d5/d52/class_8ilAccessHandler_8php_source.html

<?php

/* Copyright (c) 1998-2009 ILIAS open source, Extended GPL, see docs/LICENSE */


require_once("Services/AccessControl/classes/class.ilAccessInfo.php");


class ilAccessHandler

{

        protected $stored_rbac_access = array();


        function __construct()

        {

                global $rbacsystem;


                $this->rbacsystem = $rbacsystem;

                $this->results = array();

                $this->current_info = new ilAccessInfo();


                // use function enable to switch on/off tests (only cache is used so far)

                $this->cache = true;

                $this->rbac = true;

                $this->tree = true;

                $this->condition = true;

                $this->path = true;

                $this->status = true;

                $this->obj_id_cache = array();

                $this->obj_type_cache = array();

        $this->obj_tree_cache=array();

        }


        function storeAccessResult($a_permission, $a_cmd, $a_ref_id, $a_access_granted, $a_user_id = "",$a_info = "")

        {

                global $ilUser;


                if ($a_user_id == "")

                {

                        $a_user_id = $ilUser->getId();

                }


                if ($a_info == "")

                {

                        $a_info = $this->current_info;

                }


                //var_dump("<pre>",$a_permission,"</pre>");


                if ($this->cache)

                {

                        $this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id] =

                                        array("granted" => $a_access_granted, "info" => $a_info,

                                        "prevent_db_cache" => $this->getPreventCachingLastResult());

//echo "<br>write-$a_ref_id-$a_permission-$a_cmd-$a_user_id-$a_access_granted-";

                        $this->current_result_element = array($a_access_granted,$a_ref_id,$a_permission,$a_cmd,$a_user_id);

                        $this->last_result = $this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id];

                        $this->last_info = $a_info;

                }


                // get new info object

                $this->current_info = new ilAccessInfo();


        }


        function setPreventCachingLastResult($a_val)

        {

                $this->prevent_caching_last_result = $a_val;

        }


        function getPreventCachingLastResult()

        {

                return $this->prevent_caching_last_result;

        }


        function getStoredAccessResult($a_permission, $a_cmd, $a_ref_id, $a_user_id = "")

        {

                global $ilUser;


                if ($a_user_id == "")

                {

                        $a_user_id = $ilUser->getId();

                }


                /*if (is_object($this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id]['info']))

                {

                        $this->current_info = $this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id]['info'];

                }*/


                if (isset($this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id]))

                {

                        return $this->results[$a_ref_id][$a_permission][$a_cmd][$a_user_id];

                }

                return false;

        }


        function storeCache()

        {

                global $ilDB, $ilUser;


                $query = "DELETE FROM acc_cache WHERE user_id = ".$ilDB->quote($ilUser->getId(),'integer');

                $res = $ilDB->manipulate($query);


                $ilDB->insert('acc_cache', array(

                        'user_id'       =>      array('integer',$ilUser->getId()),

                        'time'          =>      array('integer',time()),

                        'result'        =>      array('clob',serialize($this->results))

                        ));

        }


        function readCache($a_secs = 0)

        {

                global $ilUser, $ilDB;


                if ($a_secs > 0)

                {

                        $query = "SELECT * FROM acc_cache WHERE user_id = ".

                                $ilDB->quote($ilUser->getId() ,'integer');

                        $set = $ilDB->query($query);

                        $rec = $set->fetchRow(ilDBConstants::FETCHMODE_ASSOC);

                        if ((time() - $rec["time"]) < $a_secs)

                        {

                                $this->results = unserialize($rec["result"]);

//var_dump($this->results);

                                return true;

                        }

                }

                return false;

        }


        function getResults()

        {

                return $this->results;

        }


        function setResults($a_results)

        {

                $this->results = $a_results;

        }


        function addInfoItem($a_type, $a_text, $a_data = "")

        {

                $this->current_info->addInfoItem($a_type, $a_text, $a_data);

        }


        function checkAccess($a_permission, $a_cmd, $a_ref_id, $a_type = "", $a_obj_id = "", $a_tree_id="")

