Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/mautic.corals.io/app/bundles/LeadBundle/Security/Permissions/ |
<?php
namespace Mautic\LeadBundle\Security\Permissions;
use Mautic\CoreBundle\Security\Permissions\AbstractPermissions;
use Mautic\UserBundle\Form\Type\PermissionListType;
use Symfony\Component\Form\FormBuilderInterface;
class LeadPermissions extends AbstractPermissions
{
public const LISTS_VIEW = 'lead:lists:view';
public const LISTS_VIEW_OWN = 'lead:lists:viewown';
public const LISTS_VIEW_OTHER = 'lead:lists:viewother';
public const LISTS_EDIT_OWN = 'lead:lists:editown';
public const LISTS_EDIT_OTHER = 'lead:lists:editother';
public const LISTS_CREATE = 'lead:lists:create';
public const LISTS_DELETE_OWN = 'lead:lists:deleteown';
public const LISTS_DELETE_OTHER = 'lead:lists:deleteother';
public const LISTS_FULL = 'lead:lists:full';
public function __construct($params)
{
parent::__construct($params);
$this->permissions = [
'fields' => [
'full' => 1024,
'view' => 1,
],
];
$this->addExtendedPermissions('leads', false);
$this->addExtendedPermissions('lists', false);
$this->addStandardPermissions('imports');
$this->addCustomPermission('export', ['enable' => 1024]);
}
public function getName(): string
{
return 'lead';
}
public function buildForm(FormBuilderInterface &$builder, array $options, array $data): void
{
$this->addExtendedFormFields($this->getName(), 'leads', $builder, $data, false);
$this->addExtendedFormFields('lead', 'lists', $builder, $data, false);
$builder->add(
'lead:fields',
PermissionListType::class,
[
'choices' => [
'mautic.core.permissions.manage' => 'full',
'mautic.core.permissions.view' => 'view',
],
'label' => 'mautic.lead.permissions.fields',
'data' => (!empty($data['fields']) ? $data['fields'] : []),
'bundle' => 'lead',
'level' => 'fields',
]
);
$this->addCustomFormFields(
$this->getName(),
'export',
$builder,
'mautic.core.permissions.export',
['mautic.core.permissions.enable' => 'enable'],
$data
);
$this->addStandardFormFields($this->getName(), 'imports', $builder, $data);
}
public function analyzePermissions(array &$permissions, $allPermissions, $isSecondRound = false): bool
{
parent::analyzePermissions($permissions, $allPermissions, $isSecondRound);
// make sure the user has access to own leads as well if they have access to lists, notes or fields
$viewPerms = ['viewown', 'viewother', 'full'];
if (
(!isset($permissions['leads']) || (array_intersect($viewPerms, $permissions['leads']) == $viewPerms))
&& (isset($permissions['lists']) || isset($permissions['fields']))
) {
$permissions['leads'][] = 'viewown';
}
return false;
}
/**
* @return array
*/
protected function getSynonym($name, $level)
{
if ('fields' === $name) {
// set some synonyms
switch ($level) {
case 'publishown':
case 'publishother':
$level = 'full';
break;
}
}
return parent::getSynonym($name, $level);
}
}