Source of CControllerUserroleEditGeneral.php - Zabbix

Raw file
Source viewDiff to previous
4.35 KB
xxxxxxxxxx
 
<?php declare(strict_types = 0);
/*
** Zabbix
** Copyright (C) 2001-2023 Zabbix SIA
**
** This program is free software; you can redistribute it and/or modify
** it under the terms of the GNU General Public License as published by
** the Free Software Foundation; either version 2 of the License, or
** (at your option) any later version.
**
** This program is distributed in the hope that it will be useful,
** but WITHOUT ANY WARRANTY; without even the implied warranty of
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
** GNU General Public License for more details.
**
** You should have received a copy of the GNU General Public License
** along with this program; if not, write to the Free Software
** Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
**/
​
​
/**
 * Class containing operations with userrole.
 */
abstract class CControllerUserroleEditGeneral extends CController {
​
    /**
     * @throws APIException
     */
    protected function getRulesInput(int $user_type): array {
        return array_merge(
            $this->getUiSectionRules($user_type),
            $this->getServiceSectionRules(),
            $this->getModuleSectionRules(),
            $this->getApiSectionRules(),
            $this->getActionSectionRules($user_type)
        );
    }
​
    private function getUiSectionRules(int $user_type): array {
        return [
            'ui' => array_map(
                function (string $rule): array {
                    return [
                        'name' => str_replace('ui.', '', $rule),
                        'status' => $this->getInput(str_replace('.', '_', $rule))
                    ];
                },
                CRoleHelper::getUiElementsByUserType($user_type)
            ),
            'ui.default_access' => $this->getInput('ui_default_access')
        ];
    }
​
    private function getServiceSectionRules(): array {
        $read_access = $this->getInput('service_read_access', CRoleHelper::SERVICES_ACCESS_NONE);
        $write_access = $this->getInput('service_write_access', CRoleHelper::SERVICES_ACCESS_NONE);
​
        return [
            'services.read.mode' => $read_access == CRoleHelper::SERVICES_ACCESS_ALL
                ? ZBX_ROLE_RULE_SERVICES_ACCESS_ALL
                : ZBX_ROLE_RULE_SERVICES_ACCESS_CUSTOM,
            'services.read.list' => $read_access == CRoleHelper::SERVICES_ACCESS_LIST
                ? array_map(
                    static function (string $serviceid): array {
                        return ['serviceid' => $serviceid];
                    },
                    $this->getInput('service_read_list', []))
                : [],
            'services.read.tag' => $read_access == CRoleHelper::SERVICES_ACCESS_LIST
                ? [
                    'tag' => trim($this->getInput('service_read_tag_tag', '')),
                    'value' => trim($this->getInput('service_read_tag_value', ''))
                ]
                : ['tag' => '', 'value' => ''],
            'services.write.mode' => $write_access == CRoleHelper::SERVICES_ACCESS_ALL
                ? ZBX_ROLE_RULE_SERVICES_ACCESS_ALL
                : ZBX_ROLE_RULE_SERVICES_ACCESS_CUSTOM,
            'services.write.list' => $write_access == CRoleHelper::SERVICES_ACCESS_LIST
                ? array_map(
                    static function (string $serviceid): array {
                        return ['serviceid' => $serviceid];
                    },
                    $this->getInput('service_write_list', []))
                : [],
            'services.write.tag' => $write_access == CRoleHelper::SERVICES_ACCESS_LIST
                ? [
                    'tag' => trim($this->getInput('service_write_tag_tag', '')),
                    'value' => trim($this->getInput('service_write_tag_value', ''))
                ]
                : ['tag' => '', 'value' => '']