ILIAS  release_5-3 Revision v5.3.23-19-g915713cf615
class.ilSoapRBACAdministration.php
Go to the documentation of this file.
1 <?php
2 /*
3  +-----------------------------------------------------------------------------+
4  | ILIAS open source |
5  +-----------------------------------------------------------------------------+
6  | Copyright (c) 1998-2001 ILIAS open source, University of Cologne |
7  | |
8  | This program is free software; you can redistribute it and/or |
9  | modify it under the terms of the GNU General Public License |
10  | as published by the Free Software Foundation; either version 2 |
11  | of the License, or (at your option) any later version. |
12  | |
13  | This program is distributed in the hope that it will be useful, |
14  | but WITHOUT ANY WARRANTY; without even the implied warranty of |
15  | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
16  | GNU General Public License for more details. |
17  | |
18  | You should have received a copy of the GNU General Public License |
19  | along with this program; if not, write to the Free Software |
20  | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. |
21  +-----------------------------------------------------------------------------+
22  */
23 
24 
33 include_once './webservice/soap/classes/class.ilSoapAdministration.php';
34 
35 class ilSoapRBACAdministration extends ilSoapAdministration
36 {
37  public function deleteRole($sid, $role_id)
38  {
39  $this->initAuth($sid);
40  $this->initIlias();
41 
42  if (!$this->__checkSession($sid)) {
43  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
44  }
45 
46  global $rbacreview, $rbacsystem,$ilAccess;
47 
48  if (!$tmp_role =&ilObjectFactory::getInstanceByObjId($role_id, false) or $tmp_role->getType() != 'role') {
49  return $this->__raiseError(
50  'No valid role id given. Please choose an existing id of an ILIAS role',
51  'Client'
52  );
53  }
54 
55 
56  $obj_ref = $rbacreview->getObjectReferenceOfRole($role_id);
57  if (!$ilAccess->checkAccess('edit_permission', '', $obj_ref)) {
58  return $this->__raiseError('Check access failed. No permission to delete role', 'Server');
59  }
60 
61  // if it's last role of an user
62  foreach ($assigned_users = $rbacreview->assignedUsers($role_id) as $user_id) {
63  if (count($rbacreview->assignedRoles($user_id)) == 1) {
64  return $this->__raiseError(
65  'Cannot deassign last role of users',
66  'Client'
67  );
68  }
69  }
70 
71  // set parent id (role folder id) of role
72  $rolf_id = end($rolf_ids = $rbacreview->getFoldersAssignedToRole($role_id, true));
73  $tmp_role->setParent($rolf_id);
74  $tmp_role->delete();
75 
76  return true;
77  }
78 
79  public function addUserRoleEntry($sid, $user_id, $role_id)
80  {
81  $this->initAuth($sid);
82  $this->initIlias();
83 
84  if (!$this->__checkSession($sid)) {
85  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
86  }
87 
88  global $rbacadmin,$rbacreview,$ilAccess;
89 
90  if ($tmp_user =&ilObjectFactory::getInstanceByObjId($user_id) and $tmp_user->getType() != 'usr') {
91  return $this->__raiseError(
92  'No valid user id given. Please choose an existing id of an ILIAS user',
93  'Client'
94  );
95  }
96  if ($tmp_role =&ilObjectFactory::getInstanceByObjId($role_id) and $tmp_role->getType() != 'role') {
97  return $this->__raiseError(
98  'No valid role id given. Please choose an existing id of an ILIAS role',
99  'Client'
100  );
101  }
102 
103  $obj_ref = $rbacreview->getObjectReferenceOfRole($role_id);
104  if (!$ilAccess->checkAccess('edit_permission', '', $obj_ref)) {
105  return $this->__raiseError('Check access failed. No permission to assign users', 'Server');
106  }
107 
108  if (!$rbacadmin->assignUser($role_id, $user_id)) {
109  return $this->__raiseError(
110  'Error rbacadmin->assignUser()',
111  'Server'
