shimmie2/core/userclass.php

<?php
/**
 * @global UserClass[] $_shm_user_classes
 */
global $_shm_user_classes;
$_shm_user_classes = array();

/**
 * Class UserClass
 */
class UserClass {

	/**
	 * @var null|string
	 */
	public $name = null;

	/**
	 * @var \UserClass|null
	 */
	public $parent = null;

	/**
	 * @var array
	 */
	public $abilities = array();

	public function __construct(string $name, string $parent=null, array $abilities=array()) {
		global $_shm_user_classes;

		$this->name = $name;
		$this->abilities = $abilities;

		if(!is_null($parent)) {
			$this->parent = $_shm_user_classes[$parent];
		}

		$_shm_user_classes[$name] = $this;
	}

	/**
	 * Determine if this class of user can perform an action or has ability.
	 *
	 * @throws SCoreException
	 */
	public function can(string $ability): bool {
		if(array_key_exists($ability, $this->abilities)) {
			$val = $this->abilities[$ability];
			return $val;
		}
		else if(!is_null($this->parent)) {
			return $this->parent->can($ability);
		}
		else {
			global $_shm_user_classes;
			$min_dist = 9999;
			$min_ability = null;
			foreach($_shm_user_classes['base']->abilities as $a => $cando) {
				$v = levenshtein($ability, $a);
				if($v < $min_dist) {
					$min_dist = $v;
					$min_ability = $a;
				}
			}
			throw new SCoreException("Unknown ability '".html_escape($ability)."'. Did the developer mean '".html_escape($min_ability)."'?");
		}
	}
}

// action_object_attribute
// action = create / view / edit / delete
// object = image / user / tag / setting
new UserClass("base", null, array(
	"change_setting" => False,  # modify web-level settings, eg the config table
	"override_config" => False, # modify sys-level settings, eg shimmie.conf.php
	"big_search" => False,      # search for more than 3 tags at once (speed mode only)

	"manage_extension_list" => False,
	"manage_alias_list" => False,
	"mass_tag_edit" => False,

	"view_ip" => False,         # view IP addresses associated with things
	"ban_ip" => False,

	"edit_user_name" => False,
	"edit_user_password" => False,
	"edit_user_info" => False,  # email address, etc
	"edit_user_class" => False,
	"delete_user" => False,

	"create_comment" => False,
	"delete_comment" => False,
	"bypass_comment_checks" => False,  # spam etc

	"replace_image" => False,
	"create_image" => False,
	"edit_image_tag" => False,
	"edit_image_source" => False,
	"edit_image_owner" => False,
	"edit_image_lock" => False,
	"bulk_edit_image_tag" => False,
	"bulk_edit_image_source" => False,
	"delete_image" => False,

	"ban_image" => False,

	"view_eventlog" => False,
	"ignore_downtime" => False,

	"create_image_report" => False,
	"view_image_report" => False,  # deal with reported images

	"edit_wiki_page" => False,
	"delete_wiki_page" => False,

	"manage_blocks" => False,

	"manage_admintools" => False,

	"view_other_pms" => False,
	"edit_feature" => False,
	"bulk_edit_vote" => False,
	"edit_other_vote" => False,
	"view_sysinfo" => False,

	"hellbanned" => False,
	"view_hellbanned" => False,

	"protected" => False,          # only admins can modify protected users (stops a moderator changing an admin's password)
));

new UserClass("anonymous", "base", array(
));

new UserClass("user", "base", array(
	"big_search" => True,
	"create_image" => True,
	"create_comment" => True,
	"edit_image_tag" => True,
	"edit_image_source" => True,
	"create_image_report" => True,
));

