ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
class.ilMyStaffAccess.php
Go to the documentation of this file.
1 <?php
2 
8 class ilMyStaffAccess extends ilObjectAccess
9 {
10  const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS = 'tmp_obj_spec_perm';
11  const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS = 'tmp_obj_def_perm';
12  const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS = 'tmp_orgu_def_perm';
13  const TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS = 'tmp_crs_members';
14  const TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS = 'tmp_orgu_members';
15  const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX = 'tmp_obj_user_matr';
16  const DEFAULT_ORG_UNIT_OPERATION = ilOrgUnitOperation::OP_ACCESS_ENROLMENTS;
17  const DEFAULT_CONTEXT = 'crs';
21  protected static $instance = null;
25  protected static $orgu_users_of_current_user_show_staff_permission;
26 
27 
31  public static function getInstance()
32  {
33  global $DIC;
34 
35  if (self::$instance === null) {
36  self::$instance = new self();
37 
38  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
39  . self::DEFAULT_CONTEXT);
40  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION
41  . "_" . self::DEFAULT_CONTEXT);
42  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION
43  . "_" . self::DEFAULT_CONTEXT);
44  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS . "_user_id_" . $DIC->user()->getId());
45  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS . "_user_id_" . $DIC->user()->getId());
46  self::$instance->dropTempTable(self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
47  . self::DEFAULT_CONTEXT);
48  }
49 
50  return self::$instance;
51  }
52 
53 
57  private function __construct()
58  {
59  }
60 
61 
65  public function hasCurrentUserAccessToMyStaff()
66  {
67  global $DIC;
68 
69  if (!$DIC->settings()->get("enable_my_staff")) {
70  return false;
71  }
72 
73  $operation = ilOrgUnitOperationQueries::findByOperationString(ilOrgUnitOperation::OP_ACCESS_ENROLMENTS, self::DEFAULT_CONTEXT);
74  if (!$operation) {
75  return false;
76  }
77  if ($this->countOrgusOfUserWithOperationAndContext($DIC->user()->getId(), ilOrgUnitOperation::OP_ACCESS_ENROLMENTS, self::DEFAULT_CONTEXT)
78  > 0) {
79  return true;
80  }
81 
82  return false;
83  }
84 
85 
91  public function hasCurrentUserAccessToUser($usr_id = 0)
92  {
93  global $DIC;
94 
95  if (in_array($usr_id, $this->getUsersForUser($DIC->user()->getId()))) {
96  return true;
97  }
98 
99  return false;
100  }
101 
102 
108  public function hasCurrentUserAccessToLearningProgressInObject($ref_id = 0)
109  {
110  global $DIC;
111 
112  return $DIC->access()->checkPositionAccess(ilOrgUnitOperation::OP_READ_LEARNING_PROGRESS, $ref_id);
113  }
114 
115 
119  public function hasCurrentUserAccessToCourseLearningProgressForAtLeastOneUser()
120  {
121  global $DIC;
122 
123  $arr_usr_id = $this->getUsersForUserOperationAndContext($DIC->user()
124  ->getId(), ilOrgUnitOperation::OP_READ_LEARNING_PROGRESS, self::DEFAULT_CONTEXT);
125  if (count($arr_usr_id) > 0) {
126  return true;
127  }
128 
129  return false;
130  }
131 
132 
138  public function countOrgusOfUserWithAtLeastOneOperation($user_id)
139  {
140  global $DIC;
141 
142  $q = "SELECT COUNT(orgu_ua.orgu_id) AS 'cnt' FROM il_orgu_permissions AS perm
143  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id
144  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context is not NULL
145  WHERE orgu_ua.user_id = " . $DIC->database()->quote($user_id, 'integer') . " AND perm.operations is not NULL AND perm.parent_id = -1";
146 
