aboutsummaryrefslogtreecommitdiff
path: root/lib/classes/JsonApi/Routes/Courses/Authority.php
blob: 42f36b655defd9fd5396b2273a3071c80c678501 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60

<?php

namespace JsonApi\Routes\Courses;

use Course;
use User;

class Authority
{
    const SCOPE_BASIC = 'basic';
    const SCOPE_EXTENDED = 'extended';

    /**
     * @SuppressWarnings(PHPMD.Superglobals)
     */
    public static function canShowCourse(User $user, Course $course, $scope = self::SCOPE_BASIC): bool
    {
        switch ($scope) {
            case self::SCOPE_BASIC:
                return
                    // visible
                    $course->visible
                    || $GLOBALS['perm']->have_perm(\Config::get()->SEM_VISIBILITY_PERM)
                    // member
                    || $GLOBALS['perm']->have_studip_perm('user', $course->id, $user->id);

            case self::SCOPE_EXTENDED:
                return $GLOBALS['perm']->have_studip_perm('user', $course->id, $user->id);
        }

        return false;
    }

    /**
     * @SuppressWarnings(PHPMD.Superglobals)
     */
    public static function canEditCourse(User $user, Course $course)
    {
        return $GLOBALS['perm']->have_studip_perm('tutor', $course->id, $user->id);
    }

    /**
     * @SuppressWarnings(PHPMD.UnusedFormalParameter)
     */
    public static function canIndexCourses(User $user)
    {
        return true;
    }

    public static function canIndexMemberships(User $user, Course $course)
    {
        return self::canShowCourse($user, $course, self::SCOPE_BASIC);
    }

    public static function canIndexMembershipsOfUser(User $observer, User $user)
    {
        return $observer->id === $user->id
            || $GLOBALS['perm']->have_perm('root', $observer->id);
    }
}
generated by cgit v1.0 at 2026-05-28 18:07:11 +0000