leonardo/yii2-usuario
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Avoid totally rewriting of AccessRule::matchRole #380

Browse Source
This commit is contained in:
Lorenzo Milesi
2020-04-23 22:24:39 +02:00
parent 369c59bbb1
commit 78bd5f9de8
2 changed files with 11 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.md
View File

@ -1,6 +1,7 @@
# CHANGELOG # CHANGELOG
## work in progress ## work in progress
- Fix #380: Avoid rewriting AccessRule::matchRole (maxxer)
- Fix #378: Add module attribute 'disableIpLogging' (jkmssoft) - Fix #378: Add module attribute 'disableIpLogging' (jkmssoft)
## 1.5.1 April 5, 2020 ## 1.5.1 April 5, 2020

37
src/User/Filter/AccessRuleFilter.php
View File

@ -48,38 +48,21 @@ class AccessRuleFilter extends AccessRule
/** /**
* {@inheritdoc} * {@inheritdoc}
* */ **/
protected function matchRole($user) protected function matchRole($user)
{ {
if (empty($this->roles)) { if (empty($this->roles)) {
return true; return parent::matchRole($user);
} }
foreach ($this->roles as $role) { // We just check our custom role "admin" otherwise call back the original implementation
if ($role === '?') { if (!in_array("admin", $this->roles)) {
if ($user->getIsGuest()) { return parent::matchRole($user);
return true; }
} /** @var User $identity */
} elseif ($role === '@') { $identity = $user->getIdentity();
if (!$user->getIsGuest()) { if (!$user->getIsGuest() && $identity->getIsAdmin()) {
return true; return true;
}
} elseif ($role === 'admin') {
/** @var User $identity */
$identity = $user->getIdentity();
if (!$user->getIsGuest() && $identity->getIsAdmin()) {
return true;
}
} else {
$roleParams = $this->roleParams instanceof Closure
? call_user_func($this->roleParams, $this)
: $this->roleParams;
if ($user->can($role, $roleParams)) {
return true;
}
}
} }
return false; return false;