        {

                global $ilUser;


                return $this->checkAccessOfUser($ilUser->getId(),$a_permission, $a_cmd, $a_ref_id, $a_type, $a_obj_id, $a_tree_id);

        }


        function checkAccessOfUser($a_user_id,$a_permission, $a_cmd, $a_ref_id, $a_type = "", $a_obj_id = "", $a_tree_id="")

        {

                global $ilBench, $lng;


                $this->setPreventCachingLastResult(false);      // for external db based caches


                $ilBench->start("AccessControl", "0400_clear_info");

                $this->current_info->clear();

                $ilBench->stop("AccessControl", "0400_clear_info");


        // get stored result (internal memory based cache)

                $cached = $this->doCacheCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id);

                if ($cached["hit"])

                {

                        // Store access result

                        if (!$cached["granted"])

                        {

                                $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        }

                        if ($cached["prevent_db_cache"])

                        {

                                $this->setPreventCachingLastResult(true);       // should have been saved in previous call already

                        }

                        return $cached["granted"];

                }


                $ilBench->start("AccessControl", "0500_lookup_id_and_type");

                // get object id if not provided

                if ($a_obj_id == "")

                {

                        if (isset($this->obj_id_cache[$a_ref_id]) && $this->obj_id_cache[$a_ref_id] > 0)

                        {

                                $a_obj_id = $this->obj_id_cache[$a_ref_id];

                        }

                        else

                        {

                                $a_obj_id = ilObject::_lookupObjId($a_ref_id);

                                $this->obj_id_cache[$a_ref_id] = $a_obj_id;

                        }

                }

                if ($a_type == "")

                {

                        if (isset($this->obj_type_cache[$a_ref_id]) && $this->obj_type_cache[$a_ref_id] != "")

                        {

                                $a_type = $this->obj_type_cache[$a_ref_id];

                        }

                        else

                        {

                                $a_type = ilObject::_lookupType($a_ref_id, true);

                                $this->obj_type_cache[$a_ref_id] = $a_type;

                        }

                }


                $ilBench->stop("AccessControl", "0500_lookup_id_and_type");


        // if supplied tree id is not = 1 (= repository main tree),

        // check if object is in tree and not deleted

                if ($a_tree_id != 1 &&

            !$this->doTreeCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id))

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        return false;

                }


                // rbac check for current object

                if (!$this->doRBACCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_type))

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        return false;

                }


                // Check object activation

                $act_check = $this->doActivationCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id);

                if(!$act_check)

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt('status_no_permission'));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        return false;

                }


                // check read permission for all parents

                $par_check = $this->doPathCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id);

                if (!$par_check)

                {


                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        return false;

                }


                // condition check (currently only implemented for read permission)

                if (!$this->doConditionCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type))

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        $this->setPreventCachingLastResult(true);               // do not store this in db, since condition updates are not monitored

                        return false;

                }


                // object type specific check

                if (!$this->doStatusCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type))

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        $this->setPreventCachingLastResult(true);               // do not store this in db, since status updates are not monitored

                        return false;

                }


                // check for available licenses

                if (!$this->doLicenseCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type))

                {

                        $this->setPreventCachingLastResult(true);               // do not store this in db, since status updates are not monitored

                        return false;

                }


                // all checks passed

                $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, true, $a_user_id);

                return true;

        }


        function getInfo()

        {

                //return $this->last_result;

                //$this->last_info->setQueryData($this->current_result_element);

                //var_dump("<pre>",$this->results,"</pre>");

                return is_object($this->last_info) ? $this->last_info->getInfoItems() : array();

        }


        function getResultLast()

        {

                return $this->last_result;

        }


        function getResultAll($a_ref_id = "")

        {

                if ($a_ref_id == "")

                {

                        return $this->results;

                }


                return $this->results[$a_ref_id];

        }


        function doCacheCheck($a_permission, $a_cmd, $a_ref_id,$a_user_id)

        {

                global $ilBench;

                //echo "cacheCheck<br/>";


                $ilBench->start("AccessControl", "1000_checkAccess_get_cache_result");

                $stored_access = $this->getStoredAccessResult($a_permission, $a_cmd, $a_ref_id,$a_user_id);

