aboutsummaryrefslogblamecommitdiffstats
path: root/include/acl_selectors.php
blob: f158a439b683ed379ae514084e4b622fc528f331 (plain) (tree)
1
2
3
4
5
6
7
8
9
     
   

                                  
   
 
 
                         
                                                              
 
 

                                                                                        
                                                                                            
                                                                                                                  
                                                                                                                                                                                                  
                                                                                                                                                        
                                                                                                                                                                                                              
                                                              
  
                                                                                                                                                           
                                                                
                                     
                                                                           
                                     
                                                                         
 
                                                                                         
                                                                                       
                                                                                                                            
                                                                                




                                                                                   
                                 
                                                              





                                                                            



                                                
 




                                                                  
                     












                                                                                                                                                 
         
 
                                                                                                    

                                       


                                                                                                                                                        
                 
                                         
         
                                                                                                                            


                                       










                                                                                                                                                                                      
                             
                                           
                                                
                                                              
                                                 
                                                                                                                                                                   
                                                                                                                                                                                                 
                         




                                                                                    

                 
                                                       
                                                       
                                                   
                                              

                                                                  
                                                      
                                                      
                                                            


                                                                                                                                             
                                                  


                                                              
                                                       
                                                          
                                                                                                          
           
 
                  
 
   








                                                                                        













                                                                                                                                                          
<?php
/**
 * @file include/acl_selectors.php
 *
 * @package acl_selectors
 */


function fixacl(&$item) {
	$item = str_replace( [ '<', '>' ], [ '', '' ], $item);
}

/**
* Builds a modal dialog for editing permissions, using acl_selector.tpl as the template.
*
* @param array   $defaults Optional access control list for the initial state of the dialog.
* @param boolean $show_jotnets Whether plugins for federated networks should be included in the permissions dialog
* @param \Zotlabs\Lib\PermissionDescription $emptyACL_description - An optional description for the permission implied by selecting an empty ACL. Preferably an instance of PermissionDescription.
* @param string  $dialog_description Optional message to include at the top of the dialog. E.g. "Warning: Post permissions cannot be changed once sent".
* @param string  $context_help Allows the dialog to present a help icon. E.g. "acl_dialog_post"
* @param boolean $readonly Not implemented yet. When implemented, the dialog will use acl_readonly.tpl instead, so that permissions may be viewed for posts that can no longer have their permissions changed.
*
* @return string html modal dialog built from acl_selector.tpl
*/
function populate_acl($defaults = null,$show_jotnets = true, $emptyACL_description = '', $dialog_description = '', $context_help = '', $readonly = false) {

	$allow_cid = $allow_gid = $deny_cid = $deny_gid = false;
	$showall_origin = '';
	$showall_icon   = 'fa-globe';
	$role = get_pconfig(local_channel(), 'system', 'permissions_role');

	if(! $emptyACL_description) {
		$showall_caption = t('Visible to your default audience');

	} else if(is_a($emptyACL_description, '\\Zotlabs\\Lib\\PermissionDescription')) {
		$showall_caption = $emptyACL_description->get_permission_description();
		$showall_origin  = (($role === 'custom') ? $emptyACL_description->get_permission_origin_description() : '');
		$showall_icon    = $emptyACL_description->get_permission_icon();
	} else {
		// For backwards compatibility we still accept a string... for now!
		$showall_caption = $emptyACL_description;
	}


	if(is_array($defaults)) {
		$allow_cid = ((strlen($defaults['allow_cid']))
			? explode('><', $defaults['allow_cid']) : array() );
		$allow_gid = ((strlen($defaults['allow_gid']))
			? explode('><', $defaults['allow_gid']) : array() );
		$deny_cid  = ((strlen($defaults['deny_cid']))
			? explode('><', $defaults['deny_cid']) : array() );
		$deny_gid  = ((strlen($defaults['deny_gid']))
			? explode('><', $defaults['deny_gid']) : array() );
		array_walk($allow_cid,'fixacl');
		array_walk($allow_gid,'fixacl');
		array_walk($deny_cid,'fixacl');
		array_walk($deny_gid,'fixacl');
	}


	$channel = ((local_channel()) ? \App::get_channel() : '');
	$has_acl = false;
	$single_group = false;
	$just_me = false;
	$custom = false;
	$groups = '';

	if($allow_cid || $allow_gid || $deny_gid || $deny_cid) {
		$has_acl = true;
		$custom = true;
	}

	if(count($allow_gid) === 1 && (! $allow_cid) && (! $deny_gid) && (! $deny_cid)) {
		$single_group = true;
		$custom = false;
	}

	if(count($allow_cid) === 1 && $channel && $allow_cid[0] = $channel['channel_hash'] && (! $allow_gid) && (! $deny_gid) && (! $deny_cid)) {
		$just_me = true;
		$custom = false;
	}

