aboutsummaryrefslogtreecommitdiff
path: root/lib/resources/ResourceManager.php
diff options
context:
space:
mode:
Diffstat (limited to 'lib/resources/ResourceManager.php')
-rw-r--r--lib/resources/ResourceManager.php1472
1 files changed, 1472 insertions, 0 deletions
diff --git a/lib/resources/ResourceManager.php b/lib/resources/ResourceManager.php
new file mode 100644
index 0000000..b6115e7
--- /dev/null
+++ b/lib/resources/ResourceManager.php
@@ -0,0 +1,1472 @@
+<?php
+
+/**
+ * ResourceManager.php
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public License as
+ * published by the Free Software Foundation; either version 2 of
+ * the License, or (at your option) any later version.
+ *
+ * @author Moritz Strohm <strohm@data-quest.de>
+ * @copyright 2017-2018
+ * @license http://www.gnu.org/licenses/gpl-2.0.html GPL version 2
+ * @category Stud.IP
+ */
+
+
+require_once 'lib/dates.inc.php';
+
+
+/**
+ * The ResourceManager class contains methods that simplify the use of
+ * Resources.
+ */
+class ResourceManager
+{
+ // Factory methods
+
+ /**
+ * Simplifies the creation of a resource category.
+ *
+ * @param string $name The name of the new resource category.
+ * @param string $description The description of the new resource category.
+ * @param string $class_name The class (derived from Resource) which
+ * shall be used for resources created with the new category.
+ * @param bool $is_system_category True, if the category shall be a system
+ * category, false otherwise.
+ * @param string $iconnr The number of the icon for the resource category.
+ * @param mixed[] $properties A two-dimensional array with the
+ * names and requestable, protected and system flags.
+ * The second dimension of the array must have the following structure:
+ * [
+ * property name (string),
+ * requestable flag (boolean),
+ * protected flag (boolean),
+ * system-flag (boolean)
+ * ].
+ *
+ * @throws ResourceCategoryException In case if no name is set or a resource
+ * property doesn't exist, if the category's name is ambigous
+ * or if the new category cannot be stored, a ResourceCategoryException
+ * is thrown.
+ *
+ * @return ResourceCategory A new ResourceCategory object.
+ */
+ public static function createCategory(
+ $name = null,
+ $description = null,
+ $class_name = 'Resource',
+ $is_system_category = false,
+ $iconnr = '1',
+ $properties = []
+ )
+ {
+ if (!$name) {
+ //A name must be set!
+ throw new InvalidResourceCategoryException(
+ _('Es wurde kein Name für die neue Ressourcenkategorie angegeben!')
+ );
+ }
+
+ $property_data = [];
+
+ //We must check, if all the properties exist:
+ if ($properties && is_array($properties)) {
+ foreach ($properties as $property) {
+ $property_object = ResourcePropertyDefinition::findByName(
+ $property[0]
+ );
+
+ if (!$property_object) {
+ throw new ResourcePropertyException(
+ sprintf(
+ _('Die Ressourceneigenschaft %s ist nicht definiert!'),
+ $property[0]
+ )
+ );
+ } elseif (count($property_object) > 1) {
+ throw new ResourcePropertyException(
+ sprintf(
+ _('Es gibt mehrere Ressourceneigenschaften mit dem Namen %s!'),
+ $property[0]
+ )
+ );
+ }
+
+ //$property_object is an array of ResourcePropertyDefinition objects:
+ $property_data[] = [
+ 'object' => $property_object[0],
+ 'config' => $property
+ ];
+ }
+ }
+
+ //Ok, all properties exist: We can create the category:
+
+ $new_category = new ResourceCategory();
+ $new_category->name = $name;
+ if ($description != null) {
+ $new_category->description = $description;
+ }
+ $new_category->class_name = $class_name;
+ $new_category->system = ($is_system_category ? '1' : '0');
+ $new_category->iconnr = $iconnr;
+
+ if ($new_category->store()) {
+ //Add the properties:
+ foreach ($property_data as $p) {
+ $rcp = new ResourceCategoryProperty();
+ $rcp->category_id = $new_category->id;
+ $rcp->property_id = $p['object']->id;
+ $rcp->requestable = $p['config'][1];
+ $rcp->protected = $p['config'][2];
+ $rcp->system = $p['config'][3];
+ $rcp->store();
+ }
+ //die();
+ } else {
+ throw new InvalidResourceCategoryException(
+ sprintf(
+ _('Die Ressourcenkategorie %s konnte nicht gespeichert werden!'),
+ $name
+ )
+ );
+ }
+
+ return $new_category;
+ }
+
+ /**
+ * Simplifies the creation of a location resource category.
+ *
+ * @param string $name The name of the new resource category.
+ * @param string $description The description of the new resource category.
+ * @param string[] $additional_properties A two-dimensional array with the
+ * names and requestable, protected and system flags. See
+ * ResourceManager::createCategory for a description of the format
+ * of the second array dimension.
+ *
+ * @throws ResourceCategoryException In case if no name is set or a resource
+ * property doesn't exist, if the category's name is ambigous
+ * or if the new category cannot be stored, a ResourceCategoryException
+ * is thrown.
+ *
+ * @return ResourceCategory A new ResourceCategory object.
