[platal.git] / plugins / pmwiki.platalAuth.php

<?php

$AuthFunction = 'AuthPlatal';

$Conditions['logged']      = logged();
$Conditions['identified']  = identified();
$Conditions['has_perms']   = has_perms();
$Conditions['public']      = 'true';
$Conditions['only_public'] = !identified();

function authPerms($pagename, $key, $could=false)
{
    $words = explode(' ', $key);
    $auth  = false;
    $and   = false;
    foreach ($words as $word) {
        $iauth = false;
        if ($word == 'and:') {
            $and = true;
            continue;
        }
        $parts = explode(':', $word);
        $cond = $parts[0];
        $param = $parts[1];
        if ($cond == 'identified' && $could) {
            $cond = 'logged';
        }
        $iauth = CondText($pagename, 'if '.$cond.' '.$param, true);
        if ($and) {
            $auth &= $iauth;
        } else {
            $auth |= $iauth;
        }
        $and = false;
    }
    return $auth;
}

function TryAllAuths($pagename, $level, $page_read, $group_read)
{
    global $DefaultPasswords;
    if (isset($page_read['passwd'.$level]) && $page_read['passwd'.$level] != '*') {
        return array('page', $page_read['passwd'.$level]);
    }
    if (isset($group_read['passwd'.$level]) && $group_read['passwd'.$level] != '*') {
        return array('group', $group_read['passwd'.$level]);
    }
    if (isset($DefaultPasswords[$level])) {
        return array('site', $DefaultPasswords[$level]);
    }
    return array('none', '');
}

function AuthPlatal($pagename, $level, $authprompt, $since)
{
    global $Conditions;
    $authUser = false;
    $authPage = false;

    $page_read  = ReadPage($pagename, $since);
    $groupattr  = FmtPageName('$Group/GroupAttributes', $pagename);
    $group_read = ReadPage($groupattr, $since);

    $levels = array('read', 'attr', 'edit', 'upload');

    foreach ($levels as $l)
    {
        list($from, $pass) = TryAllAuths($pagename, $l, $page_read, $group_read);
        $passwds[$l] = $pass;
        $pwsources[$l] = $from;
    }

    if (!isset($Conditions['canedit'])) {
        $Conditions['canedit'] = authPerms($pagename, $passwds['edit'], true);
    }
    if (!isset($Conditions['canattr'])) {
        $Conditions['canattr'] = authPerms($pagename, $passwds['attr'], true);
    }

    if (authPerms($pagename, $passwds[$level]))
    {
        $page_read['=passwd'] = $passwds;
        $page_read['=pwsource'] = $pwsources;
        return $page_read;
    }

    if ($authprompt && !identified())
    {
        new_skinned_page('wiki.tpl', AUTH_MDP); 
    }

    global $page;
    new_skinned_page('', AUTH_MDP); 
    if (has_perms()) {
        $page->trig('Erreur : page Wiki inutilisable sur plat/al');
    } else {
        $page->trig("Tu n'as pas le droit d'acc�der � ce service");
    }
    // don't return false or pmwiki will send an exit breaking smarty page
    return 1;
}

?>
Commit	Line	Data
121cdae0	1	<?php
121cdae0	2
6f8f3f52	3	$AuthFunction = 'AuthPlatal';
121cdae0	4
6f8f3f52	5	$Conditions['logged'] = logged();
	6	$Conditions['identified'] = identified();
	7	$Conditions['has_perms'] = has_perms();
	8	$Conditions['public'] = 'true';
	9	$Conditions['only_public'] = !identified();
	10
	11	function authPerms($pagename, $key, $could=false)
121cdae0	12	{
fd5c9770	13	$words = explode(' ', $key);
	14	$auth = false;
	15	$and = false;
	16	foreach ($words as $word) {
	17	$iauth = false;
	18	if ($word == 'and:') {
	19	$and = true;
	20	continue;
	21	}
	22	$parts = explode(':', $word);
	23	$cond = $parts[0];
	24	$param = $parts[1];
6f8f3f52	25	if ($cond == 'identified' && $could) {
6f8f3f52	26	$cond = 'logged';
fd5c9770	27	}
6f8f3f52	28	$iauth = CondText($pagename, 'if '.$cond.' '.$param, true);
fd5c9770	29	if ($and) {
	30	$auth &= $iauth;
	31	} else {
	32	$auth \|= $iauth;
	33	}
	34	$and = false;
	35	}
	36	return $auth;
121cdae0	37	}
121cdae0	38
d0adba41	39	function TryAllAuths($pagename, $level, $page_read, $group_read)
121cdae0	40	{
fd5c9770	41	global $DefaultPasswords;
	42	if (isset($page_read['passwd'.$level]) && $page_read['passwd'.$level] != '*') {
	43	return array('page', $page_read['passwd'.$level]);
	44	}
	45	if (isset($group_read['passwd'.$level]) && $group_read['passwd'.$level] != '*') {
	46	return array('group', $group_read['passwd'.$level]);
	47	}
	48	if (isset($DefaultPasswords[$level])) {
	49	return array('site', $DefaultPasswords[$level]);
	50	}
	51	return array('none', '');
121cdae0	52	}
	53
	54	function AuthPlatal($pagename, $level, $authprompt, $since)
	55	{
fd5c9770	56	global $Conditions;
	57	$authUser = false;
	58	$authPage = false;
121cdae0	59
fd5c9770	60	$page_read = ReadPage($pagename, $since);
	61	$groupattr = FmtPageName('$Group/GroupAttributes', $pagename);
	62	$group_read = ReadPage($groupattr, $since);
121cdae0	63
fd5c9770	64	$levels = array('read', 'attr', 'edit', 'upload');
d0adba41	65
fd5c9770	66	foreach ($levels as $l)
	67	{
	68	list($from, $pass) = TryAllAuths($pagename, $l, $page_read, $group_read);
	69	$passwds[$l] = $pass;
	70	$pwsources[$l] = $from;
	71	}
121cdae0	72
fd5c9770	73	if (!isset($Conditions['canedit'])) {
	74	$Conditions['canedit'] = authPerms($pagename, $passwds['edit'], true);
	75	}
	76	if (!isset($Conditions['canattr'])) {
	77	$Conditions['canattr'] = authPerms($pagename, $passwds['attr'], true);
	78	}
121cdae0	79
fd5c9770	80	if (authPerms($pagename, $passwds[$level]))
	81	{
	82	$page_read['=passwd'] = $passwds;
	83	$page_read['=pwsource'] = $pwsources;
	84	return $page_read;
	85	}
	86
	87	if ($authprompt && !identified())
	88	{
	89	new_skinned_page('wiki.tpl', AUTH_MDP);
	90	}
	91
	92	global $page;
	93	new_skinned_page('', AUTH_MDP);
	94	if (has_perms()) {
6f8f3f52	95	$page->trig('Erreur : page Wiki inutilisable sur plat/al');
fd5c9770	96	} else {
	97	$page->trig("Tu n'as pas le droit d'acc�der � ce service");
	98	}
	99	// don't return false or pmwiki will send an exit breaking smarty page
	100	return 1;
121cdae0	101	}
121cdae0	102
fd5c9770	103	?>