Home Explore Help
Sign In
bachir
/
materio-base-d7
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: b26db27098
Branches Tags
materio-base...
/
sites
/
all
/
modules
/
contrib
/
admin
/
field_permissions
/
field_permissions.install

field_permissions.install 6.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @file
    5. 

  5.  * Install, update and uninstall functions for the Field Permissions module.
    6. 

  6.  */
    7. 

  7. 

  8. /**
    9. 

  9.  * Implements hook_install().
    10. 

  10.  */
    11. 

  11. function field_permissions_install() {
    12. 

  12.   // Set a larger weight for the module.
    13. 

  13.   db_update('system')
    14. 

  14.     ->fields(array('weight' => 50))
    15. 

  15.     ->condition('name', 'field_permissions')
    16. 

  16.     ->execute();
    17. 

  17. }
    18. 

  18. 

  19. /**
    20. 

  20.  * Implements hook_uninstall().
    21. 

  21.  */
    22. 

  22. function field_permissions_uninstall() {
    23. 

  23. 

  24.   // Collect all the field data that reference "field_permissions", within
    25. 

  25.   // the field_config table.
    26. 

  26.   //
    27. 

  27.   $records = db_query("SELECT * FROM field_config WHERE data LIKE '%field_permissions%'");
    28. 

  28. 

  29.   foreach ($records as $record) {
    30. 

  30.     $data = $record->data;
    31. 

  31.     $data = unserialize($data);
    32. 

  32.     unset($data['field_permissions']);
    33. 

  33.     $data = serialize($data);
    34. 

  34. 

  35.     // Update the record.
    36. 

  36.     db_query("UPDATE field_config SET data = :data WHERE id = :id",
    37. 

  37.       array(':data' => $data, ':id' => $record->id));
    38. 

  38.   }
    39. 

  39. }
    40. 

  40. 

  41. /**
    42. 

  42.  * Sets a larger weight for the module so that the Field Permissions become available.
    43. 

  43.  */
    44. 

  44. function field_permissions_update_7000(&$sandbox) {
    45. 

  45.   db_update('system')
    46. 

  46.     ->fields(array('weight' => 50))
    47. 

  47.     ->condition('name', 'field_permissions')
    48. 

  48.     ->execute();
    49. 

  49. }
    50. 

  50. 

  51. /**
    52. 

  52.  * Migrate field permission settings to the new system (public/private/custom).
    53. 

  53.  */
    54. 

  54. function field_permissions_update_7001() {
    55. 

  55.   foreach (field_info_fields() as $field_name => $field) {
    56. 

  56.     // If the field has any field permissions enabled, it will be using custom
    57. 

  57.     // permissions under the new system and needs to be converted. Otherwise,
    58. 

  58.     // it is a public field (the default) and can be ignored.
    59. 

  59.     if (!empty($field['settings']['field_permissions']) && array_filter($field['settings']['field_permissions'])) {
    60. 

  60.       // Set the type to FIELD_PERMISSIONS_CUSTOM. (The module may be disabled
    61. 

  61.       // when this update function runs, so we need to use the numeric value
    62. 

  62.       // rather than relying on the constant being defined.)
    63. 

  63.       $field['field_permissions']['type'] = 2;
    64. 

  64. 

  65.       $field_permissions = $field['settings']['field_permissions'];
    66. 

  66.       $permissions_by_operation = array(
    67. 

  67.         // View-related permissions.
    68. 

  68.         array(
    69. 

  69.           'view' => "view $field_name",
    70. 

  70.           'view own' => "view own $field_name",
    71. 

  71.         ),
    72. 

  72.         // Edit-related permissions.
    73. 

  73.         array(
    74. 

  74.           'create' => "create $field_name",
    75. 

  75.           'edit' => "edit $field_name",
    76. 

  76.           'edit own' => "edit own $field_name",
    77. 

  77.         ),
    78. 

  78.       );
    79. 

  79. 

  80.       // Loop through each type of operation (view or edit).
    81. 

  81.       foreach ($permissions_by_operation as $permissions) {
    82. 

  82.         $actions = array_keys($permissions);
    83. 

  83.         // If none of the related permissions were enabled, all users were
    84. 