112  );
113  }
114  return true;
115  }
116  public function deleteUserRoleEntry($sid, $user_id, $role_id)
117  {
118  $this->initAuth($sid);
119  $this->initIlias();
120 
121  if (!$this->__checkSession($sid)) {
122  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
123  }
124 
125  global $rbacadmin,$ilAccess,$rbacreview;
126 
127  if ($tmp_user =&ilObjectFactory::getInstanceByObjId($user_id, false) and $tmp_user->getType() != 'usr') {
128  return $this->__raiseError(
129  'No valid user id given. Please choose an existing id of an ILIAS user',
130  'Client'
131  );
132  }
133  if ($tmp_role =&ilObjectFactory::getInstanceByObjId($role_id, false) and $tmp_role->getType() != 'role') {
134  return $this->__raiseError(
135  'No valid role id given. Please choose an existing id of an ILIAS role',
136  'Client'
137  );
138  }
139 
140  $obj_ref = $rbacreview->getObjectReferenceOfRole($role_id);
141  if (!$ilAccess->checkAccess('edit_permission', '', $obj_ref)) {
142  return $this->__raiseError('Check access failed. No permission to deassign users', 'Server');
143  }
144 
145  if (!$rbacadmin->deassignUser($role_id, $user_id)) {
146  return $this->__raiseError(
147  'Error rbacadmin->deassignUser()',
148  'Server'
149  );
150  }
151  return true;
152  }
153 
154  public function getOperations($sid)
155  {
156  $this->initAuth($sid);
157  $this->initIlias();
158 
159  if (!$this->__checkSession($sid)) {
160  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
161  }
162 
163  global $rbacreview;
164 
165  if (is_array($ops = $rbacreview->getOperations())) {
166  return $ops;
167  } else {
168  return $this->__raiseError('Unknown error', 'Server');
169  }
170  }
171 
172  public function revokePermissions($sid, $ref_id, $role_id)
173  {
174  $this->initAuth($sid);
175  $this->initIlias();
176 
177  if (!$this->__checkSession($sid)) {
178  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
179  }
180 
181  global $rbacadmin,$ilAccess;
182 
183  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($ref_id, false)) {
184  return $this->__raiseError(
185  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
186  'Client'
187  );
188  }
189  if ($tmp_role =&ilObjectFactory::getInstanceByObjId($role_id, false) and $tmp_role->getType() != 'role') {
190  return $this->__raiseError(
191  'No valid role id given. Please choose an existing id of an ILIAS role',
192  'Client'
193  );
194  }
195  if ($role_id == SYSTEM_ROLE_ID) {
196  return $this->__raiseError(
197  'Cannot revoke permissions of system role',
198  'Client'
199  );
200  }
201 
202  if (!$ilAccess->checkAccess('edit_permission', '', $ref_id)) {
203  return $this->__raiseError('Check access failed. No permission to revoke permissions', 'Server');
204  }
205 
206  $rbacadmin->revokePermission($ref_id, $role_id);
207 
208  return true;
209  }
210  public function grantPermissions($sid, $ref_id, $role_id, $permissions)
211  {
212  $this->initAuth($sid);
213  $this->initIlias();
214 
215  if (!$this->__checkSession($sid)) {
216  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
217  }
218 
219  global $rbacadmin,$ilAccess;
220 
221  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($ref_id, false)) {
222  return $this->__raiseError(
223  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
224  'Client'
225  );
226  }
227  if ($tmp_role =&ilObjectFactory::getInstanceByObjId($role_id, false) and $tmp_role->getType() != 'role') {
228  return $this->__raiseError(
229  'No valid role id given. Please choose an existing id of an ILIAS role',
230  'Client'
231  );
232  }
233 
234  if (!$ilAccess->checkAccess('edit_permission', '', $ref_id)) {
235  return $this->__raiseError('Check access failed. No permission to grant permissions', 'Server');
236  }
237 
238 
239  // mjansen@databay.de: dirty fix
