ILIAS  release_5-2 Revision v5.2.25-18-g3f80b828510
class.ilDidacticTemplateLocalPolicyAction.php
Go to the documentation of this file.
1 <?php
2 /* Copyright (c) 1998-2009 ILIAS open source, Extended GPL, see docs/LICENSE */
3 
4 include_once './Services/DidacticTemplate/classes/class.ilDidacticTemplateAction.php';
5 
12 class ilDidacticTemplateLocalPolicyAction extends ilDidacticTemplateAction
13 {
14  const TPL_ACTION_OVERWRITE = 1;
15  const TPL_ACTION_INTERSECT = 2;
16  const TPL_ACTION_ADD = 3;
17  const TPL_ACTION_SUBTRACT = 4;
18  const TPL_ACTION_UNION = 5;
19 
20 
21  private $pattern = array();
22  private $filter_type = self::FILTER_SOURCE_TITLE;
23  private $role_template_type = self::TPL_ACTION_OVERWRITE;
24  private $role_template_id = 0;
25 
26 
31  public function __construct($action_id = 0)
32  {
33  parent::__construct($action_id);
34  }
35 
40  public function addFilterPattern(ilDidacticTemplateFilterPattern $pattern)
41  {
42  $this->pattern[] = $pattern;
43  }
44 
49  public function setFilterPatterns(Array $patterns)
50  {
51  $this->pattern = $patterns;
52  }
53 
58  public function getFilterPattern()
59  {
60  return $this->pattern;
61  }
62 
67  public function setFilterType($a_type)
68  {
69  $this->filter_type = $a_type;
70  }
71 
76  public function getFilterType()
77  {
78  return $this->filter_type;
79  }
80 
85  public function setRoleTemplateType($a_tpl_type)
86  {
87  $this->role_template_type = $a_tpl_type;
88  }
89 
93  public function getRoleTemplateType()
94  {
95  return $this->role_template_type;
96  }
97 
102  public function setRoleTemplateId($a_id)
103  {
104  $this->role_template_id = $a_id;
105  }
106 
111  public function getRoleTemplateId()
112  {
113  return $this->role_template_id;
114  }
115 
119  public function save()
120  {
121  global $ilDB;
122 
123  parent::save();
124 
125  $query = 'INSERT INTO didactic_tpl_alp (action_id,filter_type,template_type,template_id) '.
126  'VALUES( '.
127  $ilDB->quote($this->getActionId(),'integer').', '.
128  $ilDB->quote($this->getFilterType(),'integer').', '.
129  $ilDB->quote($this->getRoleTemplateType(),'integer').', '.
130  $ilDB->quote($this->getRoleTemplateId(),'integer').' '.
131  ')';
132  $ilDB->manipulate($query);
133 
134  foreach($this->getFilterPattern() as $pattern)
135  {
136  /* @var ilDidacticTemplateFilterPattern $pattern */
137  $pattern->setParentId($this->getActionId());
138  $pattern->setParentType(self::PATTERN_PARENT_TYPE);
139  $pattern->save();
140  }
141  }
142 
148  public function delete()
149  {
150  global $ilDB;
151 
152  parent::delete();
153 
154  $query = 'DELETE FROM didactic_tpl_alp '.
155  'WHERE action_id = '.$ilDB->quote($this->getActionId(),'integer');
156  $ilDB->manipulate($query);
157 
158  foreach($this->getFilterPattern() as $pattern)
159  {
160  $pattern->delete();
161  }
162  return true;
163  }
164 
165 
166 
167 
171  public function apply()
172  {
173  $rbacreview = $GLOBALS['DIC']->rbac()->review();
174 
175  $source = $this->initSourceObject();
176  // Create a role folder for the new local policies
177 
178  $roles = $this->filterRoles($source);
179 
180  // Create local policy for filtered roles
181  foreach($roles as $role_id => $role)
182  {
183  $this->getLogger()->debug('Apply to role: ' . $role['title']);
184 
185  // No local policies for protected roles of higher context
186  if(
187  $rbacreview->isProtected($role['parent'], $role_id) &&
188  $role['parent'] != $source->getRefId()
189  )
190  {
191  $this->getLogger()->debug('Ignoring protected role.');
192  continue;
193  }
194  $this->createLocalPolicy($source,$role);
195  }
196  return true;
197  }
198 
204  public function revert()
205  {
206  global $rbacadmin,$tree;
207  $rbacreview = $GLOBALS['DIC']->rbac()->review();
208 
209  $source = $this->initSourceObject();
210  $roles = $this->filterRoles($source);
211 
212  // Delete local policy for filtered roles
213  foreach($roles as $role_id => $role)
214  {
215  // Do not delete local policies of auto genrated roles
216  if(!$rbacreview->isGlobalRole($role['obj_id']) and
217  $rbacreview->isAssignable($role['obj_id'],$source->getRefId()) and
218  $rbacreview->isSystemGeneratedRole($role['obj_id']))
219  {
220  $this->getLogger()->debug('Reverting local policy of auto generated role: ' . $role['title']);
221  $this->revertLocalPolicy($source, $role);
222  }
223  else
224  {
225  $this->getLogger()->debug('Reverting local policy and deleting local role: ' . $role['title']);
226 
227  // delete local role and change exiting objects
228  $rbacadmin->deleteLocalRole($role_id,$source->getRefId());
229  // Change existing object
230  include_once './Services/AccessControl/classes/class.ilObjRole.php';
231  $role_obj = new ilObjRole($role_id);
232 
233  $protected = $rbacreview->isProtected($role['parent'], $role['rol_id']);
234 
235  $role_obj->changeExistingObjects(
236  $source->getRefId(),
237  $protected ?
