function isAdmin() { + $type = $this->getType(); + return ($type===2); + } + public function isGroup() { + $type = $this->getType(); + return ($type===3); + } + public function setUser($is_user) { + $is_user = ($is_user?true:false); + if ($this->isUser() != $is_user) { + $this->setType($is_user?1:0); + } + } + public function setAdmin($is_admin) { + $is_admin = ($is_admin?true:false); + $is_user = $this->isUser(); + $this->setType($is_admin?2:($is_user?1:0)); + } + + // Permissions ///////////////////////////////////////////////////////// + public function canRead() { + $logged_in_uid = Login::isLoggedIn(); + $is_me = ($logged_in_uid === $this->uid); + + $logged_in_obj = Auth::getObj($logged_in_uid); + $is_user = $logged_in_obj->isUser(); + + return ($is_me || $is_user); + } + public function canEdit() { + $logged_in_uid = Login::isLoggedIn(); + $is_me = ($logged_in_uid === $this->uid); + + $logged_in_obj = Auth::getObj($logged_in_uid); + $is_admin = $logged_in_obj->isAdmin(); + + return ($is_me || $is_admin); + } + + // [user|group]name //////////////////////////////////////////////////// + public function getName() { + if (!$this->canRead()) return false; + return $this->db->getUsername($this->uid); + } + public function setName($new_name) { + if (!$this->canEdit()) return false; + return $this->db->setUsername($this->uid, $new_name); + } + + /**********************************************************************\ + * The 'users' table. * + \**********************************************************************/ + + public function getConf($setting) { + if (!$this->canRead()) return false; + return $this->db->getUserConf($this->uid, $setting); + } + public function setConf($setting, $value) { + if (!$this->canEdit()) return false; + return $this->db->setUserConf($this->uid, $setting, $value); + } + public function getConfArray($setting) { + $string = $this->getConf($setting); + return $this->db->valueToArray($string); + } + public function setConfArray($setting, $list) { + $string = $this->db->arrayToValue($list); + return $this->setConf($setting, $string); + } +} |