3 trait Pman_Core_RooTrait {
5 var $validTables = false;
11 var $debugEnabled = true;
29 if (!empty($this->_hasInit)) {
33 $this->_hasInit = true;
35 $boot = HTML_FlexyFramework::get();
37 $this->appName= $boot->appName;
38 $this->appNameShort= $boot->appNameShort;
39 $this->appModules= $boot->enable;
40 $this->isDev = empty($boot->Pman['isDev']) ? false : $boot->Pman['isDev'];
41 $this->appDisable = $boot->disable;
42 $this->appDisabled = explode(',', $boot->disable);
43 $this->version = $boot->version;
44 $this->uiConfig = empty($boot->Pman['uiConfig']) ? false : $boot->Pman['uiConfig'];
46 if (!empty($ff->Pman['local_autoauth']) &&
47 ($_SERVER['SERVER_ADDR'] == '127.0.0.1') &&
48 ($_SERVER['REMOTE_ADDR'] == '127.0.0.1')
55 function checkDebug($req = false)
57 $req = $req === false ? $_REQUEST : $req;
58 if (isset($req['_debug'])
64 method_exists($this->authUser,'canDebug')
66 $this->authUser->canDebug()
71 method_exists($this->authUser,'groups')
73 is_a($this->authUser, 'Pman_Core_DataObjects_Person')
75 in_array('Administrators', $this->authUser->groups('name'))
80 DB_DAtaObject::debuglevel((int)$req['_debug']);
85 function dataObject($tab)
87 if (is_array($this->validTables) && !in_array($tab, $this->validTables)) {
88 $this->jerr("Invalid url - not listed in validTables");
91 $tab = str_replace('/', '',$tab); // basic protection??
93 $x = DB_DataObject::factory($tab);
95 if (!is_a($x, 'DB_DataObject')) {
96 $this->jerr('invalid url - no dataobject');
102 function selectSingle($x, $id, $req=false)
104 $_columns = !empty($req['_columns']) ? explode(',', $req['_columns']) : false;
106 if (!is_array($id) && empty($id)) {
108 if (method_exists($x, 'toRooSingleArray')) {
109 $this->jok($x->toRooSingleArray($this->authUser, $req));
112 if (method_exists($x, 'toRooArray')) {
113 $this->jok($x->toRooArray($req));
116 $this->jok($x->toArray());
119 $this->loadMap($x, array(
120 'columns' => $_columns,
123 if ($req !== false) {
124 $this->setFilters($x, $req);
129 $x->setFrom($req['lookup'] );
131 if (!$x->find(true)) {
132 if (!empty($id['_id'])) {
134 $this->jok($x->toArray());
139 } else if (!$x->get($id)) {
140 $this->jerr("selectSingle: no such record ($id)");
143 // ignore perms if comming from update/insert - as it's already done...
144 if ($req !== false && !$this->checkPerm($x,'S')) {
145 $this->jerr("PERMISSION DENIED - si");
147 // different symantics on all these calls??
148 if (method_exists($x, 'toRooSingleArray')) {
149 $this->jok($x->toRooSingleArray($this->authUser, $req));
151 if (method_exists($x, 'toRooArray')) {
152 $this->jok($x->toRooArray($req));
155 $this->jok($x->toArray());
162 function loadMap($do, $cfg =array())
164 $onlycolumns = !empty($cfg['columns']) ? $cfg['columns'] : false;
165 $distinct = !empty($cfg['distinct']) ? $cfg['distinct'] : false;
166 $excludecolumns = !empty($cfg['exclude']) ? $cfg['exclude'] : array();
168 $excludecolumns[] = 'passwd'; // we never expose passwords
170 $ret = $do->autoJoin(array(
171 'include' => $onlycolumns,
172 'exclude' => $excludecolumns,
173 'distinct' => $distinct
176 $this->countWhat = $ret['count'];
177 $this->cols = $ret['cols'];
178 $this->colsJname = $ret['join_names'];
184 function setFilters($x, $q)
186 if (method_exists($x, 'applyFilters')) {
187 // DB_DataObject::debugLevel(1);
188 if (false === $x->applyFilters($q, $this->authUser, $this)) {
192 $q_filtered = array();
195 // var_dump($keys);exit;
196 foreach($q as $key=>$val) {
198 if (in_array($key,$keys) && !is_array($val)) {
203 // handles name[]=fred&name[]=brian => name in ('fred', 'brian').
