Remove dark magic middleware and check permission in services

2017-01-13 16:36:36 +01:00
parent 6d0ebb7d73
commit b0627d8979
14 changed files with 158 additions and 297 deletions
--- a/lib/Service/PermissionService.php
+++ b/lib/Service/PermissionService.php
@@ -26,6 +26,11 @@ namespace OCA\Deck\Service;
 use OCA\Deck\Db\Acl;
 use OCA\Deck\Db\AclMapper;
 use OCA\Deck\Db\BoardMapper;
+use OCA\Deck\Db\Entity;
+use OCA\Deck\Db\IPermissionMapper;
+use OCA\Deck\NoPermissionException;
+use OCA\Deck\NotFoundException;
+use OCP\AppFramework\Db\DoesNotExistException;
 use OCP\IGroupManager;
 use OCP\ILogger;

@@ -84,6 +89,36 @@ class PermissionService {
 		return $this->userCan($acls, $permission);
 	}

+	/**
+	 * check permissions for replacing dark magic middleware
+	 *
+	 * @param $mapper IPermissionMapper|null null if $id is a boardId
+	 * @param $id int unique identifier of the Entity
+	 * @param $permission int
+	 * @return bool
+	 * @throws NoPermissionException|NotFoundException
+	 */
+	public function checkPermission($mapper, $id, $permission) {
+		try {
+		    if($mapper instanceof IPermissionMapper) {
+                $boardId = $mapper->findBoardId($id);
+            } else {
+		        $boardId = $id;
+            }
+            if($boardId === null) {
+                throw new NotFoundException('No entity found');
+            }
+            if (!$this->getPermission($boardId, $permission)) {
+                $class = new \ReflectionClass($mapper);
+                $constants = array_flip($class->getConstants());
+                throw new NoPermissionException('Permission ' . $constants[$permission] . ' not granted.');
+            }
+        } catch (DoesNotExistException $exception) {
+		    throw new NotFoundException('Permission denied');
+        }
+		return true;
+	}
+
 	/**
 	 * @param $boardId
 	 * @return bool