[civicrm-core.git] / CRM / ACL / BAO / Cache.php

<?php
/*
 +--------------------------------------------------------------------+
 | Copyright CiviCRM LLC. All rights reserved.                        |
 |                                                                    |
 | This work is published under the GNU AGPLv3 license with some      |
 | permitted exceptions and without any warranty. For full license    |
 | and copyright information, see https://civicrm.org/licensing       |
 +--------------------------------------------------------------------+
 */

/**
 *
 * @package CRM
 * @copyright CiviCRM LLC https://civicrm.org/licensing
 */

/**
 *  Access Control Cache.
 */
class CRM_ACL_BAO_Cache extends CRM_ACL_DAO_ACLCache {

  public static $_cache = NULL;

  /**
   * Build an array of ACLs for a specific ACLed user
   *
   * @param int $id - contact_id of the ACLed user
   *
   * @return mixed
   * @throws \CRM_Core_Exception
   */
  public static function &build($id) {
    if (!self::$_cache) {
      self::$_cache = [];
    }

    if (array_key_exists($id, self::$_cache)) {
      return self::$_cache[$id];
    }

    // check if this entry exists in db
    // if so retrieve and return
    self::$_cache[$id] = self::retrieve($id);
    if (self::$_cache[$id]) {
      return self::$_cache[$id];
    }

    self::$_cache[$id] = CRM_ACL_BAO_ACL::getAllByContact((int) $id);
    self::store($id, self::$_cache[$id]);
    return self::$_cache[$id];
  }

  /**
   * @param int $id
   *
   * @return array
   */
  protected static function retrieve($id) {
    $query = "
SELECT acl_id
  FROM civicrm_acl_cache
 WHERE contact_id = %1
";
    $params = [1 => [$id, 'Integer']];

    /* this is related to RT#765026
       Something is occasionally inserting records in civicrm_acl_cache with id null.
       That causes i for our anonymous visitors who want to sign petitions.
       Removed. Ward, 2012-07-20 */
    /*
    if ($id == 0) {
       query .= " OR contact_id IS NULL";
    }
    t*/

    $dao = CRM_Core_DAO::executeQuery($query, $params);

    $cache = [];
    while ($dao->fetch()) {
      $cache[$dao->acl_id] = 1;
    }
    return $cache;
  }

  /**
   * Store ACLs for a specific user in the `civicrm_acl_cache` table
   * @param int $id - contact_id of the ACLed user
   * @param array $cache - key civicrm_acl.id - values is the details of the ACL.
   *
   */
  protected static function store($id, &$cache) {
    foreach ($cache as $aclID => $data) {
      $dao = new CRM_ACL_BAO_Cache();
      if ($id) {
        $dao->contact_id = $id;
      }
      $dao->acl_id = $aclID;

      $cache[$aclID] = 1;

      $dao->save();
    }
  }

  /**
   * Remove entries from civicrm_acl_cache for a specified ACLed user
   * @param int $id - contact_id of the ACLed user
   *
   */
  public static function deleteEntry($id) {
    if (self::$_cache &&
      array_key_exists($id, self::$_cache)
    ) {
      unset(self::$_cache[$id]);
    }

    $query = "
DELETE FROM civicrm_acl_cache
WHERE contact_id = %1
";
    $params = [1 => [$id, 'Integer']];
    CRM_Core_DAO::executeQuery($query, $params);
  }

  /**
   * Do an opportunistic cache refresh if the site is configured for these.
   *
   * Sites that use acls and do not run the acl cache clearing cron job should
   * refresh the caches on demand. The user session will be forced to wait
   * and this is a common source of deadlocks, so it is less ideal.
   */
  public static function opportunisticCacheFlush(): void {
    if (Civi::settings()->get('acl_cache_refresh_mode') === 'opportunistic') {
      self::resetCache();
    }
  }

  /**
   * Deletes all the cache entries.
   */
  public static function resetCache(): void {
    if (!CRM_Core_Config::isPermitCacheFlushMode()) {
      return;
    }
    // reset any static caching
    self::$_cache = NULL;

    $query = "
DELETE
FROM   civicrm_acl_cache
WHERE  modified_date IS NULL
   OR  (modified_date <= %1)
";
    $params = [
      1 => [
        CRM_Contact_BAO_GroupContactCache::getCacheInvalidDateTime(),
        'String',
      ],
    ];
    CRM_Core_DAO::singleValueQuery($query, $params);
    self::flushACLContactCache();
  }