147  $set = $DIC->database()->query($q);
148  $rec = $DIC->database()->fetchAssoc($set);
149 
150  return $rec['cnt'];
151  }
152 
153 
161  public function countOrgusOfUserWithOperationAndContext($user_id, $org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT)
162  {
163  global $DIC;
164 
168  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
169 
170  $q = "SELECT COUNT(orgu_ua.orgu_id) AS cnt FROM il_orgu_permissions AS perm
171  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id
172  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '" . $context . "'
173  and orgu_ua.user_id = " . $DIC->database()->quote($user_id, 'integer') . " AND perm.operations LIKE '%\""
174  . $operation->getOperationId() . "\"%'
175  WHERE perm.parent_id = -1";
176 
177  $set = $DIC->database()->query($q);
178  $rec = $DIC->database()->fetchAssoc($set);
179 
180  return $rec['cnt'];
181  }
182 
183 
192  public function getUsersForUserOperationAndContext($user_id, $org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT, $tmp_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX)
193  {
194  global $DIC;
195 
196  $tmp_table_name = $this->buildTempTableIlobjectsUserMatrixForUserOperationAndContext($user_id, $org_unit_operation_string, $context, $tmp_table_name_prefix);
197 
198  $q = 'SELECT usr_id FROM ' . $tmp_table_name;
199 
200  $user_set = $DIC->database()->query($q);
201 
202  $arr_users = array();
203 
204  while ($rec = $DIC->database()->fetchAssoc($user_set)) {
205  $arr_users[$rec['usr_id']] = $rec['usr_id'];
206  }
207 
208  return $arr_users;
209  }
210 
211 
217  public function getUsersForUser($user_id)
218  {
219  global $DIC;
220 
221  $tmp_orgu_members = $this->buildTempTableOrguMemberships(self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS, array());
222 
223  $q = "SELECT " . $tmp_orgu_members . ".user_id AS usr_id
224  FROM
225  " . $tmp_orgu_members . "
226  INNER JOIN il_orgu_ua AS orgu_ua_current_user on orgu_ua_current_user.user_id = " . $DIC->database()->quote($user_id, 'integer') . "
227  INNER JOIN il_orgu_authority AS auth ON auth.position_id = orgu_ua_current_user.position_id
228  WHERE
229  (
230  /* Identische OrgUnit wie Current User; Nicht Rekursiv; Fixe Position */
231  (orgu_ua_current_user.orgu_id = " . $tmp_orgu_members . ".orgu_id AND auth.scope = 1
232  AND auth.over = " . $tmp_orgu_members . ".user_position_id AND auth.over <> -1
233  )
234  OR
235  /* Identische OrgUnit wie Current User; Nicht Rekursiv; Position egal */
236  (orgu_ua_current_user.orgu_id = " . $tmp_orgu_members . ".orgu_id AND auth.scope = 1 AND auth.over = -1)
237  OR
238  /* Kinder OrgUnit wie Current User */
239  (
240  (
241  " . $tmp_orgu_members . ".orgu_id = orgu_ua_current_user.orgu_id OR
242  " . $tmp_orgu_members . ".tree_path LIKE CONCAT(\"%.\",orgu_ua_current_user.orgu_id ,\".%\")
243  OR
244  " . $tmp_orgu_members . ".tree_path LIKE CONCAT(\"%.\",orgu_ua_current_user.orgu_id )
245  )
246  AND
247  (
248  (
249  (
250  /* Gleiche Position */
251  auth.over = " . $tmp_orgu_members . ".user_position_id AND auth.over <> -1
252  )
253  OR
254  (
255  /* Position Egal */
256  auth.over = -1
257  )
258  )
259  AND auth.scope = 2
260  )
261  )
262  )";
263 
264  $user_set = $DIC->database()->query($q);
265 
266  $arr_users = array();
267 
268  while ($rec = $DIC->database()->fetchAssoc($user_set)) {
269  $arr_users[$rec['usr_id']] = $rec['usr_id'];
270  }
271 
272  return $arr_users;
273  }
274 
275 
283  public function getIlobjectsAndUsersForUserOperationAndContext($user_id, $org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT)
284  {
285  global $DIC;
