3 $AuthFunction = 'AuthPlatal';
5 $Conditions['logged'] = S
::logged();
6 $Conditions['identified'] = S
::identified();
7 $Conditions['has_perms'] = S
::has_perms();
8 $Conditions['public'] = 'true';
10 $HandleAuth['diff'] = 'edit';
11 $HandleAuth['source'] = 'edit';
13 $InputTags['e_textarea'][':html'] = "<textarea \$InputFormArgs
14 onkeydown='if (event.keyCode==27) event.returnValue=false;'
15 >{literal}\$EditText{/literal}</textarea>";
17 // impossible to see the diff without the source because of the smarty tags
18 $DiffShow['source'] = 'y';
21 $DiffStartFmt = "{literal}<div class='diffbox'><div class='difftime'>\$DiffTime \$[by] <span class='diffauthor' title='\$DiffHost'>\$DiffAuthor</span></div>";
22 $DiffEndFmt = "</div>{/literal}";
24 // compute permissions based on the permission string (key)
25 // if could is true, compute permission that could be enabled with a mdp
26 // if smarty is true, return a string to insert in a smarty if tag
27 // otherwise return true or false
28 function authPerms($pagename, $key, $could=false
, $smarty=false
)
30 $words = explode(' ', $key);
31 $auth = $smarty?
"":false
;
33 foreach ($words as $word) {
34 if (strpos($word, '@') === 0) $word = substr($word,1);
36 if ($word == 'and:') {
40 $parts = explode(':', $word);
43 if ($cond == 'identified' && $could) {
47 $iauth = '$'.$cond.($param?
(' eq "'.$param.'"'):'');
49 if (strpos($cond, "smarty.") === 0) {
50 $vars = explode('.', $cond);
54 case 'session':$iauth = S
::v($vars[2]) == $param; break;
55 case 'request':$iauth = Env
::get($vars[2]) == $param; break;
58 else $iauth = CondText($pagename, 'if '.$cond.' '.$param, true
);
63 $auth = ($auth?
"($auth) and ":"").$iauth;
68 $auth = ($auth?
"($auth) or ":"").$iauth;
77 // try to find the best permission for a given page and a given level of auth
78 // in order: page > group > site
79 function TryAllAuths($pagename, $level, $page_read, $group_read)
81 global $DefaultPasswords;
82 if (isset($page_read['passwd'.$level]) && $page_read['passwd'.$level] != '*') {
83 return array('page', $page_read['passwd'.$level]);
85 if (isset($group_read['passwd'.$level]) && $group_read['passwd'.$level] != '*') {
86 return array('group', $group_read['passwd'.$level]);
88 if (isset($DefaultPasswords[$level])) {
89 return array('site', $DefaultPasswords[$level]);
91 return array('none', '');
94 function auth_pmwiki_to_smarty($text, $pass)
96 $ifc = authPerms("", $pass, false
, true
);
99 return "{if $ifc}\n".$text."\n{else}(:div class='erreur':Droits insuffisants.:){/if}";
102 // for read pages: will come only once so we have to be careful
103 // and translate any auth from the wiki to smarty auth
104 function AuthPlatal($pagename, $level, $authprompt)
106 global $Conditions, $page;
110 $page_read = ReadPage($pagename);
111 $groupattr = FmtPageName('$Group/GroupAttributes', $pagename);
112 $group_read = ReadPage($groupattr);
114 $levels = array('read', 'attr', 'edit', 'upload');
116 foreach ($levels as $l) {
117 list($from, $pass) = TryAllAuths($pagename, $l, $page_read, $group_read);
118 $passwds[$l] = $pass;
119 $pwsources[$l] = $from;
122 $canedit = authPerms($pagename, $passwds['edit'], true
, true
);
123 $canattr = authPerms($pagename, $passwds['attr'], true
, true
);
124 $panel = "{if ($canedit) or ($canattr)}\n";
125 $panel .= ">>frame<<\n";
126 $panel .= "[[{\$FullName} |Voir la page]]\\\\\n";
127 $panel .= "{if ($canedit)}\n";
128 $panel .= "[[{\$FullName}?action=edit |Editer]]\\\\\n";
129 $panel .= "[[{\$FullName}?action=diff |Historique]]\\\\\n";
130 $panel .= "[[{\$FullName}?action=upload |Upload]]\\\\\n";
131 $panel .= "{/if}{if ($canattr)}\n";
132 $panel .= "[[{\$FullName}?action=attr |Droits]]\\\\\n";
133 $panel .= "[[{\$Group}/GroupAttributes?action=attr|Droits du groupe]]\\\\\n";
138 if ((S
::identified() && S
::has_perms()) ||
authPerms($pagename, $passwds[$level]))
140 $page_read['=passwd'] = $passwds;
141 $page_read['=pwsource'] = $pwsources;
143 // if try to read, add the permission limitation as a smarty if tag
144 if ($level == 'read') {
145 $page_read['text'] = auth_pmwiki_to_smarty($page_read['text'], $passwds['read']);
146 $page_read['text'] = $panel.$page_read['text'];
152 // if we arrive here, the user doesn't have enough permission to access page
154 // maybe it is because he is not identified
155 if ($authprompt && !S
::identified()) {
156 require_once dirname(__FILE__
).'/../classes/Platal.php';
157 require_once dirname(__FILE__
).'/../classes/PLModule.php';
158 $platal = new Platal();
159 $platal->force_login($page);
162 if (S
::has_perms()) {
163 $page->trig('Erreur : page Wiki inutilisable sur plat/al');