Project-Pro/idpan.poznan.pl
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e17b7026fd29041f342b1c49a1cf831db014ea59
idpan.poznan.pl/administrator/components/com_users/src/Controller/GroupController.php
Jacek Pyziak e17b7026fd first commit
2026-02-08 21:16:11 +01:00

75 lines
2.0 KiB
PHP
Raw Blame History

<?php
/**
* @package Joomla.Administrator
* @subpackage com_users
*
* @copyright (C) 2009 Open Source Matters, Inc. <https://www.joomla.org>
* @license GNU General Public License version 2 or later; see LICENSE.txt
*/
namespace Joomla\Component\Users\Administrator\Controller;
use Joomla\CMS\Access\Access;
use Joomla\CMS\MVC\Controller\FormController;
// phpcs:disable PSR1.Files.SideEffects
\defined('_JEXEC') or die;
// phpcs:enable PSR1.Files.SideEffects
/**
* User view level controller class.
*
* @since 1.6
*/
class GroupController extends FormController
{
/**
* @var string The prefix to use with controller messages.
* @since 1.6
*/
protected $text_prefix = 'COM_USERS_GROUP';
/**
* Method to check if you can save a new or existing record.
*
* Overrides Joomla\CMS\MVC\Controller\FormController::allowSave to check the core.admin permission.
*
* @param array $data An array of input data.
* @param string $key The name of the key for the primary key.
*
* @return boolean
*
* @since 1.6
*/
protected function allowSave($data, $key = 'id')
{
return ($this->app->getIdentity()->authorise('core.admin', $this->option) && parent::allowSave($data, $key));
}
/**
* Overrides Joomla\CMS\MVC\Controller\FormController::allowEdit
*
* Checks that non-Super Admins are not editing Super Admins.
*
* @param array $data An array of input data.
* @param string $key The name of the key for the primary key.
*
* @return boolean
*
* @since 1.6
*/
protected function allowEdit($data = [], $key = 'id')
{
// Check if this group is a Super Admin
if (Access::checkGroup($data[$key], 'core.admin')) {
// If I'm not a Super Admin, then disallow the edit.
if (!$this->app->getIdentity()->authorise('core.admin')) {
return false;
}
}
return parent::allowEdit($data, $key);
}
}
Reference in New Issue View Git Blame Copy Permalink