Newer
Older
Sonia Zorba
committed
<?php
/* ----------------------------------------------------------------------------
* INAF - National Institute for Astrophysics
* IRA - Radioastronomical Institute - Bologna
* OATS - Astronomical Observatory - Trieste
* ----------------------------------------------------------------------------
*
* Copyright (C) 2016 Istituto Nazionale di Astrofisica
*
* This program is free software; you can redistribute it and/or modify it under
* the terms of the GNU General Public License Version 3 as published by the
* Free Software Foundation.
*
* This program is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
* details.
*
* You should have received a copy of the GNU General Public License along with
* this program; if not, write to the Free Software Foundation, Inc., 51
* Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*/
namespace RAP;
class UserHandler {
private $dao;
private $grouperConfig;
Sonia Zorba
committed
public function __construct(DAO $dao, $grouperConfig) {
$this->dao = $dao;
$this->grouperConfig = $grouperConfig;
}
public function saveUser(User $user) {
Sonia Zorba
committed
$primarySpecified = true;
// If new user
Sonia Zorba
committed
if ($user->id === null) {
$primarySpecified = false;
$user->id = $this->dao->createUser();
Sonia Zorba
committed
}
foreach ($user->identities as $identity) {
if ($identity->id === null) {
$identity->id = $this->dao->insertIdentity($identity, $user->id);
if (!$primarySpecified) {
$this->dao->setPrimaryIdentity($user->id, $identity->id);
$identity->primary = true;
}
Sonia Zorba
committed
}
}
}
public function findUserByIdentity($type, $identifier) {
Sonia Zorba
committed
return $this->dao->findUserByIdentity($type, $identifier);
Sonia Zorba
committed
}
public function joinUsers($userId1, $userId2) {
if ($this->grouperConfig !== null) {
$gc = new GrouperClient($this->grouperConfig);
$grouperUser1 = 'RAP:' . $userId1;
$grouperUser2 = 'RAP:' . $userId2;
$groupsToMove = $gc->getSubjectGroups($grouperUser2);
$privilegesMap = $gc->getSubjectPrivileges($grouperUser2);
// Adding memberships
$gc->addMemberships($grouperUser1, $groupsToMove);
// Adding privileges
foreach ($privilegesMap as $groupName => $privileges) {
$gc->assignPrivileges($grouperUser1, $groupName, $privileges);
}
// Removing privileges
foreach ($privilegesMap as $groupName => $privileges) {
$gc->removePrivileges($grouperUser2, $groupName, $privileges);
}
// Removing memberships
$gc->removeMemberships($grouperUser2, $groupsToMove);
$this->dao->joinUsers($userId1, $userId2);