Server IP : 85.193.89.191 / Your IP : 18.117.100.224 Web Server : Apache System : Linux 956367-cx40159.tmweb.ru 3.10.0-1160.105.1.el7.x86_64 #1 SMP Thu Dec 7 15:39:45 UTC 2023 x86_64 User : bitrix ( 600) PHP Version : 8.1.27 Disable Function : NONE MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /home/bitrix/www/bitrix/modules/lists/lib/security/ |
Upload File : |
<? namespace Bitrix\Lists\Security; use Bitrix\Main\Error; use Bitrix\Main\Errorable; use Bitrix\Main\ErrorCollection; use Bitrix\Main\ErrorableImplementation; class SectionRight implements RightEntity, Errorable { use ErrorableImplementation; const ACCESS_DENIED = "ACCESS_DENIED"; const ADD = "canAdd"; const READ = "canRead"; const EDIT = "canEdit"; const DELETE = "canDelete"; private $listsPermission; private $rightParam; private $socnetGroupClosed = false; public function __construct(RightParam $rightParam) { $this->rightParam = $rightParam; $this->socnetGroupClosed = $this->rightParam->getClosedStatusSocnetGroup(); $this->errorCollection = new ErrorCollection; } /** * Sets the access label that is needed to verify the rights of the entity. * * @param string $listsPermission Access label. */ public function setListsPermission($listsPermission) { $this->listsPermission = $listsPermission; } /** * Checks the read access to the section. * * @return bool */ public function canRead() { if( $this->listsPermission < \CListPermissions::CAN_WRITE && !\CIBlockSectionRights::userHasRightTo( $this->rightParam->getIblockId(), $this->rightParam->getEntityId(), "section_read") ) { $this->errorCollection->setError(new Error("Access denied", self::ACCESS_DENIED)); return false; } return true; } /** * Checks the edit access to the section. * * @return bool */ public function canEdit() { $canEdit = ( !$this->socnetGroupClosed && ( ($this->listsPermission >= \CListPermissions::CAN_WRITE) || \CIBlockSectionRights::userHasRightTo( $this->rightParam->getIblockId(), $this->rightParam->getEntityId(), "section_edit") ) ); if ($canEdit) { return true; } else { $this->errorCollection->setError(new Error("Access denied", self::ACCESS_DENIED)); return false; } } /** * Checks the add access to the section. * * @return bool */ public function canAdd() { $canAdd = ( !$this->socnetGroupClosed && ( ($this->listsPermission >= \CListPermissions::CAN_WRITE) || \CIBlockSectionRights::userHasRightTo( $this->rightParam->getIblockId(), $this->rightParam->getEntityId(), "section_section_bind") ) ); if ($canAdd) { return true; } else { $this->errorCollection->setError(new Error("Access denied", self::ACCESS_DENIED)); return false; } } /** * Checks the delete access to the section. * * @return bool */ public function canDelete() { $canDelete = ( !$this->socnetGroupClosed && ( ($this->listsPermission >= \CListPermissions::CAN_WRITE) || \CIBlockSectionRights::userHasRightTo( $this->rightParam->getIblockId(), $this->rightParam->getEntityId(), "section_delete") ) ); if ($canDelete) { return true; } else { $this->errorCollection->setError(new Error("Access denied", self::ACCESS_DENIED)); return false; } } }