                //var_dump($stored_access);

                if (is_array($stored_access))

                {

                        $this->current_info = $stored_access["info"];

                        //var_dump("cache-treffer:");

                        $ilBench->stop("AccessControl", "1000_checkAccess_get_cache_result");

                        return array("hit" => true, "granted" => $stored_access["granted"],

                                "prevent_db_cache" => $stored_access["prevent_db_cache"]);

                }


                // not in cache

                $ilBench->stop("AccessControl", "1000_checkAccess_get_cache_result");

                return array("hit" => false, "granted" => false,

                        "prevent_db_cache" => false);

        }


        function doTreeCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id)

        {

                global $tree, $lng, $ilBench;

                //echo "treeCheck<br/>";


        // Get stored result

                $tree_cache_key = $a_user_id.':'.$a_ref_id;

        if (array_key_exists($tree_cache_key, $this->obj_tree_cache)) {

                        // Store access result

                        if (!$this->obj_tree_cache[$tree_cache_key])

                        {

                                $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                        }

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, $this->obj_tree_cache[$tree_cache_key], $a_user_id);


            return $this->obj_tree_cache[$tree_cache_key];

        }


                $ilBench->start("AccessControl", "2000_checkAccess_in_tree");


                if(!$tree->isInTree($a_ref_id) or $tree->isDeleted($a_ref_id))

                {

            // Store negative access results


                        // Store in tree cache

            // Note, we only store up to 1000 results to avoid memory overflow.

            if (count($this->obj_tree_cache) < 1000)

            {

                $this->obj_tree_cache[$tree_cache_key] = false;

            }


                        // Store in result cache

                        $this->current_info->addInfoItem(IL_DELETED, $lng->txt("object_deleted"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);


                        $ilBench->stop("AccessControl", "2000_checkAccess_in_tree");


                        return false;

                }


        // Store positive access result.


                // Store in tree cache

        // Note, we only store up to 1000 results to avoid memory overflow.

        if (count($this->obj_tree_cache) < 1000)

        {

            $this->obj_tree_cache[$tree_cache_key] = true;

        }


                // Store in result cache

                $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, true, $a_user_id);


                $ilBench->stop("AccessControl", "2000_checkAccess_in_tree");

                return true;

        }


        function doRBACCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_type)

        {

                global $lng, $ilBench, $ilErr, $ilLog;


                $ilBench->start("AccessControl", "2500_checkAccess_rbac_check");


                if ($a_permission == "")

                {

                                $message = sprintf('%s::doRBACCheck(): No operations given! $a_ref_id: %s',

                                                                   get_class($this),

                                                                   $a_ref_id);

                                $ilLog->write($message,$ilLog->FATAL);

                                $ilErr->raiseError($message,$ilErr->MESSAGE);

                }


                if (isset($this->stored_rbac_access[$a_user_id."-".$a_permission."-".$a_ref_id]))

                {

                        $access = $this->stored_rbac_access[$a_user_id."-".$a_permission."-".$a_ref_id];

                }

                else

                {

                        $access = $this->rbacsystem->checkAccessOfUser($a_user_id, $a_permission, $a_ref_id, $a_type);

                        if (!is_array($this->stored_rbac_access) || count($this->stored_rbac_access) < 1000)

                        {

                                if ($a_permission != "create")

                                {

                                        $this->stored_rbac_access[$a_user_id."-".$a_permission."-".$a_ref_id] = $access;

                                }

                        }

                }


                // Store in result cache

                if (!$access)

                {

                        $this->current_info->addInfoItem(IL_NO_PERMISSION, $lng->txt("status_no_permission"));

                }

                if ($a_permission != "create")

                {

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, true, $a_user_id);

                }

                $ilBench->stop("AccessControl", "2500_checkAccess_rbac_check");


                return $access;

        }


        function doPathCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_all = false)

        {

                global $tree, $lng, $ilBench,$ilObjDataCache;

//echo "<br>dopathcheck";

                //echo "pathCheck<br/>";

        $ilBench->start("AccessControl", "3100_checkAccess_check_parents_get_path");


