mirror of https://github.com/MISP/MISP
177 lines
6.9 KiB
PHP
177 lines
6.9 KiB
PHP
<?php
|
|
|
|
App::uses('AppController', 'Controller');
|
|
|
|
/**
|
|
* Roles Controller
|
|
*
|
|
* @property Role $Role
|
|
*/
|
|
class RolesController extends AppController
|
|
{
|
|
public $components = array(
|
|
'Security',
|
|
'Session',
|
|
'RequestHandler'
|
|
);
|
|
|
|
public $helpers = array('Js' => array('Jquery'));
|
|
|
|
public $paginate = array(
|
|
'limit' => 60,
|
|
'order' => array(
|
|
'Role.name' => 'ASC'
|
|
)
|
|
);
|
|
|
|
public function view($id=false)
|
|
{
|
|
$this->CRUD->view($id);
|
|
if ($this->IndexFilter->isRest()) {
|
|
return $this->restResponsePayload;
|
|
}
|
|
$this->set('permissionLevelName', $this->Role->premissionLevelName);
|
|
$this->set('permFlags', $this->Role->permFlags);
|
|
$this->set('menuData', ['menuList' => 'globalActions', 'menuItem' => 'roles']);
|
|
}
|
|
|
|
public function admin_add()
|
|
{
|
|
$params = ['redirect' => ['action' => 'index', 'admin' => false]];
|
|
$this->CRUD->add($params);
|
|
if ($this->restResponsePayload) {
|
|
return $this->restResponsePayload;
|
|
}
|
|
$this->set('permFlags', $this->Role->permFlags);
|
|
$dropdownData = [
|
|
'options' => $this->Role->premissionLevelName,
|
|
];
|
|
$this->set(compact('dropdownData'));
|
|
$this->set('menuData', array('menuList' => 'admin', 'menuItem' => 'addRole'));
|
|
}
|
|
|
|
public function admin_edit($id = null)
|
|
{
|
|
$this->Role->id = $id;
|
|
if (!$this->Role->exists() && !$this->request->is('get')) {
|
|
throw new NotFoundException(__('Invalid Role'));
|
|
}
|
|
if ($this->request->is('post') || $this->request->is('put')) {
|
|
if (!isset($this->request->data['Role'])) {
|
|
$this->request->data = array('Role' => $this->request->data);
|
|
}
|
|
$this->request->data['Role']['id'] = $id;
|
|
if ($this->Role->save($this->request->data)) {
|
|
if ($this->_isRest()) {
|
|
$role = $this->Role->find('first', array(
|
|
'recursive' => -1,
|
|
'conditions' => array('Role.id' => $this->Role->id)
|
|
));
|
|
return $this->RestResponse->viewData($role, $this->response->type());
|
|
} else {
|
|
$this->Flash->success(__('The Role has been saved'));
|
|
$this->redirect(array('action' => 'index', 'admin' => false));
|
|
}
|
|
} else {
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->saveFailResponse('Role', 'admin_edit', false, $this->Role->validationErrors, $this->response->type());
|
|
} else {
|
|
if (!($this->Session->check('Message.flash'))) {
|
|
$this->Role->Session->setFlash(__('The Role could not be saved. Please, try again.'));
|
|
}
|
|
}
|
|
}
|
|
} else {
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->describe('Roles', 'admin_edit', false, $this->response->type());
|
|
}
|
|
$this->request->data['Role']['id'] = $id;
|
|
$this->request->data = $this->Role->read(null, $id);
|
|
}
|
|
$this->set('options', $this->Role->premissionLevelName);
|
|
$this->set('permFlags', $this->Role->permFlags);
|
|
$this->set('id', $id);
|
|
}
|
|
|
|
public function admin_delete($id = null)
|
|
{
|
|
$this->CRUD->delete($id, [
|
|
'validate' => function (array $role) {
|
|
$usersWithRole = $this->User->find('count', [
|
|
'conditions' => ['role_id' => $role['Role']['id']],
|
|
'recursive' => -1,
|
|
]);
|
|
if ($usersWithRole) {
|
|
throw new Exception(__("It is not possible to delete role that is assigned to users."));
|
|
}
|
|
}
|
|
]);
|
|
if ($this->IndexFilter->isRest()) {
|
|
return $this->restResponsePayload;
|
|
}
|
|
}
|
|
|
|
public function index()
|
|
{
|
|
$params = [
|
|
'filters' => ['name'],
|
|
'quickFilters' => ['name'],
|
|
'afterFind' => function($elements) {
|
|
$this->loadModel('AdminSetting');
|
|
$default_setting = $this->AdminSetting->getSetting('default_role');
|
|
foreach ($elements as &$role) {
|
|
$role['Role']['default'] = $role['Role']['id'] == $default_setting;
|
|
}
|
|
return $elements;
|
|
}
|
|
];
|
|
$this->CRUD->index($params);
|
|
if ($this->IndexFilter->isRest()) {
|
|
return $this->restResponsePayload;
|
|
}
|
|
$this->set('options', $this->Role->premissionLevelName);
|
|
$this->set('permFlags', $this->Role->permFlags);
|
|
$this->set('menuData', $this->_isAdmin() ?
|
|
['menuList' => 'admin', 'menuItem' => 'indexRole'] :
|
|
['menuList' => 'globalActions', 'menuItem' => 'roles']
|
|
);
|
|
}
|
|
|
|
public function admin_set_default($role_id = false)
|
|
{
|
|
if ($this->request->is('post')) {
|
|
$this->Role->id = $role_id;
|
|
if ((!is_numeric($role_id) && $role_id !== false) || !$this->Role->exists()) {
|
|
$message = 'Invalid Role.';
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->saveFailResponse('Roles', 'admin_set_default', $role_id, $message, $this->response->type());
|
|
} else {
|
|
return new CakeResponse(array('body'=> json_encode(array('saved' => false, 'errors' => $message)), 'status'=>200, 'type' => 'json'));
|
|
}
|
|
}
|
|
$this->loadModel('AdminSetting');
|
|
$result = $this->AdminSetting->changeSetting('default_role', $role_id);
|
|
if ($result === true) {
|
|
$message = $role_id ? __('Default role set.') : __('Default role unset.');
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->saveSuccessResponse('Roles', 'admin_set_default', $role_id, $this->response->type(), $message);
|
|
} else {
|
|
return new CakeResponse(array('body'=> json_encode(array('saved' => true, 'success' => $message)), 'status'=>200, 'type' => 'json'));
|
|
}
|
|
} else {
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->saveFailResponse('Roles', 'admin_set_default', $role_id, $result, $this->response->type());
|
|
} else {
|
|
return new CakeResponse(array('body'=> json_encode(array('saved' => false, 'errors' => $result)), 'status'=>200, 'type' => 'json'));
|
|
}
|
|
}
|
|
} else {
|
|
if ($this->_isRest()) {
|
|
return $this->RestResponse->saveFailResponse('Role', 'admin_set_default', false, __('This endpoint expects a POST request.'), $this->response->type());
|
|
} else {
|
|
$this->layout = false;
|
|
}
|
|
}
|
|
}
|
|
}
|