286 
290  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
291 
292  $tmp_table_name = 'tmp_ilobj_user_matrix_' . $operation->getOperationId();
293 
294  $this->buildTempTableIlobjectsUserMatrixForUserOperationAndContext($user_id, $org_unit_operation_string, $context, $tmp_table_name);
295 
296  $q = 'SELECT * FROM ' . $tmp_table_name;
297 
298  $user_set = $DIC->database()->query($q);
299 
300  $arr_user_obj = array();
301 
302  while ($rec = $DIC->database()->fetchAssoc($user_set)) {
303  $arr_user_obj[] = $rec;
304  }
305 
306  return $arr_user_obj;
307  }
308 
309 
318  public function buildTempTableIlobjectsUserMatrixForUserOperationAndContext($user_id, $org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT, $temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX)
319  {
320  global $DIC;
321 
322  $temporary_table_name = $temporary_table_name_prefix . "_" . $org_unit_operation_string . "_" . $context;
323 
327  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
328 
329  $all_users_for_user = $this->getUsersForUser($GLOBALS['DIC']->user()->getId());
330 
331  $tmp_table_objects_specific_perimissions = $this->buildTempTableIlobjectsSpecificPermissionSetForOperationAndContext($org_unit_operation_string, $context, self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS);
332 
333  $tmp_table_objects_default_perimissions = $this->buildTempTableIlobjectsDefaultPermissionSetForOperationAndContext($org_unit_operation_string, $context, self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS);
334 
335  $tmp_table_orgunit_default_perimissions = $this->buildTempTableIlorgunitDefaultPermissionSetForOperationAndContext($org_unit_operation_string, $context, self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS);
336 
337  $tmp_table_course_members = $this->buildTempTableCourseMemberships(self::TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS, $all_users_for_user);
338 
339  $tmp_table_orgu_members = $this->buildTempTableOrguMemberships(self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS, $all_users_for_user);
340 
341  $tmp_table_orgu_member_path = $this->buildTempTableOrguMemberships('tmp_orgu_members_path', $all_users_for_user);
342 
343  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
344  . self::DEFAULT_CONTEXT) {
345  $this->dropTempTable($temporary_table_name);
346  }
347 
348  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . " AS (
349  SELECT DISTINCT user_perm_matrix.perm_for_ref_id, user_perm_matrix.usr_id FROM
350  (
351  SELECT crs.*," . $tmp_table_course_members . ".ref_id," . $tmp_table_course_members . ".usr_id FROM
352  (
353  SELECT * FROM " . $tmp_table_objects_specific_perimissions . "
354  UNION
355  SELECT * FROM " . $tmp_table_objects_default_perimissions . "
356  ) AS crs
357  INNER JOIN " . $tmp_table_course_members . " on " . $tmp_table_course_members . ".ref_id = crs.perm_for_ref_id
358  and (
359  (
360  " . $tmp_table_course_members . ".orgu_id = crs.perm_for_orgu_id AND " . $tmp_table_course_members . ".position_id = crs.perm_over_user_with_position AND perm_orgu_scope = 1
361  )
362  or perm_orgu_scope = 2
363  )
364  UNION
365  SELECT " . $tmp_table_orgunit_default_perimissions . ".*, " . $tmp_table_orgu_members . ".orgu_id AS ref_id, "
366  . $tmp_table_orgu_members . ".user_id FROM " . $tmp_table_orgunit_default_perimissions . "
367  INNER JOIN " . $tmp_table_orgu_members . " on " . $tmp_table_orgu_members . ".orgu_id = "
368  . $tmp_table_orgunit_default_perimissions . ".perm_for_ref_id
369  and (
370  (
371  " . $tmp_table_orgu_members . ".orgu_id = " . $tmp_table_orgunit_default_perimissions . ".perm_for_orgu_id AND "
