github-mirror/framework
github-mirror/framework
2
0
Fork 0
mirror of https://github.com/flarum/framework.git synced 2025-04-25 14:14:03 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Give GetPermission event priority when determining permissions

Browse Source
This commit is contained in:
Toby Zerner 2016-01-16 13:56:37 +10:30
parent aaab2cc86e
commit dfc0cf53b0
1 changed files with 15 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
src/Core/CoreServiceProvider.php
View File

@ -73,13 +73,25 @@ class CoreServiceProvider extends AbstractServiceProvider
}); });
$this->app->make('flarum.gate')->before(function (User $actor, $ability, $model = null) { $this->app->make('flarum.gate')->before(function (User $actor, $ability, $model = null) {
// Fire an event so that core and extension policies can hook into
// this permission query and explicitly grant or deny the
// permission.
$allowed = $this->app->make('events')->until(
new GetPermission($actor, $ability, $model ? [$model] : [])
);
if (! is_null($allowed)) {
return $allowed;
}
// If no policy covered this permission query, we will only grant
// the permission if the actor's groups have it. Otherwise, we will
// not allow the user to perform this action.
if ($actor->isAdmin() || (! $model && $actor->hasPermission($ability))) { if ($actor->isAdmin() || (! $model && $actor->hasPermission($ability))) {
return true; return true;
} }
return $this->app->make('events')->until( return false;
new GetPermission($actor, $ability, $model ? [$model] : [])
);
}); });
$this->registerPostTypes(); $this->registerPostTypes();