  84.         // allowed to perform the relevant actions on this field, so we need to
    85. 

  85.         // assign permissions here to preserve that behavior.
    86. 

  86.         $has_enabled_permissions = (bool) array_filter(array_intersect_key($field_permissions, array_flip($actions)));
    87. 

  87.         if (!$has_enabled_permissions) {
    88. 

  88.           _update_7000_user_role_grant_permissions(DRUPAL_ANONYMOUS_RID, $permissions, 'field_permissions');
    89. 

  89.           _update_7000_user_role_grant_permissions(DRUPAL_AUTHENTICATED_RID, $permissions, 'field_permissions');
    90. 

  90.         }
    91. 

  91.         // Otherwise, for each permission that was disabled, no users should be
    92. 

  92.         // allowed to perform that action; therefore, make sure to unassign any
    93. 

  93.         // (stale) permissions that they may have.
    94. 

  94.         else {
    95. 

  95.           foreach ($actions as $action) {
    96. 

  96.             if (empty($field_permissions[$action])) {
    97. 

  97.               if ($action != 'create') {
    98. 

  98.                 $permission = $permissions[$action];
    99. 

  99.                 $rids = array_keys(user_roles(FALSE, $permission));
    100. 

  100.                 foreach ($rids as $rid) {
    101. 

  101.                   user_role_revoke_permissions($rid, array($permission));
    102. 

  102.                 }
    103. 

  103.               }
    104. 

  104.               // The 'create' action needs special handling, since previously,
    105. 

  105.               // if create permissions were not enabled the code would have
    106. 

  106.               // fallen back on checking edit permissions. Now, though, create
    107. 

  107.               // permissions are always enabled (and always checked when an
    108. 

  108.               // entity is being created). Therefore, we need to figure out
    109. 

  109.               // what the fallback would have been and assign new create
    110. 

  110.               // permissions based on that.
    111. 

  111.               else {
    112. 

  112.                 $rids_with_create_access = array();
    113. 

  113.                 // The first fallback is edit permissions; if those are
    114. 

  114.                 // enabled, any role with edit permission would have been
    115. 

  115.                 // granted access.
    116. 

  116.                 if (!empty($field_permissions['edit'])) {
    117. 

  117.                   $rids_with_create_access = array_keys(user_roles(FALSE, $permissions['edit']));
    118. 

  118.                 }
    119. 

  119.                 // The final fallback is 'edit own' permissions; if those are
    120. 

  120.                 // enabled, any role with 'edit own' permission would have been
    121. 

  121.                 // granted access. (It is additionally required that the entity
    122. 

  122.                 // being checked is owned by the current user, but in the case
    123. 

  123.                 // of nodes being created that will always be the case anyway,
    124. 

  124.                 // and nodes are the only entities we need to support for the
    125. 

  125.                 // D6-to-D7 upgrade.)
    126. 

  126.                 if (!empty($field_permissions['edit own'])) {
    127. 

  127.                   $rids_with_create_access = array_unique(array_merge($rids_with_create_access, array_keys(user_roles(FALSE, $permissions['edit own']))));
    128. 

  128.                 }
    129. 

  129.                 // Assign create permissions to all the relevant roles.
    130. 

  130.                 foreach ($rids_with_create_access as $rid) {
    131. 

  131.                   _update_7000_user_role_grant_permissions($rid, array($permissions['create']), 'field_permissions');
    132. 

  132.                 }
    133. 

  133.               }
    134. 

  134.             }
    135. 

  135.           }
    136. 

  136.         }
    137. 

  137.       }
    138. 

  138.     }
    139. 

  139. 

  140.     // Remove the old field permissions settings if necessary, and save the
    141. 

  141.     // field.
    142. 

  142.     if (isset($field['settings']['field_permissions'])) {
    143. 

  143.       // We can't unset this or field_update_field() will automatically add it
    144. 

  144.       // back (using the prior field data), so do the next best thing.
    145. 

  145.       $field['settings']['field_permissions'] = NULL;
    146. 

  146.       field_update_field($field);
    147. 

  147.     }
    148. 

  148.   }
    149. 

  149. }
    150.