+ */
+ public static function createLocationCategory(
+ $name = null,
+ $description = null,
+ $additional_properties = []
+ )
+ {
+ $property_names = array_merge(
+ [
+ [
+ 'geo_coordinates',
+ true,
+ true,
+ true
+ ]
+ ],
+ $additional_properties
+ );
+
+ return self::createCategory(
+ $name,
+ $description,
+ 'Location',
+ false,
+ '1',
+ $property_names
+ );
+ }
+
+
+ /**
+ * Simplifies the creation of a building resource category.
+ *
+ * @param string $name The name of the new resource category.
+ * @param string $description The description of the new resource category.
+ * @param string[] $additional_properties A two-dimensional array with the
+ * names and requestable, protected and system flags. See
+ * ResourceManager::createCategory for a description of the format
+ * of the second array dimension.
+ *
+ * @throws ResourceCategoryException In case if no name is set or a resource
+ * property doesn't exist, if the category's name is ambigous
+ * or if the new category cannot be stored, a ResourceCategoryException
+ * is thrown.
+ *
+ * @return ResourceCategory A new ResourceCategory object.
+ */
+ public static function createBuildingCategory(
+ $name = null,
+ $description = null,
+ $additional_properties = []
+ )
+ {
+ $property_names = array_merge(
+ [
+ [
+ 'address',
+ false,
+ true,
+ true
+ ],
+ [
+ 'accessible',
+ false,
+ true,
+ true
+ ],
+ [
+ 'number',
+ false,
+ true,
+ true
+ ],
+ [
+ 'geo_coordinates',
+ true,
+ true,
+ true
+ ]
+ ],
+ $additional_properties
+ );
+
+ return self::createCategory(
+ $name,
+ $description,
+ 'Building',
+ false,
+ '2',
+ $property_names
+ );
+ }
+
+
+ /**
+ * Simplifies the creation of a room resource category.
+ *
+ * @param string $name The name of the new resource category.
+ * @param string $description The description of the new resource category.
+ * @param string[] $additional_properties A two-dimensional array with the
+ * names and requestable, protected and system flags. See
+ * ResourceManager::createCategory for a description of the format
+ * of the second array dimension.
+ *
+ * @throws ResourceCategoryException In case if no name is set or a resource
+ * property doesn't exist, if the category's name is ambigous
+ * or if the new category cannot be stored, a ResourceCategoryException
+ * is thrown.
+ *
+ * @return ResourceCategory A new ResourceCategory object.
+ */
+ public static function createRoomCategory(
+ $name = null,
+ $description = null,
+ $additional_properties = []
+ )
+ {
+ $property_names = array_merge(
+ [
+ [
+ 'room_type',
+ true,
+ true,
+ true
+ ],
+ [
+ 'seats',
+ true,
+ true,
+ true
+ ],
+ [
+ 'booking_plan_is_public',
+ true,
+ true,
+ true
+ ]
+ ],
+ $additional_properties
+ );
+
+ return self::createCategory(
+ $name,
+ $description,
+ 'Room',
+ false,
+ '3',
+ $property_names
+ );
+ }
+
+
+ // Resource methods:
+
+ /**
+ * Creates a copy of a resource and stores the copy in the database.
+ *
+ * @param Resource $resource The resource which shall be copied.
+ * @param bool $copy_hierarchy True, if the resource's children shall also
+ * be copied (default). False otherwise.
+ * @param string $new_parent_id If this is set the original parent_id will
+ * be overwritten with the ID in $new_parent_id.
+ *
+ * @throws ResourceException If the copy cannot be stored.
+ *
+ * @returns Resource A copy of the resource.
+ */
+ public static function copyResource(
+ Resource $resource,
+ $copy_hierarchy = true,
+ $new_parent_id = null
+ )
+ {
+ //We can clone all the data but we must explicitly
+ //create a new ID and set the new flag of the copy
+ //to prevent updating the original object.
+ $copy = clone $resource;
+ $copy->id = $copy->getNewId();
+ $copy->setNew(true);
+ if ($new_parent_id) {
+ $copy->parent_id = $new_parent_id;
+ }
+ if (!$copy->store()) {
+ throw new ResourceException();
+ }
+ if ($copy_hierarchy) {
+ //get all children of the original resource and clone them, too.
+ //If $copy_hierarchy is set all children and their descendants etc.
+ //are cloned recursively.
+ $children = $resource->children;
+ foreach ($children as $child) {
+ $copied_child = self::copyResource(
+ $child,
+ $copy_hierarchy,
+ $copy->id //$copy is the new parent node.
+ );
+ }
+ }
+ return $copy;
+ }
+
+ /**
+ * Moves a resource below another resource and does checks to prevent
+ * resource hierarchies with misplaced resource objects.
+ * This is just a convenience method which calls the addChild method
+ * of the destination resource.
+ *
+ * @param Resource $target The resource which shall be moved.
+ * @param Resource $destination The resource where $target shall be a new child.
+ *
+ * @throws InvalidArgumentException If $target cannot be placed below $destination.
+ *
+ * @returns bool True, if $target was successful placed below $destination.
+ */
+ public static function moveResource(Resource $target, Resource $destination)
+ {
+ return $destination->addChild($target);
+ }
+
+
+ //Resource retrieval methods:
+
+
+ /**
+ * Helper method that creates the identical SQL query for the
+ * countUserResources and findUserResources methods.
