diff options
author | Evan Prodromou <evan@status.net> | 2009-08-27 11:38:31 -0700 |
---|---|---|
committer | Evan Prodromou <evan@status.net> | 2009-08-27 11:38:31 -0700 |
commit | 522008dee570aafcc844bf123d25203c7d9c3ebc (patch) | |
tree | 843eec43287930dbe668ae0631a7afa55eff3e72 /classes/User.php | |
parent | 41ee56f770c2bb6fc4540e6452bd47d3241b4acf (diff) |
methods on User to grant, check, and revoke roles
Diffstat (limited to 'classes/User.php')
-rw-r--r-- | classes/User.php | 44 |
1 files changed, 44 insertions, 0 deletions
diff --git a/classes/User.php b/classes/User.php index aa366a5f3..58f9a6874 100644 --- a/classes/User.php +++ b/classes/User.php @@ -674,4 +674,48 @@ class User extends Memcached_DataObject { return Design::staticGet('id', $this->design_id); } + + function hasRole($name) + { + $role = User_role::pkeyGet(array('user_id' => $this->id, + 'role' => $name)); + return (!empty($role)); + } + + function grantRole($name) + { + $role = new User_role(); + + $role->user_id = $this->id; + $role->role = $name; + $role->created = common_sql_now(); + + $result = $role->insert(); + + if (!$result) { + common_log_db_error($role, 'INSERT', __FILE__); + return false; + } + + return true; + } + + function revokeRole($name) + { + $role = User_role::pkeyGet(array('user_id' => $this->id, + 'role' => $name)); + + if (empty($role)) { + throw new Exception('Cannot revoke role "'.$name.'" for user #'.$this->id.'; does not exist.'); + } + + $result = $role->delete(); + + if (!$result) { + common_log_db_error($role, 'DELETE', __FILE__); + throw new Exception('Cannot revoke role "'.$name.'" for user #'.$this->id.'; database error.'); + } + + return true; + } } |