372  . $tmp_table_orgu_members . ".user_position_id = " . $tmp_table_orgunit_default_perimissions . ".perm_over_user_with_position AND perm_orgu_scope = 1
373  )
374  or perm_orgu_scope = 2
375  )
376 
377  ) AS user_perm_matrix
378  INNER JOIN " . $tmp_table_orgu_member_path . " AS path on path.user_id = user_perm_matrix.usr_id
379 
380  INNER JOIN il_orgu_ua AS orgu_ua_current_user on orgu_ua_current_user.user_id = " . $DIC->database()->quote($user_id, 'integer') . "
381  INNER JOIN il_orgu_permissions AS perm on perm.position_id = orgu_ua_current_user.position_id AND perm.parent_id = -1
382  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '$context'
383  and perm.operations LIKE '%\"" . $operation->getOperationId() . "\"%'
384 
385  AND
386  (
387  /* Identische OrgUnit wie Current User; Nicht Rekursiv; Fixe Position */
388  (orgu_ua_current_user.orgu_id = user_perm_matrix.perm_for_orgu_id AND user_perm_matrix.perm_orgu_scope = 1
389  AND orgu_ua_current_user.position_id = user_perm_matrix.perm_for_position_id AND user_perm_matrix.perm_over_user_with_position <> -1
390  )
391  OR
392  /* Identische OrgUnit wie Current User; Nicht Rekursiv; Position egal */
393  (orgu_ua_current_user.orgu_id = user_perm_matrix.perm_for_orgu_id AND user_perm_matrix.perm_orgu_scope = 1 AND user_perm_matrix.perm_over_user_with_position = -1)
394  OR
395  /* Kinder OrgUnit wie Current User */
396  (
397  orgu_ua_current_user.orgu_id = user_perm_matrix.perm_for_orgu_id
398  AND
399  (
400  path.orgu_id = user_perm_matrix.perm_for_orgu_id OR
401  path.tree_path LIKE CONCAT(\"%.\",user_perm_matrix.perm_for_orgu_id ,\".%\")
402  OR
403  path.tree_path LIKE CONCAT(\"%.\",user_perm_matrix.perm_for_orgu_id )
404  )
405  AND
406  (
407  (
408  (
409  /* Gleiche Position */
410  orgu_ua_current_user.position_id = user_perm_matrix.perm_for_position_id AND user_perm_matrix.perm_over_user_with_position <> -1
411  )
412  OR
413  (
414  /* Position Egal */
415  user_perm_matrix.perm_over_user_with_position = -1
416  )
417  )
418  AND user_perm_matrix.perm_orgu_scope = 2
419  )
420  )
421  )
422  );";
423 
424  $DIC->database()->manipulate($q);
425 
426  return $temporary_table_name;
427  }
428 
429 
437  public function buildTempTableIlobjectsSpecificPermissionSetForOperationAndContext($org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT, $temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS)
438  {
439  global $DIC;
440 
441  $temporary_table_name = $temporary_table_name_prefix . "_" . $org_unit_operation_string . "_" . $context;
442 
446  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
447 
448  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
449  . self::DEFAULT_CONTEXT) {
450  $this->dropTempTable($temporary_table_name);
451  }
452 
453  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . "
454  (INDEX i1 (perm_for_ref_id), INDEX i2 (perm_for_orgu_id), INDEX i3 (perm_orgu_scope), INDEX i4 (perm_for_position_id), INDEX i5 (perm_over_user_with_position))
455  AS (
456  SELECT
457  obj_ref.ref_id AS perm_for_ref_id,
458  orgu_ua.orgu_id AS perm_for_orgu_id,
459  auth.scope AS perm_orgu_scope,
460  orgu_ua.position_id AS perm_for_position_id,
461  auth.over AS perm_over_user_with_position
462  FROM
463  il_orgu_permissions AS perm
464  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id
465  INNER JOIN il_orgu_authority AS auth ON auth.position_id = orgu_ua.position_id AND orgu_ua.user_id = " . $GLOBALS['DIC']->user()
466  ->getId() . "
467  INNER JOIN object_reference AS obj_ref ON obj_ref.ref_id = perm.parent_id
