Mods-for-HESK-Netsyms/api/BusinessLogic/Security/UserToTicketChecker.php

<?php

namespace BusinessLogic\Security;


use BusinessLogic\Tickets\Ticket;
use DataAccess\Security\UserGateway;

class UserToTicketChecker {
    /* @var $userGateway UserGateway */
    private $userGateway;

    function __construct($userGateway) {
        $this->userGateway = $userGateway;
    }

    /**
     * @param $user UserContext
     * @param $ticket Ticket
     * @param $isEditing bool true if editing a ticket, false if creating
     * @param $heskSettings array
     * @return bool
     */
    function isTicketWritableToUser($user, $ticket, $isEditing, $heskSettings) {
        $hasAccess = $user->admin === true ||
            (in_array($ticket->categoryId, $user->categories) &&
                in_array(UserPrivilege::CAN_VIEW_TICKETS, $user->permissions));

        if ($isEditing) {
            $categoryManagerId = $this->userGateway->getManagerForCategory($ticket->categoryId, $heskSettings);

            $hasAccess = $hasAccess &&
                ($user->admin === true
                    || in_array(UserPrivilege::CAN_EDIT_TICKETS, $user->permissions)
                    || $categoryManagerId == $user->id);
        }

        return $hasAccess;
    }
}
Working on user ticket security checker 2017-03-22 22:07:14 -04:00			`<?php`

			`namespace BusinessLogic\Security;`


			`use BusinessLogic\Tickets\Ticket;`
UserToTicketChecker now checks for category managers 2017-03-25 16:36:47 -04:00			`use DataAccess\Security\UserGateway;`
Working on user ticket security checker 2017-03-22 22:07:14 -04:00
			`class UserToTicketChecker {`
UserToTicketChecker now checks for category managers 2017-03-25 16:36:47 -04:00			`/* @var $userGateway UserGateway */`
			`private $userGateway;`

			`function __construct($userGateway) {`
			`$this->userGateway = $userGateway;`
			`}`
Working on user ticket security checker 2017-03-22 22:07:14 -04:00
			`/**`
			`* @param $user UserContext`
			`* @param $ticket Ticket`
			`* @param $isEditing bool true if editing a ticket, false if creating`
			`* @param $heskSettings array`
			`* @return bool`
			`*/`
			`function isTicketWritableToUser($user, $ticket, $isEditing, $heskSettings) {`
			`$hasAccess = $user->admin === true \|\|`
			`(in_array($ticket->categoryId, $user->categories) &&`
			`in_array(UserPrivilege::CAN_VIEW_TICKETS, $user->permissions));`

UserToTicketChecker now checks for category managers 2017-03-25 16:36:47 -04:00			`if ($isEditing) {`
			`$categoryManagerId = $this->userGateway->getManagerForCategory($ticket->categoryId, $heskSettings);`

			`$hasAccess = $hasAccess &&`
Ticket attachments can be deleted 2017-04-12 22:00:56 -04:00			`($user->admin === true`
			`\|\| in_array(UserPrivilege::CAN_EDIT_TICKETS, $user->permissions)`
			`\|\| $categoryManagerId == $user->id);`
UserToTicketChecker now checks for category managers 2017-03-25 16:36:47 -04:00			`}`

			`return $hasAccess;`
Working on user ticket security checker 2017-03-22 22:07:14 -04:00			`}`
			`}`