+ */
+ protected static function getUserResourcesSqlData(
+ User $user,
+ $level = 'user',
+ $time = null,
+ $class_names = []
+ )
+ {
+ $used_time = time();
+ if ($time instanceof DateTime) {
+ $used_time = $time->getTimestamp();
+ } elseif ($time) {
+ $used_time = $time;
+ }
+
+ $sql = '';
+
+ if (count($class_names)) {
+ //Make sure that all class names specify names
+ //of classes derived from the Resource class.
+ $valid_class_names = [];
+ foreach ($class_names as $class_name) {
+ if (is_a($class_name, 'Resource', true)) {
+ $valid_class_names[] = $class_name;
+ }
+ }
+ $class_names = $valid_class_names;
+ }
+ if (count($class_names)) {
+ $sql .= 'INNER JOIN resource_categories rc
+ ON resources.category_id = rc.id
+ WHERE ';
+ }
+
+ $user_is_resource_admin = self::userHasGlobalPermission(
+ $user,
+ 'admin'
+ ) || $GLOBALS['perm']->have_perm('root', $user->id);
+
+ if (!$user_is_resource_admin) {
+ $sql .= "resources.id IN (
+ SELECT resource_id FROM resource_permissions
+ WHERE user_id = :user_id
+ AND perms IN ( :perms )
+ UNION
+ SELECT resource_id FROM resource_temporary_permissions
+ WHERE user_id = :user_id
+ AND perms IN ( :perms )
+ AND (begin <= :time)
+ AND (end >= :time)
+ ) ";
+ $data = [
+ 'user_id' => $user->id,
+ 'time' => $used_time
+ ];
+ }
+
+ if (count($class_names) && !$user_is_resource_admin) {
+ $sql .= 'AND ';
+ }
+
+ if (count($class_names)) {
+ $sql .= "rc.class_name IN ( :class_names ) ";
+ $data['class_names'] = $class_names;
+ }
+ $sql .= "GROUP BY resources.id
+ ORDER BY sort_position DESC, resources.name ASC";
+
+ $perms = self::getHigherPermissionLevels($level);
+ array_push($perms, $level);
+ $data['perms'] = $perms;
+
+ return [
+ 'query' => $sql,
+ 'data' => $data
+ ];
+ }
+
+
+ /**
+ * Counts all resources for which the specified user has permanent or
+ * temporary permissions.
+ *
+ * @param User $user The user whose resources shall be retrieved.
+ *
+ * @param string $level The minimum permission level the user must have
+ * on a resource so that it will be included in the result set.
+ *
+ * @param DateTime|int|null $time The timestamp for the check on
+ * temporary permissions. If this parameter is not set
+ * the current timestamp will be used.
+ *
+ * @param string[] $class_names A list of resource classes that will
+ * be used to filter the result set so that only resources being
+ * a member of one of the specified resource classes will be retrieved.
+ *
+ */
+ public static function countUserResources(
+ User $user,
+ $level = 'user',
+ $time = null,
+ $class_names = []
+ )
+ {
+ $sql = self::getUserResourcesSqlData($user, $level, $time, $class_names);
+ return Resource::countBySql($sql['query'], $sql['data']);
+ }
+
+
+ /**
+ * Retrieves all resources for which the specified user has permanent or
+ * temporary permissions.
+ *
+ * @param User $user The user whose resources shall be retrieved.
+ *
+ * @param string $level The minimum permission level the user must have
+ * on a resource so that it will be included in the result set.
+ *
+ * @param DateTime|int|null $time The timestamp for the check on
+ * temporary permissions. If this parameter is not set
+ * the current timestamp will be used.
+ *
+ * @param string[] $class_names A list of resource classes that will
+ * be used to filter the result set so that only resources being
+ * a member of one of the specified resource classes will be retrieved.
+ *
+ * @param bool $convert_objects If the resource objects
+ * in the result set shall be converted to objects of the derived
+ * resource classes set this to true, otherwise false.
+ * Defaults to true.
+ *
+ * @returns Resource[] An array of Resource objects
+ * or objects of derived resource classes.
+ */
+ public static function getUserResources(
+ User $user,
+ $level = 'user',
+ $time = null,
+ $class_names = [],
+ $convert_objects = true
+ )
+ {
+ $sql = self::getUserResourcesSqlData($user, $level, $time, $class_names);
+ $resources = Resource::findBySql($sql['query'], $sql['data']);
+ if ($convert_objects) {
+ $result = [];
+ foreach ($resources as $resource) {
+ $result[] = $resource->getDerivedClassInstance();
+ }
+ return $result;
+ } else {
+ return $resources;
+ }
+ }
+
+ /**
+ * Check if the coordinate are in appropriate CRSWGS_84 format.
+ *
+ * - latitude: up to 2 digits, decimal point, 1 to 10 digits for fraction
+ * - longitude: up to 3 digits, decimal point, 1 to 10 digits for fraction
+ * - altitude: up to 5 digits, decimal point, 1 to 10 digits for fraction
+ *
+ * @param string $coordinate_string
+ * @return bool
+ */
+ public static function validateCoordinates(string $coordinate_string): bool
+ {
+ return preg_match(
+ ResourcePropertyDefinition::CRSWGS84_REGEX,
+ $coordinate_string
+ );
+ }
+
+
+ // Static methods for position properties:
+
+ public static function getPositionArray(ResourceProperty $property)
+ {
+ if (!$property->definition) {
+ //An orphaned Resource property: we cannot generate an array for it!
