X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=classes%2Fplatal.php;h=81900f0320c4847788e1ddb146521ea9780d45c0;hb=4c64e1e7926e82b917c4bc7bf47e51475d44d04a;hp=5cf0d757ab8bbcde4ae2d7d4c663dea62ec8d7c5;hpb=14224ff041db96a6067c8f675e089ac24e29e965;p=platal.git

diff --git a/classes/platal.php b/classes/platal.php
index 5cf0d75..81900f0 100644
--- a/classes/platal.php
+++ b/classes/platal.php
@@ -1,6 +1,6 @@
 <?php
 /***************************************************************************
- *  Copyright (C) 2003-2006 Polytechnique.org                              *
+ *  Copyright (C) 2003-2007 Polytechnique.org                              *
  *  http://opensource.polytechnique.org/                                   *
  *                                                                         *
  *  This program is free software; you can redistribute it and/or modify   *
@@ -19,21 +19,25 @@
  *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
  ***************************************************************************/
 
+define('PL_DO_AUTH',   300);
 define('PL_FORBIDDEN', 403);
 define('PL_NOT_FOUND', 404);
 
 class Platal
 {
-    var $__mods;
-    var $__hooks;
+    private $__mods;
+    private $__hooks;
 
-    var $ns;
-    var $path;
-    var $argv;
+    public $ns;
+    public $path;
+    public $argv;
 
-    function Platal()
+    public function __construct()
     {
         $modules    = func_get_args();
+        if (is_array($modules[0])) {
+            $modules = $modules[0];
+        }
         $this->path = trim(Get::_get('n', null), '/');
 
         $this->__mods  = array();
@@ -46,7 +50,7 @@ class Platal
         }
     }
 
-    function pl_self($n = null)
+    public function pl_self($n = null)
     {
         if (is_null($n))
             return $this->path;
@@ -60,7 +64,7 @@ class Platal
         return join('/', array_slice($this->argv, 0, $n));
     }
 
-    function find_hook()
+    protected function find_hook()
     {
         $p = $this->path;
 
@@ -87,21 +91,125 @@ class Platal
         return $hook;
     }
 
-    function call_hook(&$page)
+    protected function find_nearest_key($key, array &$array)
     {
-        $hook = $this->find_hook();
+        $keys    = array_keys($array);
+        if (in_array($key, $keys)) {
+            return $key;
+        }
+
+        if (($pos = strpos($key, '.php')) !== false) {
+            $key = substr($key, 0, $pos);
+        }
+
+        $has_end = in_array("#final#", $keys);
+        if (strlen($key) > 24 && $has_end) {
+            return "#final#";
+        }
+
+        foreach ($keys as $k) {
+            if ($k == "#final#") {
+                continue;
+            }
+            $lev = levenshtein($key, $k);
+            if ((!isset($val) || $lev < $val) && $lev <= (strlen($k)*2)/3) {
+                $val  = $lev;
+                $best = $k;
+            }
+        }
+        if (!isset($best) && $has_end) {
+            return "#final#";
+        } else {
+            return $best;
+        }
+        return null;
+    }
+
+    public function near_hook()
+    {
+        $hooks = array();
+        foreach ($this->__hooks as $hook=>$handler) {
+            if (!empty($handler['perms']) && $handler['perms'] != S::v('perms')) {
+                continue;
+            }
+            $parts = split('/', $hook);
+            $place =& $hooks;
+            foreach ($parts as $part) {
+                if (!isset($place[$part])) {
+                    $place[$part] = array();
+                }
+                $place =& $place[$part]; 
+            }
+            $place["#final#"] = array();
+        }
+
+        $p = split('/', $this->path);
+        $place =& $hooks;
+        $link  = '';
+        foreach ($p as $k) {
+            if (!isset($ended)) {
+                $key = $this->find_nearest_key($k, $place);
+            } else {
+                $key = $k;
+            }
+            if ($key == "#final#") {
+                if (!array_key_exists($link, $this->__hooks)) {
+                    return null;
+                }
+                $key = $k;
+                $ended = true;
+            }
+            if (!is_null($key)) {
+                if (!empty($link)) {
+                    $link .= '/';
+                }
+                $link .= $key;
+                $place =& $place[$key];
+            } else {
+                return null;
+            }
+        }
+        if ($link != $this->path) {
+            return $link;
+        }
+        return null;
+    }
+
+    protected function check_perms($perms)
+    {
+        if (!$perms) { // No perms, no check
+            return true;
+        }
+        $s_perms = S::v('perms');
+
+        // hook perms syntax is
+        $perms = explode(',', $perms);
+        foreach ($perms as $perm)
+        {
+            $ok = true;
+            $rights = explode(':', $perm);
+            foreach ($rights as $right) {
+                if (($right{0} == '!' && $s_perms->hasFlag(substr($right, 1))) || !$s_perms->hasFlag($right)) {
+                    $ok = false;
+                }
+            }
+            if ($ok) {
+                return true;
+            }
+        }
+        return false;
+    }
 
-        if (is_null($hook)) {
+    private function call_hook(PlatalPage &$page)
+    {
+        $hook = $this->find_hook();
+        if (empty($hook)) {
             return PL_NOT_FOUND;
         }
 
         $args    = $this->argv;
         $args[0] = &$page;
 
-        if (strlen($hook['perms']) && $hook['perms'] != Session::v('perms')) {
-            return PL_FORBIDDEN;
-        }
-
         if ($hook['auth'] > S::v('auth', AUTH_PUBLIC)) {
             if ($hook['type'] == DO_AUTH) {
                 global $globals;
@@ -113,27 +221,40 @@ class Platal
                 return PL_FORBIDDEN;
             }
         }
+        if ($hook['auth'] != AUTH_PUBLIC && !$this->check_perms($hook['perms'])) {
+            return PL_FORBIDDEN;
+        }
 
-        return call_user_func_array($hook['hook'], $args);
+        $val = call_user_func_array($hook['hook'], $args);
+        if ($val == PL_DO_AUTH) {
+            global $globals;
+            // The handler need a better auth with the current args
+            if (!call_user_func(array($globals->session, 'doAuth'))) {
+                $this->force_login($page);
+            }
+            $val = call_user_func_array($hook['hook'], $args);
+        }
+        return $val;
     }
 
-    function force_login(&$page)
+    public function force_login(PlatalPage &$page)
     {
         if (S::logged()) {
-            $page->changeTpl('password_prompt_logged.tpl');
+            $page->changeTpl('core/password_prompt_logged.tpl');
             $page->addJsLink('do_challenge_response_logged.js');
         } else {
-            $page->changeTpl('password_prompt.tpl');
+            $page->changeTpl('core/password_prompt.tpl');
             $page->addJsLink('do_challenge_response.js');
-    	}
+        }
+        $page->assign('platal', $this);
         $page->run();
     }
 
-    function run()
+    public function run()
     {
         global $page;
 
-        new_skinned_page('index.tpl');
+        new_skinned_page('platal/index.tpl');
 
         if (empty($this->path)) {
             $this->path = 'index';
@@ -154,7 +275,7 @@ class Platal
         $page->run();
     }
 
-    function on_subscribe($forlife, $uid, $promo, $pass)
+    private function on_subscribe($forlife, $uid, $promo, $pass)
     {
         $args = func_get_args();
         foreach ($this->__mods as $mod) {
@@ -165,4 +286,5 @@ class Platal
     }
 }
 
+// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
 ?>