//              if (isset($this->stored_path[$a_ref_id]))

//              {

//                      $path = $this->stored_path[$a_ref_id];

//              }

//              else

//              {

                $path = $tree->getPathId($a_ref_id);

//                      $this->stored_path[$a_ref_id] = $path;

//              }

                $ilBench->stop("AccessControl", "3100_checkAccess_check_parents_get_path");


                foreach ($path as $id)

                {

                        if ($a_ref_id == $id)

                        {

                                continue;

                        }


                        $access = $this->checkAccessOfUser($a_user_id, "read", "info", $id);


                        if ($access == false)

                        {


                                //$this->doCacheCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id);

                                $this->current_info->addInfoItem(IL_NO_PARENT_ACCESS, $lng->txt("no_parent_access"),$id);


                                if ($a_all == false)

                                {

                                        return false;

                                }

                        }

                }


                return true;

        }


        function doActivationCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_all = false)

        {

                global $ilBench,$ilUser;


                $ilBench->start("AccessControl", "3150_checkAccess_check_course_activation");


                $cache_perm = ($a_permission == "visible")

                        ? "visible"

                        : "other";


//echo "<br>doActivationCheck-$cache_perm-$a_ref_id-$a_user_id-".$ilObjDataCache->lookupType($ilObjDataCache->lookupObjId($a_ref_id));


                if (isset($this->ac_cache[$cache_perm][$a_ref_id][$a_user_id]))

                {

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id];

                }


                // nothings needs to be done if current permission is write permission

                if($a_permission == 'write')

                {

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return true;

                }


                // #10852 - member view check

                if($a_user_id == $ilUser->getId())

                {

                        // #10905 - activate parent container ONLY

                        include_once './Services/Container/classes/class.ilMemberViewSettings.php';

                        $memview = ilMemberViewSettings::getInstance();

                        if($memview->isActiveForRefId($a_ref_id) &&

                                $memview->getContainer() == $a_ref_id)

                        {

                                return true;

                        }

                }


                include_once 'Services/Object/classes/class.ilObjectActivation.php';

                $item_data = ilObjectActivation::getItem($a_ref_id);


                // if activation isn't enabled

                if($item_data === NULL ||

                        $item_data['timing_type'] != ilObjectActivation::TIMINGS_ACTIVATION)

                {

                        $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id] = true;

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return true;

                }


                // if within activation time

                if((time() >= $item_data['timing_start']) and

                   (time() <= $item_data['timing_end']))

                {

                        $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id] = true;

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return true;

                }


                // if user has write permission

                if($this->checkAccessOfUser($a_user_id, "write", "", $a_ref_id))

                {

                        $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id] = true;

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return true;

                }

                // if current permission is visible and visible is set in activation

                if($a_permission == 'visible' and $item_data['visible'])

                {

                        $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id] = true;

                        $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                        return true;

                }

                // no access

                $this->ac_cache[$cache_perm][$a_ref_id][$a_user_id] = false;

                $ilBench->stop("AccessControl", "3150_checkAccess_check_course_activation");

                return false;

        }


        function doConditionCheck($a_permission, $a_cmd, $a_ref_id,$a_user_id, $a_obj_id, $a_type)

        {

                //echo "conditionCheck<br/>";

                global $lng, $ilBench;


                if(

                        ($a_permission == 'visible') and

                        !$this->checkAccessOfUser($a_user_id, "write", "", $a_ref_id, $a_type, $a_obj_id)

                )

                {

                        if(ilConditionHandler::lookupHiddenStatusByTarget($a_ref_id))

                        {

                                if(!ilConditionHandler::_checkAllConditionsOfTarget($a_ref_id,$a_obj_id,$a_type,$a_user_id))

                                {

                                        $conditions = ilConditionHandler::_getConditionsOfTarget($a_ref_id,$a_obj_id, $a_type);

                                        foreach ($conditions as $condition)

                                        {

                                                $this->current_info->addInfoItem(IL_MISSING_PRECONDITION,

                                                        $lng->txt("missing_precondition").": ".