+ throw new ResourcePropertyDefinitionException(
+ _('Die Positionsangabe kann nicht umgewandelt werden, da die angegebene Ressourceneigenschaft verwaist (ohne zugehörige Definition) ist!')
+ );
+ }
+
+ if ($property->definition->type != 'position') {
+ //We cannot generate an array for attributes other than the position type!
+ throw new ResourcePropertyException(
+ _("Die Positionsangabe kann nicht umgewandelt werden, da die angegebene Ressourceneigenschaft nicht vom Typ 'position' ist!")
+ );
+ }
+
+ //Parse the ISO-6709 coordinates from $property->value:
+ $coordinate_string = $property->state;
+
+
+ // Show error message when coordinates are invalid
+ if (!self::validateCoordinates($coordinate_string)) {
+ PageLayout::postError(_('Die Positionsangabe kann nicht umgewandelt werden, da sie ungültige Daten enthält!'));
+ }
+
+ //With the first split we separate the numbers in the coordinate string.
+ //The second split lets us retrieve the sign for each number.
+
+ $coordinate_parts = preg_split(
+ '/([+-]|(CRSWGS_84\/))+/',
+ $coordinate_string,
+ -1,
+ PREG_SPLIT_NO_EMPTY
+ );
+
+ //We can simply split the coordinate string by each dot,
+ //since there has to be a dot in every three coordinates!
+ //This is because the coordinates are always stored
+ //with decimal separators.
+
+ $coordinate_signs = preg_split(
+ '/\.\d{1,10}/',
+ $coordinate_string,
+ -1,
+ PREG_SPLIT_NO_EMPTY
+ );
+
+ //The array position of $coordinate_parts and $coordinate_signs
+ //are the same! We can directly use the indexes.
+ //If a sign index is less than zero we must invert the value
+ //of the corresponding coordinate part.
+
+ for ($i = 0; $i < 3; $i++) {
+ if ($coordinate_signs[$i] < 0) {
+ $coordinate_parts[$i] *= -1;
+ }
+ }
+
+ return $coordinate_parts;
+ }
+
+
+ /**
+ * This method allows locking the resource management globally.
+ * The user who creates the lock must have admin permissions
+ * and the time interval must not lie in another global resource lock
+ * interval.
+ *
+ * @param User $user The user who wishes to lock the room and resource
+ * management globally.
+ * @param DateTime $begin The begin timestamp of the lock.
+ * @param DateTime $end The end timestamp of the lock.
+ *
+ * @throws InvalidArgumentException If $begin lies after $end or if
+ * $begin is equal to $end.
+ * @throws ResourcePermissionException If the specified user does not
+ * have sufficient permissions to lock the resource management globally.
+ * @throws GlobalResourceLockException If the resource lock could not be stored.
+ *
+ * @returns GlobalResourceLock object.
+ */
+ public function createGlobalLock(
+ User $user,
+ DateTime $begin,
+ DateTime $end,
+ $ignore_bookings = false
+ )
+ {
+ if ($begin > $end) {
+ throw new InvalidArgumentException(
+ _('Der Startzeitpunkt darf nicht hinter dem Endzeitpunkt liegen!')
+ );
+ }
+ if ($begin == $end) {
+ throw new InvalidArgumentException(
+ _('Startzeitpunkt und Endzeitpunkt dürfen nicht identisch sein!')
+ );
+ }
+
+ if (!self::userHasGlobalPermission($user, 'admin')) {
+ throw new ResourcePermissionException(
+ _('Unzureichende Berechtigungen zum globalen Sperren der Raumverwaltung!')
+ );
+ }
+
+ if (GlobalResourceLock::existsInTimeRange($begin, $end)) {
+ throw new GlobalResourceLockOverlapException(
+ sprintf(
+ _('Im Zeitbereich vom %1$s bis %2$s gibt es bereits eine globale Sperrung der Raumverwaltung!'),
+ $begin->format('d.m.Y H:i'),
+ $end->format('d.m.Y H:i')
+ )
+ );
+ }
+
+ $lock = new GlobalResourceLock();
+ $lock->begin = $begin->getTimestamp();
+ $lock->end = $end->getTimestamp();
+ $lock->user_id = $user->id;
+ $lock->type = '0';
+ if (!$lock->store()) {
+ throw new GlobalResourceLockException(
+ sprintf(
+ _('Fehler beim Speichern der globalen Sperre der Raumverwaltung im Zeitbereich vom %1$s bis %2$s!'),
+ $begin->format('d.m.Y H:i'),
+ $end->format('d.m.Y H:i')
+ )
+ );
+ }
+ return $lock;
+ }
+
+
+ //Special methods for attributes of type position:
+
+ public static function getPositionString(
+ ResourceProperty $property,
+ $with_altitude = false
+ )
+ {
+ $coordinate_parts = [];
+ $string = '';
+ try {
+ $coordinate_parts = self::getPositionArray($property);
+ } catch (ResourcePropertyDefinitionException $e) {
+ //An orphaned Resource property: we cannot generate a string for it!
+ throw new ResourcePropertyDefinitionException(
+ _('Die Positionsangabe kann nicht formatiert werden, da die angegebene Ressourceneigenschaft verwaist (ohne zugehörige Definition) ist!')
+ );
+ } catch (ResourcePropertyException $e) {
+ //We cannot generate a string for attributes other than the position type!