468  INNER JOIN object_data AS obj ON obj.obj_id = obj_ref.obj_id AND obj.type = '$context'
469  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '$context'
470  WHERE
471  perm.operations LIKE '%\"" . $operation->getOperationId() . "\"%'
472  );";
473 
474  $DIC->database()->manipulate($q);
475 
476  return $temporary_table_name;
477  }
478 
479 
487  public function buildTempTableIlobjectsDefaultPermissionSetForOperationAndContext($org_unit_operation_string = ilOrgUnitOperation::OP_ACCESS_ENROLMENTS, $context = self::DEFAULT_CONTEXT, $temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS)
488  {
489  global $DIC;
490 
491  $temporary_table_name = $temporary_table_name_prefix . "_" . $org_unit_operation_string . "_" . $context;
492 
496  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
497 
498  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
499  . self::DEFAULT_CONTEXT) {
500  $this->dropTempTable($temporary_table_name);
501  }
502 
503  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . "
504  (INDEX i1 (perm_for_ref_id), INDEX i2 (perm_for_orgu_id), INDEX i3 (perm_orgu_scope), INDEX i4 (perm_for_position_id),INDEX i5 (perm_over_user_with_position))
505  AS (
506  SELECT
507  obj_ref.ref_id AS perm_for_ref_id,
508  orgu_ua.orgu_id AS perm_for_orgu_id,
509  auth.scope AS perm_orgu_scope,
510  orgu_ua.position_id AS perm_for_position_id,
511  auth.over AS perm_over_user_with_position
512  FROM
513  object_data AS obj
514  INNER JOIN object_reference AS obj_ref ON obj_ref.obj_id = obj.obj_id
515  INNER JOIN il_orgu_permissions AS perm ON perm.operations LIKE '%\"" . $operation->getOperationId() . "\"%' AND perm.parent_id = -1
516  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '" . $context . "'
517  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id AND orgu_ua.user_id = " . $GLOBALS['DIC']->user()
518  ->getId() . "
519  INNER JOIN il_orgu_authority AS auth ON auth.position_id = orgu_ua.position_id
520 
521  WHERE
522  obj.type = '" . $context . "'
523  AND (obj_ref.ref_id , orgu_ua.position_id)
524 
525  NOT IN (SELECT
526  perm.parent_id, orgu_ua.position_id
527  FROM
528  il_orgu_permissions AS perm
529  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id
530  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '" . $context . "'
531  WHERE perm.parent_id <> -1)
532  );";
533 
534  $DIC->database()->manipulate($q);
535 
536  return $temporary_table_name;
537  }
538 
539 
547  public function buildTempTableIlorgunitDefaultPermissionSetForOperationAndContext($org_unit_operation_string = self::DEFAULT_ORG_UNIT_OPERATION, $context = self::DEFAULT_CONTEXT, $temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS)
548  {
549  global $DIC;
550 
551  $temporary_table_name = $temporary_table_name_prefix . "_" . $org_unit_operation_string . "_" . $context;
555  $operation = ilOrgUnitOperationQueries::findByOperationString($org_unit_operation_string, $context);
556 
557  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS . "_" . self::DEFAULT_ORG_UNIT_OPERATION . "_"
558  . self::DEFAULT_CONTEXT) {
559  $this->dropTempTable($temporary_table_name);
560  }
561 
562  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . "
563  (INDEX i1 (perm_for_ref_id), INDEX i2 (perm_for_orgu_id), INDEX i3 (perm_orgu_scope), INDEX i4 (perm_for_position_id), INDEX i5 (perm_over_user_with_position))
564  AS (
565  SELECT
566  orgu_ua.orgu_id AS perm_for_ref_id, /* Table has to be identical to the other Permission For Operation And Context-Tables! */
567  orgu_ua.orgu_id AS perm_for_orgu_id,
568  auth.scope AS perm_orgu_scope,
569  orgu_ua.position_id AS perm_for_position_id,
