name = $name; $this->parent = $parent; $this->abilities = $abilities; } public function can(/*string*/ $ability) { global $config; if(array_key_exists($ability, $this->abilities)) { $val = $this->abilities[$ability]; if(is_bool($val)) return $val; else return $config->get_bool($val, false); } else if(!is_null($this->parent)) { return $this->parent->can($ability); } else { die("Unknown ability: ".html_escape($ability)); } } } // action_object_attribute // action = create / view / edit / delete // object = image / user / tag / setting $_user_class_base = new UserClass("base", null, array( "change_setting" => False, # modify web-level settings, eg the config table "override_config" => False, # modify sys-level settings, eg config.php "big_search" => False, # search for more than 3 tags at once (speed mode only) "manage_extension_list" => False, "manage_alias_list" => False, "mass_tag_edit" => False, "view_ip" => False, # view IP addresses associated with things "ban_ip" => False, "edit_user_password" => False, "edit_user_info" => False, # email address, etc "delete_user" => False, "delete_comment" => False, "replace_image" => False, "edit_image_tag" => False, "edit_image_source" => False, "edit_image_owner" => False, "edit_image_lock" => False, "delete_image" => False, "create_image_report" => False, "view_image_report" => False, # deal with reported images "protected" => False, # only admins can modify protected users (stops a moderator changing an admin's password) )); $_user_classes["anonymous"] = new UserClass("anonymous", $_user_class_base, array( "edit_image_tag" => "tag_edit_anon", "edit_image_source" => "source_edit_anon", "create_image_report" => "create_image_report_anon", )); $_user_classes["user"] = new UserClass("user", $_user_class_base, array( "big_search" => True, "edit_image_tag" => True, "edit_image_source" => True, "create_image_report" => True, )); $_user_classes["admin"] = new UserClass("admin", $_user_class_base, array( "change_setting" => True, "override_config" => True, "big_search" => True, "edit_image_lock" => True, "view_ip" => True, "ban_ip" => True, "edit_user_password" => True, "edit_user_info" => True, "delete_user" => True, "delete_image" => True, "delete_comment" => True, "replace_image" => True, "manage_extension_list" => True, "manage_alias_list" => True, "edit_image_tag" => True, "edit_image_source" => True, "edit_image_owner" => True, "mass_tag_edit" => True, "create_image_report" => True, "view_image_report" => True, "protected" => True, )); foreach(unserialize(EXTRA_USER_CLASSES) as $class_info) { $name = $class_info[0]; $base = $_user_classes[$class_info[1]]; $abilities = $class_info[2]; $_user_classes[$name] = new UserClass($name, $base, $abilities); } ?>