projects / platal.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Only uses autoload to require validation classes.
[platal.git] / classes / user.php
diff --git a/classes/user.php b/classes/user.php
index 5944a7f..c265bf0 100644 (file)
--- a/classes/user.php
+++ b/classes/user.php
@@ -21,6 +21,15 @@
 
 class User extends PlUser
 {
+    const PERM_GROUPS            = 'groups';
+    const PERM_MAIL              = 'mail';
+    const PERM_DIRECTORY_AX      = 'directory_ax';
+    const PERM_DIRECTORY_PRIVATE = 'directory_private';
+    const PERM_EDIT_DIRECTORY    = 'edit_directory';
+    const PERM_FORUMS            = 'forums';
+    const PERM_LISTS             = 'lists';
+    const PERM_PAYMENT           = 'payment';
+
     private $_profile_fetched = false;
     private $_profile = null;
 
@@ -322,8 +331,9 @@ class User extends PlUser
      */
     public function canEdit(Profile $profile)
     {
-        // XXX: Check permissions (e.g. secretary permission)
-        //      and flags from the profile
+        if ($this->checkPerms(User::PERM_EDIT_DIRECTORY)) {
+            return true;
+        }
         return XDB::fetchOneCell('SELECT  pid
                                     FROM  account_profiles
                                    WHERE  uid = {?} AND pid = {?}',
plat/al