CRM/Core/Permission/WordPress.php

   1 <?php
   2 /*
   3  +--------------------------------------------------------------------+
   4  | CiviCRM version 4.3                                                |
   5  +--------------------------------------------------------------------+
   6  | Copyright CiviCRM LLC (c) 2004-2013                                |
   7  +--------------------------------------------------------------------+
   8  | This file is a part of CiviCRM.                                    |
   9  |                                                                    |
  10  | CiviCRM is free software; you can copy, modify, and distribute it  |
  11  | under the terms of the GNU Affero General Public License           |
  12  | Version 3, 19 November 2007 and the CiviCRM Licensing Exception.   |
  13  |                                                                    |
  14  | CiviCRM is distributed in the hope that it will be useful, but     |
  15  | WITHOUT ANY WARRANTY; without even the implied warranty of         |
  16  | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.               |
  17  | See the GNU Affero General Public License for more details.        |
  18  |                                                                    |
  19  | You should have received a copy of the GNU Affero General Public   |
  20  | License and the CiviCRM Licensing Exception along                  |
  21  | with this program; if not, contact CiviCRM LLC                     |
  22  | at info[AT]civicrm[DOT]org. If you have questions about the        |
  23  | GNU Affero General Public License or the licensing of CiviCRM,     |
  24  | see the CiviCRM license FAQ at http://civicrm.org/licensing        |
  25  +--------------------------------------------------------------------+
  26 */
  27
  28 /**
  29  *
  30  * @package CRM
  31  * @copyright CiviCRM LLC (c) 2004-2013
  32  * $Id$
  33  *
  34  */
  35
  36 /**
  37  *
  38  */
  39 class CRM_Core_Permission_WordPress extends CRM_Core_Permission_Base {
  40   /**
  41    * given a permission string, check for access requirements
  42    *
  43    * @param string $str the permission to check
  44    *
  45    * @return boolean true if yes, else false
  46    * @access public
  47    */
  48   function check($str) {
  49     // Generic cms 'administer users' role tranlates to 'administrator' WordPress role
  50     $str = $this->translatePermission($str, 'WordPress', array(
  51       'administer users' => 'administrator',
  52     ));
  53     if ($str == CRM_Core_Permission::ALWAYS_DENY_PERMISSION) {
  54       return FALSE;
  55     }
  56     if ($str == CRM_Core_Permission::ALWAYS_ALLOW_PERMISSION) {
  57       return TRUE;
  58     }
  59
  60     // for administrators give them all permissions
  61     if (!function_exists('current_user_can')) {
  62       return TRUE;
  63     }
  64
  65     if (current_user_can('super admin') || current_user_can('administrator')) {
  66       return TRUE;
  67     }
  68
  69     // Make string lowercase and convert spaces into underscore
  70     $str = CRM_Utils_String::munge(strtolower($str));
  71
  72     if ( is_user_logged_in() ) {
  73       // Check whether the logged in user has the capabilitity
  74       if (current_user_can($str)) {
  75         return TRUE;
  76       }
  77     }
  78     else {
  79       //check the capabilities of Anonymous user)
  80       $roleObj = new WP_Roles();
  81       if (
  82         $roleObj->get_role('anonymous_user') != NULL &&
  83         array_key_exists($str, $roleObj->get_role('anonymous_user')->capabilities)
  84       ) {
  85         return TRUE;
  86       }
  87     }
  88     return FALSE;
  89   }
  90 }