                                                        ilObject::_lookupTitle($condition["trigger_obj_id"])." ".

                                                        $lng->txt("condition_".$condition["operator"])." ".

                                                        $condition["value"], $condition);

                                        }

                                        return FALSE;

                                }

                                $ilBench->stop("AccessControl", "4000_checkAccess_condition_check");

                        }

                }


                if (($a_permission == "read" or $a_permission == 'join') &&

                        !$this->checkAccessOfUser($a_user_id, "write", "", $a_ref_id, $a_type, $a_obj_id))

                {

                        $ilBench->start("AccessControl", "4000_checkAccess_condition_check");

                        if(!ilConditionHandler::_checkAllConditionsOfTarget($a_ref_id,$a_obj_id,$a_type,$a_user_id))

                        {

                                $conditions = ilConditionHandler::_getConditionsOfTarget($a_ref_id,$a_obj_id, $a_type);

                                foreach ($conditions as $condition)

                                {

                                        $this->current_info->addInfoItem(IL_MISSING_PRECONDITION,

                                                $lng->txt("missing_precondition").": ".

                                                ilObject::_lookupTitle($condition["trigger_obj_id"])." ".

                                                $lng->txt("condition_".$condition["operator"])." ".

                                                $condition["value"], $condition);

                                }

                                $ilBench->stop("AccessControl", "4000_checkAccess_condition_check");

                                return false;

                        }

                        $ilBench->stop("AccessControl", "4000_checkAccess_condition_check");

                }


                return true;

        }


        function doStatusCheck($a_permission, $a_cmd, $a_ref_id,$a_user_id, $a_obj_id, $a_type)

        {

                global $objDefinition, $ilBench, $ilPluginAdmin;

                //echo "statusCheck<br/>";

                $ilBench->start("AccessControl", "5000_checkAccess_object_check");


                // check for a deactivated plugin

                if ($objDefinition->isPluginTypeName($a_type) && !$objDefinition->isPlugin($a_type))

                {

                        return false;

                }

                if(!$a_type)

                {

                        return false;

                }


                $class = $objDefinition->getClassName($a_type);

                $location = $objDefinition->getLocation($a_type);

                $full_class = "ilObj".$class."Access";

                include_once($location."/class.".$full_class.".php");

                // static call to ilObj..::_checkAccess($a_cmd, $a_permission, $a_ref_id, $a_obj_id)


                $full_class = new $full_class();


                $obj_access = call_user_func(array($full_class, "_checkAccess"),

                        $a_cmd, $a_permission, $a_ref_id, $a_obj_id, $a_user_id);

                if (!($obj_access === true))

                {

                        //Note: We must not add an info item here, because one is going

                        //      to be added by the user function we just called a few

                        //      lines above.

                        //$this->current_info->addInfoItem(IL_NO_OBJECT_ACCESS, $obj_access);


                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        $ilBench->stop("AccessControl", "5000_checkAccess_object_check");

                        return false;

                }


                $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, true, $a_user_id);

                $ilBench->stop("AccessControl", "5000_checkAccess_object_check");

                return true;

        }


        function doLicenseCheck($a_permission, $a_cmd, $a_ref_id,$a_user_id, $a_obj_id, $a_type)

        {

                global $lng;


                // simple checks first

                if (!in_array($a_type, array('sahs','htlm'))

                or  !in_array($a_permission, array('read')))

                {

                        $has_access = true;

                }

                else

                {

                        require_once("Services/License/classes/class.ilLicenseAccess.php");


                        // licensing globally disabled => access granted

                        if (!ilLicenseAccess::_isEnabled())

                        {

                                $has_access = true;

                        }

                        /*      resolved mantis issue #5288:

                        *       admins should not automatically have read access!

