Initial Upload
This commit is contained in:
Matt Batchelder
111
lib/Entity/ApplicationScope.php
Normal file
111
lib/Entity/ApplicationScope.php
Normal file
@@ -0,0 +1,111 @@
|
||||
<?php
|
||||
/*
|
||||
* Copyright (C) 2025 Xibo Signage Ltd
|
||||
*
|
||||
* Xibo - Digital Signage - https://xibosignage.com
|
||||
*
|
||||
* This file is part of Xibo.
|
||||
*
|
||||
* Xibo is free software: you can redistribute it and/or modify
|
||||
* it under the terms of the GNU Affero General Public License as published by
|
||||
* the Free Software Foundation, either version 3 of the License, or
|
||||
* any later version.
|
||||
*
|
||||
* Xibo is distributed in the hope that it will be useful,
|
||||
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||
* GNU Affero General Public License for more details.
|
||||
*
|
||||
* You should have received a copy of the GNU Affero General Public License
|
||||
* along with Xibo. If not, see <http://www.gnu.org/licenses/>.
|
||||
*/
|
||||
|
||||
namespace Xibo\Entity;
|
||||
|
||||
use Xibo\Service\LogServiceInterface;
|
||||
use Xibo\Storage\StorageServiceInterface;
|
||||
|
||||
/**
|
||||
* Class ApplicationScope
|
||||
* @package Xibo\Entity
|
||||
*/
|
||||
class ApplicationScope implements \JsonSerializable
|
||||
{
|
||||
use EntityTrait;
|
||||
|
||||
/**
|
||||
* @var string
|
||||
*/
|
||||
public $id;
|
||||
|
||||
/**
|
||||
* @var string
|
||||
*/
|
||||
public $description;
|
||||
|
||||
/**
|
||||
* Entity constructor.
|
||||
* @param StorageServiceInterface $store
|
||||
* @param LogServiceInterface $log
|
||||
* @param \Symfony\Component\EventDispatcher\EventDispatcherInterface $dispatcher
|
||||
*/
|
||||
public function __construct($store, $log, $dispatcher)
|
||||
{
|
||||
$this->setCommonDependencies($store, $log, $dispatcher);
|
||||
}
|
||||
|
||||
public function __serialize(): array
|
||||
{
|
||||
return $this->jsonSerialize();
|
||||
}
|
||||
|
||||
public function __unserialize(array $data): void
|
||||
{
|
||||
foreach ($data as $key => $value) {
|
||||
$this->{$key} = $value;
|
||||
}
|
||||
}
|
||||
|
||||
/**
|
||||
* Get Id
|
||||
* @return string
|
||||
*/
|
||||
public function getId()
|
||||
{
|
||||
return $this->id;
|
||||
}
|
||||
|
||||
/**
|
||||
* Check whether this scope has permission for this route
|
||||
* @param string $method
|
||||
* @param string $requestedRoute
|
||||
* @return bool
|
||||
*/
|
||||
public function checkRoute(string $method, string $requestedRoute): bool
|
||||
{
|
||||
$routes = $this->getStore()->select('
|
||||
SELECT `route`
|
||||
FROM `oauth_scope_routes`
|
||||
WHERE `scopeId` = :scope
|
||||
AND `method` LIKE :method
|
||||
', [
|
||||
'scope' => $this->getId(),
|
||||
'method' => '%' . $method . '%',
|
||||
]);
|
||||
|
||||
$this->getLog()->debug('checkRoute: there are ' . count($routes) . ' potential routes for the scope '
|
||||
. $this->getId() . ' with ' . $method);
|
||||
|
||||
// We need to look through each route and run the regex against our requested route.
|
||||
$grantAccess = false;
|
||||
foreach ($routes as $route) {
|
||||
$regexResult = preg_match($route['route'], $requestedRoute);
|
||||
if ($regexResult === 1) {
|
||||
$grantAccess = true;
|
||||
break;
|
||||
}
|
||||
}
|
||||
|
||||
return $grantAccess;
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user