MISP/app/Model/TagCollection.php

<?php

App::uses('AppModel', 'Model');

class TagCollection extends AppModel
{
    public $useTable = 'tag_collections';

    public $displayField = 'name';

    public $actsAs = array(
            'Trim',
            'SysLogLogable.SysLogLogable' => array(
                    'roleModel' => 'Role',
                    'roleKey' => 'role_id',
                    'change' => 'full'
            ),
            'Containable'
    );

    public $hasMany = array(
        'TagCollectionTag' => array(
            'dependent' => true
        )
    );

    public $belongsTo = array(
        'User',
        'Organisation' => array(
            'foreignKey' => 'org_id'
        )
    );

    public $whitelistedItems = false;

    public $validate = array(
        'name' => array(
            'valueNotEmpty' => array(
                'rule' => array('valueNotEmpty'),
            ),
            'unique' => array(
                    'rule' => 'isUnique',
                    'message' => 'A similar name already exists.',
            ),
        )
    );

    public function beforeValidate($options = array())
    {
        parent::beforeValidate();
        // generate UUID if it doesn't exist
        if (empty($this->data['TagCollection']['uuid'])) {
            $this->data['TagCollection']['uuid'] = CakeText::uuid();
        }
        return true;
    }

    public function fetchTagCollection($user, $params = array())
    {
        if (empty($user['Role']['perm_site_admin'])) {
            $params['conditions']['AND'][] = array(
                'OR' => array(
                    'TagCollection.org_id' => $user['org_id'],
                    'TagCollection.all_orgs' => 1
                )
            );
        }
        if (empty($params['contain'])) {
            $params['contain'] = array(
                'Organisation',
                'User',
                'TagCollectionTag' => array('Tag')
            );
        }
        $tagCollections = $this->find('all', $params);
        $tagCollections = $this->cullBlockedTags($user, $tagCollections);
        return $tagCollections;
    }

    public function checkAccess($user, $tagCollection, $accessLevel = 'read')
    {
        if (isset($tagCollection['TagCollection'])) {
            $tagCollection = $tagCollection['TagCollection'];
        }
        if (!empty($user['Role']['admin'])) {
            return true;
        }
        if (!$tagCollection['all_orgs'] && $user['org_id'] != $tagCollection['org_id']) {
            return false;
        }
        if ($accessLevel === 'write') {
            if ($tagCollection['org_id'] !== $user['org_id']) {
                return false;
            }
        }
        return true;
    }

    public function cullBlockedTags($user, $tagCollections)
    {
        $single = false;
        if (!isset($tagCollections[0])) {
            $tagCollections = array(0 => $tagCollections);
            $single = true;
        }
        if (empty($user['Role']['perm_site_admin'])) {
            foreach ($tagCollections as $k => $tagCollection) {
                foreach ($tagCollection['TagCollectionTag'] as $k2 => $tagCollectionTag) {
                    if (
                        (!empty($tagCollectionTag['Tag']['org_id']) && $tagCollectionTag['Tag']['org_id'] != $user['org_id']) ||
                        (!empty($tagCollectionTag['Tag']['user_id']) && $tagCollectionTag['Tag']['user_id'] != $user['id']) ||
                        $tagCollectionTag['Tag']['hide_tag']
                    ) {
                        unset($tagCollections[$k]['TagCollectionTag'][$k2]);
                    }
                }
                $tagCollections[$k]['TagCollectionTag'] = array_values($tagCollections[$k]['TagCollectionTag']);
            }
        }
        return $single ? $tagCollections[0] : $tagCollections;
    }
}
new: [Tag collections] Added boilerplate models 2018-12-14 20:25:38 +01:00			`<?php`

			`App::uses('AppModel', 'Model');`

			`class TagCollection extends AppModel`
			`{`
			`public $useTable = 'tag_collections';`

			`public $displayField = 'name';`

			`public $actsAs = array(`
			`'Trim',`
			`'SysLogLogable.SysLogLogable' => array(`
			`'roleModel' => 'Role',`
			`'roleKey' => 'role_id',`
			`'change' => 'full'`
new: [WIP] tag collections WIP 2018-12-20 21:48:04 +01:00			`),`
			`'Containable'`
			`);`

