Last commit: Sat Nov 27 01:52:24 2021 +0100	Jan Dankert	New: Releasing and Restoring for file and template values.


      <?php
      
      namespace cms\action;
      
      namespace cms\action;
      use cms\model\Content;
      use cms\model\Folder;
      use cms\model\Permission;
      use cms\model\Element;
     use cms\model\Page;
     use cms\model\Project;
     use cms\model\Template;
     use cms\model\TemplateModel;
     use cms\model\Value;
     use language\Messages;
     use util\exception\SecurityException;
     use util\exception\ValidationException;
     use util\Html;
     use util\Session;
     
     
     // OpenRat Content Management System
     // Copyright (C) 2002-2009 Jan Dankert
     //
     // This program is free software; you can redistribute it and/or
     // modify it under the terms of the GNU General Public License
     // as published by the Free Software Foundation; either version 2
     // of the License, or (at your option) any later version.
     //
     // This program is distributed in the hope that it will be useful,
     // but WITHOUT ANY WARRANTY; without even the implied warranty of
     // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
     // GNU General Public License for more details.
     //
     // You should have received a copy of the GNU General Public License
     // along with this program; if not, write to the Free Software
     // Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
     
     /**
      * Action-Klasse zum Bearbeiten einer Seitenvorlage.
      * 
      * @author Jan Dankert
      * @package openrat.actions
      */
     
     class TemplateAction extends BaseAction
     {
         /**
          * @var Template
          */
     	protected $template;
     	private $element;
     
     
     	function __construct()
     	{
             parent::__construct();
     
         }
     
     
         public function init()
         {
     		$this->template = new Template( $this->request->getId() );
     
     		$this->template->load();
     
     		$this->setTemplateVar( 'templateid',$this->template->templateid );
     
     		if	( intval($this->request->getText('elementid')) != 0 )
     		{
     			$this->element = new Element( $this->request->getText('elementid') );
     			$this->element->load();
     			$this->setTemplateVar( 'elementid',$this->element->elementid );
     		}
     	}
     
     
     
     
     	/**
     	 * User must be an project administrator.
     	 */
     	public function checkAccess() {
     		$project      = new Project( $this->template->projectid );
     		$rootFolderId = $project->getRootObjectId();
     
     		$rootFolder = new Folder( $rootFolderId );
     		$rootFolder->load();
     
     		if   ( ! $rootFolder->hasRight( Permission::ACL_PROP )  )
     			throw new SecurityException();
     	}
     
     
     	protected function getTemplateModels()
     	{
     		$project = new Project($this->template->projectid);
     		$versions = [];
    
    		$templatemodels = [];
    		foreach ($project->getModels() as $modelId => $modelName) {
    			$templatemodels[] = new TemplateModel($this->template->templateid, $modelId);
    		}
    
    		return $templatemodels;
    	}
    
    
    
    	protected function ensureValueIdIsInAnyTemplate( $valueId ) {
    
    		$versions = [];
    
    		foreach( $this->getTemplateModels() as $templateModel )
    		{
    			$templateModel->load();
    
    			$content = new Content( $templateModel->getContentid() );
    
    			$versions = array_merge( $versions, $content->getVersionList() );
    		}
    
    		if   ( ! in_array( $valueId, $versions ))
    			throw new SecurityException( 'value-id is not contained in the version list of this file' );
    	}
    }


Download modules/cms/action/TemplateAction.class.php

History
Sat, 27 Nov 2021 01:52:24 +0100	Jan Dankert	New: Releasing and Restoring for file and template values.
Sun, 14 Mar 2021 22:29:56 +0100	Jan Dankert	Refactoring: Clearer access check.
Fri, 26 Feb 2021 01:06:01 +0100	Jan Dankert	Refactoring accessing the request parameter values.
Mon, 4 Jan 2021 19:03:18 +0100	Jan Dankert	Refactoring: ACL class is renamed to Permission, because most RBAC/DMAC concepts are calling it a permission.
Wed, 18 Nov 2020 00:18:10 +0100	Jan Dankert	Refactoring Part 2: Removing all unnecessary methods in the action base classes.
Tue, 17 Nov 2020 23:51:00 +0100	Jan Dankert	Refactoring: Every Actionmethod has now its own class.
Wed, 11 Nov 2020 23:24:28 +0100	Jan Dankert	Fixing editing value of files,images,texts.
Wed, 11 Nov 2020 21:47:40 +0100	Jan Dankert	Fix: Templatemodel-extensions are now editable.
Fri, 2 Oct 2020 23:11:48 +0200	Jan Dankert	Cleanup: No '.inputholder' any more, notices with links to objects.
Tue, 29 Sep 2020 22:17:11 +0200	Jan Dankert	Refactoring: Do not use global constants.
Sat, 26 Sep 2020 12:20:43 +0200	Jan Dankert	Refactoring: No global variables like $SESS  any more. All constants are capsulated by classes.
Sat, 26 Sep 2020 04:03:53 +0200	Jan Dankert	Refactoring: read language keys with a class.
Wed, 23 Sep 2020 01:04:05 +0200	Jan Dankert	Cleanup of deprecated methods and deprecated class attributes.
Fri, 18 Sep 2020 23:04:13 +0200	Jan Dankert	Refactoring: Renaming module "cms/publish" to "cms/generator"
Sun, 23 Feb 2020 04:01:30 +0100	Jan Dankert	Refactoring with Namespaces for the cms modules, part 1: moving.