  /**
   * Remove Entries from `civicrm_acl_contact_cache` for a specific ACLed user
   * @param int $userID - contact_id of the ACLed user
   *
   */
  public static function deleteContactCacheEntry($userID) {
    CRM_Core_DAO::executeQuery("DELETE FROM civicrm_acl_contact_cache WHERE user_id = %1", [1 => [$userID, 'Positive']]);
  }

  /**
   * Flush the contents of the acl contact cache.
   */
  protected static function flushACLContactCache(): void {
    unset(Civi::$statics['CRM_ACL_API']);
    // CRM_Core_DAO::singleValueQuery("TRUNCATE TABLE civicrm_acl_contact_cache"); // No, force-commits transaction
    // CRM_Core_DAO::singleValueQuery("DELETE FROM civicrm_acl_contact_cache"); // Transaction-safe
    if (CRM_Core_Transaction::isActive()) {
      CRM_Core_Transaction::addCallback(CRM_Core_Transaction::PHASE_POST_COMMIT, function () {
        CRM_Core_DAO::singleValueQuery('TRUNCATE TABLE civicrm_acl_contact_cache');
      });
    }
    else {
      CRM_Core_DAO::singleValueQuery("TRUNCATE TABLE civicrm_acl_contact_cache");
    }
  }

}
Commit	Line	Data
6a488035	1	<?php
6a488035 TO	2	/*
6a488035 TO	3	+--------------------------------------------------------------------+
bc77d7c0	4	\| Copyright CiviCRM LLC. All rights reserved. \|
6a488035	5	\| \|
bc77d7c0 TO	6	\| This work is published under the GNU AGPLv3 license with some \|
	7	\| permitted exceptions and without any warranty. For full license \|
	8	\| and copyright information, see https://civicrm.org/licensing \|
6a488035	9	+--------------------------------------------------------------------+
d25dd0ee	10	*/
6a488035 TO	11
	12	/**
	13	*
	14	* @package CRM
ca5cec67	15	* @copyright CiviCRM LLC https://civicrm.org/licensing
6a488035 TO	16	*/
	17
	18	/**
3819f101	19	* Access Control Cache.
6a488035	20	*/
28fec8aa	21	class CRM_ACL_BAO_Cache extends CRM_ACL_DAO_ACLCache {
6a488035	22
683bf891	23	public static $_cache = NULL;
6a488035	24
28518c90	25	/**
5b27235a	26	* Build an array of ACLs for a specific ACLed user
581a9d2e	27	*
5b27235a	28	* @param int $id - contact_id of the ACLed user
28518c90 EM	29	*
28518c90 EM	30	* @return mixed
581a9d2e	31	* @throws \CRM_Core_Exception
28518c90	32	*/
00be9182	33	public static function &build($id) {
6a488035	34	if (!self::$_cache) {
cf0d1c08	35	self::$_cache = [];
6a488035 TO	36	}
	37
	38	if (array_key_exists($id, self::$_cache)) {
	39	return self::$_cache[$id];
	40	}
	41
	42	// check if this entry exists in db
	43	// if so retrieve and return
	44	self::$_cache[$id] = self::retrieve($id);
	45	if (self::$_cache[$id]) {
	46	return self::$_cache[$id];
	47	}
	48
581a9d2e	49	self::$_cache[$id] = CRM_ACL_BAO_ACL::getAllByContact((int) $id);
6a488035 TO	50	self::store($id, self::$_cache[$id]);
	51	return self::$_cache[$id];
	52	}
	53
28518c90	54	/**
100fef9d	55	* @param int $id
28518c90 EM	56	*
	57	* @return array
	58	*/
06b1ee60	59	protected static function retrieve($id) {
6a488035 TO	60	$query = "
	61	SELECT acl_id
	62	FROM civicrm_acl_cache
	63	WHERE contact_id = %1
	64	";
cf0d1c08	65	$params = [1 => [$id, 'Integer']];
6a488035	66
9a2e2287 LMM	67	/* this is related to RT#765026
	68	Something is occasionally inserting records in civicrm_acl_cache with id null.
	69	That causes i for our anonymous visitors who want to sign petitions.
	70	Removed. Ward, 2012-07-20 */
	71	/*
	72	if ($id == 0) {
	73	query .= " OR contact_id IS NULL";
	74	}
	75	t*/
6a488035 TO	76
	77	$dao = CRM_Core_DAO::executeQuery($query, $params);
	78
cf0d1c08	79	$cache = [];
6a488035 TO	80	while ($dao->fetch()) {
	81	$cache[$dao->acl_id] = 1;
	82	}
	83	return $cache;
	84	}
