Properly extensible canEdit functionality for metadata, annotations, and anything else that supports the ElggExtender interface

git-svn-id: https://code.elgg.org/elgg/trunk@410 36083f99-b078-4883-b0ff-0f9b5a30f544

1 files changed, 36 insertions, 0 deletions

diff --git a/engine/lib/extender.php b/engine/lib/extender.php
index 4f588acdd..aca8a0fca 100644
--- a/engine/lib/extender.php
+++ b/engine/lib/extender.php
@@ -69,6 +69,16 @@
 		 * Delete this data.
 		 */
 		abstract public function delete();
+		

+		/**

+		 * Determines whether or not the specified user can edit this

+		 *

+		 * @param int $user_guid The GUID of the user (defaults to currently logged in user)

+		 * @return true|false

+		 */

+		function canEdit($user_guid = 0) {

+			return can_edit_extender($this->id,$this->type,$user_guid);

+		}

 		
 		public function export()
 		{
@@ -145,6 +155,32 @@
 			return $tmp;
 		}
 	}
+	

+	/**

+	 * Determines whether or not the specified user can edit the specified piece of extender

+	 *

+	 * @param int $extender_id The ID of the piece of extender

+	 * @param string $type 'metadata' or 'annotation'

+	 * @param int $user_guid The GUID of the user

+	 * @return true|false

+	 */

+	function can_edit_extender($extender_id, $type, $user_guid = 0) {

+		

+		if ($user_guid == 0) {

+			$user = $_SESSION['user'];

+		} else {

+			$user = get_entity($user_guid);

+		}

+		$functionname = "get_{$type}";

+		if (is_callable($functionname)) {

+			$extender = $functionname($extender_id);

+		} else return false;

+		

+		if ($extender->getOwner() == $user->getGUID()) return true;

+		

+		return trigger_plugin_hook('permissions_check',$type,array('entity' => $entity, 'user' => $user),false);

+		

+	}

 	
 	/** Register the hook */
 	register_plugin_hook("import", "all", "import_extender_plugin_hook", 2);