app = $app; $this->acl = [ // routes that need power level 1 and up [ "routes" => [ "teamtable/edit/" ], "catcher" => [ "name" => "page", "args" => 1, ], ], // routes that dont need any auth [ "routes" => [ "" ], "catcher" => [ "name" => "nothing", ], ] ]; $this->currentPage = substr( $_SERVER["PHP_SELF"], strlen($this->app->config["root_url"]) ); foreach ($this->acl as $key => $value) { $routes = $value["routes"]; $catcher = $value["catcher"]; foreach ($routes as $key => $value) { // check if string starts with if (strncmp($this->currentPage, $value, strlen($value)) !== 0) { continue; } #if ($value !== $this->currentPage) #{ # continue; #} if (isset($catcher["args"])) { call_user_func([$this, $catcher["name"]], $catcher["args"]); } else { call_user_func([$this, $catcher["name"]]); } return; } } throw new Exception("Could not find current page in access control list, did you add it?"); } private function page(int $powerLevel): void { if ($this->app->user->loggedIn && $this->app->user->powerLevel <= $powerLevel) { echo "Authorized!"; } else { http_response_code(401); $this->app->view("template/header", ["title" => "Ingen tilgang!"]); $this->app->view("Core/AccessControl/unauthorized"); $this->app->view("template/footer"); die(); } } /** * Does... nothing! For when the page does not need any access control. */ private function nothing(): void { return; } private function api($powerLevel): void { // ... } }