new UserClass("admin", "base", array(
	"change_setting" => True,
	"override_config" => True,
	"big_search" => True,
	"edit_image_lock" => True,
	"view_ip" => True,
	"ban_ip" => True,
	"edit_user_name" => True,
	"edit_user_password" => True,
	"edit_user_info" => True,
	"edit_user_class" => True,
	"delete_user" => True,
	"create_image" => True,
	"delete_image" => True,
	"ban_image" => True,
	"create_comment" => True,
	"delete_comment" => True,
	"bypass_comment_checks" => True,
	"replace_image" => True,
	"manage_extension_list" => True,
	"manage_alias_list" => True,
	"edit_image_tag" => True,
	"edit_image_source" => True,
	"edit_image_owner" => True,
	"bulk_edit_image_tag" => True,
	"bulk_edit_image_source" => True,
	"mass_tag_edit" => True,
	"create_image_report" => True,
	"view_image_report" => True,
	"edit_wiki_page" => True,
	"delete_wiki_page" => True,
	"view_eventlog" => True,
	"manage_blocks" => True,
	"manage_admintools" => True,
	"ignore_downtime" => True,
	"view_other_pms" => True,
	"edit_feature" => True,
	"bulk_edit_vote" => True,
	"edit_other_vote" => True,
	"view_sysinfo" => True,
	"view_hellbanned" => True,
	"protected" => True,
));

new UserClass("hellbanned", "user", array(
	"hellbanned" => True,
));

@include_once "data/config/user-classes.conf.php";
and commit the file... 2012-02-14 21:11:23 +00:00			`<?php`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`/**`
more global removal 2015-08-02 19:39:41 +00:00			`* @global UserClass[] $_shm_user_classes`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`*/`
more global removal 2015-08-02 19:39:41 +00:00			`global $_shm_user_classes;`
			`$_shm_user_classes = array();`
and commit the file... 2012-02-14 21:11:23 +00:00
More PHP Doc comments. 2014-04-29 05:33:03 +00:00			`/**`
			`* Class UserClass`
			`*/`
and commit the file... 2012-02-14 21:11:23 +00:00			`class UserClass {`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 22:59:01 +00:00
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`/**`
			`* @var null\|string`
			`*/`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $name = null;`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00
			`/**`
Fixing more PHP Doc related issues. 2014-04-27 23:29:36 +00:00			`* @var \UserClass\|null`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`*/`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $parent = null;`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00
			`/**`
			`* @var array`
			`*/`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $abilities = array();`
and commit the file... 2012-02-14 21:11:23 +00:00
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function __construct(string $name, string $parent=null, array $abilities=array()) {`
more global removal 2015-08-02 19:39:41 +00:00			`global $_shm_user_classes;`
nicer custom classes 2012-03-19 11:27:01 +00:00
and commit the file... 2012-02-14 21:11:23 +00:00			`$this->name = $name;`
			`$this->abilities = $abilities;`
nicer custom classes 2012-03-19 11:27:01 +00:00
inherit the class, not the name 2012-03-19 11:33:06 +00:00			`if(!is_null($parent)) {`
more global removal 2015-08-02 19:39:41 +00:00			`$this->parent = $_shm_user_classes[$parent];`
inherit the class, not the name 2012-03-19 11:33:06 +00:00			`}`

more global removal 2015-08-02 19:39:41 +00:00			`$_shm_user_classes[$name] = $this;`
and commit the file... 2012-02-14 21:11:23 +00:00			`}`

Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00			`/**`
			`* Determine if this class of user can perform an action or has ability.`
			`*`
			`* @throws SCoreException`
			`*/`
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function can(string $ability): bool {`
and commit the file... 2012-02-14 21:11:23 +00:00			`if(array_key_exists($ability, $this->abilities)) {`
			`$val = $this->abilities[$ability];`
nicer custom classes 2012-03-19 11:27:01 +00:00			`return $val;`
and commit the file... 2012-02-14 21:11:23 +00:00			`}`
			`else if(!is_null($this->parent)) {`
			`return $this->parent->can($ability);`
			`}`
			`else {`
more global removal 2015-08-02 19:39:41 +00:00			`global $_shm_user_classes;`
suggest a perm when dev typos 2012-03-31 16:06:53 +00:00			`$min_dist = 9999;`
			`$min_ability = null;`
more global removal 2015-08-02 19:39:41 +00:00			`foreach($_shm_user_classes['base']->abilities as $a => $cando) {`
suggest a perm when dev typos 2012-03-31 16:06:53 +00:00			`$v = levenshtein($ability, $a);`
			`if($v < $min_dist) {`
			`$min_dist = $v;`
			`$min_ability = $a;`
			`}`
			`}`
			`throw new SCoreException("Unknown ability '".html_escape($ability)."'. Did the developer mean '".html_escape($min_ability)."'?");`
and commit the file... 2012-02-14 21:11:23 +00:00			`}`
			`}`
			`}`

