tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-27 15:54:03 +02:00
Code Issues Packages Projects Releases Wiki Activity

IniUserGroupBackend: Extend Repository and implement UserGroupBackendInterface

Browse Source 
Note that it was necessary to change the structure of ini files providing
the membership information. They need to be structured like our db
table rows now.

refs #8826
This commit is contained in:
Johannes Meyer 2015-05-05 15:24:18 +02:00
parent 5cc7f26728
commit 89029308ef
1 changed files with 60 additions and 37 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

97
library/Icinga/Authentication/UserGroup/IniUserGroupBackend.php
View File

@ -3,61 +3,84 @@
namespace Icinga\Authentication\UserGroup; namespace Icinga\Authentication\UserGroup;
use Icinga\Application\Config; use Icinga\Repository\Repository;
use Icinga\Exception\ConfigurationError;
use Icinga\User; use Icinga\User;
use Icinga\Util\String; use Icinga\Util\String;
/** class IniUserGroupBackend extends Repository implements UserGroupBackendInterface
* INI user group backend
*/
class IniUserGroupBackend extends UserGroupBackend
{ {
/** /**
* Config * The query columns being provided
* *
* @var Config * @var array
*/ */
private $config; protected $queryColumns = array(
'groups' => array(
'group' => 'name',
'group_name' => 'name',
'parent' => 'parent',
'parent_name' => 'parent',
'created_at' => 'ctime',
'last_modified' => 'mtime',
'users'
)
);
/** /**
* Create a new INI user group backend * The columns which are not permitted to be queried
* *
* @param Config $config * @var array
*/ */
public function __construct(Config $config) protected $filterColumns = array('group', 'parent');
{
$this->config = $config;
}
/** /**
* (non-PHPDoc) * The default sort rules to be applied on a query
* @see UserGroupBackend::getMemberships() For the method documentation. *
* @var array
*/
protected $sortRules = array(
'group_name' => array(
'columns' => array(
'group_name',
'parent_name'
)
)
);
/**
* Return the groups the given user is a member of
*
* @param User $user
*
* @return array
*/ */
public function getMemberships(User $user) public function getMemberships(User $user)
{ {
$username = strtolower($user->getUsername()); $result = $this->select()->fetchAll();
$groups = array(); $groups = array();
foreach ($this->config as $name => $section) { foreach ($result as $group) {
if (empty($section->users)) { if ($group->group_name) { // TODO: Can we set this somehow automatically to the section's name??
throw new ConfigurationError( $groups[$group->group_name] = $group->parent_name;
'Membership section \'%s\' in \'%s\' is missing the \'users\' section',
$name,
$this->config->getConfigFile()
);
}
if (empty($section->groups)) {
throw new ConfigurationError(
'Membership section \'%s\' in \'%s\' is missing the \'groups\' section',
$name,
$this->config->getConfigFile()
);
}
$users = array_map('strtolower', String::trimSplit($section->users));
if (in_array($username, $users)) {
$groups = array_merge($groups, array_diff(String::trimSplit($section->groups), $groups));
} }
} }
return $groups;
$username = strtolower($user->getUsername());
$memberships = array();
foreach ($result as $group) {
if ($group->group_name && $group->users) {
$users = array_map('strtolower', String::trimSplit($group->users));
if (! in_array($group->group_name, $memberships) && in_array($username, $users)) {
$memberships[] = $group->group_name;
$parent = $groups[$group->group_name];
while ($parent !== null) {
$memberships[] = $parent;
$parent = isset($groups[$parent]) ? $groups[$parent] : null;
}
}
}
}
return $memberships;
} }
} }