mirror/Part-DB.Part-DB-server
1
0
Fork 1
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2025-06-21 09:35:49 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Added permission system, to control who can edit Twig labels.

Browse source
This commit is contained in:
Jan Böhmer 2020-05-07 22:29:45 +02:00
parent f1a6bc31a1
commit 1a35adab17
6 changed files with 41 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

5
config/permissions.yaml
View file

@ -482,6 +482,9 @@ perms: # Here comes a list with all Permission names (they have a perm_[name] co
label: "perm.self.delete_profiles" label: "perm.self.delete_profiles"
bit: 4 bit: 4
alsoSet: ['read_profiles', 'edit_profiles', 'create_profiles'] alsoSet: ['read_profiles', 'edit_profiles', 'create_profiles']
use_twig:
label: "perm.labels.use_twig"
bit: 12
alsoSet: ['create_labels', 'edit_options']

15
src/Controller/AdminPages/BaseAdminController.php
View file

@ -165,11 +165,22 @@ abstract class BaseAdminController extends AbstractController
$table = null; $table = null;
} }
$form = $this->createForm($this->form_class, $entity, [ $form_options = [
'attachment_class' => $this->attachment_class, 'attachment_class' => $this->attachment_class,
'parameter_class' => $this->parameter_class, 'parameter_class' => $this->parameter_class,
'disabled' => null !== $timeTravel_timestamp ? true : null, 'disabled' => null !== $timeTravel_timestamp ? true : null,
]); ];
//Disable editing of options, if user is not allowed to use twig...
if (
$entity instanceof LabelProfile
&& $entity->getOptions()->getLinesMode() === 'twig'
&& !$this->isGranted('@labels.use_twig')
) {
$form_options['disable_options'] = true;
}
$form = $this->createForm($this->form_class, $entity, $form_options);
$form->handleRequest($request); $form->handleRequest($request);
if ($form->isSubmitted() && $form->isValid()) { if ($form->isSubmitted() && $form->isValid()) {

7
src/Controller/LabelController.php
View file

@ -87,7 +87,12 @@ class LabelController extends AbstractController
$label_options = new LabelOptions(); $label_options = new LabelOptions();
} }
$form = $this->createForm(LabelDialogType::class); //We have to disable the options, if twig mode is selected and user is not allowed to use it.
$disable_options = $label_options->getLinesMode() === 'twig' && !$this->isGranted("@labels.use_twig");
$form = $this->createForm(LabelDialogType::class, null, [
'disable_options' => $disable_options,
]);
//Try to parse given target_type and target_id //Try to parse given target_type and target_id
$target_type = $request->query->get('target_type', null); $target_type = $request->query->get('target_type', null);

6
src/Form/AdminPages/LabelProfileAdminForm.php
View file

@ -40,12 +40,16 @@ class LabelProfileAdminForm extends BaseEntityAdminForm
'class' => 'checkbox-custom', 'class' => 'checkbox-custom',
], ],
]); ]);
$builder->add('options', LabelOptionsType::class); $builder->add('options', LabelOptionsType::class, [
'label' => false,
'disabled' => $options['disable_options'],
]);
} }
public function configureOptions(OptionsResolver $resolver): void public function configureOptions(OptionsResolver $resolver): void
{ {
parent::configureOptions($resolver); parent::configureOptions($resolver);
$resolver->setDefault('data_class', LabelProfile::class); $resolver->setDefault('data_class', LabelProfile::class);
$resolver->setDefault('disable_options', false);
} }
} }

11
src/Form/LabelOptionsType.php
View file

@ -29,9 +29,17 @@ use Symfony\Component\Form\Extension\Core\Type\NumberType;
use Symfony\Component\Form\Extension\Core\Type\TextareaType; use Symfony\Component\Form\Extension\Core\Type\TextareaType;
use Symfony\Component\Form\FormBuilderInterface; use Symfony\Component\Form\FormBuilderInterface;
use Symfony\Component\OptionsResolver\OptionsResolver; use Symfony\Component\OptionsResolver\OptionsResolver;
use Symfony\Component\Security\Core\Security;
class LabelOptionsType extends AbstractType class LabelOptionsType extends AbstractType
{ {
private $security;
public function __construct(Security $security)
{
$this->security = $security;
}
public function buildForm(FormBuilderInterface $builder, array $options) public function buildForm(FormBuilderInterface $builder, array $options)
{ {
$builder->add('width', NumberType::class, [ $builder->add('width', NumberType::class, [
@ -120,7 +128,8 @@ class LabelOptionsType extends AbstractType
], ],
'label_attr' => [ 'label_attr' => [
'class' => 'radio-custom radio-inline' 'class' => 'radio-custom radio-inline'
] ],
'disabled' => !$this->security->isGranted('@labels.use_twig')
]); ]);
} }

5
src/Form/LabelSystem/LabelDialogType.php
View file

@ -53,7 +53,7 @@ class LabelDialogType extends AbstractType
$builder->add('options', LabelOptionsType::class, [ $builder->add('options', LabelOptionsType::class, [
'label' => false, 'label' => false,
'disabled' => !$this->security->isGranted('@labels.edit_options'), 'disabled' => !$this->security->isGranted('@labels.edit_options') || $options['disable_options'],
]); ]);
$builder->add('update', SubmitType::class, [ $builder->add('update', SubmitType::class, [
@ -64,6 +64,7 @@ class LabelDialogType extends AbstractType
public function configureOptions(OptionsResolver $resolver) public function configureOptions(OptionsResolver $resolver)
{ {
parent::configureOptions($resolver); parent::configureOptions($resolver);
$resolver->setDefault('mapped', 'false'); $resolver->setDefault('mapped', false);
$resolver->setDefault('disable_options', false);
} }
} }