PATH:
home
/
beestk
/
lpda
/
classes
<?php /** * 2007-2019 PrestaShop and Contributors * * NOTICE OF LICENSE * * This source file is subject to the Open Software License (OSL 3.0) * that is bundled with this package in the file LICENSE.txt. * It is also available through the world-wide-web at this URL: * https://opensource.org/licenses/OSL-3.0 * If you did not receive a copy of the license and are unable to * obtain it through the world-wide-web, please send an email * to license@prestashop.com so we can send you a copy immediately. * * DISCLAIMER * * Do not edit or add to this file if you wish to upgrade PrestaShop to newer * versions in the future. If you wish to customize PrestaShop for your * needs please refer to https://www.prestashop.com for more information. * * @author PrestaShop SA <contact@prestashop.com> * @copyright 2007-2019 PrestaShop SA and Contributors * @license https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0) * International Registered Trademark & Property of PrestaShop SA */ /** * Class ProfileCore. */ class ProfileCore extends ObjectModel { const ALLOWED_PROFILE_TYPE_CHECK = [ 'id_tab', 'class_name', ]; /** @var string Name */ public $name; /** * @see ObjectModel::$definition */ public static $definition = array( 'table' => 'profile', 'primary' => 'id_profile', 'multilang' => true, 'fields' => array( /* Lang fields */ 'name' => array('type' => self::TYPE_STRING, 'lang' => true, 'validate' => 'isGenericName', 'required' => true, 'size' => 32), ), ); protected static $_cache_accesses = array(); /** * Get all available profiles. * * @return array Profiles */ public static function getProfiles($idLang) { return Db::getInstance(_PS_USE_SQL_SLAVE_)->executeS(' SELECT p.`id_profile`, `name` FROM `' . _DB_PREFIX_ . 'profile` p LEFT JOIN `' . _DB_PREFIX_ . 'profile_lang` pl ON (p.`id_profile` = pl.`id_profile` AND `id_lang` = ' . (int) $idLang . ') ORDER BY `id_profile` ASC'); } /** * Get the current profile name. * * @param int $idProfile Profile ID * @param null $idLang Language ID * * @return string Profile */ public static function getProfile($idProfile, $idLang = null) { if (!$idLang) { $idLang = Configuration::get('PS_LANG_DEFAULT'); } return Db::getInstance(_PS_USE_SQL_SLAVE_)->getRow( ' SELECT `name` FROM `' . _DB_PREFIX_ . 'profile` p LEFT JOIN `' . _DB_PREFIX_ . 'profile_lang` pl ON (p.`id_profile` = pl.`id_profile`) WHERE p.`id_profile` = ' . (int) $idProfile . ' AND pl.`id_lang` = ' . (int) $idLang ); } public function add($autodate = true, $null_values = false) { return parent::add($autodate, true); } public function delete() { if (parent::delete()) { return Db::getInstance()->execute('DELETE FROM `' . _DB_PREFIX_ . 'access` WHERE `id_profile` = ' . (int) $this->id) && Db::getInstance()->execute('DELETE FROM `' . _DB_PREFIX_ . 'module_access` WHERE `id_profile` = ' . (int) $this->id); } return false; } /** * Get access profile. * * @param int $idProfile Profile ID * @param int $idTab Tab ID * * @return bool */ public static function getProfileAccess($idProfile, $idTab) { // getProfileAccesses is cached so there is no performance leak $accesses = Profile::getProfileAccesses($idProfile); return isset($accesses[$idTab]) ? $accesses[$idTab] : false; } /** * Get access profiles. * * @param int $idProfile Profile ID * @param string $type Type * * @return bool */ public static function getProfileAccesses($idProfile, $type = 'id_tab') { if (!in_array($type, self::ALLOWED_PROFILE_TYPE_CHECK)) { return false; } if (!isset(self::$_cache_accesses[$idProfile])) { self::$_cache_accesses[$idProfile] = array(); } if (!isset(self::$_cache_accesses[$idProfile][$type])) { self::$_cache_accesses[$idProfile][$type] = array(); // Super admin profile has full auth if ($idProfile == _PS_ADMIN_PROFILE_) { $defaultPermission = [ 'id_profile' => _PS_ADMIN_PROFILE_, 'view' => '1', 'add' => '1', 'edit' => '1', 'delete' => '1', ]; $roles = []; } else { $defaultPermission = [ 'id_profile' => $idProfile, 'view' => '0', 'add' => '0', 'edit' => '0', 'delete' => '0', ]; $roles = self::generateAccessesArrayFromPermissions( Db::getInstance()->executeS(' SELECT `slug`, `slug` LIKE "%CREATE" as "add", `slug` LIKE "%READ" as "view", `slug` LIKE "%UPDATE" as "edit", `slug` LIKE "%DELETE" as "delete" FROM `' . _DB_PREFIX_ . 'authorization_role` a LEFT JOIN `' . _DB_PREFIX_ . 'access` j ON j.id_authorization_role = a.id_authorization_role WHERE j.`id_profile` = ' . (int) $idProfile) ); } self::fillCacheAccesses( $idProfile, $defaultPermission, $roles ); } return self::$_cache_accesses[$idProfile][$type]; } public static function resetCacheAccesses() { self::$_cache_accesses = array(); } /** * @param int $idProfile Profile ID * @param array $defaultData Cached data * @param array $accesses Data loaded from the database */ private static function fillCacheAccesses($idProfile, $defaultData = [], $accesses = []) { foreach (Tab::getTabs(Context::getContext()->language->id) as $tab) { $accessData = []; if (isset($accesses[strtoupper($tab['class_name'])])) { $accessData = $accesses[strtoupper($tab['class_name'])]; } foreach (self::ALLOWED_PROFILE_TYPE_CHECK as $type) { self::$_cache_accesses[$idProfile][$type][$tab[$type]] = array_merge( array( 'id_tab' => $tab['id_tab'], 'class_name' => $tab['class_name'], ), $defaultData, $accessData ); } } } /** * Creates the array of accesses [role => add / view / edit / delete] from a given list of roles * * @param array $rolesGiven * * @return array */ private static function generateAccessesArrayFromPermissions($rolesGiven) { // Modify array to merge the class names together. $accessPerTab = []; foreach ($rolesGiven as $role) { preg_match( '/ROLE_MOD_[A-Z]+_(?P<classname>[A-Z][A-Z0-9]*)_[A-Z]+/', $role['slug'], $matches ); if (empty($matches['classname'])) { continue; } $accessPerTab[$matches['classname']][array_search('1', $role)] = '1'; } return $accessPerTab; } }
[+]
..