570  auth.over AS perm_over_user_with_position
571  FROM
572  il_orgu_permissions AS perm
573  INNER JOIN il_orgu_ua AS orgu_ua ON orgu_ua.position_id = perm.position_id AND perm.parent_id = -1 AND orgu_ua.user_id = "
574  . $GLOBALS['DIC']->user()->getId() . "
575  INNER JOIN il_orgu_authority AS auth ON auth.position_id = orgu_ua.position_id
576  INNER JOIN il_orgu_op_contexts AS contexts on contexts.id = perm.context_id AND contexts.context = '" . $context . "'
577  WHERE
578  perm.operations LIKE '%\"" . $operation->getOperationId() . "\"%'
579  );";
580 
581  $DIC->database()->manipulate($q);
582 
583  return $temporary_table_name;
584  }
585 
586 
593  public function buildTempTableCourseMemberships($temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS, array $only_courses_of_user_ids = array())
594  {
595  global $DIC;
596 
597  $temporary_table_name = $temporary_table_name_prefix . "_user_id_" . $DIC->user()->getId();
598 
599  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS . "_user_id_" . $DIC->user()->getId()
600  || count($only_courses_of_user_ids) > 0) {
601  $this->dropTempTable($temporary_table_name);
602  }
603 
604  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . "
605  (INDEX i1(ref_id), INDEX i2 (usr_id), INDEX i3 (position_id), INDEX i4 (orgu_id))
606  AS (
607  SELECT crs_members_crs_ref.ref_id, crs_members.usr_id, orgu_ua.position_id, orgu_ua.orgu_id
608  FROM (
609  SELECT obj_id, usr_id FROM obj_members WHERE member = 1
610  AND " . $DIC->database()->in('obj_members.usr_id', $only_courses_of_user_ids, false, 'integer') . "
611  UNION
612  SELECT obj_id, usr_id FROM crs_waiting_list
613  WHERE " . $DIC->database()->in('crs_waiting_list.usr_id', $only_courses_of_user_ids, false, 'integer') . "
614  UNION
615  SELECT obj_id, usr_id FROM il_subscribers
616  WHERE " . $DIC->database()->in('il_subscribers.usr_id', $only_courses_of_user_ids, false, 'integer') . "
617  ) AS crs_members
618  INNER JOIN object_reference AS crs_members_crs_ref on crs_members_crs_ref.obj_id = crs_members.obj_id
619  INNER JOIN il_orgu_ua AS orgu_ua on orgu_ua.user_id = crs_members.usr_id
620  );";
621 
622  $DIC->database()->manipulate($q);
623 
624  return $temporary_table_name;
625  }
626 
627 
634  public function buildTempTableOrguMemberships($temporary_table_name_prefix = self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS, array $only_orgus_of_user_ids = array())
635  {
636  global $DIC;
637 
638  $temporary_table_name = $temporary_table_name_prefix . "_user_id_" . $DIC->user()->getId();
639 
640  if ($temporary_table_name != self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS . "_user_id_" . $DIC->user()->getId()
641  || count($only_orgus_of_user_ids) > 0) {
642  $this->dropTempTable($temporary_table_name);
643  }
644 
645  $q = "CREATE TEMPORARY TABLE IF NOT EXISTS " . $temporary_table_name . "
646  (INDEX i1(orgu_id), INDEX i2 (tree_path), INDEX i3 (tree_child), INDEX i4 (tree_parent), INDEX i5 (tree_lft), INDEX i6 (tree_rgt), INDEX i7 (user_position_id), INDEX i8 (user_id))
647  AS (
648  SELECT orgu_ua.orgu_id AS orgu_id,
649  tree_orgu.path AS tree_path,
650  tree_orgu.child AS tree_child,
651  tree_orgu.parent AS tree_parent,
652  tree_orgu.lft AS tree_lft,
653  tree_orgu.rgt AS tree_rgt,
654  orgu_ua.position_id AS user_position_id,
655  orgu_ua.user_id AS user_id
656  FROM
657  il_orgu_ua AS orgu_ua
658  INNER JOIN object_reference AS obj_ref on obj_ref.ref_id = orgu_ua.orgu_id AND obj_ref.deleted is null
659  LEFT JOIN tree AS tree_orgu ON tree_orgu.child = orgu_ua.orgu_id";
660 
661  if (count($only_orgus_of_user_ids) > 0) {