			`public $hasMany = array(`
chg: [tag collection tag] Renamed Model references in the codebase 2018-12-26 23:48:49 +01:00			`'TagCollectionTag' => array(`
new: [WIP] tag collections WIP 2018-12-20 21:48:04 +01:00			`'dependent' => true`
			`)`
new: [Tag collections] Added boilerplate models 2018-12-14 20:25:38 +01:00			`);`

new: [tag collections] First feature complete minimal version of the tag collection system 2019-01-01 16:38:57 +01:00			`public $belongsTo = array(`
			`'User',`
			`'Organisation' => array(`
			`'foreignKey' => 'org_id'`
			`)`
			`);`

new: [Tag collections] Added boilerplate models 2018-12-14 20:25:38 +01:00			`public $whitelistedItems = false;`

			`public $validate = array(`
			`'name' => array(`
			`'valueNotEmpty' => array(`
			`'rule' => array('valueNotEmpty'),`
			`),`
			`'unique' => array(`
			`'rule' => 'isUnique',`
			`'message' => 'A similar name already exists.',`
			`),`
			`)`
			`);`
new: [WIP] tag collections WIP 2018-12-20 21:48:04 +01:00
			`public function beforeValidate($options = array())`
			`{`
			`parent::beforeValidate();`
			`// generate UUID if it doesn't exist`
			`if (empty($this->data['TagCollection']['uuid'])) {`
			`$this->data['TagCollection']['uuid'] = CakeText::uuid();`
			`}`
			`return true;`
			`}`
chg: [tag collection tag] Renamed Model references in the codebase 2018-12-26 23:48:49 +01:00
			`public function fetchTagCollection($user, $params = array())`
			`{`
new: [tag collections] First feature complete minimal version of the tag collection system 2019-01-01 16:38:57 +01:00			`if (empty($user['Role']['perm_site_admin'])) {`
			`$params['conditions']['AND'][] = array(`
			`'OR' => array(`
			`'TagCollection.org_id' => $user['org_id'],`
			`'TagCollection.all_orgs' => 1`
			`)`
			`);`
			`}`
			`if (empty($params['contain'])) {`
			`$params['contain'] = array(`
			`'Organisation',`
			`'User',`
			`'TagCollectionTag' => array('Tag')`
			`);`
			`}`
			`$tagCollections = $this->find('all', $params);`
			`$tagCollections = $this->cullBlockedTags($user, $tagCollections);`
			`return $tagCollections;`
			`}`

			`public function checkAccess($user, $tagCollection, $accessLevel = 'read')`
			`{`
			`if (isset($tagCollection['TagCollection'])) {`
			`$tagCollection = $tagCollection['TagCollection'];`
			`}`
			`if (!empty($user['Role']['admin'])) {`
			`return true;`
			`}`
			`if (!$tagCollection['all_orgs'] && $user['org_id'] != $tagCollection['org_id']) {`
			`return false;`
			`}`
			`if ($accessLevel === 'write') {`
			`if ($tagCollection['org_id'] !== $user['org_id']) {`
			`return false;`
			`}`
			`}`
			`return true;`
			`}`

			`public function cullBlockedTags($user, $tagCollections)`
			`{`
			`$single = false;`
			`if (!isset($tagCollections[0])) {`
			`$tagCollections = array(0 => $tagCollections);`
			`$single = true;`
			`}`
			`if (empty($user['Role']['perm_site_admin'])) {`
			`foreach ($tagCollections as $k => $tagCollection) {`
			`foreach ($tagCollection['TagCollectionTag'] as $k2 => $tagCollectionTag) {`
			`if (`
			`(!empty($tagCollectionTag['Tag']['org_id']) && $tagCollectionTag['Tag']['org_id'] != $user['org_id']) \|\|`
			`(!empty($tagCollectionTag['Tag']['user_id']) && $tagCollectionTag['Tag']['user_id'] != $user['id']) \|\|`
			`$tagCollectionTag['Tag']['hide_tag']`
			`) {`
			`unset($tagCollections[$k]['TagCollectionTag'][$k2]);`
			`}`
			`}`
			`$tagCollections[$k]['TagCollectionTag'] = array_values($tagCollections[$k]['TagCollectionTag']);`
			`}`
			`}`
			`return $single ? $tagCollections[0] : $tagCollections;`
chg: [tag collection tag] Renamed Model references in the codebase 2018-12-26 23:48:49 +01:00			`}`
new: [Tag collections] Added boilerplate models 2018-12-14 20:25:38 +01:00			`}`