Home Explore Help
Register Sign In
3erPartyFlowdat3
/
SonataAdminBundle
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: ef8941a952
Branches Tags
SonataAdminB...
/
Util
/
ObjectAclManipulator.php

ObjectAclManipulator.php 2.6 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Sonata Project package.
    5. 

  5.  *
    6. 

  6.  * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Sonata\AdminBundle\Util;
    13. 

  13. 

  14. use Sonata\AdminBundle\Admin\AdminInterface;
    15. 

  15. use Sonata\AdminBundle\Security\Handler\AclSecurityHandlerInterface;
    16. 

  16. use Symfony\Component\Console\Output\OutputInterface;
    17. 

  17. use Symfony\Component\Security\Acl\Domain\UserSecurityIdentity;
    18. 

  18. 

  19. /**
    20. 

  20.  * Class ObjectAclManipulator.
    21. 

  21.  *
    22. 

  22.  * @author  Thomas Rabaix <thomas.rabaix@sonata-project.org>
    23. 

  23.  */
    24. 

  24. abstract class ObjectAclManipulator implements ObjectAclManipulatorInterface
    25. 

  25. {
    26. 

  26.     /**
    27. 

  27.      * Configure the object ACL for the passed object identities.
    28. 

  28.      *
    29. 

  29.      * @param OutputInterface      $output
    30. 

  30.      * @param AdminInterface       $admin
    31. 

  31.      * @param \Traversable         $oids             a collection of ObjectIdentityInterface implementations
    32. 

  32.      * @param UserSecurityIdentity $securityIdentity
    33. 

  33.      *
    34. 

  34.      * @throws \Exception
    35. 

  35.      *
    36. 

  36.      * @return array [countAdded, countUpdated]
    37. 

  37.      */
    38. 

  38.     public function configureAcls(OutputInterface $output, AdminInterface $admin, \Traversable $oids, UserSecurityIdentity $securityIdentity = null)
    39. 

  39.     {
    40. 

  40.         $countAdded = 0;
    41. 

  41.         $countUpdated = 0;
    42. 

  42.         $securityHandler = $admin->getSecurityHandler();
    43. 

  43.         if (!$securityHandler instanceof AclSecurityHandlerInterface) {
    44. 

  44.             $output->writeln(sprintf('Admin `%s` is not configured to use ACL : <info>ignoring</info>', $admin->getCode()));
    45. 

  45. 

  46.             return array(0, 0);
    47. 

  47.         }
    48. 

  48. 

  49.         $acls = $securityHandler->findObjectAcls($oids);
    50. 

  50. 

  51.         foreach ($oids as $oid) {
    52. 

  52.             if ($acls->contains($oid)) {
    53. 

  53.                 $acl = $acls->offsetGet($oid);
    54. 

  54.                 ++$countUpdated;
    55. 

  55.             } else {
    56. 

  56.                 $acl = $securityHandler->createAcl($oid);
    57. 

  57.                 ++$countAdded;
    58. 

  58.             }
    59. 

  59. 

  60.             if (!is_null($securityIdentity)) {
    61. 

  61.                 // add object owner
    62. 

  62.                 $securityHandler->addObjectOwner($acl, $securityIdentity);
    63. 

  63.             }
    64. 

  64. 

  65.             $securityHandler->addObjectClassAces($acl, $securityHandler->buildSecurityInformation($admin));
    66. 

  66. 

  67.             try {
    68. 

  68.                 $securityHandler->updateAcl($acl);
    69. 

  69.             } catch (\Exception $e) {
    70. 

  70.                 $output->writeln(sprintf('Error saving ObjectIdentity (%s, %s) ACL : %s <info>ignoring</info>', $oid->getIdentifier(), $oid->getType(), $e->getMessage()));
    71. 

  71.             }
    72. 

  72.         }
    73. 

  73. 

  74.         return array($countAdded, $countUpdated);
    75. 

  75.     }
    76. 

  76. }
    77.