diff options
author | cash <cash.costello@gmail.com> | 2013-03-30 11:16:09 -0400 |
---|---|---|
committer | cash <cash.costello@gmail.com> | 2013-03-30 11:16:09 -0400 |
commit | d167a3b62afd6c07cf6c9257c49d5dd77958a58e (patch) | |
tree | 39134021e257060078f1382cee899745b8183da1 /mod/pages/start.php | |
parent | 5b4d84398065f09da522aa0e1b239cce9dc6e7bb (diff) | |
download | elgg-d167a3b62afd6c07cf6c9257c49d5dd77958a58e.tar.gz elgg-d167a3b62afd6c07cf6c9257c49d5dd77958a58e.tar.bz2 |
Fixes #4349 friends can edit pages now
Diffstat (limited to 'mod/pages/start.php')
-rw-r--r-- | mod/pages/start.php | 36 |
1 files changed, 24 insertions, 12 deletions
diff --git a/mod/pages/start.php b/mod/pages/start.php index 6d974f122..8debeef24 100644 --- a/mod/pages/start.php +++ b/mod/pages/start.php @@ -281,25 +281,37 @@ function page_notify_message($hook, $entity_type, $returnvalue, $params) { /** * Extend permissions checking to extend can-edit for write users. * - * @param unknown_type $hook - * @param unknown_type $entity_type - * @param unknown_type $returnvalue - * @param unknown_type $params + * @param string $hook + * @param string $entity_type + * @param bool $returnvalue + * @param array $params */ -function pages_write_permission_check($hook, $entity_type, $returnvalue, $params) -{ +function pages_write_permission_check($hook, $entity_type, $returnvalue, $params) { if ($params['entity']->getSubtype() == 'page' || $params['entity']->getSubtype() == 'page_top') { $write_permission = $params['entity']->write_access_id; $user = $params['user']; - if (($write_permission) && ($user)) { - // $list = get_write_access_array($user->guid); - $list = get_access_array($user->guid); // get_access_list($user->guid); - - if (($write_permission!=0) && (in_array($write_permission,$list))) { - return true; + if ($write_permission && $user) { + switch ($write_permission) { + case ACCESS_PRIVATE: + // Elgg's default decision is what we want + return; + break; + case ACCESS_FRIENDS: + $owner = $params['entity']->getOwnerEntity(); + if ($owner && $owner->isFriendsWith($user->guid)) { + return true; + } + break; + default: + $list = get_access_array($user->guid); + if (in_array($write_permission, $list)) { + // user in the access collection + return true; + } + break; } } } |