* @param bool $skipDeleteClause
* Don't add delete clause if this is true,.
* this means it is handled by generating query
+ * @param bool $skipOwnContactClause
+ * Do not add 'OR contact_id = $userID' to the where clause.
+ * This is a hideously inefficient query and should be avoided
+ * wherever possible.
*
* @return string
* the group where clause for this user
&$whereTables,
$contactID = NULL,
$onlyDeleted = FALSE,
- $skipDeleteClause = FALSE
+ $skipDeleteClause = FALSE,
+ $skipOwnContactClause = FALSE
) {
// the default value which is valid for the final AND
$deleteClause = ' ( 1 ) ';
)
);
- // Add permission on self
- if ($contactID && (CRM_Core_Permission::check('edit my contact') ||
- $type == self::VIEW && CRM_Core_Permission::check('view my contact'))
+ // Add permission on self if we really hate our server or have hardly any contacts.
+ if (!$skipOwnContactClause && $contactID && (CRM_Core_Permission::check('edit my contact') ||
+ $type == self::VIEW && CRM_Core_Permission::check('view my contact'))
) {
$where = "(contact_a.id = $contactID OR ($where))";
}
SELECT contact_id
FROM civicrm_acl_contact_cache
{$LEFT_JOIN_DELETED}
-WHERE contact_id IN ({$contact_id_list})
+WHERE contact_id IN ({$contact_id_list})
AND user_id = {$contactID}
AND operation = '{$operation}'
{$AND_CAN_ACCESS_DELETED}";
$operationClause = " operation = 'Edit' ";
$operation = 'Edit';
}
+ $queryParams = array(1 => array($userID, 'Integer'));
if (!$force) {
// skip if already calculated
WHERE user_id = %1
AND $operationClause
";
- $params = array(1 => array($userID, 'Integer'));
- $count = CRM_Core_DAO::singleValueQuery($sql, $params);
+ $count = CRM_Core_DAO::singleValueQuery($sql, $queryParams);
if ($count > 0) {
$_processed[$type][$userID] = 1;
return;
$tables = array();
$whereTables = array();
- $permission = CRM_ACL_API::whereClause($type, $tables, $whereTables, $userID);
+ $permission = CRM_ACL_API::whereClause($type, $tables, $whereTables, $userID, FALSE, FALSE, TRUE);
$from = CRM_Contact_BAO_Query::fromClause($whereTables);
CRM_Core_DAO::executeQuery("
WHERE $permission
AND ac.user_id IS NULL
");
+
+ // Add in a row for the logged in contact. Do not try to combine with the above query or an ugly OR will appear in
+ // the permission clause.
+ if (CRM_Core_Permission::check('edit my contact') ||
+ ($type == CRM_Core_Permission::VIEW && CRM_Core_Permission::check('view my contact'))) {
+ if (!CRM_Core_DAO::executeQuery("
+ SELECT count(*) FROM civicrm_acl_contact_cache WHERE user_id = %1 AND contact_id = %1 AND operation = '{$operation}'", $queryParams)) {
+ CRM_Core_DAO::executeQuery("INSERT INTO civicrm_acl_contact_cache ( user_id, contact_id, operation ) VALUES(%1, %1, '{$operation}')");
+ }
+ }
$_processed[$type][$userID] = 1;
}
$queries[] = "
SELECT civicrm_relationship.{$contact_id_column} AS contact_id
- FROM civicrm_relationship
+ FROM civicrm_relationship
{$LEFT_JOIN_DELETED}
WHERE civicrm_relationship.{$user_id_column} = {$contactID}
AND civicrm_relationship.{$contact_id_column} IN ({$contact_id_list})
projects / civicrm-core.git / commitdiff