+ throw new ResourcePropertyException(
+ _('Die Positionsangabe kann nicht formatiert werden, da die angegebene Ressourceneigenschaft nicht vom Typ "position" ist!')
+ );
+ } catch (ResourcePropertyStateException $e) {
+ //We cannot generate a string from invalid data!
+ return '';
+ }
+
+ $locale = localeconv();
+
+ if ($coordinate_parts[0] < 0) {
+ $string .= sprintf(
+ _('%s°S'),
+ number_format(
+ abs($coordinate_parts[0]),
+ 7,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ ) . ' ';
+ } else {
+ $string .= sprintf(
+ _('%s°N'),
+ number_format(
+ abs($coordinate_parts[0]),
+ 7,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ ) . ' ';
+ }
+
+ if ($coordinate_parts[1] < 0) {
+ $string .= sprintf(
+ _('%s°O'),
+ number_format(
+ abs($coordinate_parts[1]),
+ 7,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ ) . ' ';
+ } else {
+ $string .= sprintf(
+ _('%s°W'),
+ number_format(
+ abs($coordinate_parts[1]),
+ 7,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ );
+ }
+
+ if ($with_altitude) {
+ $string .= ' ';
+ if ($coordinate_parts[2] < 0) {
+ $string .= sprintf(
+ _('%s m unter NHN'),
+ number_format(
+ abs($coordinate_parts[2]),
+ 1,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ );
+ } else {
+ $string .= sprintf(
+ _('%s m über NHN'),
+ number_format(
+ abs($coordinate_parts[2]),
+ 1,
+ $locale['decimal_point'],
+ $locale['thousands_sep']
+ )
+ );
+ }
+ }
+
+ return $string;
+ }
+
+
+ public static function getMapUrlForResourcePosition(
+ ResourceProperty $property
+ )
+ {
+ $coordinate_parts = [];
+ try {
+ $coordinate_parts = self::getPositionArray($property);
+ } catch (ResourcePropertyDefinitionException $e) {
+ //An orphaned Resource property: we cannot generate an URL for it!
+ throw new InvalidArgumentException(
+ _('Eine URL zur Straßenkarte kann nicht erzeugt werden, da die angegebene Ressourceneigenschaft verwaist (ohne zugehörige Definition) ist!')
+ );
+ } catch (ResourcePropertyException $e) {
+ //We cannot generate an URL for attributes other than the position type!
+ throw new InvalidArgumentException(
+ _("Eine URL zur Straßenkarte kann nicht erzeugt werden, da die angegebene Ressourceneigenschaft nicht vom Typ 'position' ist!")
+ );
+ } catch (ResourcePropertyStateException $e) {
+ //We cannot generate an URL from invalid data!
+ return '';
+ }
+
+ $map_service_url = Config::get()->RESOURCES_MAP_SERVICE_URL;
+ if ($map_service_url) {
+ //Replace the strings LATITUDE and LONGITUDE in the URL
+ //with the coordinates.
+ return str_replace(
+ [
+ 'LATITUDE',
+ 'LONGITUDE'
+ ],
+ [
+ $coordinate_parts[0],
+ $coordinate_parts[1]
+ ],
+ $map_service_url
+ );
+ } else {
+ //Default to OpenStreepMap:
+ return sprintf(
+ 'https://www.openstreetmap.org/#map=17/%1$s/%2$s',
+ $coordinate_parts[0],
+ $coordinate_parts[1]
+ );
+ }
+ }
+
+
+ // User permission methods:
+
+ /**
+ * Returns the resource management global permissions for a user,
+ * determined by the assigned roles and by the user's global permissions.
+ * This method does the mapping from the old resource management permissions
+ * to the new resource management permissions.
+ */
+ public static function getGlobalResourcePermission(User $user = null)
+ {
+ if (!$user) {
+ return '';
+ }
+
+ global $perm;
+ //First we check if the user is a root user:
+
+ if ($perm->get_perm($user->id) === 'root') {
+ return 'admin';
+ }
+
+ //The user is not a root user:
+ //We must check if he has special permissions
+ //for the virtual resource with id "global":
+
+ $permission = ResourcePermission::findOneBySql(
+ "user_id = :user_id AND resource_id = 'global'",
+ [
+ 'user_id' => $user->id
+ ]
+ );
+
+ if (!$permission) {
+ //No global permissions in the resource management:
+ return '';
+ }
+
+ return $permission->perms;
+ }
+
+
+ /**
+ * Determines if the specified user has the specified permission level set
+ * for at least one resource.
+ *
+ * @param User $user The users whose resource permissions shall be retrieved.
+ * @param string $level The permission level the user should have
+ * on at least one resource.
+ * @param string|int|DateTime|null $time The timestamp
+ * for the temporary permission level check.
+ * If this is not set the current timestamp will be used.