note of perms 2012-03-12 17:30:33 +00:00			`// action_object_attribute`
			`// action = create / view / edit / delete`
			`// object = image / user / tag / setting`
nicer custom classes 2012-03-19 11:27:01 +00:00			`new UserClass("base", null, array(`
userclass docs 2012-02-22 21:08:57 +00:00			`"change_setting" => False, # modify web-level settings, eg the config table`
move config file to data 2012-03-30 17:03:55 +00:00			`"override_config" => False, # modify sys-level settings, eg shimmie.conf.php`
userclass docs 2012-02-22 21:08:57 +00:00			`"big_search" => False, # search for more than 3 tags at once (speed mode only)`
permission name tweaks 2012-03-14 19:24:10 +00:00
			`"manage_extension_list" => False,`
			`"manage_alias_list" => False,`
			`"mass_tag_edit" => False,`

and commit the file... 2012-02-14 21:11:23 +00:00			`"view_ip" => False, # view IP addresses associated with things`
			`"ban_ip" => False,`
permission name tweaks 2012-03-14 19:24:10 +00:00
support for changing usernames 2015-07-12 21:14:57 +00:00			`"edit_user_name" => False,`
change_X -> edit_X for consistency 2012-03-12 17:29:03 +00:00			`"edit_user_password" => False,`
			`"edit_user_info" => False, # email address, etc`
change user class / delete user separate from admin 2012-03-31 18:25:27 +00:00			`"edit_user_class" => False,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"delete_user" => False,`
permission name tweaks 2012-03-14 19:24:10 +00:00
comment_anon bool -> create_comment perm 2012-03-19 13:17:47 +00:00			`"create_comment" => False,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"delete_comment" => False,`
add a user flag for bypassing comment checks 2014-11-30 13:07:42 +00:00			`"bypass_comment_checks" => False, # spam etc`
permission name tweaks 2012-03-14 19:24:10 +00:00
and commit the file... 2012-02-14 21:11:23 +00:00			`"replace_image" => False,`
upload_anon bool -> create_image perm 2012-03-19 12:59:02 +00:00			`"create_image" => False,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"edit_image_tag" => False,`
			`"edit_image_source" => False,`
			`"edit_image_owner" => False,`
permission name tweaks 2012-03-14 19:24:10 +00:00			`"edit_image_lock" => False,`
more perms 2012-03-31 11:33:55 +00:00			`"bulk_edit_image_tag" => False,`
mass source set perm 2012-03-31 15:31:10 +00:00			`"bulk_edit_image_source" => False,`
permission name tweaks 2012-03-14 19:24:10 +00:00			`"delete_image" => False,`

more perms 2012-03-30 19:54:33 +00:00			`"ban_image" => False,`

			`"view_eventlog" => False,`
more perms 2012-03-31 11:28:34 +00:00			`"ignore_downtime" => False,`
more perms 2012-03-30 19:54:33 +00:00
permission name tweaks 2012-03-14 19:24:10 +00:00			`"create_image_report" => False,`
userclass docs 2012-02-22 21:08:57 +00:00			`"view_image_report" => False, # deal with reported images`
permission name tweaks 2012-03-14 19:24:10 +00:00
wiki perms 2012-03-19 13:21:59 +00:00			`"edit_wiki_page" => False,`
			`"delete_wiki_page" => False,`

generic blocks, now with database storage 2012-03-19 18:40:37 +00:00			`"manage_blocks" => False,`

more perms 2012-03-30 19:54:33 +00:00			`"manage_admintools" => False,`

more perms 2012-03-31 11:28:34 +00:00			`"view_other_pms" => False,`
			`"edit_feature" => False,`
			`"bulk_edit_vote" => False,`
			`"edit_other_vote" => False,`
et perm 2012-03-31 14:48:02 +00:00			`"view_sysinfo" => False,`
more perms 2012-03-31 11:28:34 +00:00
add 'hellbanned' user class, with support from the comments extension 2013-09-09 12:41:08 +00:00			`"hellbanned" => False,`
			`"view_hellbanned" => False,`