	$r = q("SELECT id, hash, gname FROM pgrp WHERE deleted = 0 AND uid = %d ORDER BY gname ASC",
		intval(local_channel())
	);
	if($r) {
		$groups .= '<optgroup label = "' . t('Privacy Groups').'">';
		foreach($r as $rr) {
			$selected = (($single_group && $rr['hash'] === $allow_gid[0]) ? ' selected = "selected" ' : '');
			$groups .= '<option id="' . $rr['id'] . '" value="' . $rr['hash'] . '"' . $selected . '>' . $rr['gname'] . '</option>' . "\r\n";
		}
		$groups .= '</optgroup>';
	}

	$r = q("SELECT id, profile_guid, profile_name from profile where is_default = 0 and uid = %d order by profile_name",
		intval(local_channel())
	);

	if($r) {
		$groups .= '<optgroup label = "' . t('Profile-Based Privacy Groups').'">';
		foreach($r as $rv) {
			$selected = (($single_group && 'vp.' . $rv['profile_guid'] === $allow_gid[0]) ? ' selected = "selected" ' : '');
			$groups .= '<option id="' . 'vp' . $rv['id'] . '" value="' . 'vp.' . $rv['profile_guid'] . '"' . $selected . '>' . $rv['profile_name'] . '</option>' . "\r\n";
		}
		$groups .= '</optgroup>';
	}

	// $dialog_description is only set in places where we set permissions for a post.
	// Abuse this fact to decide if forums should be displayed or not.
	if($dialog_description) {
		$forums = get_forum_channels(local_channel(),1);
		if($forums) {
			$forums_count = 0;
			$forum_otions = '';
			foreach($forums as $f) {
				if(isset($f['no_post_perms']))
					continue;

				$private = ((isset($f['private_forum'])) ? ' (' . t('Private Forum') . ')' : '');
				$selected = (($single_group && isset($f['hash'], $allow_cid[0]) && $f['hash'] === $allow_cid[0]) ? ' selected = "selected" ' : '');
				$forum_otions .= '<option id="^' . $f['abook_id'] . '" value="^' . $f['xchan_hash'] . '"' . $selected . '>' . $f['xchan_name'] . $private . '</option>' . "\r\n";
				$forums_count++;
			}
			if($forums_count) {
				$groups .= '<optgroup label = "' . t('Forums').'">';
				$groups .= $forum_otions;
				$groups .= '</optgroup>';
			}

		}
	}

	$tpl = get_markup_template("acl_selector.tpl");
	$o = replace_macros($tpl, array(
		'$showall'         => $showall_caption,
		'$onlyme'          => t('Only me'),
		'$groups'          => $groups,
		'$public_selected' => (($has_acl) ? false : true),
		'$justme_selected' => $just_me,
		'$custom_selected' => $custom,
		'$showallOrigin'   => $showall_origin,
		'$showallIcon'     => $showall_icon,
		'$select_label'    => t('Share with'),
		'$custom'          => t('Custom selection'),
		'$custom_label'    => t('Advanced'),
		'$showlimitedDesc' => t('Select "Allow" to allow viewing. "Don\'t allow" lets you override and limit the scope of "Allow".'),
		'$show'	           => t('Allow'),
		'$hide'	           => t("Don't allow"),
		'$search'          => t('Search'),
		'$allowcid'        => json_encode($allow_cid),
		'$allowgid'        => json_encode($allow_gid),
		'$denycid'         => json_encode($deny_cid),
		'$denygid'         => json_encode($deny_gid),
		'$aclModalTitle'   => t('Permissions'),
		'$aclModalDesc'    => $dialog_description,
		'$aclModalDismiss' => t('Close'),
		'$helpUrl'         => (($context_help == '') ? '' : (z_root() . '/help/' . $context_help))
	));

	return $o;
}

/**
 * Returns a string that's suitable for passing as the $dialog_description argument to a
 * populate_acl() call for wall posts or network posts.
 *
 * This string is needed in 3 different files, and our .po translation system currently
 * cannot be used as a string table (because the value is always the key in english) so
 * I've centralized the value here (making this function name the "key") until we have a
 * better way.
 *
 * @return string Description to present to user in modal permissions dialog
 */
function get_post_aclDialogDescription() {

	// I'm trying to make two points in this description text - warn about finality of wall
	// post permissions, and try to clear up confusion that these permissions set who is
	// *shown* the post, istead of who is able to see the post, i.e. make it clear that clicking
	// the "Show"  button on a group does not post it to the feed of people in that group, it
	// mearly allows those people to view the post if they are viewing/following this channel.
	$description = t('Post permissions %s cannot be changed %s after a post is shared.</br />These permissions set who is allowed to view the post.');

	// Lets keep the emphasis styling seperate from the translation. It may change.
	$emphasisOpen  = '<b><a href="' . z_root() . '/help/acl_dialog_post" target="hubzilla-help">';
	$emphasisClose = '</a></b>';

	return sprintf($description, $emphasisOpen, $emphasisClose);
}