662  $q .= " WHERE " . $DIC->database()->in('orgu_ua.user_id', $only_orgus_of_user_ids, false, 'integer') . " ";
663  }
664 
665  $q .= ");";
666 
667  $DIC->database()->manipulate($q);
668 
669  return $temporary_table_name;
670  }
671 
672 
678  public function dropTempTable($temporary_table_name)
679  {
680  global $DIC;
681 
682  $q = "DROP TABLE IF EXISTS " . $temporary_table_name;
683  $DIC->database()->manipulate($q);
684 
685  return true;
686  }
687 }
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS
const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_SPEC_PERMISSIONS
Definition: class.ilMyStaffAccess.php:10
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS
const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_ORGU_DEFAULT_PERMISSIONS
Definition: class.ilMyStaffAccess.php:12
$DIC
global $DIC
Definition: saml.php:7
ilMyStaffAccess\buildTempTableCourseMemberships
buildTempTableCourseMemberships($temporary_table_name_prefix=self::TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS, array $only_courses_of_user_ids=array())
Definition: class.ilMyStaffAccess.php:593
ilMyStaffAccess\countOrgusOfUserWithAtLeastOneOperation
countOrgusOfUserWithAtLeastOneOperation($user_id)
Definition: class.ilMyStaffAccess.php:138
$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18
ilMyStaffAccess\hasCurrentUserAccessToUser
hasCurrentUserAccessToUser($usr_id=0)
Definition: class.ilMyStaffAccess.php:91
ilMyStaffAccess\$orgu_users_of_current_user_show_staff_permission
static $orgu_users_of_current_user_show_staff_permission
Definition: class.ilMyStaffAccess.php:25
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS
const TMP_DEFAULT_TABLE_NAME_PREFIX_CRS_MEMBERS
Definition: class.ilMyStaffAccess.php:13
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS
const TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS
Definition: class.ilMyStaffAccess.php:14
user
user()
Definition: user.php:4
ilMyStaffAccess\hasCurrentUserAccessToLearningProgressInObject
hasCurrentUserAccessToLearningProgressInObject($ref_id=0)
Definition: class.ilMyStaffAccess.php:108
ilMyStaffAccess\dropTempTable
dropTempTable($temporary_table_name)
Definition: class.ilMyStaffAccess.php:678
ilMyStaffAccess\getUsersForUserOperationAndContext
getUsersForUserOperationAndContext($user_id, $org_unit_operation_string=self::DEFAULT_ORG_UNIT_OPERATION, $context=self::DEFAULT_CONTEXT, $tmp_table_name_prefix=self::TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX)
Definition: class.ilMyStaffAccess.php:192
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX
const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_USER_MATRIX
Definition: class.ilMyStaffAccess.php:15
array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19
ilMyStaffAccess
Class ilMyStaffAccess.
Definition: class.ilMyStaffAccess.php:8
ilObjectAccess
Class ilObjectAccess.
Definition: class.ilObjectAccess.php:16
ilMyStaffAccess\buildTempTableOrguMemberships
buildTempTableOrguMemberships($temporary_table_name_prefix=self::TMP_DEFAULT_TABLE_NAME_PREFIX_ORGU_MEMBERS, array $only_orgus_of_user_ids=array())
Definition: class.ilMyStaffAccess.php:634
ilMyStaffAccess\hasCurrentUserAccessToCourseLearningProgressForAtLeastOneUser
hasCurrentUserAccessToCourseLearningProgressForAtLeastOneUser()
Definition: class.ilMyStaffAccess.php:119
ilOrgUnitOperationQueries\findByOperationString
static findByOperationString($operation_string, $context_name)
Definition: class.ilOrgUnitOperationQueries.php:114
ilMyStaffAccess\TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS
const TMP_DEFAULT_TABLE_NAME_PREFIX_IL_OBJ_DEFAULT_PERMISSIONS
Definition: class.ilMyStaffAccess.php:11