mirror of
https://github.com/phpbb/phpbb.git
synced 2025-08-07 01:06:48 +02:00
revamp how we query permissions. This is half-experimental actually, needs a bit of testing.
Should fix the bug with low max_join_size values, but may give problems for those on very low memory settings. git-svn-id: file:///svn/phpbb/branches/phpBB-3_0_0@8384 89ea8834-ac86-4346-8a33-228a782c2dd0
This commit is contained in:
Meik Sievertsen
@@ -22,8 +22,6 @@ if (!defined('IN_PHPBB'))
|
||||
*/
|
||||
class auth_admin extends auth
|
||||
{
|
||||
var $option_ids = array();
|
||||
|
||||
/**
|
||||
* Init auth settings
|
||||
*/
|
||||
@@ -33,7 +31,7 @@ class auth_admin extends auth
|
||||
|
||||
if (($this->acl_options = $cache->get('_acl_options')) === false)
|
||||
{
|
||||
$sql = 'SELECT auth_option, is_global, is_local
|
||||
$sql = 'SELECT auth_option_id, auth_option, is_global, is_local
|
||||
FROM ' . ACL_OPTIONS_TABLE . '
|
||||
ORDER BY auth_option_id';
|
||||
$result = $db->sql_query($sql);
|
||||
@@ -51,25 +49,14 @@ class auth_admin extends auth
|
||||
{
|
||||
$this->acl_options['local'][$row['auth_option']] = $local++;
|
||||
}
|
||||
|
||||
$this->acl_options['id'][$row['auth_option']] = (int) $row['auth_option_id'];
|
||||
$this->acl_options['option'][(int) $row['auth_option_id']] = $row['auth_option'];
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
|
||||
$cache->put('_acl_options', $this->acl_options);
|
||||
}
|
||||
|
||||
if (!sizeof($this->option_ids))
|
||||
{
|
||||
$sql = 'SELECT auth_option_id, auth_option
|
||||
FROM ' . ACL_OPTIONS_TABLE;
|
||||
$result = $db->sql_query($sql);
|
||||
|
||||
$this->option_ids = array();
|
||||
while ($row = $db->sql_fetchrow($result))
|
||||
{
|
||||
$this->option_ids[$row['auth_option']] = $row['auth_option_id'];
|
||||
}
|
||||
$db->sql_freeresult($result);
|
||||
}
|
||||
}
|
||||
|
||||
/**
|
||||
@@ -779,7 +766,7 @@ class auth_admin extends auth
|
||||
$this->acl_clear_prefetch();
|
||||
|
||||
// Because we just changed the options and also purged the options cache, we instantly update/regenerate it for later calls to succeed.
|
||||
$this->option_ids = $this->acl_options = array();
|
||||
$this->acl_options = array();
|
||||
$this->auth_admin();
|
||||
|
||||
return true;
|
||||
@@ -817,7 +804,7 @@ class auth_admin extends auth
|
||||
$flag = substr($flag, 0, strpos($flag, '_') + 1);
|
||||
|
||||
// This ID (the any-flag) is set if one or more permissions are true...
|
||||
$any_option_id = (int) $this->option_ids[$flag];
|
||||
$any_option_id = (int) $this->acl_options['id'][$flag];
|
||||
|
||||
// Remove any-flag from auth ary
|
||||
if (isset($auth[$flag]))
|
||||
@@ -829,7 +816,7 @@ class auth_admin extends auth
|
||||
$auth_option_ids = array((int)$any_option_id);
|
||||
foreach ($auth as $auth_option => $auth_setting)
|
||||
{
|
||||
$auth_option_ids[] = (int) $this->option_ids[$auth_option];
|
||||
$auth_option_ids[] = (int) $this->acl_options['id'][$auth_option];
|
||||
}
|
||||
|
||||
$sql = "DELETE FROM $table
|
||||
@@ -892,7 +879,7 @@ class auth_admin extends auth
|
||||
{
|
||||
foreach ($auth as $auth_option => $setting)
|
||||
{
|
||||
$auth_option_id = (int) $this->option_ids[$auth_option];
|
||||
$auth_option_id = (int) $this->acl_options['id'][$auth_option];
|
||||
|
||||
if ($setting != ACL_NO)
|
||||
{
|
||||
@@ -948,7 +935,7 @@ class auth_admin extends auth
|
||||
$sql_ary = array();
|
||||
foreach ($auth as $auth_option => $setting)
|
||||
{
|
||||
$auth_option_id = (int) $this->option_ids[$auth_option];
|
||||
$auth_option_id = (int) $this->acl_options['id'][$auth_option];
|
||||
|
||||
if ($setting != ACL_NO)
|
||||
{
|
||||
@@ -965,7 +952,7 @@ class auth_admin extends auth
|
||||
{
|
||||
$sql_ary[] = array(
|
||||
'role_id' => (int) $role_id,
|
||||
'auth_option_id' => (int) $this->option_ids[$flag],
|
||||
'auth_option_id' => (int) $this->acl_options['id'][$flag],
|
||||
'auth_setting' => ACL_NEVER
|
||||
);
|
||||
}
|
||||
@@ -1242,13 +1229,8 @@ class auth_admin extends auth
|
||||
return false;
|
||||
}
|
||||
|
||||
$hold_ary = $this->acl_raw_data($from_user_id, false, false);
|
||||
$hold_ary = $this->acl_raw_data_single_user($from_user_id);
|
||||
|
||||
if (isset($hold_ary[$from_user_id]))
|
||||
{
|
||||
$hold_ary = $hold_ary[$from_user_id];
|
||||
}
|
||||
|
||||
// Key 0 in $hold_ary are global options, all others are forum_ids
|
||||
|
||||
// We disallow copying admin permissions
|
||||
@@ -1256,12 +1238,12 @@ class auth_admin extends auth
|
||||
{
|
||||
if (strpos($opt, 'a_') === 0)
|
||||
{
|
||||
$hold_ary[0][$opt] = ACL_NEVER;
|
||||
$hold_ary[0][$this->acl_options['id'][$opt]] = ACL_NEVER;
|
||||
}
|
||||
}
|
||||
|
||||
// Force a_switchperm to be allowed
|
||||
$hold_ary[0]['a_switchperm'] = ACL_YES;
|
||||
$hold_ary[0][$this->acl_options['id']['a_switchperm']] = ACL_YES;
|
||||
|
||||
$user_permissions = $this->build_bitstring($hold_ary);
|
||||
|
||||
|
||||
Reference in New Issue
Block a user