dd/d27/AdminNodesVisibilityRemovedObjective_8php_source.html

<?php


declare(strict_types=1);


namespace ILIAS\Administration\Setup;


use ILIAS\Setup\Environment;

use ilIniFilesLoadedObjective;

use ilDatabaseInitializedObjective;

use ilIniFile;

use ilDBInterface;

use ilAccessRBACOperationDeletedObjective;

use ILIAS\Setup\Objective;


class AdminNodesVisibilityRemovedObjective implements Objective

{

    private const int RBAC_OP_VISIBLE = 2;


    public function getHash(): string

    {

        return hash("sha256", self::class);

    }


    public function getLabel(): string

    {

        return "Remove visibility permissions from admin nodes";

    }


    public function isNotable(): bool

    {

        return true;

    }


    public function getPreconditions(Environment $environment): array

    {

        return [

            new ilIniFilesLoadedObjective(),

            new ilDatabaseInitializedObjective()

        ];

    }


    public function achieve(Environment $environment): Environment

    {

        foreach ($this->getTypesToChange($environment) as $type) {

            $objective = new ilAccessRBACOperationDeletedObjective($type, self::RBAC_OP_VISIBLE);

            $objective->achieve($environment);

        }

        return $environment;

    }


    public function isApplicable(Environment $environment): bool

    {

        return !empty($this->getTypesToChange($environment));

    }


    private function getTypesToChange(Environment $environment): array

    {

        $client_ini = $environment->getResource(Environment::RESOURCE_CLIENT_INI);

        $db = $environment->getResource(Environment::RESOURCE_DATABASE);


        $folder_id = (int) $client_ini->readVariable('system', 'SYSTEM_FOLDER_ID');

        if (!$folder_id) {

            return [];

        }


        // get all types of admin nodes where the visible permission is still defined

        // exclude the user folder which gets a special treatment in a separate objective

        // exclude org units to keep the info screen of subunits visible without read access

        $query = "

            SELECT d1.`type`

            FROM tree t

            JOIN object_reference r ON r.ref_id = t.child

            JOIN object_data d1 ON d1.obj_id = r.obj_id

            JOIN object_data d2 ON d2.`type` = 'typ' AND d2.title = d1.`type`

            JOIN rbac_ta a ON a.typ_id = d2.obj_id AND a.ops_id = %s

            WHERE t.parent = %s

            AND d1.`type` <> 'usrf'

            AND d1.`type` <> 'orgu'

            ORDER BY  d1.`type`

        ";


        $result = $db->queryF($query, ['integer', 'integer'], [self::RBAC_OP_VISIBLE, $folder_id]);


        $types = [];

        foreach ($db->fetchAll($result) as $row) {

            $types[] = (string) $row['type'];

        }

        return $types;

    }

}

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective
Definition: AdminNodesVisibilityRemovedObjective.php:32

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\RBAC_OP_VISIBLE
const int RBAC_OP_VISIBLE
Definition: AdminNodesVisibilityRemovedObjective.php:34

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\getTypesToChange
getTypesToChange(Environment $environment)
Get the types of admin nodes where the visible permission needs to be removed.
Definition: AdminNodesVisibilityRemovedObjective.php:77

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\getLabel
getLabel()
Get a label that describes this objective.
Definition: AdminNodesVisibilityRemovedObjective.php:41

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\isApplicable
isApplicable(Environment $environment)
Get to know whether the objective is applicable.
Definition: AdminNodesVisibilityRemovedObjective.php:68

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\getPreconditions
getPreconditions(Environment $environment)
Objectives might depend on other objectives.
Definition: AdminNodesVisibilityRemovedObjective.php:51

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\isNotable
isNotable()
Get to know if this is an interesting objective for a human.
Definition: AdminNodesVisibilityRemovedObjective.php:46

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\getHash
getHash()
Get a hash for this objective.
Definition: AdminNodesVisibilityRemovedObjective.php:36

ILIAS\Administration\Setup\AdminNodesVisibilityRemovedObjective\achieve
achieve(Environment $environment)
Objectives can be achieved.
Definition: AdminNodesVisibilityRemovedObjective.php:59

ILIAS\$db
$db
Definition: class.ilias.php:60

ilAccessRBACOperationDeletedObjective
Definition: class.ilAccessRBACOperationDeletedObjective.php:25

ilDatabaseInitializedObjective
Definition: class.ilDatabaseInitializedObjective.php:26

ilIniFile
INIFile Parser Early access in init proceess! Avoid further dependencies like logging or other servic...
Definition: class.ilIniFile.php:48

ilIniFilesLoadedObjective
Definition: class.ilIniFilesLoadedObjective.php:24

ILIAS\Setup\Environment
An environment holds resources to be used in the setup process.
Definition: Environment.php:28

ILIAS\Setup\Environment\getResource
getResource(string $id)
Consumers of this method should check if the result is what they expect, e.g.

ILIAS\Setup\Environment\RESOURCE_CLIENT_INI
const RESOURCE_CLIENT_INI
Definition: Environment.php:34

ILIAS\Setup\Environment\RESOURCE_DATABASE
const RESOURCE_DATABASE
Definition: Environment.php:31

ILIAS\Setup\Objective
An objective is a desired state of the system that is supposed to be created by the setup.
Definition: Objective.php:31

ilDBInterface
Interface ilDBInterface.
Definition: interface.ilDBInterface.php:30

ILIAS\Administration\Setup
Definition: AdminNodesVisibilityRemovedObjective.php:21

ILIAS\Repository\int
int(string $key)
Definition: trait.BaseGUIRequest.php:61

ILIAS\Setup\Objective
Definition: AdminConfirmedObjective.php:21