mirror of
https://github.com/alchemy-fr/Phraseanet.git
synced 2025-10-11 03:53:13 +00:00
a70bf2fc70
* PHRAS-1304_AUTO-COMPLETION_MASTER ported from 4.0 * PHRAS-1304_AUTO-COMPLETION_MASTER fix * PHRAS-1304_AUTO-COMPLETION_MASTER fix * PHRAS-1304_AUTO-COMPLETION_MASTER bump php version to 5.5.31 (5.5.21 is obsolete in cicleci) * PHRAS-1304_AUTO-COMPLETION_MASTER bump php version to 5.5.31 : php.ini moved in circelci * PHRAS-1304_AUTO-COMPLETION_MASTER add zmq & date to php for circleci * PHRAS-1304_AUTO-COMPLETION_MASTER add zmq * PHRAS-1304_AUTO-COMPLETION_MASTER bump amqp * PHRAS-1304_AUTO-COMPLETION_MASTER downgrade amqp to 1.2 to test compilation against old librabbit 0.4 (ubuntu) * PHRAS-1304_AUTO-COMPLETION_MASTER add amqp.so to php.ini, (re)bump amqp to 1.6 * PHRAS-1304_AUTO-COMPLETION_MASTER build rabittmq from git * PHRAS-1304_AUTO-COMPLETION_MASTER build rabittmq from git again * PHRAS-1304_AUTO-COMPLETION_MASTER build rabittmq from git again and again * PHRAS-1304_AUTO-COMPLETION_MASTER fix test on media rotation 600*400 -> 400*599 !!! * PHRAS-1304_AUTO-COMPLETION_MASTER restore facebook sdk to 4.0.1 due to mistake * PHRAS-1304_AUTO-COMPLETION_MASTER deleted unwanted file
147 lines
3.8 KiB
PHP
147 lines
3.8 KiB
PHP
<?php
|
|
/**
|
|
* This file is part of Phraseanet
|
|
*
|
|
* (c) 2005-2016 Alchemy
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Alchemy\Phrasea\SearchEngine\Elastic\Structure;
|
|
|
|
use Alchemy\Phrasea\SearchEngine\SearchEngineOptions;
|
|
|
|
/**
|
|
* Proxy structure request to underlying structure and filter results according
|
|
* to user rights (handled in search options object).
|
|
*
|
|
* Private fields without access allowed in any collection are implicitely
|
|
* removed from structure responses.
|
|
*
|
|
* @todo Strip unrestricted fields used only by disallowed collections.
|
|
*/
|
|
final class LimitedStructure implements Structure
|
|
{
|
|
private $structure;
|
|
private $search_options;
|
|
|
|
public function __construct(Structure $structure, SearchEngineOptions $search_options)
|
|
{
|
|
$this->structure = $structure;
|
|
$this->search_options = $search_options;
|
|
}
|
|
|
|
public function getAllFields()
|
|
{
|
|
return $this->limit($this->structure->getAllFields());
|
|
}
|
|
|
|
public function getUnrestrictedFields()
|
|
{
|
|
return $this->structure->getUnrestrictedFields();
|
|
}
|
|
|
|
public function getPrivateFields()
|
|
{
|
|
return $this->limit($this->structure->getPrivateFields());
|
|
}
|
|
|
|
/**
|
|
* @return Field[]
|
|
*/
|
|
public function getFacetFields()
|
|
{
|
|
return $this->limit($this->structure->getFacetFields());
|
|
}
|
|
|
|
public function getThesaurusEnabledFields()
|
|
{
|
|
return $this->limit($this->structure->getThesaurusEnabledFields());
|
|
}
|
|
|
|
public function getDateFields()
|
|
{
|
|
return $this->limit($this->structure->getDateFields());
|
|
}
|
|
|
|
public function get($name)
|
|
{
|
|
$field = $this->structure->get($name);
|
|
return $field ? $this->limitField($field) : $field;
|
|
}
|
|
|
|
public function typeOf($name)
|
|
{
|
|
return $this->structure->typeOf($name);
|
|
}
|
|
|
|
public function isPrivate($name)
|
|
{
|
|
return $this->structure->isPrivate($name);
|
|
}
|
|
|
|
public function getAllFlags()
|
|
{
|
|
return $this->structure->getAllFlags();
|
|
}
|
|
|
|
public function getFlagByName($name)
|
|
{
|
|
return $this->structure->getFlagByName($name);
|
|
}
|
|
|
|
public function getMetadataTags()
|
|
{
|
|
return $this->structure->getMetadataTags();
|
|
}
|
|
|
|
public function getMetadataTagByName($name)
|
|
{
|
|
return $this->structure->getMetadataTagByName($name);
|
|
}
|
|
|
|
private function limit(array $fields)
|
|
{
|
|
$allowed_collections = $this->allowedCollections();
|
|
// Filter private field collections (base_id) on which access is restricted.
|
|
$limited_fields = [];
|
|
foreach ($fields as $name => $field) {
|
|
if ($field->isPrivate()) {
|
|
$field = $this->limitField($field, $allowed_collections);
|
|
// Private fields without collections can't be ever visible, we skip them
|
|
if (!$field->getDependantCollections()) {
|
|
continue;
|
|
}
|
|
}
|
|
$limited_fields[$name] = $field;
|
|
}
|
|
return $limited_fields;
|
|
}
|
|
|
|
private function limitField(Field $field, array $allowed_collections = null)
|
|
{
|
|
if ($allowed_collections === null) {
|
|
$allowed_collections = $this->allowedCollections();
|
|
}
|
|
|
|
$collections = array_values(array_intersect(
|
|
$field->getDependantCollections(),
|
|
$allowed_collections
|
|
));
|
|
|
|
return $field->withOptions([
|
|
'used_by_collections' => $collections
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @return int[] // base_id's
|
|
*/
|
|
private function allowedCollections()
|
|
{
|
|
// Get all collections (base_id) with allowed private field access (user rights are computed in options object)
|
|
return $this->search_options->getBusinessFieldsOn();
|
|
}
|
|
}
|