204 // value is an array..
205 if (is_array($val) ) {
209 if ($key[0] == '!') {
211 $key = substr($key,1);
214 if (!in_array( $key, array_keys($this->cols))) {
218 // support a[0] a[1] ..... => whereAddIn(
221 foreach($val as $k=>$v) {
222 if (!is_numeric($k)) {
226 // FIXME: note this is not typesafe for anything other than mysql..
228 if (!is_numeric($v) || !is_long($v)) {
237 $x->whereAddIn($pref . (
238 isset($this->colsJname[$key]) ?
239 $this->colsJname[$key] :
240 ($x->tableName(). '.'.$key)),
241 $ar, $quote ? 'string' : 'int');
248 // handles !name=fred => name not equal fred.
249 if ($key[0] == '!' && in_array(substr($key, 1), array_keys($this->cols))) {
251 $key = substr($key, 1) ;
254 isset($this->colsJname[$key]) ?
255 $this->colsJname[$key] :
256 $x->tableName(). '.'.$key ) . ' != ' .
257 (is_numeric($val) ? $val : "'". $x->escape($val) . "'")
265 // Events and remarks -- fixme - move to events/remarsk...
266 case 'on_id': // where TF is this used...
267 if (!empty($q['query']['original'])) {
268 // DB_DataObject::debugLevel(1);
269 $o = (int) $q['query']['original'];
271 $x->whereAdd("(on_id = $oid OR
272 on_id IN ( SELECT distinct(id) FROM Documents WHERE original = $o )
281 if (strlen($val) && $key[0] != '_') {
282 $q_filtered[$key] = $val;
285 // subjoined columns = check the values.
286 // note this is not typesafe for anything other than mysql..
288 if (isset($this->colsJname[$key])) {
290 if (!is_numeric($val) || !is_long($val)) {
293 $x->whereAdd( "{$this->colsJname[$key]} = " . ($quote ? "'". $x->escape($val) ."'" : $val));
301 if (!empty($q_filtered)) {
302 $x->setFrom($q_filtered);
305 if (!empty($q['query']['name'])) {
306 if (in_array( 'name', array_keys($x->table()))) {
307 $x->whereAdd($x->tableName().".name LIKE '". $x->escape($q['query']['name']) . "%'");
318 static $permitError = false;
320 function onPearError($err)
322 static $reported = false;
327 if (self::$permitError) {
334 $out = $err->toString();
339 foreach($err->backtrace as $b) {
340 $ret[] = @$b['file'] . '(' . @$b['line'] . ')@' . @$b['class'] . '::' . @$b['function'];
346 //convert the huge backtrace into something that is readable..
347 $out .= "\n" . implode("\n", $ret);
355 function addEvent($act, $obj = false, $remarks = '')
357 if (!empty(HTML_FlexyFramework::get()->Pman['disable_events'])) {
361 $e = DB_DataObject::factory('Events');
362 $e->init($act,$obj,$remarks);
364 $e->event_when = date('Y-m-d H:i:s');
368 // fixme - this should be in onInsert..
369 $wa = DB_DataObject::factory('core_watch');
370 if (method_exists($wa,'notifyEvent')) {
371 $wa->notifyEvent($e); // trigger any actions..
374 $e->onInsert(isset($_REQUEST) ? $_REQUEST : array() , $this);
380 function checkPerm($obj, $lvl, $req= null)
382 if (!method_exists($obj, 'checkPerm')) {
385 if ($obj->checkPerm($lvl, $this->authUser, $req)) {
392 function hasPerm($name, $lvl) // do we have a permission
394 static $pcache = array();
395 $au = $this->getAuthUser();
396 return $au && $au->hasPerm($name, $lvl);
400 function getAuthUser()
402 die('Get auth user is not implement.');