                        *   their read access will also be noted and consume a license

                        elseif ($this->rbacsystem->checkAccessOfUser($a_user_id, "edit_permissions", $a_ref_id))

                        {

                                $has_access = true;

                        }

                        */

                        // now do the real check

                        else

                        {

                                $has_access = ilLicenseAccess::_checkAccess($a_user_id, $a_obj_id);

                        }

                }


                if ($has_access)

                {

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, true, $a_user_id);

                        return true;

                }

                else

                {

                        $this->current_info->addInfoItem(IL_NO_LICENSE, $lng->txt("no_license_available"));

                        $this->storeAccessResult($a_permission, $a_cmd, $a_ref_id, false, $a_user_id);

                        return false;

                }

        }


        function clear()

        {

                $this->results = array();

                $this->last_result = "";

                $this->current_info = new ilAccessInfo();

        }


        function enable($a_str,$a_bool)

        {

                $this->$a_str = $a_bool;

        }

}

sprintf
sprintf('%.4f', $callTime)
Definition: 01pharSimple.php:87

$path
$path
Definition: aliased.php:25

$location
$location
Definition: buildRTE.php:44

php
An exception for terminatinating execution or to throw for unit testing.

IL_MISSING_PRECONDITION
const IL_MISSING_PRECONDITION
Definition: class.ilAccessInfo.php:25

IL_NO_PARENT_ACCESS
const IL_NO_PARENT_ACCESS
Definition: class.ilAccessInfo.php:27

IL_NO_PERMISSION
const IL_NO_PERMISSION
Definition: class.ilAccessInfo.php:24

IL_NO_LICENSE
const IL_NO_LICENSE
Definition: class.ilAccessInfo.php:30

IL_DELETED
const IL_DELETED
Definition: class.ilAccessInfo.php:28

ilAccessHandler
Class ilAccessHandler.
Definition: class.ilAccessHandler.php:21

ilAccessHandler\doLicenseCheck
doLicenseCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type)
check for available licenses
Definition: class.ilAccessHandler.php:752

ilAccessHandler\getStoredAccessResult
getStoredAccessResult($a_permission, $a_cmd, $a_ref_id, $a_user_id="")
get stored access result
Definition: class.ilAccessHandler.php:121

ilAccessHandler\checkAccess
checkAccess($a_permission, $a_cmd, $a_ref_id, $a_type="", $a_obj_id="", $a_tree_id="")
check access for an object (provide $a_type and $a_obj_id if available for better performance)
Definition: class.ilAccessHandler.php:206

ilAccessHandler\doActivationCheck
doActivationCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_all=false)
check for course activation
Definition: class.ilAccessHandler.php:565

ilAccessHandler\getPreventCachingLastResult
getPreventCachingLastResult()
Get prevent caching last result.
Definition: class.ilAccessHandler.php:104

ilAccessHandler\readCache
readCache($a_secs=0)
Definition: class.ilAccessHandler.php:156

ilAccessHandler\enable
enable($a_str, $a_bool)
Definition: class.ilAccessHandler.php:806

ilAccessHandler\doConditionCheck
doConditionCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type)
condition check (currently only implemented for read permission)
Definition: class.ilAccessHandler.php:648

ilAccessHandler\getResultLast
getResultLast()
get last info object
Definition: class.ilAccessHandler.php:363

ilAccessHandler\doStatusCheck
doStatusCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_obj_id, $a_type)
object type specific check
Definition: class.ilAccessHandler.php:706

ilAccessHandler\addInfoItem
addInfoItem($a_type, $a_text, $a_data="")
add an info item to current info object
Definition: class.ilAccessHandler.php:189

ilAccessHandler\getInfo
getInfo()
get last info object
Definition: class.ilAccessHandler.php:352

ilAccessHandler\$stored_rbac_access
$stored_rbac_access
Definition: class.ilAccessHandler.php:22

ilAccessHandler\doRBACCheck
doRBACCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_type)
rbac check for current object -> type should be used for create permission
Definition: class.ilAccessHandler.php:469

ilAccessHandler\getResultAll
getResultAll($a_ref_id="")
Definition: class.ilAccessHandler.php:368

ilAccessHandler\setResults
setResults($a_results)
Definition: class.ilAccessHandler.php:181

ilAccessHandler\__construct
__construct()
constructor
Definition: class.ilAccessHandler.php:27

ilAccessHandler\storeAccessResult
storeAccessResult($a_permission, $a_cmd, $a_ref_id, $a_access_granted, $a_user_id="", $a_info="")
store access result
Definition: class.ilAccessHandler.php:57