240  if (isset($permissions['item'])) {
241  $permissions = $permissions['item'];
242  }
243 
244  if (!is_array($permissions)) {
245  return $this->__raiseError(
246  'No valid permissions given.' . print_r($permissions),
247  'Client'
248  );
249  }
250 
251  $rbacadmin->revokePermission($ref_id, $role_id);
252  $rbacadmin->grantPermission($role_id, $permissions, $ref_id);
253 
254  return true;
255  }
256 
257  public function getLocalRoles($sid, $ref_id)
258  {
259  $this->initAuth($sid);
260  $this->initIlias();
261 
262  if (!$this->__checkSession($sid)) {
263  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
264  }
265 
266  global $rbacreview,$ilAccess;
267 
268  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($ref_id, false)) {
269  return $this->__raiseError(
270  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
271  'Client'
272  );
273  }
274 
275  if (!$ilAccess->checkAccess('edit_permission', '', $ref_id)) {
276  return $this->__raiseError('Check access failed. No permission to access role information', 'Server');
277  }
278 
279 
280  foreach ($rbacreview->getRolesOfRoleFolder($ref_id, false) as $role_id) {
281  if ($tmp_obj = ilObjectFactory::getInstanceByObjId($role_id, false)) {
282  $objs[] = $tmp_obj;
283  }
284  }
285  if (count($objs)) {
286  include_once './webservice/soap/classes/class.ilObjectXMLWriter.php';
287 
288  $xml_writer = new ilObjectXMLWriter();
289  $xml_writer->setObjects($objs);
290  if ($xml_writer->start()) {
291  return $xml_writer->getXML();
292  }
293  }
294  return '';
295  }
296 
297  public function getUserRoles($sid, $user_id)
298  {
299  $this->initAuth($sid);
300  $this->initIlias();
301 
302  if (!$this->__checkSession($sid)) {
303  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
304  }
305 
306  global $rbacreview;
307 
308  if (!$tmp_user =&ilObjectFactory::getInstanceByObjId($user_id, false)) {
309  return $this->__raiseError(
310  'No valid user id given. Please choose an existing id of an ILIAS user',
311  'Client'
312  );
313  }
314 
315  foreach ($rbacreview->assignedRoles($user_id) as $role_id) {
316  if ($tmp_obj = ilObjectFactory::getInstanceByObjId($role_id, false)) {
317  $objs[] = $tmp_obj;
318  }
319  }
320  if (count($objs)) {
321  include_once './webservice/soap/classes/class.ilObjectXMLWriter.php';
322 
323  $xml_writer = new ilObjectXMLWriter();
324  $xml_writer->setObjects($objs);
325  if ($xml_writer->start()) {
326  return $xml_writer->getXML();
327  }
328  }
329  return '';
330  }
331 
332  public function addRole($sid, $target_id, $role_xml)
333  {
334  $this->initAuth($sid);
335  $this->initIlias();
336 
337  if (!$this->__checkSession($sid)) {
338  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
339  }
340 
341  global $rbacreview, $objDefinition, $rbacsystem,$ilAccess;
342 
343  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($target_id, false)) {
344  return $this->__raiseError(
345  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
346  'Client'
347  );
348  }
349 
350  if (ilObject::_isInTrash($target_id)) {
351  return $this->__raiseError("Parent with ID $target_id has been deleted.", 'CLIENT_TARGET_DELETED');
352  }
353 
354  if (!$ilAccess->checkAccess('edit_permission', '', $target_id)) {
355  return $this->__raiseError('Check access failed. No permission to create roles', 'Server');
356  }
357 
358  include_once 'webservice/soap/classes/class.ilObjectXMLParser.php';
359 
360  $xml_parser = new ilObjectXMLParser($role_xml);
361  $xml_parser->startParsing();
362 
363  foreach ($xml_parser->getObjectData() as $object_data) {
364 
365  // check if role title has il_ prefix
366  if (substr($object_data['title'], 0, 3) == "il_") {
367  return $this->__raiseError(
368  'Rolenames are not allowed to start with "il_" ',