238  ilObjRole::MODE_PROTECTED_DELETE_LOCAL_POLICIES :
239  ilObjRole::MODE_UNPROTECTED_DELETE_LOCAL_POLICIES,
240  array('all')
241  );
242  }
243 
244  }
245  return true;
246  }
247 
252  public function getType()
253  {
254  return self::TYPE_LOCAL_POLICY;
255  }
256 
262  public function toXml(ilXmlWriter $writer)
263  {
264  $writer->xmlStartTag('localPolicyAction');
265 
266  switch($this->getFilterType())
267  {
268  case self::FILTER_SOURCE_TITLE:
269  $writer->xmlStartTag('roleFilter',array('source' => 'title'));
270  break;
271 
272  case self::FILTER_SOURCE_OBJ_ID:
273  $writer->xmlStartTag('roleFilter',array('source' => 'objId'));
274  break;
275 
276  }
277 
278  foreach($this->getFilterPattern() as $pattern)
279  {
280  $pattern->toXml($writer);
281  }
282  $writer->xmlEndTag('roleFilter');
283 
284  $il_role_id = 'il_'.IL_INST_ID.'_'.ilObject::_lookupType($this->getRoleTemplateId()).'_'.$this->getRoleTemplateId();
285 
286  switch($this->getRoleTemplateType())
287  {
288  case self::TPL_ACTION_OVERWRITE:
289  $writer->xmlStartTag(
290  'localPolicyTemplate',
291  array(
292  'type' => 'overwrite',
293  'id' => $il_role_id
294  )
295  );
296  break;
297 
298  case self::TPL_ACTION_INTERSECT:
299  $writer->xmlStartTag(
300  'localPolicyTemplate',
301  array(
302  'type' => 'intersect',
303  'id' => $il_role_id
304  )
305  );
306  break;
307 
308  case self::TPL_ACTION_UNION:
309  $writer->xmlStartTag(
310  'localPolicyTemplate',
311  array(
312  'type' => 'union',
313  'id' => $il_role_id
314  )
315  );
316  break;
317  }
318 
319  include_once './Services/AccessControl/classes/class.ilRoleXmlExport.php';
320  $exp = new ilRoleXmlExport();
321  $exp->setMode(ilRoleXmlExport::MODE_DTPL);
322  $exp->addRole($this->getRoleTemplateId(), ROLE_FOLDER_ID);
323  $exp->write();
324  $writer->appendXML($exp->xmlDumpMem(FALSE));
325  $writer->xmlEndTag('localPolicyTemplate');
326  $writer->xmlEndTag('localPolicyAction');
327  return void;
328  }
329 
333  public function __clone()
334  {
335  parent::__clone();
336 
337  // Clone patterns
338  $cloned = array();
339  foreach($this->getFilterPattern() as $pattern)
340  {
341  $clones[] = clone $pattern;
342  }
343  $this->setFilterPatterns($clones);
344  }
345 
346  public function read()
347  {
348  global $ilDB;
349 
350  if(!parent::read())
351  {
352  return false;
353  }
354 
355  $query = 'SELECT * FROM didactic_tpl_alp '.