+ */
+ public static function userHasResourcePermissions(
+ User $user = null,
+ $level = 'admin',
+ $time = null
+ )
+ {
+ if (!$user) {
+ return false;
+ }
+
+ //Get all permissions and temporary permissions of the user:
+
+ $permissions = ResourcePermission::findBySQL(
+ "user_id = :user_id AND resource_id <> 'global'",
+ [
+ 'user_id' => $user->id
+ ]
+ );
+
+ if ($permissions) {
+ foreach ($permissions as $permission) {
+ if (self::comparePermissionLevels($permission->perms, $level) >= 0) {
+ //We have found a permission which is higher or equal
+ //to the requested permission level and can therefore
+ //return true:
+ return true;
+ }
+ }
+ }
+
+ //No (sufficient) permanent permissions exist for the user
+ //for at least one resource. We must check the temporary permissions:
+
+ $used_time = time();
+ if ($time instanceof DateTime) {
+ $used_time = $time->getTimestamp();
+ } elseif ($time) {
+ $used_time = $time;
+ }
+
+ $temp_permissions = ResourceTemporaryPermission::findBySql(
+ "user_id = :user_id AND begin <= :time AND end >= :time
+ AND resource_id != 'global'",
+ [
+ 'user_id' => $user->id,
+ 'time' => $used_time
+ ]
+ );
+
+ if ($temp_permissions) {
+ foreach ($temp_permissions as $permission) {
+ if (self::comparePermissionLevels($permission->perms, $level) >= 0) {
+ //We have found a temporary permission which is higher or
+ //equal to the requested permission level and can therefore
+ //return true:
+ return true;
+ }
+ }
+ }
+
+ //We haven't found any permanent or temporary permission for the user
+ //that match the requested permission level on the specified timestamp.
+ return false;
+ }
+
+
+ //Helper methods:
+
+
+ /**
+ * Returns all permission levels lower than the specified level.
+ */
+ public static function getLowerPermissionLevels($level = 'user')
+ {
+ $defined_levels = ['user', 'autor', 'tutor', 'admin'];
+ if (!in_array($level, $defined_levels)) {
+ return [];
+ }
+
+ if ($level == 'admin') {
+ return array_slice($defined_levels, 0, 3);
+ } elseif ($level == 'tutor') {
+ return array_slice($defined_levels, 0, 2);
+ } elseif ($level == 'autor') {
+ return array_slice($defined_levels, 0, 1);
+ } else {
+ //There is no lower authority than user:
+ return [];
+ }
+ }
+
+
+ /**
+ * Returns all permission levels higher than the specified level.
+ */
+ public static function getHigherPermissionLevels($level = 'user')
+ {
+ $defined_levels = ['user', 'autor', 'tutor', 'admin'];
+ if (!in_array($level, $defined_levels)) {
+ return [];
+ }
+
+ if ($level == 'admin') {
+ //There is no higher authority than admin:
+ return [];
+ } elseif ($level == 'tutor') {
+ return array_slice($defined_levels, -1, 1);
+ } elseif ($level == 'autor') {
+ return array_slice($defined_levels, -2, 2);
+ } elseif ($level == 'user') {
+ return array_slice($defined_levels, -3, 3);
+ } else {
+ //We haven't found what you're looking for:
+ return [];
+ }
+ }
+
+
+ /**
+ * Compares two resource permission levels and returns an integer telling if
+ * the first level is less than (-1), equal (0) or greater than (1) the second level.
+ *
+ * @param string $level The first permission level.
+ * @param string $other_level The second permission level.
+ *
+ * @throws InvalidArgumentException if $level or $other_level are either not set
+ * or if they contain invalid permission level strings.
+ * @returns integer -1 if $level is less than $other_level,
+ * 0 if both are equal,
+ * 1 if $level is greater than $other_level.
+ */
+ public static function comparePermissionLevels(
+ $level = 'user',
+ $other_level = 'user'
+ )
+ {
+ if (!$level or !$other_level) {
+ throw new InvalidArgumentException(
+ _('Mindestens eine Rechtestufe fehlt zum Vergleich!')
+ );
+ }
+
+ //The level list starts with the lowest permission level
+ //and ends with the highest permission level.
+ //The levels are compared by comparing the index values
+ //of the list.
+ $defined_levels = ['user', 'autor', 'tutor', 'admin'];
+
+ if (!in_array($level, $defined_levels)) {
+ throw new InvalidArgumentException(
+ _('Die angegebene Rechtestufe ist ungültig!')
+ );
+ }
+ if (!in_array($other_level, $defined_levels)) {
+ throw new InvalidArgumentException(
+ _('Die angegebene Rechtestufe ist ungültig!')
+ );
+ }
+
+ $level_index = array_search($level, $defined_levels);
+ $other_level_index = array_search($other_level, $defined_levels);
+
+ $diff = $level_index - $other_level_index;
+
+ if ($diff > 0) {
+ //$level is a higher permission level than $other_level.
+ return 1;
+ } elseif ($diff < 0) {
+ //$level is a lower permission level than $other_level.
+ return -1;
+ } else {
+ //$level and $other_level are the same permission level.
+ return 0;
+ }
+ }
+
+
+ /**
+ * Checks if the specified user has the specified permission level
+ * for the resource management system.
+ *
+ * @param User|null $user The user whose global resource permissions shall be checked.
+ * @param string $requested_permission The required permission level for the user.
+ *
+ * @returns bool True, if the user has the required permission level,
+ * false otherwise.
+ */
+ public static function userHasGlobalPermission(
+ User $user = null,
+ $requested_permission = 'user'
+ )
+ {
+ //ResourceManager::getGlobalResourcePermission also checks
+ //for global resource locks and returns 'admin' if the
+ //user is 'admin' user or 'user' in all other cases
+ //where the user has permissions on the resource management system.