369  'Client'
370  );
371  }
372 
373  include_once './Services/AccessControl/classes/class.ilObjRole.php';
374  $role = new ilObjRole();
375  $role->setTitle($object_data['title']);
376  $role->setDescription($object_data['description']);
377  $role->setImportId($object_data['import_id']);
378  $role->create();
379 
380  $GLOBALS['rbacadmin']->assignRoleToFolder($role->getId(), $target_id);
381  $new_roles[] = $role->getId();
382  }
383 
384  return $new_roles ? $new_roles : array();
385  }
386 
387  public function addRoleFromTemplate($sid, $target_id, $role_xml, $template_id)
388  {
389  $this->initAuth($sid);
390  $this->initIlias();
391 
392  if (!$this->__checkSession($sid)) {
393  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
394  }
395 
396  global $rbacreview, $objDefinition, $rbacsystem, $rbacadmin,$ilAccess;
397 
398  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($target_id, false)) {
399  return $this->__raiseError(
400  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
401  'Client'
402  );
403  }
404  if (ilObject::_lookupType($template_id) != 'rolt') {
405  return $this->__raiseError(
406  'No valid template id given. Please choose an existing object id of an ILIAS role template',
407  'Client'
408  );
409  }
410 
411 
412  if (ilObject::_isInTrash($target_id)) {
413  return $this->__raiseError("Parent with ID $target_id has been deleted.", 'CLIENT_TARGET_DELETED');
414  }
415 
416  if (!$ilAccess->checkAccess('edit_permission', '', $target_id)) {
417  return $this->__raiseError('Check access failed. No permission to create roles', 'Server');
418  }
419 
420 
421  include_once 'webservice/soap/classes/class.ilObjectXMLParser.php';
422 
423  $xml_parser = new ilObjectXMLParser($role_xml);
424  $xml_parser->startParsing();
425 
426  foreach ($xml_parser->getObjectData() as $object_data) {
427 
428  // check if role title has il_ prefix
429  if (substr($object_data['title'], 0, 3) == "il_") {
430  return $this->__raiseError(
431  'Rolenames are not allowed to start with "il_" ',
432  'Client'
433  );
434  }
435 
436  include_once './Services/AccessControl/classes/class.ilObjRole.php';
437  $role = new ilObjRole();
438  $role->setTitle($object_data['title']);
439  $role->setDescription($object_data['description']);
440  $role->setImportId($object_data['import_id']);
441  $role->create();
442 
443  $GLOBALS['rbacadmin']->assignRoleToFolder($role->getId(), $target_id);
444 
445  // Copy permssions
446  $rbacadmin->copyRoleTemplatePermissions($template_id, ROLE_FOLDER_ID, $target_id, $role->getId());
447 
448  // Set object permissions according to role template
449  $ops = $rbacreview->getOperationsOfRole($role->getId(), $tmp_obj->getType(), $target_id);
450  $rbacadmin->grantPermission($role->getId(), $ops, $target_id);
451  $new_roles[] = $role->getId();
452  }
453 
454 
455  // CREATE ADMIN ROLE
456 
457 
458 
459 
460 
461  return $new_roles ? $new_roles : array();
462  }
463 
464  public function getObjectTreeOperations($sid, $ref_id, $user_id)
465  {
466  $this->initAuth($sid);
467  $this->initIlias();
468 
469  if (!$this->__checkSession($sid)) {
470  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
471  }
472 
473  global $rbacsystem,$rbacreview,$ilAccess;
474 
475 
476  if (!$tmp_obj =&ilObjectFactory::getInstanceByRefId($ref_id, false)) {
477  return $this->__raiseError(
478  'No valid ref id given. Please choose an existing reference id of an ILIAS object',
479  'Client'
480  );
481  }
482 
483  if (!$tmp_user =&ilObjectFactory::getInstanceByObjId($user_id, false)) {
484  return $this->__raiseError(
485  'No valid user id given.',
486  'Client'
487  );
488  }
489 
490  if (ilObject::_isInTrash($ref_id)) {
491  return $this->__raiseError("Parent with ID $target_id has been deleted.", 'CLIENT_TARGET_DELETED');
