|
danielebarchiesi@0
|
1 <?php
|
|
danielebarchiesi@0
|
2
|
|
danielebarchiesi@0
|
3 /**
|
|
danielebarchiesi@0
|
4 * @file
|
|
danielebarchiesi@0
|
5 * Plugin to provide access control based on user permission strings.
|
|
danielebarchiesi@0
|
6 */
|
|
danielebarchiesi@0
|
7
|
|
danielebarchiesi@0
|
8 /**
|
|
danielebarchiesi@0
|
9 * Plugins are described by creating a $plugin array which will be used
|
|
danielebarchiesi@0
|
10 * by the system that includes this file.
|
|
danielebarchiesi@0
|
11 */
|
|
danielebarchiesi@0
|
12 $plugin = array(
|
|
danielebarchiesi@0
|
13 'title' => t("User: permission"),
|
|
danielebarchiesi@0
|
14 'description' => t('Control access by permission string.'),
|
|
danielebarchiesi@0
|
15 'callback' => 'ctools_perm_ctools_access_check',
|
|
danielebarchiesi@0
|
16 'default' => array('perm' => 'access content'),
|
|
danielebarchiesi@0
|
17 'settings form' => 'ctools_perm_ctools_access_settings',
|
|
danielebarchiesi@0
|
18 'summary' => 'ctools_perm_ctools_access_summary',
|
|
danielebarchiesi@0
|
19 'required context' => new ctools_context_required(t('User'), 'user'),
|
|
danielebarchiesi@0
|
20 );
|
|
danielebarchiesi@0
|
21
|
|
danielebarchiesi@0
|
22 /**
|
|
danielebarchiesi@0
|
23 * Settings form for the 'by perm' access plugin
|
|
danielebarchiesi@0
|
24 */
|
|
danielebarchiesi@0
|
25 function ctools_perm_ctools_access_settings($form, &$form_state, $conf) {
|
|
danielebarchiesi@0
|
26 $perms = array();
|
|
danielebarchiesi@0
|
27 // Get list of permissions
|
|
danielebarchiesi@0
|
28 foreach (module_list(FALSE, FALSE, TRUE) as $module) {
|
|
danielebarchiesi@0
|
29 // By keeping them keyed by module we can use optgroups with the
|
|
danielebarchiesi@0
|
30 // 'select' type.
|
|
danielebarchiesi@0
|
31 if ($permissions = module_invoke($module, 'permission')) {
|
|
danielebarchiesi@0
|
32 foreach ($permissions as $id => $permission) {
|
|
danielebarchiesi@0
|
33 $perms[$module][$id] = $permission['title'];
|
|
danielebarchiesi@0
|
34 }
|
|
danielebarchiesi@0
|
35 }
|
|
danielebarchiesi@0
|
36 }
|
|
danielebarchiesi@0
|
37
|
|
danielebarchiesi@0
|
38 $form['settings']['perm'] = array(
|
|
danielebarchiesi@0
|
39 '#type' => 'select',
|
|
danielebarchiesi@0
|
40 '#options' => $perms,
|
|
danielebarchiesi@0
|
41 '#title' => t('Permission'),
|
|
danielebarchiesi@0
|
42 '#default_value' => $conf['perm'],
|
|
danielebarchiesi@0
|
43 '#description' => t('Only users with the selected permission flag will be able to access this.'),
|
|
danielebarchiesi@0
|
44 );
|
|
danielebarchiesi@0
|
45
|
|
danielebarchiesi@0
|
46 return $form;
|
|
danielebarchiesi@0
|
47 }
|
|
danielebarchiesi@0
|
48
|
|
danielebarchiesi@0
|
49 /**
|
|
danielebarchiesi@0
|
50 * Check for access.
|
|
danielebarchiesi@0
|
51 */
|
|
danielebarchiesi@0
|
52 function ctools_perm_ctools_access_check($conf, $context) {
|
|
danielebarchiesi@0
|
53 // As far as I know there should always be a context at this point, but this
|
|
danielebarchiesi@0
|
54 // is safe.
|
|
danielebarchiesi@0
|
55 if (empty($context) || empty($context->data)) {
|
|
danielebarchiesi@0
|
56 return FALSE;
|
|
danielebarchiesi@0
|
57 }
|
|
danielebarchiesi@0
|
58
|
|
danielebarchiesi@0
|
59 return user_access($conf['perm'], $context->data);
|
|
danielebarchiesi@0
|
60 }
|
|
danielebarchiesi@0
|
61
|
|
danielebarchiesi@0
|
62 /**
|
|
danielebarchiesi@0
|
63 * Provide a summary description based upon the checked roles.
|
|
danielebarchiesi@0
|
64 */
|
|
danielebarchiesi@0
|
65 function ctools_perm_ctools_access_summary($conf, $context) {
|
|
danielebarchiesi@0
|
66 if (!isset($conf['perm'])) {
|
|
danielebarchiesi@0
|
67 return t('Error, unset permission');
|
|
danielebarchiesi@0
|
68 }
|
|
danielebarchiesi@0
|
69
|
|
danielebarchiesi@0
|
70 $permissions = module_invoke_all('permission');
|
|
danielebarchiesi@0
|
71 return t('@identifier has "@perm"', array('@identifier' => $context->identifier, '@perm' => $permissions[$conf['perm']]['title']));
|
|
danielebarchiesi@0
|
72 }
|
|
danielebarchiesi@0
|
73
|
