imacat/selima-perl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit.

Browse Source
This commit is contained in:
依瑪貓
2026-03-10 21:25:26 +08:00
commit 78739bf725
3089 changed files with 472990 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

335
lib/php/monica/chkpriv.inc.php Normal file
View File

@@ -0,0 +1,335 @@
<?php
// File name: chkpriv.inc.php
// Description: PHP subroutines to check the privileges
// Date: 2001-02-13
// Author: imacat <imacat@pristine.com.tw>
// Copyright: Copyright (C) 2001-2007 Pristine Communications
// Set the include path
if (!defined("INCPATH_SET")) {
require_once dirname(__FILE__) . "/incpath.inc.php";
}
// Referenced subroutines
require_once "monica/chkfunc.inc.php";
require_once "monica/login.inc.php";
require_once "monica/sql.inc.php";
require_once "monica/username.inc.php";
require_once "monica/usrconst.inc.php";
// Constant symbols
// is_admin: If the user is an administrator (by user sn)
function is_admin($user = null)
{
// Cache the result
static $cache = array();
// Default to the current logged-in user
if (is_null($user) || $user == get_login_sn()) {
return is_su() || in_array(ADMIN_GROUP, get_login_groups());
}
// Return the cache
if (array_key_exists($user, $cache)) {
return $cache[$user];
}
// Super user is always an administrator
if (is_su($user)) {
$cache[$user] = true;
return true;
}
// Obtain the groups
$groups = user_parent_groups($user);
$cache[$user] = in_array(ADMIN_GROUP, $groups);
return $cache[$user];
}
// is_group: If the user belongs to a group
function is_group($group)
{
return in_array($group, get_login_groups());
}
// is_su: If the user is a super user
function is_su($user = null)
{
// Cache the result
static $cache = array();
// Default to check the current user
if (is_null($user)) {
return in_array(SU_GROUP, get_login_groups());
}
// Return the cache
if (array_key_exists($user, $cache)) {
return $cache[$user];
}
// Obtain the groups
$groups = user_parent_groups($user);
$cache[$user] = in_array(SU_GROUP, $groups);
return $cache[$user];
}
// user_parent_groups: Return the full list of groups a user belongs to
function user_parent_groups($sn)
{
// Cache the result
static $cache = array();
// Bounce for null
if (is_null($sn)) {
return array();
}
// Return the cache
if (array_key_exists($sn, $cache)) {
return $cache[$sn];
}
// Check the validity of the user first
if ($sn != get_login_sn()) {
if (!check_sn_in($sn, "users")) {
$cache[$sn] = array();
return $cache[$sn];
}
}
// Find the direct parent groups
$select = "SELECT grp FROM usermem"
. " WHERE member=$sn"
. " ORDER BY grp;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
// Obtain the direct parent groups
for ($i = 0, $current = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$current[] = $row["grp"];
}
// ALLUSERS_GROUP is automatically added to all logged-in users
$allusers = groupsn(ALLUSERS_GROUP);
if (!is_null($allusers) && !in_array($allusers, $current)) {
$current[] = $allusers;
sort($current);
}
// Trace all their ancester groups
while (true) {
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "member=" . $current[$i];
}
$select = "SELECT grp FROM groupmem"
. " WHERE " . implode(" OR ", $conds)
. " GROUP BY grp ORDER BY grp;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $newfound = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$newfound[] = $row["grp"];
}
$newfound = array_diff($newfound, $current);
if (count($newfound) == 0) {
break;
}
$current = array_merge($current, $newfound);
}
// Find their ID
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "sn=" . $current[$i];
}
$select = "SELECT id FROM groups"
. " WHERE " . implode(" OR ", $conds)
. " ORDER BY id;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $items = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$items[] = $row["id"];
}
// Cache it
$cache[$sn] = $items;
return $items;
}
// group_parent_groups: Return the full list of groups a group belongs to
function group_parent_groups($sn)
{
// Cache the result
static $cache = array();
// Bounce for null
if (is_null($sn)) {
return array();
}
// Return the cache
if (array_key_exists($sn, $cache)) {
return $cache[$sn];
}
// Check the validity of the group first
if (!check_sn_in($sn, "groups")) {
$cache[$sn] = array();
return $cache[$sn];
}
$current = array($sn);
// Trace all their ancester groups
while (true) {
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "member=" . $current[$i];
}
$select = "SELECT grp FROM groupmem"
. " WHERE " . implode(" OR ", $conds)
. " GROUP BY grp ORDER BY grp;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $newfound = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$newfound[] = $row["grp"];
}
$newfound = array_values(array_unique(array_merge($current, $newfound)));
sort($newfound);
if ($newfound == $current) {
break;
}
$current = $newfound;
}
// Remove myself
$current = array_values(array_diff($current, array($sn)));
// Find their ID
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "sn=" . $current[$i];
}
$select = "SELECT id FROM groups"
. " WHERE " . implode(" OR ", $conds)
. " ORDER BY id;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $items = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$items[] = $row["id"];
}
// Cache it
$cache[$sn] = $items;
return $items;
}
// group_child_users: Return the full list of users in a group
function group_child_users($sn)
{
// Cache the result
static $cache = array();
// Bounce for null
if (is_null($sn)) {
return array();
}
// Return the cache
if (array_key_exists($sn, $cache)) {
return $cache[$sn];
}
$current = array($sn);
// Collect all their lower child groups
while (true) {
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "grp=" . $current[$i];
}
$select = "SELECT member FROM groupmem"
. " WHERE " . implode(" OR ", $conds)
. " GROUP BY member ORDER BY member;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $newfound = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$newfound[] = $row["member"];
}
$newfound = array_values(array_unique(array_merge($current, $newfound)));
sort($newfound);
if ($newfound == $current) {
break;
}
$current = $newfound;
}
// Find their member users
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "grp=" . $current[$i];
}
$select = "SELECT member FROM usermem"
. " WHERE " . implode(" OR ", $conds)
. " GROUP BY member ORDER BY member;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $current = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$current[] = $row["member"];
}
// Find their ID
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "sn=" . $current[$i];
}
$select = "SELECT id FROM users"
. " WHERE " . implode(" OR ", $conds)
. " ORDER BY id;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $items = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$items[] = $row["id"];
}
// Cache it
$cache[$sn] = $items;
return $items;
}
// group_child_groups: Return the full list of groups in a group
function group_child_groups($sn)
{
// Cache the result
static $cache = array();
// Bounce for null
if (is_null($sn)) {
return array();
}
// Return the cache
if (array_key_exists($sn, $cache)) {
return $cache[$sn];
}
$current = array($sn);
// Collect all their lower child groups
while (true) {
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "grp=" . $current[$i];
}
$select = "SELECT member FROM groupmem"
. " WHERE " . implode(" OR ", $conds)
. " GROUP BY member ORDER BY member;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $newfound = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$newfound[] = $row["member"];
}
$newfound = array_values(array_unique(array_merge($current, $newfound)));
sort($newfound);
if ($newfound == $current) {
break;
}
$current = $newfound;
}
// Remove myself
$current = array_values(array_diff($current, array($sn)));
// Find their ID
$conds = array();
for ($i = 0; $i < count($current); $i++) {
$conds[] = "sn=" . $current[$i];
}
$select = "SELECT id FROM groups"
. " WHERE " . implode(" OR ", $conds)
. " ORDER BY id;\n";
$result = sql_query($select);
$count = sql_num_rows($result);
for ($i = 0, $items = array(); $i < $count; $i++) {
$row = sql_fetch_assoc($result);
$items[] = $row["id"];
}
// Cache it
$cache[$sn] = $items;
return $items;
}
?>