356  'WHERE action_id = '.$ilDB->quote($this->getActionId());
357  $res = $ilDB->query($query);
358  while($row = $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT))
359  {
360  $this->setFilterType($row->filter_type);
361  $this->setRoleTemplateType($row->template_type);
362  $this->setRoleTemplateId($row->template_id);
363  }
364 
365  // Read filter
366  include_once './Services/DidacticTemplate/classes/class.ilDidacticTemplateFilterPatternFactory.php';
367  foreach(ilDidacticTemplateFilterPatternFactory::lookupPatternsByParentId($this->getActionId(),self::PATTERN_PARENT_TYPE) as $pattern)
368  {
369  $this->addFilterPattern($pattern);
370  }
371  }
372 
373 
380  protected function createLocalPolicy(ilObject $source, $role)
381  {
382  global $rbacreview, $rbacadmin;
383 
384  // fetch role information
385  $role_data = array();
386  foreach($rbacreview->getParentRoleIds($source->getRefId()) as $role_id => $tmp_role)
387  {
388  if($role_id == $role['obj_id'])
389  {
390  $role_data = $tmp_role;
391  }
392  }
393 
394  // Add local policy
395  if(!$rbacreview->isRoleAssignedToObject($role['obj_id'],$source->getRefId()))
396  {
397  $GLOBALS['DIC']->rbac()->admin()->assignRoleToFolder(
398  $role['obj_id'],
399  $source->getRefId(),
400  'n'
401  );
402  }
403 
404  // do nothing if role is protected in higher context
405  if(
406  $GLOBALS['DIC']->rbac()->review()->isProtected($source->getRefId(),$role['obj_id'])
407  )
408  {
409  $GLOBALS['DIC']->logger()->otpl()->info('Ignoring protected role: ' . $role['title']);
410  return true;
411  }
412 
413  switch($this->getRoleTemplateType())
414  {
415  case self::TPL_ACTION_UNION:
416 
417  ilLoggerFactory::getLogger('otpl')->info('Using ilRbacAdmin::copyRolePermissionUnion()');
418  $rbacadmin->copyRolePermissionUnion(
419  $role_data['obj_id'],
420  $role_data['parent'],
421  $this->getRoleTemplateId(),
422  ROLE_FOLDER_ID,
423  $role_data['obj_id'],
424  $source->getRefId()
425  );
426  break;
427 
428  case self::TPL_ACTION_OVERWRITE:
429 
430  ilLoggerFactory::getLogger('otpl')->info('Using ilRbacAdmin::copyRoleTemplatePermission()');
431  $rbacadmin->copyRoleTemplatePermissions(
432  $this->getRoleTemplateId(),
433  ROLE_FOLDER_ID,
434  $source->getRefId(),
435  $role_data['obj_id'],
436  true
437  );
438  break;
439 
440  case self::TPL_ACTION_INTERSECT:
441 
442  ilLoggerFactory::getLogger('otpl')->info('Using ilRbacAdmin::copyRolePermissionIntersection()'. $this->getRoleTemplateId());
443  $rbacadmin->copyRolePermissionIntersection(
444  $role_data['obj_id'],
445  $role_data['parent'],
446  $this->getRoleTemplateId(),
447  ROLE_FOLDER_ID,
448  $source->getRefId(),
449  $role_data['obj_id']
450  );
451  break;
452 
453  }
454 
455  // Change existing object
456  include_once './Services/AccessControl/classes/class.ilObjRole.php';
457  $role_obj = new ilObjRole($role_data['obj_id']);
458  $role_obj->changeExistingObjects(
459  $source->getRefId(),
460  $role_data['protected'] ? ilObjRole::MODE_PROTECTED_DELETE_LOCAL_POLICIES : ilObjRole::MODE_UNPROTECTED_DELETE_LOCAL_POLICIES,
461  array('all')
462  );
463 
464  return true;
465  }
466 
467  protected function revertLocalPolicy(ilObject $source, $role)
468  {
469  global $rbacadmin, $rbacreview, $ilDB;
470 
471  ilLoggerFactory::getLogger('otpl')->info('Reverting policy for role '. $role['title']);
472  // Local policies can only be reverted for auto generated roles. Otherwise the
473  // original role settings are unknown
474  if(substr($role['title'],0,3) != 'il_')
475  {
476  ilLoggerFactory::getLogger('otpl')->warning('Cannot revert local policy for role '. $role['title']);
477  return false;
478  }
479 
480 
481  // No local policies
482  if(!$rbacreview->getLocalPolicies($source->getRefId()))
483  {
484  return false;
485  }
486 
487  $exploded_title = explode('_',$role['title']);
488  $rolt_title = $exploded_title[0].'_'.$exploded_title[1].'_'.$exploded_title[2];
489 
490  // Lookup role template
491  $query = 'SELECT obj_id FROM object_data '.