492  }
493 
494 
495 
496  // check visible for all upper tree entries
497  if (!$ilAccess->checkAccessOfUser($tmp_user->getId(), 'visible', '', $tmp_obj->getRefId())) {
498  return array();
499  }
500  $op_data = $rbacreview->getOperation(2);
501  $ops_data[] = $op_data;
502 
503  if (!$ilAccess->checkAccessOfUser($tmp_user->getId(), 'read', '', $tmp_obj->getRefId())) {
504  return $ops_data;
505  }
506 
507 
508  $ops_data = array();
509  $ops = $rbacreview->getOperationsOnTypeString($tmp_obj->getType());
510  foreach ($ops as $ops_id) {
511  $op_data = $rbacreview->getOperation($ops_id);
512 
513  if ($rbacsystem->checkAccessOfUser($user_id, $op_data['operation'], $tmp_obj->getRefId())) {
514  $ops_data[$ops_id] = $op_data;
515  }
516  }
517 
518  foreach ($ops_data as $data) {
519  $ret_data[] = $data;
520  }
521  return $ret_data ? $ret_data : array();
522  }
523 
532  public function getRoles($sid, $role_type, $id)
533  {
534  $this->initAuth($sid);
535  $this->initIlias();
536 
537  if (!$this->__checkSession($sid)) {
538  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
539  }
540 
541  global $rbacsystem, $rbacreview, $ilUser, $ilDB;
542 
543  if (strcasecmp($role_type, "") != 0 &&
544  strcasecmp($role_type, "local") != 0 &&
545  strcasecmp($role_type, "global") != 0 &&
546  strcasecmp($role_type, "user") != 0 &&
547  strcasecmp($role_type, "user_login") != 0 &&
548  strcasecmp($role_type, "template") != 0) {
549  return $this->__raiseError('Called service with wrong role_type parameter \'' . $role_type . '\'', 'Client');
550  }
551 
552  $roles = array();
553 
554 
555  if (strcasecmp($role_type, "template") == 0) {
556  // get templates
557  $roles = $rbacreview->getRolesByFilter(6, $ilUser->getId());
558  } elseif (strcasecmp($role_type, "user")==0 || strcasecmp($role_type, "user_login")==0) {
559  // handle user roles
560  $user_id = $this->parseUserID($id, $role_type);
561  if ($user_id != $ilUser->getId()) {
562  // check access for user folder
563  $tmpUser = new ilObjUser($user_id);
564  $timelimitOwner = $tmpUser->getTimeLimitOwner();
565  if (!$rbacsystem->checkAccess('read', $timelimitOwner)) {
566  return $this->__raiseError('Check access for time limit owner failed.', 'Server');
567  }
568  }
569  $role_type = ""; // local and global roles for user
570 
571  $query = sprintf(
572  "SELECT object_data.title, rbac_fa.* FROM object_data, rbac_ua, rbac_fa WHERE rbac_ua.rol_id IN ('%s') AND rbac_ua.rol_id = rbac_fa.rol_id AND object_data.obj_id = rbac_fa.rol_id AND rbac_ua.usr_id=" . $user_id,
573  join("','", $rbacreview->assignedRoles($user_id))
574  );
575 
576  $rbacresult = $ilDB->query($query);
577  while ($rbacrow = $rbacresult->fetchRow(ilDBConstants::FETCHMODE_ASSOC)) {
578  if ($rbacrow["assign"] != "y") {
579  continue;
580  }
581 
582  $type = "";
583 
584  if ($rbacrow["parent"] == ROLE_FOLDER_ID) {
585  $type = "Global";
586  } else {
587  $type = "Local";
588  }
589  if (strlen($type) && $tmp_obj = ilObjectFactory::getInstanceByObjId($rbacrow["rol_id"], false)) {
590  /* @var $tmp_obj IlObjRole */
591  $roles[] = array(
592  "obj_id" =>$rbacrow["rol_id"],
593  "title" => $tmp_obj->getTitle(),
594  "description" => $tmp_obj->getDescription(),
595  "role_type" => $type);
596  }
597  }
598  } elseif ($id == "-1") {
599  // get all roles of system role folder
600  if (!$rbacsystem->checkAccess('read', ROLE_FOLDER_ID)) {
601  return $this->__raiseError('Check access failed.', 'Server');
602  }
603 
604  $roles = $rbacreview->getAssignableRoles(false, true);
605  } else {
606  // get local roles for a specific repository object
607  // needs permission to read permissions of this object
608  if (!$rbacsystem->checkAccess('edit_permission', $id)) {
609  return $this->__raiseError('Check access for local roles failed.', 'Server');