+ $existing_permission = self::getGlobalResourcePermission($user);
+
+ if (!$existing_permission) {
+ //No permissions in the resource management:
+ return false;
+ }
+
+ return self::comparePermissionLevels(
+ $existing_permission,
+ $requested_permission
+ ) > -1;
+ }
+
+
+ /**
+ * Counts the resources where the specified user has explicit
+ * permissions set, optionally limiting the result to permanent
+ * permissions.
+ *
+ * @param User $user The user whose resource permissions
+ * shall be checked.
+ * @param string $requested_permission The required minimum permission
+ * level for the user.
+ *
+ * @return int The amount of resources where the specified user has
+ * explicit permissions for.
+ */
+ public static function countResourcesWithPermissions(
+ User $user,
+ $requested_permission = 'user',
+ $exclude_temporary_permissions = false
+ )
+ {
+ $perms = self::getHigherPermissionLevels($requested_permission);
+ array_push($perms, $requested_permission);
+ $total = Resource::countBySql(
+ "INNER JOIN resource_permissions rp
+ USING (resource_id)
+ WHERE
+ rp.perms IN ( :perms )
+ AND
+ rp.user_id = :user_id",
+ [
+ 'perms' => $perms,
+ 'user_id' => $user->id
+ ]
+ );
+
+ if (!$exclude_temporary_permissions) {
+ $now = time();
+ $total += Resource::countBySql(
+ "INNER JOIN resource_temporary_permissions rtp
+ USING (resource_id)
+ WHERE
+ rtp.perms IN ( :perms )
+ AND
+ rtp.user_id = :user_id
+ AND
+ rtp.begin <= :now
+ AND
+ rtp.end >= :now",
+ [
+ 'perms' => $perms,
+ 'user_id' => $user->id,
+ 'now' => $now
+ ]
+ );
+ }
+
+ return $total;
+ }
+
+
+ /**
+ * Checks if the specified user has the specified permission level
+ * on at least one specific resource.
+ *
+ * @param User $user The user whose resource permissions
+ * shall be checked.
+ * @param string $requested_permission The required permission level
+ * for the user.
+ *
+ * @returns bool True, if the user has the required permission level
+ * for at least one resource, false otherwise.
+ */
+ public static function userHasSpecialPermissions(
+ User $user,
+ $requested_permission = 'user'
+ )
+ {
+ return self::countResourcesWithPermissions(
+ $user,
+ $requested_permission
+ ) > 0;
+ }
+
+
+ /**
+ * Get time ranges by looking at the object specified by its ID.
+ * This method works with CourseDate, SeminarCycleDate
+ * and Course objects.
+ *
+ * @param string $range_id The ID of a Stud.IP object.
+ *
+ * @returns Array An Array consisting of arrays of DateTime objects.
+ * The structure of the array is as follows:
+ * [
+ * [
+ * begin timestamp DateTime object
+ * end timestamp DateTime object
+ * ],
+ * ...
+ * ]
+ */
+ public static function getTimeRangesFromRangeId($range_id = null)
+ {
+ if (!$range_id) {
+ return [];
+ }
+
+ //We try a course date first, then a cycle date and finally
+ //a course as this is the standard order to check for dates.
+
+ $time_ranges = [];
+
+ $course_date = CourseDate::find($range_id);
+
+ if ($course_date) {
+ $begin = new DateTime();
+ $begin->setTimestamp($course_date->date);
+ $end = new DateTime();
+ $end->setTimestamp($course_date->end_time);
+ $time_ranges[] = [
+ $begin,
+ $end
+ ];
+ } else {
+ //No course date, but maybe a cycle date?
+ $cycle_date = SeminarCycleDate::find($range_id);
+
+ if ($cycle_date) {
+ if ($cycle_date->dates) {
+ foreach ($cycle_date->dates as $date) {
+ $begin = new DateTime();
+ $begin->setTimestamp($date->date);
+ $end = new DateTime();
+ $end->setTimestamp($date->end_time);
+ $time_ranges[] = [
+ $begin,
+ $end
+ ];
+ }
+ }
+ } else {
+ //No cycle date. It must be a course then!
+ $course = Course::find($range_id);
+
+ if ($course) {
+ if ($course->dates) {
+ foreach ($course->dates as $date) {
+ $begin = new DateTime();
+ $begin->setTimestamp($date->date);
+ $end = new DateTime();
+ $end->setTimestamp($date->end_time);
+ $time_ranges[] = [
+ $begin,
+ $end
+ ];
+ }
+ }
+ if ($course->cycles) {
+ foreach ($course->cycles as $cycle) {
+ if ($cycle->dates) {
+ foreach ($cycle->dates as $date) {
+ $begin = new DateTime();
+ $begin->setTimestamp($date->date);
+ $end = new DateTime();
+ $end->setTimestamp($date->end_time);
+ $time_ranges[] = [
+ $begin,
+ $end
+ ];
+ }
+ }
+ }
+ }
+ }
+ //No else here: Enough is enough.
+ }
+ }
+
+ return $time_ranges;
+ }
+
+
+ /**
+ * Determines the last booking of the user and calculates the timespan
+ * from the last booking until now.
+ *
+ * @returns DateInterval|null|false Either a date interval from the last
+ * activity to the provided DateTime object or null in case the user
+ * has never been active. False is returned in case the timestamp
+ * comparison fails. @see DateTime::diff in the PHP Documentation.
