MISP/app/Controller/RolesController.php

<?php

App::uses('AppController', 'Controller');

/**
 * Roles Controller
 *
 * @property Role $Role
 */
class RolesController extends AppController {

	public $options = array('0' => 'Read Only', '1' => 'Manage My Own Events', '2' => 'Manage Organization Events', '3' => 'Manage &amp; Publish Organization Events');

	public $components = array(
		'Acl',
		'Auth' => array(
			'authorize' => array(
				'Actions' => array('actionPath' => 'controllers/Roles')
			)
		),
		'Security',
		'Session', 'AdminCrud' // => array('fields' => array('name'))
	);

	public $helpers = array('Js' => array('Jquery'));

	public $paginate = array(
			'limit' => 60,
			'order' => array(
					'Role.name' => 'ASC'
			)
	);

	public function beforeFilter() {
		parent::beforeFilter();
	}

/**
 * view method
 *
 * @param string $id
 * @return void
 */
	public function view($id = null) {
		$this->Role->id = $id;
		if (!$this->Role->exists()) {
			throw new NotFoundException(__('Invalid role'));
		}
		$this->set('role', $this->Role->read(null, $id));
	}

/**
 * admin_add method
 *
 * @return void
 */
	public function admin_add() {
		if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));
		$this->AdminCrud->adminAdd();
		$this->set('options', $this->options);
	}

/**
 * admin_index method
 *
 * @return void
 */
	public function admin_index() {
		if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));
		$this->AdminCrud->adminIndex();
		$this->set('options', $this->options);
	}

/**
 * admin_edit method
 *
 * @param string $id
 * @return void
 * @throws NotFoundException
 */
	public function admin_edit($id = null) {
		if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));
		$this->AdminCrud->adminEdit($id);
		$this->set('options', $this->options);
	}

/**
 * admin_delete method
 *
 * @param string $id
 *
 * @throws MethodNotAllowedException
 * @throws NotFoundException
 *
 * @return void
 */
	public function admin_delete($id = null) {
		$this->AdminCrud->adminDelete($id);
	}

/**
 * index method
 *
 * @return void
 */
	public function index() {
		$this->recursive = 0;
		$this->set('list', Sanitize::clean($this->paginate()));
		$this->set('options', $this->options);
	}
}
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`<?php`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`App::uses('AppController', 'Controller');`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`/**`
Role renamed everything group to role (i.s.o. renaming just the visable). 2012-12-12 16:15:01 +01:00			`* Roles Controller`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`*`
Role renamed everything group to role (i.s.o. renaming just the visable). 2012-12-12 16:15:01 +01:00			`* @property Role $Role`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`*/`
Role renamed everything group to role (i.s.o. renaming just the visable). 2012-12-12 16:15:01 +01:00			`class RolesController extends AppController {`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00
RBAC ampesant in html. 2013-01-22 15:46:39 +01:00			`public $options = array('0' => 'Read Only', '1' => 'Manage My Own Events', '2' => 'Manage Organization Events', '3' => 'Manage & Publish Organization Events');`
RBAC change the “Requested Level of User Access” items conform "draft of Terms-ofUse and Joining Instruction".‏ 2012-11-08 10:31:50 +01:00
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`public $components = array(`
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`'Acl',`
			`'Auth' => array(`
			`'authorize' => array(`
			`'Actions' => array('actionPath' => 'controllers/Roles')`
			`)`
			`),`
			`'Security',`
RBAC ampesant in html. 2013-01-22 15:46:39 +01:00			`'Session', 'AdminCrud' // => array('fields' => array('name'))`
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`);`
RBAC Forgot to call saveAcl in Groups::add(). (to correct wrong behavior, edit group, do not change any and button submit.) 2012-09-18 17:32:34 +02:00
Roles controller Jquery helper added For some reason I needed it 2013-01-22 16:15:32 +01:00			`public $helpers = array('Js' => array('Jquery'));`

coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`public $paginate = array(`
			`'limit' => 60,`
			`'order' => array(`
			`'Role.name' => 'ASC'`
			`)`
			`);`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`public function beforeFilter() {`
			`parent::beforeFilter();`
			`}`
RBAC Forgot to call saveAcl in Groups::add(). (to correct wrong behavior, edit group, do not change any and button submit.) 2012-09-18 17:32:34 +02:00
RBAC roles/view/<id>. 2013-01-22 16:12:36 +01:00			`/**`
			`* view method`
			`*`
			`* @param string $id`
			`* @return void`
			`*/`
			`public function view($id = null) {`
			`$this->Role->id = $id;`
			`if (!$this->Role->exists()) {`
			`throw new NotFoundException(__('Invalid role'));`
			`}`
			`$this->set('role', $this->Role->read(null, $id));`
			`}`

DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`/**`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`* admin_add method`
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`*`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`* @return void`
			`*/`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`public function admin_add() {`
Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them. 2013-01-28 11:44:09 +01:00			`if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`$this->AdminCrud->adminAdd();`
			`$this->set('options', $this->options);`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`}`
RBAC Forgot to call saveAcl in Groups::add(). (to correct wrong behavior, edit group, do not change any and button submit.) 2012-09-18 17:32:34 +02:00
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`/**`
			`* admin_index method`
			`*`
			`* @return void`
			`*/`
			`public function admin_index() {`
Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them. 2013-01-28 11:44:09 +01:00			`if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`$this->AdminCrud->adminIndex();`
RBAC change the “Requested Level of User Access” items conform "draft of Terms-ofUse and Joining Instruction".‏ 2012-11-08 10:31:50 +01:00			`$this->set('options', $this->options);`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`}`

			`/**`
			`* admin_edit method`
			`*`
			`* @param string $id`
			`* @return void`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`* @throws NotFoundException`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`*/`
			`public function admin_edit($id = null) {`
Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them. 2013-01-28 11:44:09 +01:00			`if($this->Auth->User['User']['org'] != 'ADMIN') $this->redirect(array('controller' => 'roles', 'action' => 'index', 'admin' => false));`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`$this->AdminCrud->adminEdit($id);`
RBAC change the “Requested Level of User Access” items conform "draft of Terms-ofUse and Joining Instruction".‏ 2012-11-08 10:31:50 +01:00			`$this->set('options', $this->options);`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`}`

			`/**`
			`* admin_delete method`
			`*`
Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them. 2013-01-28 11:44:09 +01:00			`* @param string $id`
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`*`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`* @throws MethodNotAllowedException`
coding standards Coding Standards. 2012-12-19 02:48:53 +01:00			`* @throws NotFoundException`
			`*`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`* @return void`
			`*/`
			`public function admin_delete($id = null) {`
AdminCrud use of the AdminCrud component. 2013-01-04 15:49:52 +01:00			`$this->AdminCrud->adminDelete($id);`
DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00			`}`
Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them. 2013-01-28 11:44:09 +01:00
			`/**`
			`* index method`
			`*`
			`* @return void`
			`*/`
			`public function index() {`
			`$this->recursive = 0;`
			`$this->set('list', Sanitize::clean($this->paginate()));`
			`$this->set('options', $this->options);`
			`}`
Roles controller Jquery helper added For some reason I needed it 2013-01-22 16:15:32 +01:00			`}`