	85
28518c90	86	/**
5b27235a SL	87	* Store ACLs for a specific user in the `civicrm_acl_cache` table
	88	* @param int $id - contact_id of the ACLed user
	89	* @param array $cache - key civicrm_acl.id - values is the details of the ACL.
	90	*
28518c90	91	*/
06b1ee60	92	protected static function store($id, &$cache) {
6a488035	93	foreach ($cache as $aclID => $data) {
28fec8aa	94	$dao = new CRM_ACL_BAO_Cache();
6a488035 TO	95	if ($id) {
	96	$dao->contact_id = $id;
	97	}
	98	$dao->acl_id = $aclID;
	99
	100	$cache[$aclID] = 1;
	101
	102	$dao->save();
	103	}
	104	}
	105
28518c90	106	/**
5b27235a SL	107	* Remove entries from civicrm_acl_cache for a specified ACLed user
	108	* @param int $id - contact_id of the ACLed user
	109	*
28518c90	110	*/
00be9182	111	public static function deleteEntry($id) {
6a488035 TO	112	if (self::$_cache &&
	113	array_key_exists($id, self::$_cache)
	114	) {
	115	unset(self::$_cache[$id]);
	116	}
	117
	118	$query = "
	119	DELETE FROM civicrm_acl_cache
	120	WHERE contact_id = %1
	121	";
cf0d1c08	122	$params = [1 => [$id, 'Integer']];
7e1f3142	123	CRM_Core_DAO::executeQuery($query, $params);
6a488035 TO	124	}
6a488035 TO	125
67769683	126	/**
	127	* Do an opportunistic cache refresh if the site is configured for these.
	128	*
	129	* Sites that use acls and do not run the acl cache clearing cron job should
	130	* refresh the caches on demand. The user session will be forced to wait
	131	* and this is a common source of deadlocks, so it is less ideal.
	132	*/
	133	public static function opportunisticCacheFlush(): void {
	134	if (Civi::settings()->get('acl_cache_refresh_mode') === 'opportunistic') {
	135	self::resetCache();
	136	}
	137	}
	138
d3e86119 TO	139	/**
	140	* Deletes all the cache entries.
	141	*/
67769683	142	public static function resetCache(): void {
0626851e	143	if (!CRM_Core_Config::isPermitCacheFlushMode()) {
	144	return;
	145	}
6a488035 TO	146	// reset any static caching
	147	self::$_cache = NULL;
	148
6a488035 TO	149	$query = "
	150	DELETE
	151	FROM civicrm_acl_cache
	152	WHERE modified_date IS NULL
4052239b	153	OR (modified_date <= %1)
6a488035	154	";
cf0d1c08	155	$params = [
	156	1 => [
	157	CRM_Contact_BAO_GroupContactCache::getCacheInvalidDateTime(),
	158	'String',
	159	],
	160	];
4052239b	161	CRM_Core_DAO::singleValueQuery($query, $params);
ed2f3757 EM	162	self::flushACLContactCache();
	163	}
	164
	165	/**
	166	* Remove Entries from `civicrm_acl_contact_cache` for a specific ACLed user
	167	* @param int $userID - contact_id of the ACLed user
	168	*
	169	*/
	170	public static function deleteContactCacheEntry($userID) {
	171	CRM_Core_DAO::executeQuery("DELETE FROM civicrm_acl_contact_cache WHERE user_id = %1", [1 => [$userID, 'Positive']]);
	172	}
	173
	174	/**
	175	* Flush the contents of the acl contact cache.
	176	*/
	177	protected static function flushACLContactCache(): void {
92f38c2a	178	unset(Civi::$statics['CRM_ACL_API']);
cded6e48 TO	179	// CRM_Core_DAO::singleValueQuery("TRUNCATE TABLE civicrm_acl_contact_cache"); // No, force-commits transaction
	180	// CRM_Core_DAO::singleValueQuery("DELETE FROM civicrm_acl_contact_cache"); // Transaction-safe
	181	if (CRM_Core_Transaction::isActive()) {
353ffa53	182	CRM_Core_Transaction::addCallback(CRM_Core_Transaction::PHASE_POST_COMMIT, function () {
ed2f3757	183	CRM_Core_DAO::singleValueQuery('TRUNCATE TABLE civicrm_acl_contact_cache');
cded6e48	184	});
0db6c3e1 TO	185	}
0db6c3e1 TO	186	else {
cded6e48 TO	187	CRM_Core_DAO::singleValueQuery("TRUNCATE TABLE civicrm_acl_contact_cache");
cded6e48 TO	188	}
6a488035	189	}
96025800	190
6a488035	191	}