From: Stricted <info@stricted.de>
Date: Sun, 24 May 2015 14:03:37 +0000 (+0200)
Subject: add experimental permission system
X-Git-Url: https://git.stricted.de/?a=commitdiff_plain;h=894213c721978f521e59de63c2291097bca992f2;p=GitHub%2FStricted%2FDomain-Control-Panel.git

add experimental permission system
---

diff --git a/.gitattributes b/.gitattributes
index e208410..34848f3 100644
--- a/.gitattributes
+++ b/.gitattributes
@@ -2,3 +2,4 @@
 *.tpl text eol=lf
 *.js text eol=lf
 *.css text eol=lf
+*.sql text eol=lf
diff --git a/database.sql b/database.sql
index 55c17b7..3ab267c 100644
--- a/database.sql
+++ b/database.sql
@@ -79,12 +79,27 @@ CREATE TABLE IF NOT EXISTS dns_session (
 	sessionData TEXT
 ) ENGINE=InnoDB;
 
+CREATE TABLE IF NOT EXISTS dns_permissions (
+	permissionID INT(10) NOT NULL AUTO_INCREMENT PRIMARY KEY,
+	permission VARCHAR(255) NOT NULL,
+) ENGINE=InnoDB;
+
+CREATE TABLE IF NOT EXISTS dns_permissions_to_user (
+	id INT(10) NOT NULL AUTO_INCREMENT PRIMARY KEY,
+    userID INT(10) NOT NULL,
+	permissionID VARCHAR(255) NOT NULL,
+) ENGINE=InnoDB;
+
+
+
 ALTER TABLE dns_api ADD FOREIGN KEY (userID) REFERENCES dns_user (userID) ON DELETE CASCADE;
 ALTER TABLE dns_sec ADD FOREIGN KEY (zone) REFERENCES dns_soa (id) ON DELETE CASCADE;
 ALTER TABLE dns_rr ADD FOREIGN KEY (zone) REFERENCES dns_soa (id) ON DELETE CASCADE;
 ALTER TABLE dns_soa_to_user ADD FOREIGN KEY (userID) REFERENCES dns_user (userID) ON DELETE CASCADE;
 ALTER TABLE dns_soa_to_user ADD FOREIGN KEY (soaID) REFERENCES dns_soa (id) ON DELETE CASCADE;
 ALTER TABLE dns_template ADD FOREIGN KEY (userID) REFERENCES dns_user (userID) ON DELETE CASCADE;
+ALTER TABLE dns_permissions_to_user ADD FOREIGN KEY (userID) REFERENCES dns_user (userID) ON DELETE CASCADE;
+ALTER TABLE dns_permissions_to_user ADD FOREIGN KEY (permissionID) REFERENCES dns_permissions (id) ON DELETE CASCADE;
 
 INSERT INTO dns_options VALUES (1, 'dns_api_key', '0E2372C5-E5A3-424B-82E5-75AD723A9447');
 INSERT INTO dns_options VALUES (2, 'offline', '0');
diff --git a/lib/system/SessionHandler.class.php b/lib/system/SessionHandler.class.php
index 8404f1a..e47ec11 100644
--- a/lib/system/SessionHandler.class.php
+++ b/lib/system/SessionHandler.class.php
@@ -48,6 +48,30 @@ class SessionHandler {
 		}
 	}
 	
+	/**
+	 * Checks if the active user has the given permission
+	 *
+	 * @return	boolean
+	 */
+	public function checkPermission($permission) {
+		
+		/* get permissionID */
+		$sql = "SELECT * FROM dns_permissions where permission = ?";
+		$res = DNS::getDB()->query($sql, array($permission));
+		$data = DNS::getDB()->fetch_array($res);
+		
+		/* get permission from user */
+		$sql = "SELECT * FROM dns_permissions_to_user where userID = ? and permissionID = ?";
+		$res = DNS::getDB()->query($sql, array($this->userID, $data['id']));
+		$row = DNS::getDB()->fetch_array($res);
+		
+		if (isset($row['permission']) && $row['permission'] == $permission) {
+			return true;
+		}
+		
+		return false;
+	}
+	
 	/**
 	 * Provides access to session data.
 	 * 
@@ -72,6 +96,17 @@ class SessionHandler {
 		return null;
 	}
 	
+	/**
+	 * Unsets a session variable.
+	 * 
+	 * @param	string		$key
+	 */
+	public function unregister($key) {
+		if (isset($this->sessionData[$key])) {
+			unset($this->sessionData[$key]);
+		}
+	}
+	
 	/**
 	 * Registers a session variable.
 	 *