projects / civicrm-core.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #11691 from JKingsnorth/CRM-21773
[civicrm-core.git] / CRM / Core / Permission / WordPress.php
1 <?php
2 /*
3 +--------------------------------------------------------------------+
4 | CiviCRM version 4.7 |
5 +--------------------------------------------------------------------+
6 | Copyright CiviCRM LLC (c) 2004-2018 |
7 +--------------------------------------------------------------------+
8 | This file is a part of CiviCRM. |
9 | |
10 | CiviCRM is free software; you can copy, modify, and distribute it |
11 | under the terms of the GNU Affero General Public License |
12 | Version 3, 19 November 2007 and the CiviCRM Licensing Exception. |
13 | |
14 | CiviCRM is distributed in the hope that it will be useful, but |
15 | WITHOUT ANY WARRANTY; without even the implied warranty of |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. |
17 | See the GNU Affero General Public License for more details. |
18 | |
19 | You should have received a copy of the GNU Affero General Public |
20 | License and the CiviCRM Licensing Exception along |
21 | with this program; if not, contact CiviCRM LLC |
22 | at info[AT]civicrm[DOT]org. If you have questions about the |
23 | GNU Affero General Public License or the licensing of CiviCRM, |
24 | see the CiviCRM license FAQ at http://civicrm.org/licensing |
25 +--------------------------------------------------------------------+
26 */
27
28 /**
29 *
30 * @package CRM
31 * @copyright CiviCRM LLC (c) 2004-2018
32 * $Id$
33 *
34 */
35
36 /**
37 *
38 */
39 class CRM_Core_Permission_WordPress extends CRM_Core_Permission_Base {
40 /**
41 * Given a permission string, check for access requirements
42 *
43 * @param string $str
44 * The permission to check.
45 *
46 * @return bool
47 * true if yes, else false
48 */
49 public function check($str) {
50 // Generic cms 'administer users' role tranlates to users with the 'edit_users' capability' in WordPress
51 $str = $this->translatePermission($str, 'WordPress', array(
52 'administer users' => 'edit_users',
53 ));
54 if ($str == CRM_Core_Permission::ALWAYS_DENY_PERMISSION) {
55 return FALSE;
56 }
57 if ($str == CRM_Core_Permission::ALWAYS_ALLOW_PERMISSION) {
58 return TRUE;
59 }
60
61 // CRM-15629
62 // During some extern/* calls we don't bootstrap CMS hence
63 // below constants are not set. In such cases, we don't need to
64 // check permission, hence directly return TRUE
65 if (!defined('ABSPATH') || !defined('WPINC')) {
66 require_once 'CRM/Utils/System.php';
67 CRM_Utils_System::loadBootStrap();
68 }
69
70 require_once ABSPATH . WPINC . '/pluggable.php';
71
72 // for administrators give them all permissions
73 if (!function_exists('current_user_can')) {
74 return TRUE;
75 }
76
77 if (current_user_can('super admin') || current_user_can('administrator')) {
78 return TRUE;
79 }
80
81 // Make string lowercase and convert spaces into underscore
82 $str = CRM_Utils_String::munge(strtolower($str));
83
84 if (is_user_logged_in()) {
85 // Check whether the logged in user has the capabilitity
86 if (current_user_can($str)) {
87 return TRUE;
88 }
89 }
90 else {
91 //check the capabilities of Anonymous user)
92 $roleObj = new WP_Roles();
93 if (
94 $roleObj->get_role('anonymous_user') != NULL &&
95 array_key_exists($str, $roleObj->get_role('anonymous_user')->capabilities)
96 ) {
97 return TRUE;
98 }
99 }
100 return FALSE;
101 }
102
103 /**
104 * @inheritDoc
105 */
106 public function isModulePermissionSupported() {
107 return TRUE;
108 }
109
110 /**
111 * @inheritDoc
112 */
113 public function upgradePermissions($permissions) {
114 }
115
116 }