[-] Tag.php
[open]
[+]
proxy
[-] Translate.php
[open]
[-] Meta.php
[open]
[-] Image.php
[open]
[-] Access.php
[open]
[+]
pdf
[-] Manufacturer.php
[open]
[+]
log
[-] Country.php
[open]
[-] ValidateConstraintTranslator.php
[open]
[-] Dispatcher.php
[open]
[+]
range
[-] DateRange.php
[open]
[-] .htaccess
[open]
[-] Context.php
[open]
[-] PrestaShopBackup.php
[open]
[+]
shop
[-] Media.php
[open]
[-] Pack.php
[open]
[-] LocalizationPack.php
[open]
[-] RequestSql.php
[open]
[-] Windows.php
[open]
[-] Uploader.php
[open]
[+]
db
[-] Search.php
[open]
[-] PrestaShopLogger.php
[open]
[-] Delivery.php
[open]
[-] TranslatedConfiguration.php
[open]
[-] Page.php
[open]
[-] Profile.php
[open]
[+]
exception
[-] Curve.php
[open]
[-] Connection.php
[open]
[+]
container
[-] AddressChecksumCore.php
[open]
[-] Gender.php
[open]
[-] Contact.php
[open]
[+]
module
[-] Store.php
[open]
[-] ProductSupplier.php
[open]
[-] PaymentModule.php
[open]
[+]
tax
[+]
cache
[+]
assets
[+]
form
[-] ProductSale.php
[open]
[-] Hook.php
[open]
[-] CustomerThread.php
[open]
[-] FileUploader.php
[open]
[-] QqUploadedFileXhr.php
[open]
[-] QuickAccess.php
[open]
[+]
controller
[-] CMS.php
[open]
[-] Mail.php
[open]
[-] Carrier.php
[open]
[-] Alias.php
[open]
[-] ProductPresenterFactory.php
[open]
[-] ImageManager.php
[open]
[-] Validate.php
[open]
[-] Tools.php
[open]
[-] Configuration.php
[open]
[-] CSV.php
[open]
[-] ProductAssembler.php
[open]
[-] ConfigurationTest.php
[open]
[-] Cookie.php
[open]
[-] Zone.php
[open]
[-] AddressFormat.php
[open]
[+]
tree
[-] ProductDownload.php
[open]
[-] Link.php
[open]
[-] Chart.php
[open]
[-] Notification.php
[open]
[-] WarehouseAddress.php
[open]
[-] Message.php
[open]
[-] PhpEncryptionLegacyEngine.php
[open]
[-] Language.php
[open]
[-] PhpEncryption.php
[open]
[+]
checkout
[-] Group.php
[open]
[-] ManufacturerAddress.php
[open]
[-] SpecificPrice.php
[open]
[-] Feature.php
[open]
[-] Upgrader.php
[open]
[-] Customer.php
[open]
[-] ObjectModel.php
[open]
[-] SpecificPriceRule.php
[open]
[+]
lang
[-] PrestaShopAutoload.php
[open]
[-] CustomerAddress.php
[open]
[-] FeatureValue.php
[open]
[-] PhpEncryptionEngine.php
[open]
[-] Customization.php
[open]
[-] PrestaShopCollection.php
[open]
[-] CMSRole.php
[open]
[-] GroupReduction.php
[open]
[-] Cart.php
[open]
[-] Attribute.php
[open]
[-] Tab.php
[open]
[-] Currency.php
[open]
[-] index.php
[open]
[-] AttributeGroup.php
[open]
[-] ConnectionsSource.php
[open]
[+]
order
[+]
webservice
[-] Guest.php
[open]
[-] CustomerMessage.php
[open]
[-] ImageType.php
[open]
[-] State.php
[open]
[-] Employee.php
[open]
[-] Risk.php
[open]
[-] ChecksumInterface.php
[open]
[-] Attachment.php
[open]
[-] CartRule.php
[open]
[-] Product.php
[open]
[+]
Smarty
[+]
stock
[-] Referrer.php
[open]
[-] Category.php
[open]
[-] QqUploadedFileForm.php
[open]
[-] PaymentFree.php
[open]
[-] CustomizationField.php
[open]
[-] CMSCategory.php
[open]
[-] SupplierAddress.php
[open]
[-] Combination.php
[open]
[-] ConfigurationKPI.php
[open]
[-] Address.php
[open]
[-] SearchEngine.php
[open]
[+]
helper
[-] Supplier.php
[open]