+ */
+ public static function getUserInactivityInterval(User $user, DateTime $time)
+ {
+ $db = DBManager::get();
+
+ $stmt = $db->prepare(
+ "SELECT MAX(mkdate) FROM resource_bookings
+ WHERE range_id = :user_id"
+ );
+
+ $stmt->execute(['user_id' => $user->id]);
+
+ $last_activity_timestamp = $stmt->fetchColumn();
+
+ if (($last_activity_timestamp === false) or ($last_activity_timestamp === null)) {
+ //No activity found
+ return null;
+ }
+
+ $last_activity = new DateTime();
+ $last_activity->setTimestamp($last_activity_timestamp);
+
+ //Calculate the difference between the last activity and $time,
+ //if $time is greater or equal than $last_activity.
+ //If $time is less than $last_activity return null since the user
+ //has not been active at the timestamp $time.
+
+ if ($time < $last_activity) {
+ //The user has not been active at $time.
+ return null;
+ }
+
+ return $time->diff($last_activity);
+ }
+
+
+ /**
+ * Retrieves booking plan objects like resource bookings and requests.
+ *
+ * @param string|null $included_request_types If this parameter is a string,
+ * it can have the values 'all' for retrieving all requests or the
+ * ID of a user so that only requests of that user are retrieved.
+ *
+ */
+ public static function getBookingPlanObjects(
+ Resource $resource,
+ $time_ranges = [],
+ $allowed_booking_types = [],
+ $included_requests = null
+ )
+ {
+ if (!count($time_ranges)) {
+ return [];
+ }
+
+ $objects = [];
+
+ $bookings = \ResourceBooking::findByResourceAndTimeRanges(
+ $resource,
+ $time_ranges,
+ $allowed_booking_types
+ );
+ $objects = array_merge($objects, $bookings);
+
+ if ($included_requests == 'all') {
+ $requests = \ResourceRequest::findByResourceAndTimeRanges(
+ $resource,
+ $time_ranges,
+ 0
+ );
+ $objects = array_merge($objects, $requests);
+ } elseif ($included_requests) {
+ $requests = \ResourceRequest::findByResourceAndTimeRanges(
+ $resource,
+ $time_ranges,
+ 0,
+ [],
+ 'user_id = :user_id',
+ ['user_id' => $included_requests]
+ );
+ $objects = array_merge($objects, $requests);
+ }
+
+ return $objects;
+ }
+
+
+ public static function getAllResourceClassNames($excluded_classes = [])
+ {
+ $class_names = [];
+ //We have to make the autoloader load all resource model classes,
+ //otherwise the get_declared_classes() statement below won't find
+ //any class derived from Resource!
+ foreach (
+ scandir($GLOBALS['STUDIP_BASE_PATH'] . '/lib/models/resources')
+ as $resource_model_file) {
+ $path = pathinfo($resource_model_file);
+
+ if ($path['extension'] == 'php') {
+ $class_name = explode('.class', $path['filename'])[0];
+ class_exists($class_name);
+ }
+ }
+
+ foreach (get_declared_classes() as $class_name) {
+ if (is_a($class_name, 'Resource', true)) {
+ foreach ($excluded_classes as $excl_class) {
+ //For the resource base class, we must not check
+ //derived classes.
+ if ($excl_class == 'Resource') {
+ if ($class_name == 'Resource') {
+ continue 2;
+ }
+ } else {
+ if (is_a($class_name, $excl_class, true)) {
+ //The class belongs to one of the
+ //excluded resource classes.
+ continue 2;
+ }
+ }
+ }
+ $class_names[] = $class_name;
+ }
+ }
+ sort($class_names);
+
+ return $class_names;
+ }
+
+
+ /**
+ * Returns the names of all hierarchy elements from the root to the
+ * specified resource.
+ *
+ * @param Resource $room The resource to start with.
+ *
+ * @returns string[] An array with the names of the hierarchy elements,
+ * starting with the top resource's name.
+ */
+ public static function getHierarchyNames(Resource $resource)
+ {
+ $names = [$resource->name];
+ $current_node = $resource->parent;
+ while ($current_node instanceof Resource) {
+ $names[] = $current_node->name;
+ $current_node = $current_node->parent;
+ }
+ return array_reverse($names);
+ }
+
+
+ /**
+ * Returns the hierarchy elements from the root to the
+ * specified resource.
+ *
+ * @param Resource $room The resource to start with.
+ *
+ * @returns Resource[] An array with the hierarchy elements,
+ * starting with the top resource.
+ */
+ public static function getHierarchy(Resource $resource)
+ {
+ $hierarchy_ids = [$resource->id];
+ $items = [$resource];
+ $current_node = $resource->parent;
+ while ($current_node instanceof Resource) {
+ if (in_array($current_node->id, $hierarchy_ids)) {
+ //Circular hierarchy. That's a big error!
+ throw new InvalidResourceException(
+ sprintf(
+ _('Zirkuläre Hierarchie: Die Ressource %1$s ist ein Elternknoten von sich selbst!'),
+ $current_node->name
+ )
+ );
+ }
+ $items[] = $current_node;
+ $hierarchy_ids[] = $current_node->id;
+ $current_node = $current_node->parent;
+ }
+ return array_reverse($items);
+ }
+}
generated by cgit v1.0 at 2026-05-27 08:36:28 +0000