492  'WHERE title = '.$ilDB->quote($rolt_title,'text').' '.
493  'AND type = '.$ilDB->quote('rolt','text');
494  $res = $ilDB->query($query);
495  while($row = $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT))
496  {
497  $rolt_id = $row->obj_id;
498  }
499 
500  // No template found
501  if(!$rolt_id)
502  {
503  return false;
504  }
505 
506  $rbacadmin->copyRoleTemplatePermissions(
507  $rolt_id,
508  ROLE_FOLDER_ID,
509  $source->getRefId(),
510  $role['obj_id'],
511  true
512  );
513 
514  // Change existing object
515  include_once './Services/AccessControl/classes/class.ilObjRole.php';
516  $role_obj = new ilObjRole($role['obj_id']);
517  $role_obj->changeExistingObjects(
518  $source->getRefId(),
519  $role['protected'] ? ilObjRole::MODE_PROTECTED_DELETE_LOCAL_POLICIES : ilObjRole::MODE_UNPROTECTED_DELETE_LOCAL_POLICIES,
520  array('all')
521  );
522  }
523 }
524 ?>
ilObjRole
Class ilObjRole.
Definition: class.ilObjRole.php:16
ilDidacticTemplateFilterPatternFactory\lookupPatternsByParentId
static lookupPatternsByParentId($a_parent_id, $a_parent_type)
Get patterns by template id.
Definition: class.ilDidacticTemplateFilterPatternFactory.php:18
ilObjRole\MODE_PROTECTED_DELETE_LOCAL_POLICIES
const MODE_PROTECTED_DELETE_LOCAL_POLICIES
Definition: class.ilObjRole.php:18
ilObject
Class ilObject Basic functions for all objects.
Definition: class.ilObject.php:15
ilXmlWriter\xmlStartTag
xmlStartTag($tag, $attrs=NULL, $empty=FALSE, $encode=TRUE, $escape=TRUE)
Writes a starttag.
Definition: class.ilXmlWriter.php:332
$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18
ilXmlWriter
XML writer class.
Definition: class.ilXmlWriter.php:17
ilXmlWriter\xmlEndTag
xmlEndTag($tag)
Writes an endtag.
Definition: class.ilXmlWriter.php:375
ilDidacticTemplateLocalPolicyAction\addFilterPattern
addFilterPattern(ilDidacticTemplateFilterPattern $pattern)
Add filter.
Definition: class.ilDidacticTemplateLocalPolicyAction.php:40
ilDidacticTemplateAction\filterRoles
filterRoles(ilObject $source)
Filter roles.
Definition: class.ilDidacticTemplateAction.php:230
$a_type
$a_type
Definition: workflow.php:93
ilDidacticTemplateLocalPolicyAction\createLocalPolicy
createLocalPolicy(ilObject $source, $role)
Create local policy.
Definition: class.ilDidacticTemplateLocalPolicyAction.php:380
array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19
ilObject\_lookupType
static _lookupType($a_id, $a_reference=false)
lookup object type
Definition: class.ilObject.php:1176
ilDidacticTemplateAction\initSourceObject
initSourceObject()
Init the source object.
Definition: class.ilDidacticTemplateAction.php:219
ilDidacticTemplateAction
Abstract class for template actions.
Definition: class.ilDidacticTemplateAction.php:10
ilObjRole\MODE_UNPROTECTED_DELETE_LOCAL_POLICIES
const MODE_UNPROTECTED_DELETE_LOCAL_POLICIES
Definition: class.ilObjRole.php:20
ilRoleXmlExport
Xml export of roles and role templates.
Definition: class.ilRoleXmlExport.php:12
$ilDB
global $ilDB
Definition: storeScorm2004.php:16
ilObject\getRefId
getRefId()
get reference id public
Definition: class.ilObject.php:321
ilXmlWriter\appendXML
appendXML($a_str)
append xml string to document
Definition: class.ilXmlWriter.php:505
ilLoggerFactory\getLogger
static getLogger($a_component_id)
Get component logger.
Definition: class.ilLoggerFactory.php:82
ilDidacticTemplateFilterPattern
Represents a filter pattern for didactic template actions.
Definition: class.ilDidacticTemplateFilterPattern.php:11