ilAccessHandler\doTreeCheck
doTreeCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id)
check if object is in tree and not deleted
Definition: class.ilAccessHandler.php:409

ilAccessHandler\storeCache
storeCache()
Definition: class.ilAccessHandler.php:142

ilAccessHandler\doPathCheck
doPathCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id, $a_all=false)
check read permission for all parents
Definition: class.ilAccessHandler.php:518

ilAccessHandler\clear
clear()
Definition: class.ilAccessHandler.php:799

ilAccessHandler\setPreventCachingLastResult
setPreventCachingLastResult($a_val)
Set prevent caching last result.
Definition: class.ilAccessHandler.php:94

ilAccessHandler\getResults
getResults()
Definition: class.ilAccessHandler.php:176

ilAccessHandler\doCacheCheck
doCacheCheck($a_permission, $a_cmd, $a_ref_id, $a_user_id)
look if result for current query is already in cache
Definition: class.ilAccessHandler.php:382

ilAccessHandler\checkAccessOfUser
checkAccessOfUser($a_user_id, $a_permission, $a_cmd, $a_ref_id, $a_type="", $a_obj_id="", $a_tree_id="")
check access for an object (provide $a_type and $a_obj_id if available for better performance)
Definition: class.ilAccessHandler.php:226

ilAccessInfo
class ilAccessInfo
Definition: class.ilAccessInfo.php:40

ilConditionHandler\_checkAllConditionsOfTarget
static _checkAllConditionsOfTarget($a_target_ref_id, $a_target_id, $a_target_type="", $a_usr_id=0)
checks wether all conditions of a target object are fulfilled
Definition: class.ilConditionHandler.php:988

ilConditionHandler\_getConditionsOfTarget
static _getConditionsOfTarget($a_target_ref_id, $a_target_obj_id, $a_target_type="")
get all conditions of target object
Definition: class.ilConditionHandler.php:715

ilConditionHandler\lookupHiddenStatusByTarget
static lookupHiddenStatusByTarget($a_target_ref_id)
Lookup hidden status @global type $ilDB.
Definition: class.ilConditionHandler.php:141

ilDBConstants\FETCHMODE_ASSOC
const FETCHMODE_ASSOC
Definition: class.ilDBConstants.php:12

ilLicenseAccess\_isEnabled
static _isEnabled()
Check, if licencing is enabled This check is called from the ilAccessHandler class.
Definition: class.ilLicenseAccess.php:20

ilLicenseAccess\_checkAccess
static _checkAccess($a_usr_id, $a_obj_id)
Check, if a user can access an object by license.
Definition: class.ilLicenseAccess.php:52

ilMemberViewSettings\getInstance
static getInstance()
Get instance.
Definition: class.ilMemberViewSettings.php:53

ilObjectActivation\TIMINGS_ACTIVATION
const TIMINGS_ACTIVATION
Definition: class.ilObjectActivation.php:26

ilObjectActivation\getItem
static getItem($a_ref_id)
Get item data.
Definition: class.ilObjectActivation.php:310

ilObject\_lookupObjId
static _lookupObjId($a_id)
Definition: class.ilObject.php:1021

ilObject\_lookupTitle
static _lookupTitle($a_id)
lookup object title
Definition: class.ilObject.php:924

ilObject\_lookupType
static _lookupType($a_id, $a_reference=false)
lookup object type
Definition: class.ilObject.php:1176

$res
$res
Definition: examplelayouts.sql.php:25

$query
$query
Definition: examplelayouts.sql.php:24

$ilBench
global $ilBench
Definition: ilias.php:18

$ilLog
$ilLog
Definition: inc.setup_header.php:130

$lng
global $lng
Definition: privfeed.php:17

$ilErr
global $ilErr
Definition: raiseError.php:16

$results
$results
Definition: save_question_post_data.php:7

$ilDB
global $ilDB
Definition: storeScorm2004.php:19

$ilUser
$ilUser
Definition: imgupload.php:18

$a_type
$a_type
Definition: workflow.php:93