saulteafarmer/castopod
1
0
Fork 0
mirror of https://code.castopod.org/adaures/castopod synced 2025-06-06 18:31:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(auth): overwrite Shield's PermissionFilter

Browse Source
This commit is contained in:
Yassine Doghri 2023-07-06 13:50:10 +00:00
parent d68595932a
commit c6e8000bab
3 changed files with 36 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
app/Config/Filters.php
View File

@ -29,7 +29,6 @@ class Filters extends BaseConfig
'honeypot' => Honeypot::class, 'honeypot' => Honeypot::class,
'invalidchars' => InvalidChars::class, 'invalidchars' => InvalidChars::class,
'secureheaders' => SecureHeaders::class, 'secureheaders' => SecureHeaders::class,
'permission' => PermissionFilter::class,
'fediverse' => FediverseFilter::class, 'fediverse' => FediverseFilter::class,
'allow-cors' => AllowCorsFilter::class, 'allow-cors' => AllowCorsFilter::class,
'rest-api' => ApiFilter::class, 'rest-api' => ApiFilter::class,
@ -89,5 +88,7 @@ class Filters extends BaseConfig
'before' => ['*@*/episodes/*'], 'before' => ['*@*/episodes/*'],
], ],
]; ];
$this->aliases['permission'] = PermissionFilter::class;
} }
} }

36
modules/Auth/Filters/PermissionFilter.php
View File

@ -6,14 +6,46 @@ namespace Modules\Auth\Filters;
use App\Entities\Podcast; use App\Entities\Podcast;
use App\Models\PodcastModel; use App\Models\PodcastModel;
use CodeIgniter\Shield\Filters\AbstractAuthFilter; use CodeIgniter\Filters\FilterInterface;
use CodeIgniter\HTTP\RequestInterface;
use CodeIgniter\HTTP\ResponseInterface;
use Config\Services; use Config\Services;
use RuntimeException;
/** /**
* Permission Authorization Filter. * Permission Authorization Filter.
*/ */
class PermissionFilter extends AbstractAuthFilter class PermissionFilter implements FilterInterface
{ {
/**
* @param string[]|null $arguments
* @return mixed
*/
public function before(RequestInterface $request, $arguments = null)
{
if ($arguments === null || $arguments === []) {
return;
}
if (! auth()->loggedIn()) {
return redirect()->route('login');
}
if ($this->isAuthorized($arguments)) {
return;
}
throw new RuntimeException(lang('Auth.notEnoughPrivilege'), 403);
}
/**
* @param string[]|null $arguments
* @return mixed
*/
public function after(RequestInterface $request, ResponseInterface $response, $arguments = null): void
{
}
/** /**
* Ensures the user is logged in and has one or more * Ensures the user is logged in and has one or more
* of the permissions as specified in the filter. * of the permissions as specified in the filter.

1
modules/Auth/Language/en/Auth.php
View File

@ -85,7 +85,6 @@ return [
// missing keys // missing keys
'code' => 'Your 6-digit code', 'code' => 'Your 6-digit code',
'notEnoughPrivilege' => 'You do not have sufficient permissions to access that page.',
'set_password' => 'Set your password', 'set_password' => 'Set your password',
// Welcome email // Welcome email