1#@!#!123s

: / home / ensad / www / gestiondepersonal / core / src / Users / Common / Model /
Filename : User.php
back
<?php
/*
 Copyright (c) 2018 [Glacies UG, Berlin, Germany] (http://glacies.de)
 Developer: Thilina Hasantha (http://lk.linkedin.com/in/thilinah | https://github.com/thilinah)
 */
namespace Users\Common\Model;

use Classes\BaseService;
use Classes\ModuleAccess;
use Classes\ModuleAccessService;
use Classes\PermissionManager;
use Model\BaseModel;
use Classes\IceResponse;

class User extends BaseModel
{
    public $table = 'Users';

    public function getAdminAccess()
    {
        return array("get","element","save","delete");
    }

    public function getManagerAccess()
    {
        return array();
    }

    public function getUserAccess()
    {
        return array();
    }

    public function validateSave($obj)
    {
        $userTemp = new User();

        if (empty($obj->id)) {
            $users = $userTemp->Find("email = ?", array($obj->email));
            if (count($users) > 0) {
                return new IceResponse(IceResponse::ERROR, "A user with same authentication email already exist");
            }
        } else {
            $users = $userTemp->Find("email = ? and id <> ?", array($obj->email, $obj->id));
            if (count($users) > 0) {
                return new IceResponse(IceResponse::ERROR, "A user with same authentication email already exist");
            }

            //Check if you are trying to change user level
            $oldUser = new User();
            $oldUser->Load("id = ?", array($obj->id));
            if ($oldUser->user_level != $obj->user_level && $oldUser->user_level == 'Admin') {
                $adminUsers = $userTemp->Find("user_level = ?", array('Admin'));
                if (count($adminUsers) == 1 && $adminUsers[0]->id == $obj->id) {
                    return new IceResponse(
                        IceResponse::ERROR,
                        'You are not allowed to revoke your admin rights'
                    );
                }
            }
        }

        if (PermissionManager::isRestrictedUserLevel($obj->user_level) && empty($obj->default_module)) {
            return new IceResponse(
                IceResponse::ERROR,
                'Restricted users must always have a default module'
            );
        }

        if (!empty($obj->default_module)
            && !ModuleAccessService::getInstance()->isModuleEnabledForUser($obj->default_module, $obj)
        ) {
            return new IceResponse(
                IceResponse::ERROR,
                'Selected default module is not allowed for the user'
            );
        }

        return new IceResponse(IceResponse::SUCCESS, "");
    }

    public function getModuleAccess()
    {
        return [
            new ModuleAccess('users', 'admin'),
        ];
    }

    public function postProcessGetData($obj)
    {
        return BaseService::getInstance()->cleanUpUser($obj);
    }

    public function postProcessGetElement($obj)
    {
        return BaseService::getInstance()->cleanUpUser($obj);
    }
}