web/app/lib/App/Core/AccessControl.php

<?php

namespace App\Core;

use \Exception;

/**
 * Decides what is allowed and what not
 * TODO: ...
 */
class AccessControl
{
    public App $app;

    private array  $acl;
    private string $currentPage;

    public function __construct(App $app)
    {
        $this->app = $app;

        $this->acl = [
            // routes that need power level 1 and up
            [
                "routes" => [
                    "teamtable/edit/"
                ],
                "catcher" => [
                    "name" => "page",
                    "args" => 1,
                ],
            ],
            // routes that dont need any auth
            [
                "routes" => [
                    ""
                ],
                "catcher" => [
                    "name" => "nothing",
                ],
            ]
        ];

        $this->currentPage = substr(
            $_SERVER["PHP_SELF"],
            strlen($this->app->config["root_url"])
        );

        foreach ($this->acl as $key => $value)
        {
            $routes  = $value["routes"];
            $catcher = $value["catcher"];

            foreach ($routes as $key => $value)
            {
                // check if string starts with
                if (strncmp($this->currentPage, $value, strlen($value)) !== 0)
                {
                    continue;
                }
                #if ($value !== $this->currentPage)
                #{
                #    continue;
                #}
 
                if (isset($catcher["args"]))
                {
                    call_user_func([$this, $catcher["name"]], $catcher["args"]);
                } else {
                    call_user_func([$this, $catcher["name"]]);
                }

                return;
            }
        }

        throw new Exception("Could not find current page in access control list, did you add it?");
    }

    private function page(int $powerLevel): void
    {
        if ($this->app->user->loggedIn && $this->app->user->powerLevel >= $powerLevel)
        {
            echo "Authorized!";
        } else {
            http_response_code(401);
            $this->app->view("template/header", ["title" => "Ingen tilgang!"]);
            $this->app->view("Core/AccessControl/unauthorized");
            $this->app->view("template/footer");
            die();
        }
    }

    /**
     * Does... nothing! For when the page does not need any access control.
     */
    private function nothing(): void
    {
        return;
    }

    private function api($powerLevel): void
    {
        // ...
    }
}
Commit 2022-01-30 21:11:38 +00:00			`<?php`

Big fat commit. Now with namespaces! 2022-03-02 06:15:12 +00:00			`namespace App\Core;`

			`use \Exception;`

			`/**`
Commit 2022-03-13 19:54:34 +00:00			`* Decides what is allowed and what not`
Big fat commit. Now with namespaces! 2022-03-02 06:15:12 +00:00			`* TODO: ...`
			`*/`
Commit 2022-01-30 21:11:38 +00:00			`class AccessControl`
			`{`
Commit 2022-03-13 19:54:34 +00:00			`public App $app;`
Commit 2022-01-30 21:11:38 +00:00
Commit 2022-03-13 19:54:34 +00:00			`private array $acl;`
			`private string $currentPage;`

			`public function __construct(App $app)`
Commit 2022-01-30 21:11:38 +00:00			`{`
Commit 2022-03-13 19:54:34 +00:00			`$this->app = $app;`
Commit 2022-02-07 09:36:00 +00:00
Commit 2022-03-13 19:54:34 +00:00			`$this->acl = [`
			`// routes that need power level 1 and up`
			`[`
			`"routes" => [`
			`"teamtable/edit/"`
			`],`
			`"catcher" => [`
			`"name" => "page",`
			`"args" => 1,`
			`],`
			`],`
			`// routes that dont need any auth`
			`[`
			`"routes" => [`
			`""`
			`],`
			`"catcher" => [`
			`"name" => "nothing",`
			`],`
			`]`
Commit 2022-01-30 21:11:38 +00:00			`];`
Test commit 2022-02-07 06:14:33 +00:00
Commit 2022-03-13 19:54:34 +00:00			`$this->currentPage = substr(`
			`$_SERVER["PHP_SELF"],`
			`strlen($this->app->config["root_url"])`
			`);`
Commit 2022-02-07 09:36:00 +00:00
Commit 2022-03-13 19:54:34 +00:00			`foreach ($this->acl as $key => $value)`
Commit 2022-02-07 09:36:00 +00:00			`{`
Commit 2022-03-13 19:54:34 +00:00			`$routes = $value["routes"];`
			`$catcher = $value["catcher"];`
Commit 2022-02-07 09:36:00 +00:00
Commit 2022-03-13 19:54:34 +00:00			`foreach ($routes as $key => $value)`
Commit 2022-02-07 09:36:00 +00:00			`{`
Commit 2022-03-13 19:54:34 +00:00			`// check if string starts with`
			`if (strncmp($this->currentPage, $value, strlen($value)) !== 0)`
			`{`
			`continue;`
			`}`
			`#if ($value !== $this->currentPage)`
			`#{`
			`# continue;`
			`#}`

			`if (isset($catcher["args"]))`
			`{`
			`call_user_func([$this, $catcher["name"]], $catcher["args"]);`
			`} else {`
			`call_user_func([$this, $catcher["name"]]);`
			`}`
Commit 2022-02-07 09:36:00 +00:00
Commit 2022-03-13 19:54:34 +00:00			`return;`
			`}`
Commit 2022-02-07 09:36:00 +00:00			`}`

Commit 2022-03-13 19:54:34 +00:00			`throw new Exception("Could not find current page in access control list, did you add it?");`
Commit 2022-01-30 21:11:38 +00:00			`}`

Commit 2022-03-13 19:54:34 +00:00			`private function page(int $powerLevel): void`
Commit 2022-01-30 21:11:38 +00:00			`{`
Commit 2022-03-14 06:33:38 +00:00			`if ($this->app->user->loggedIn && $this->app->user->powerLevel >= $powerLevel)`
Commit 2022-03-13 19:54:34 +00:00			`{`
Commit 2022-02-07 09:36:00 +00:00			`echo "Authorized!";`
			`} else {`
Commit 2022-03-13 19:54:34 +00:00			`http_response_code(401);`
			`$this->app->view("template/header", ["title" => "Ingen tilgang!"]);`
			`$this->app->view("Core/AccessControl/unauthorized");`
			`$this->app->view("template/footer");`
			`die();`
Commit 2022-02-07 09:36:00 +00:00			`}`
Commit 2022-01-30 21:11:38 +00:00			`}`
Commit 2022-03-13 19:54:34 +00:00
			`/**`
			`* Does... nothing! For when the page does not need any access control.`
			`*/`
			`private function nothing(): void`
			`{`
			`return;`
			`}`

			`private function api($powerLevel): void`
			`{`
			`// ...`
			`}`
Commit 2022-01-30 21:11:38 +00:00			`}`