diff options
| author | Zach Copley <zach@status.net> | 2009-09-30 10:32:05 -0700 |
|---|---|---|
| committer | Zach Copley <zach@status.net> | 2009-09-30 10:32:05 -0700 |
| commit | 5bab0288afe90996729101df1372071e1bf2cffc (patch) | |
| tree | 6f715547d0cb1cf632c7be4e596fa4d45f347f41 /classes/User.php | |
| parent | 34ba2d03e94d3708a68166a8eae248152691f628 (diff) | |
| parent | a57783de0214f061eca3ab65880f573e8668de03 (diff) | |
Merge branch '0.9.x' into refactor-api
* 0.9.x: (39 commits)
Timeout a little incase the notice item from XHR response is
Relocated the button for pop up window for notice stream
Script no longer needed for Realtime plugin
Better check to see if the XML prolog should be outputted for XML
Outputting UTF-8 charset in document header irrespective of mimetype.
Switched Doctype to XHTML 1.0 Strict (which best reflects the current
Twitter API returns server errors in preferred format
move HTTP error code strings to class variables
remove string-checks from code using Notice::saveNew()
change string return from Notice::saveNew to exceptions
stop overwriting created timestamp on group edit
Forgot to add home_timeline to the list of methods that only require
Forgot to add home_timeline to the list of methods that only require
moderator can delete another user's notice
show delete button when user has deleteOthersNotice right
let hooks override standard user rights
user rights
Merge DeleteAction class into DeletenoticeAction
Fix some bugs in the URL linkification, and fixed the unit test.
Fix URL linkification test cases for addition of 'title' attribution with long URL in f3c8fccc
...
Diffstat (limited to 'classes/User.php')
| -rw-r--r-- | classes/User.php | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/classes/User.php b/classes/User.php index 5e74c7fde..3f7ed09bb 100644 --- a/classes/User.php +++ b/classes/User.php @@ -711,4 +711,33 @@ class User extends Memcached_DataObject return true; } + + /** + * Does this user have the right to do X? + * + * With our role-based authorization, this is merely a lookup for whether the user + * has a particular role. The implementation currently uses a switch statement + * to determine if the user has the pre-defined role to exercise the right. Future + * implementations may allow per-site roles, and different mappings of roles to rights. + * + * @param $right string Name of the right, usually a constant in class Right + * @return boolean whether the user has the right in question + */ + + function hasRight($right) + { + $result = false; + if (Event::handle('UserRightsCheck', array($this, $right, &$result))) { + switch ($right) + { + case Right::deleteOthersNotice: + $result = $this->hasRole('moderator'); + break; + default: + $result = false; + break; + } + } + return $result; + } } |