610  }
611 
612  if (!is_numeric($id)) {
613  return $this->__raiseError('Id must be numeric to process roles of a repository object.', 'Client');
614  }
615 
616  $role_type = "local";
617 
618  foreach ($rbacreview->getRolesOfRoleFolder($id, false) as $role_id) {
619  if ($tmp_obj = ilObjectFactory::getInstanceByObjId($role_id, false)) {
620  $roles[] = array("obj_id" => $role_id, "title" => $tmp_obj->getTitle(), "description" => $tmp_obj->getDescription(), "role_type" => $role_type);
621  }
622  }
623  }
624 
625 
626  include_once './webservice/soap/classes/class.ilSoapRoleObjectXMLWriter.php';
627 
628  $xml_writer = new ilSoapRoleObjectXMLWriter();
629  $xml_writer->setObjects($roles);
630  $xml_writer->setType($role_type);
631  if ($xml_writer->start()) {
632  return $xml_writer->getXML();
633  }
634  }
635 
646  public function searchRoles($sid, $key, $combination, $role_type)
647  {
648  $this->initAuth($sid);
649  $this->initIlias();
650 
651  if (!$this->__checkSession($sid)) {
652  return $this->__raiseError($this->__getMessage(), $this->__getMessageCode());
653  }
654 
655  global $rbacsystem, $rbacreview, $ilUser, $ilDB;
656 
657 
658  if (strcasecmp($role_type, "") != 0 &&
659  strcasecmp($role_type, "local") != 0 &&
660  strcasecmp($role_type, "global") != 0 &&
661  strcasecmp($role_type, "template") != 0) {
662  return $this->__raiseError('Called service with wrong role_type parameter \'' . $role_type . '\'', 'Client');
663  }
664 
665  if ($combination != 'and' and $combination != 'or') {
666  return $this->__raiseError(
667  'No valid combination given. Must be "and" or "or".',
668  'Client'
669  );
670  }
671 
672  include_once './Services/Search/classes/class.ilQueryParser.php';
673 
674  $query_parser = new ilQueryParser($key);
675  $query_parser->setMinWordLength(3);
676  $query_parser->setCombination($combination == 'and' ? QP_COMBINATION_AND : QP_COMBINATION_OR);
677  $query_parser->parse();
678  if (!$query_parser->validate()) {
679  return $this->__raiseError($query_parser->getMessage(), 'Client');
680  }
681 
682  include_once './Services/Search/classes/class.ilObjectSearchFactory.php';
683 
684  $object_search = ilObjectSearchFactory::_getObjectSearchInstance($query_parser);
685  $object_search->setFilter(array("role","rolt"));
686 
687  $res = $object_search->performSearch();
688  $res->filter(ROOT_FOLDER_ID, $combination == 'and' ? true : false);
689 
690  $obj_ids = array();
691  foreach ($res->getUniqueResults() as $entry) {
692  $obj_ids [] = $entry['obj_id'];
693  }
694 
695  $roles = array();
696  if (count($obj_ids)> 0) {
697  #print_r($obj_ids);
698  $roles = $rbacreview->getRolesForIDs($obj_ids, $role_type == "template");
699  }
700  #print_r($roles);
701  include_once './webservice/soap/classes/class.ilSoapRoleObjectXMLWriter.php';
702  $xml_writer = new ilSoapRoleObjectXMLWriter();
703  $xml_writer->setObjects($roles);
704  $xml_writer->setType($role_type);
705  if ($xml_writer->start()) {
706  return $xml_writer->getXML();
707  }
708  }
709 
710 
711  private function parseUserID($id, $role_type)
712  {
713  if (strcasecmp($role_type, "user")==0) {
714  // get user roles for user id, which can be numeric or ilias id
715  $user_id = !is_numeric($id) ? ilUtil::__extractId($id, IL_INST_ID) : $id;
716  if (!is_numeric($user_id)) {
717  return $this->__raiseError('ID must be either numeric or ILIAS conform id for type \'user\'', 'Client');
718  }
719  } elseif (strcasecmp($role_type, "user_login") == 0) {
720  // check for login
721  $user_id = ilObjUser::_lookupId($id);
722  if (!$user_id) {
723  // could not find a valid user
724  return $this->__raiseError('User with login \'' . $id . '\' does not exist!', 'Client');
725  }
726  }
727  return $user_id;
728  }
729 }
ilObjRole
Class ilObjRole.