userclass docs 2012-02-22 21:08:57 +00:00			`"protected" => False, # only admins can modify protected users (stops a moderator changing an admin's password)`
and commit the file... 2012-02-14 21:11:23 +00:00			`));`
nicer custom classes 2012-03-19 11:27:01 +00:00
			`new UserClass("anonymous", "base", array(`
and commit the file... 2012-02-14 21:11:23 +00:00			`));`
nicer custom classes 2012-03-19 11:27:01 +00:00
			`new UserClass("user", "base", array(`
and commit the file... 2012-02-14 21:11:23 +00:00			`"big_search" => True,`
upload_anon bool -> create_image perm 2012-03-19 12:59:02 +00:00			`"create_image" => True,`
comment_anon bool -> create_comment perm 2012-03-19 13:17:47 +00:00			`"create_comment" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"edit_image_tag" => True,`
			`"edit_image_source" => True,`
permission name tweaks 2012-03-14 19:24:10 +00:00			`"create_image_report" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`));`
nicer custom classes 2012-03-19 11:27:01 +00:00
			`new UserClass("admin", "base", array(`
and commit the file... 2012-02-14 21:11:23 +00:00			`"change_setting" => True,`
			`"override_config" => True,`
			`"big_search" => True,`
permission name tweaks 2012-03-14 19:24:10 +00:00			`"edit_image_lock" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"view_ip" => True,`
			`"ban_ip" => True,`
support for changing usernames 2015-07-12 21:14:57 +00:00			`"edit_user_name" => True,`
change_X -> edit_X for consistency 2012-03-12 17:29:03 +00:00			`"edit_user_password" => True,`
			`"edit_user_info" => True,`
change user class / delete user separate from admin 2012-03-31 18:25:27 +00:00			`"edit_user_class" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"delete_user" => True,`
upload_anon bool -> create_image perm 2012-03-19 12:59:02 +00:00			`"create_image" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"delete_image" => True,`
more perms 2012-03-30 19:54:33 +00:00			`"ban_image" => True,`
comment_anon bool -> create_comment perm 2012-03-19 13:17:47 +00:00			`"create_comment" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"delete_comment" => True,`
add a user flag for bypassing comment checks 2014-11-30 13:07:42 +00:00			`"bypass_comment_checks" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"replace_image" => True,`
			`"manage_extension_list" => True,`
			`"manage_alias_list" => True,`
			`"edit_image_tag" => True,`
			`"edit_image_source" => True,`
			`"edit_image_owner" => True,`
more perms 2012-03-31 11:33:55 +00:00			`"bulk_edit_image_tag" => True,`
mass source set perm 2012-03-31 15:31:10 +00:00			`"bulk_edit_image_source" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"mass_tag_edit" => True,`
permission name tweaks 2012-03-14 19:24:10 +00:00			`"create_image_report" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`"view_image_report" => True,`
wiki perms 2012-03-19 13:21:59 +00:00			`"edit_wiki_page" => True,`
			`"delete_wiki_page" => True,`
more perms 2012-03-30 19:54:33 +00:00			`"view_eventlog" => True,`
generic blocks, now with database storage 2012-03-19 18:40:37 +00:00			`"manage_blocks" => True,`
more perms 2012-03-30 19:54:33 +00:00			`"manage_admintools" => True,`
more perms 2012-03-31 11:28:34 +00:00			`"ignore_downtime" => True,`
			`"view_other_pms" => True,`
			`"edit_feature" => True,`
			`"bulk_edit_vote" => True,`
			`"edit_other_vote" => True,`
et perm 2012-03-31 14:48:02 +00:00			`"view_sysinfo" => True,`
add 'hellbanned' user class, with support from the comments extension 2013-09-09 12:41:08 +00:00			`"view_hellbanned" => True,`
only admins can change user classes, and they should be protected from moderators 2012-02-22 12:32:54 +00:00			`"protected" => True,`
and commit the file... 2012-02-14 21:11:23 +00:00			`));`

add 'hellbanned' user class, with support from the comments extension 2013-09-09 12:41:08 +00:00			`new UserClass("hellbanned", "user", array(`
			`"hellbanned" => True,`
			`));`

more re-organisation for create_monolith / hiphop friendliness 2012-06-18 00:06:36 +00:00			`@include_once "data/config/user-classes.conf.php";`
Removing the closing PHP "?>" tag as per style guidelines. 2014-04-24 23:01:47 +00:00