openrat-cms

Unnamed repository; edit this file 'description' to name the repository.
Log | Files | Refs | README

IndexAction.class.php (1624B)


      1 <?php
      2 
      3 namespace cms\ui\action;
      4 
      5 use cms\action\Action;
      6 use cms\action\RequestParams;
      7 use cms\auth\Auth;
      8 use cms\auth\AuthRunner;
      9 use cms\base\Configuration;
     10 use cms\base\Configuration as C;
     11 use cms\base\Startup;
     12 use cms\model\BaseObject;
     13 use cms\model\Project;
     14 use cms\model\User;
     15 use cms\model\Value;
     16 use cms\ui\themes\Theme;
     17 use Exception;
     18 use language\Messages;
     19 use util\Html;
     20 use util\json\JSON;
     21 use logger\Logger;
     22 use util\Less;
     23 use util\UIUtils;
     24 use \util\exception\ObjectNotFoundException;
     25 use util\Session;
     26 
     27 
     28 /**
     29  * Action-Klasse fuer die Anzeige der Hauptseite.
     30  * 
     31  * @author Jan Dankert
     32  * @package openrat.actions
     33  */
     34 class IndexAction extends Action
     35 {
     36 
     37 	/**
     38 	 * Konstruktor
     39 	 */
     40 	function __construct()
     41 	{
     42         parent::__construct();
     43 	}
     44 
     45     /**
     46      * @param User $user
     47      * @return \configuration\Config|string
     48      */
     49     protected function getUserStyle($user )
     50     {
     51         // Theme für den angemeldeten Benutzer ermitteln
     52         if  ( $user && C::subset('style')->has($user->style) )
     53             $style = $user->style;
     54         else
     55             $style = C::subset( ['interface', 'style'])->get('default','default');
     56         return $style;
     57     }
     58 
     59 
     60 
     61 
     62 	/**
     63 	 * Content-Security-Policy.
     64 	 */
     65 	protected function addContentSecurityPolicy()
     66 	{
     67 		$csp = Configuration::subset('security' )->get('csp', [
     68 			'default-src' =>'\'self\'', // Default for all is 'self' (CSS, styles, etc)
     69 			'frame-src'   => '*'        // For preview of urls we need to show every url in an iframe.
     70 		] );
     71 
     72 		$this->setContentSecurityPolicy( $csp );
     73 	}
     74 
     75 
     76 	public function checkAccess() {
     77 		return true; // Allowed for all
     78 	}
     79 
     80 }