Definition: class.ilObjRole.php:16
$type
$type
Definition: proxy_ylocal.php:10
ilSoapRBACAdministration\grantPermissions
grantPermissions($sid, $ref_id, $role_id, $permissions)
Definition: class.ilSoapRBACAdministration.php:210
ilSoapRBACAdministration\addUserRoleEntry
addUserRoleEntry($sid, $user_id, $role_id)
Definition: class.ilSoapRBACAdministration.php:79
$GLOBALS
$GLOBALS['loaded']
Global hash that tracks already loaded includes.
Definition: generate-standalone.php:18
$id
if(!array_key_exists('StateId', $_REQUEST)) $id
Definition: expirywarning.php:14
ilObject\_isInTrash
static _isInTrash($a_ref_id)
checks wether object is in trash
Definition: class.ilObject.php:1219
ilObjUser\_lookupId
static _lookupId($a_user_str)
Lookup id by login.
Definition: class.ilObjUser.php:784
$target_id
$target_id
Definition: goto.php:49
ilSoapRBACAdministration\searchRoles
searchRoles($sid, $key, $combination, $role_type)
search for roles.
Definition: class.ilSoapRBACAdministration.php:646
ilSoapRBACAdministration\addRole
addRole($sid, $target_id, $role_xml)
Definition: class.ilSoapRBACAdministration.php:332
ilSoapRBACAdministration\getRoles
getRoles($sid, $role_type, $id)
get roles for a specific type and id
Definition: class.ilSoapRBACAdministration.php:532
QP_COMBINATION_OR
const QP_COMBINATION_OR
Definition: class.ilQueryParser.php:36
ilSoapRBACAdministration\revokePermissions
revokePermissions($sid, $ref_id, $role_id)
Definition: class.ilSoapRBACAdministration.php:172
$res
foreach($_POST as $key=> $value) $res
Definition: save_question_post_data.php:15
ilSoapAdministration\__raiseError
__raiseError($a_message, $a_code)
Definition: class.ilSoapAdministration.php:204
$ilUser
$ilUser
Definition: imgupload.php:18
$query
$query
Definition: proxy_ylocal.php:13
ilObjectFactory\getInstanceByObjId
static getInstanceByObjId($a_obj_id, $stop_on_error=true)
get an instance of an Ilias object by object id
Definition: class.ilObjectFactory.php:75
array
Create styles array
The data for the language used.
Definition: 40duplicateStyle.php:19
ilObject\_lookupType
static _lookupType($a_id, $a_reference=false)
lookup object type
Definition: class.ilObject.php:1204
ilSoapRBACAdministration\addRoleFromTemplate
addRoleFromTemplate($sid, $target_id, $role_xml, $template_id)
Definition: class.ilSoapRBACAdministration.php:387
ilObjectSearchFactory\_getObjectSearchInstance
static _getObjectSearchInstance($query_parser)
get reference of ilFulltext/LikeObjectSearch.
Definition: class.ilObjectSearchFactory.php:46
ilSoapAdministration\initAuth
initAuth($sid)
Init authentication.
Definition: class.ilSoapAdministration.php:175
$ilDB
global $ilDB
Definition: storeScorm2004.php:16
ilSoapRBACAdministration\deleteUserRoleEntry
deleteUserRoleEntry($sid, $user_id, $role_id)
Definition: class.ilSoapRBACAdministration.php:116
ilObjectFactory\getInstanceByRefId
static getInstanceByRefId($a_ref_id, $stop_on_error=true)
get an instance of an Ilias object by reference id
Definition: class.ilObjectFactory.php:141
QP_COMBINATION_AND
const QP_COMBINATION_AND
Definition: class.ilQueryParser.php:35
ilSoapRBACAdministration\getObjectTreeOperations
getObjectTreeOperations($sid, $ref_id, $user_id)
Definition: class.ilSoapRBACAdministration.php:464
ilUtil\__extractId
static __extractId($ilias_id, $inst_id)
extract ref id from role title, e.g.
Definition: class.ilUtil.php:4413
$key
$key
Definition: croninfo.php:18
$template_id
$template_id
Definition: logout-iframe.php:118