Ð¤Ð°Ð¹Ð»Ð¾Ð²Ñ‹Ð¹ Ð¼ÐµÐ½ÐµÐ´Ð¶ÐµÑ€

Ð¤Ð°Ð¹Ð»Ð¾Ð²Ñ‹Ð¹ Ð¼ÐµÐ½ÐµÐ´Ð¶ÐµÑ€ - Ð ÐµÐ´Ð°ÐºÑ‚Ð¸Ñ€Ð¾Ð²Ð°Ñ‚ÑŒ - /var/www/html/components/com_community/helpers/access/files.php

ÐÐ°Ð·Ð°Ð´
<?php /** * @copyright (C) 2013 iJoomla, Inc. - All rights reserved. * @license GNU General Public License, version 2 (http://www.gnu.org/licenses/gpl-2.0.html) * @author iJoomla.com <webmaster@ijoomla.com> * @url https://www.jomsocial.com/license-agreement * The PHP code portions are distributed under the GPL license. If not otherwise stated, all images, manuals, cascading style sheets, and included JavaScript are NOT GPL, and are released under the IJOOMLA Proprietary Use License v1.0 More info at https://www.jomsocial.com/license-agreement / use Joomla\CMS\Table\Table; defined('_JEXEC') or die('Restricted access'); Class CFilesAccess implements CAccessInterface { /* * Method to check if a user is authorised to perform an action in this class * * @param integer $userId Id of the user for which to check authorisation. * @param string $action The name of the action to authorise. * @param mixed $asset Name of the asset as a string. * * @return boolean True if authorised. * @since Jomsocial 2.4 */ static public function authorise() { $args = func_get_args(); $assetName = array_shift ( $args ); if (method_exists(__CLASS__,$assetName)) { return call_user_func_array(array(__CLASS__, $assetName), $args); } else { return null; } } static public function filesDiscussionAdd($userId,$discussionId) { $config = CFactory::getConfig(); //CFactory::load( 'libraries' , 'limits' ); $discussionTable = Table::getInstance('Discussion' , 'CTable' ); $discussionTable->load($discussionId); $groupModel = CFactory::getModel( 'groups' ); $discusionParams = $discussionTable->getParams(); if($userId == 0) { CAccess::setError('blockUnregister'); return false; } if(!CLimitsHelper::exceededGroupFileUpload($discussionTable->groupid)) { return false; } if( CLimitsLibrary::exceedDaily( 'files',$userId ) ) { return false; } if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $discussionTable->groupid) \|\| ($groupModel->isMember($userId, $discussionTable->groupid) && $discusionParams->get('filepermission-member')) ) { return true; } return false; } static public function filesDiscussionDelete($userId,$obj) { $discussionTable = Table::getInstance('Discussion' , 'CTable' ); $discussionTable->load($obj->discussionid); $groupModel = CFactory::getModel( 'groups' ); if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $discussionTable->groupid) \|\| ($discussionTable->creator == $userId) \|\| ($obj->creator == $userId)) { return true; } return false; } static public function filesBulletinAdd($userId,$bulletinId) { if($userId == 0) { CAccess::setError('blockUnregister'); return false; } $table = Table::getInstance('Bulletin' , 'CTable' ); $table->load($bulletinId); //CFactory::load( 'libraries' , 'limits' ); $groupModel = CFactory::getModel( 'groups' ); $bulletinParams = $table->getParams(); if(!CLimitsHelper::exceededGroupFileUpload($table->groupid)) { return false; } if( CLimitsLibrary::exceedDaily( 'files',$userId ) ) { return false; } if( COwnerHelper::isCommunityAdmin()\|\| $groupModel->isAdmin($userId, $table->groupid) \|\| ($groupModel->isMember($userId, $table->groupid) && $bulletinParams->get('filepermission-member'))) { return true; } return false; } static public function filesBulletinDelete($userId,$obj) { $table = Table::getInstance('Bulletin' , 'CTable' ); $table->load($obj->bulletinid); $groupModel = CFactory::getModel( 'groups' ); if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $table->groupid) \|\| ($table->created_by == $userId) \|\| ($obj->creator == $userId)) { return true; } return false; } static public function filesDiscussionDownload($userId,$discussionId) { $discussionTable = Table::getInstance('Discussion' , 'CTable' ); $discussionTable->load($discussionId); $groupModel = CFactory::getModel( 'groups' ); if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $discussionTable->groupid) \|\| $groupModel->isMember($userId, $discussionTable->groupid) ) { return true; } return false; } static public function filesBulletinDownload($userId,$bulletinId) { $table = Table::getInstance('Bulletin' , 'CTable' ); $table->load($bulletinId); $groupModel = CFactory::getModel( 'groups' ); if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $table->groupid) \|\| $groupModel->isMember($userId, $table->groupid) ) { return true; } return false; } static public function filesGroupDownload($userId, $groupId) { $groupModel = CFactory::getModel( 'groups' ); if( COwnerHelper::isCommunityAdmin() \|\| $groupModel->isAdmin($userId, $groupId) \|\| $groupModel->isMember($userId, $groupId) ) { return true; } return false; } static public function filesMessageDelete($userId,$obj) { $table = Table::getInstance('Message', 'CTable'); $table->load($obj->messageid); $parentTable = Table::getInstance('Message', 'CTable'); $parentTable->load($table->parent); if( COwnerHelper::isCommunityAdmin() \|\| ($table->from == $userId) \|\| ($parentTable->from == $userId) ) { return true; } return false; } static public function filesActivityDownload($userId, $actid) { $table = Table::getInstance('Activity', 'CTable'); $table->load($actid); if ($table->access == 20) { if ($userId > 0) return true; else return false; } else if ($table->access == 30) { return CFriendsHelper::isConnected($userId, $table->actor); } else if ($table->access == 40) { return COwnerHelper::isMine($userId, $table->actor); } return true; } }

| ver. 1.1 | | . | PHP 8.4.18 | Ð“ÐµÐ½ÐµÑ€Ð°Ñ†Ð¸Ñ ÑÑ‚Ñ€Ð°Ð½Ð¸Ñ†Ñ‹: 0 | proxy | phpinfo | ÐÐ°ÑÑ‚Ñ€Ð¾Ð¹ÐºÐ°