@owner Deutsche Gesellschaft für International Zusammenarbeit (GIZ) Gmb @copyright Copyright (C) 2015. All Rights Reserved @license GNU/GPL Version 2 or later - http://www.gnu.org/licenses/gpl-2.0.html /-------------------------------------------------------------------------------------------------------/ Cost Benefit Projection Tool. /------------------------------------------------------------------------------------------------------*/ // No direct access to this file defined('_JEXEC') or die('Restricted access'); use Joomla\Registry\Registry; // import Joomla modelform library jimport('joomla.application.component.modeladmin'); /** * Costbenefitprojection Intervention Model */ class CostbenefitprojectionModelIntervention extends JModelAdmin { /** * @var string The prefix to use with controller messages. * @since 1.6 */ protected $text_prefix = 'COM_COSTBENEFITPROJECTION'; /** * The type alias for this content type. * * @var string * @since 3.2 */ public $typeAlias = 'com_costbenefitprojection.intervention'; /** * Returns a Table object, always creating it * * @param type $type The table type to instantiate * @param string $prefix A prefix for the table class name. Optional. * @param array $config Configuration array for model. Optional. * * @return JTable A database object * * @since 1.6 */ public function getTable($type = 'intervention', $prefix = 'CostbenefitprojectionTable', $config = array()) { return JTable::getInstance($type, $prefix, $config); } /** * Method to get a single record. * * @param integer $pk The id of the primary key. * * @return mixed Object on success, false on failure. * * @since 1.6 */ public function getItem($pk = null) { if ($item = parent::getItem($pk)) { if (!empty($item->params)) { // Convert the params field to an array. $registry = new Registry; $registry->loadString($item->params); $item->params = $registry->toArray(); } if (!empty($item->metadata)) { // Convert the metadata field to an array. $registry = new Registry; $registry->loadString($item->metadata); $item->metadata = $registry->toArray(); } if (!empty($item->interventions)) { // [3996] JSON Decode interventions. $item->interventions = json_decode($item->interventions); } if (!empty($item->id)) { $item->tags = new JHelperTags; $item->tags->getTagIds($item->id, 'com_costbenefitprojection.intervention'); } } return $item; } /** * Method to get the record form. * * @param array $data Data for the form. * @param boolean $loadData True if the form is to load its own data (default case), false if not. * * @return mixed A JForm object on success, false on failure * * @since 1.6 */ public function getForm($data = array(), $loadData = true) { // [9566] Get the form. $form = $this->loadForm('com_costbenefitprojection.intervention', 'intervention', array('control' => 'jform', 'load_data' => $loadData)); if (empty($form)) { return false; } $jinput = JFactory::getApplication()->input; // [9651] The front end calls this model and uses a_id to avoid id clashes so we need to check for that first. if ($jinput->get('a_id')) { $id = $jinput->get('a_id', 0, 'INT'); } // [9656] The back end uses id so we use that the rest of the time and set it to 0 by default. else { $id = $jinput->get('id', 0, 'INT'); } $user = JFactory::getUser(); // [9662] Check for existing item. // [9663] Modify the form based on Edit State access controls. if ($id != 0 && (!$user->authorise('intervention.edit.state', 'com_costbenefitprojection.intervention.' . (int) $id)) || ($id == 0 && !$user->authorise('intervention.edit.state', 'com_costbenefitprojection'))) { // [9676] Disable fields for display. $form->setFieldAttribute('ordering', 'disabled', 'true'); $form->setFieldAttribute('published', 'disabled', 'true'); // [9679] Disable fields while saving. $form->setFieldAttribute('ordering', 'filter', 'unset'); $form->setFieldAttribute('published', 'filter', 'unset'); } // [9684] Modify the form based on Edit Creaded By access controls. if (!$user->authorise('core.edit.created_by', 'com_costbenefitprojection')) { // [9696] Disable fields for display. $form->setFieldAttribute('created_by', 'disabled', 'true'); // [9698] Disable fields for display. $form->setFieldAttribute('created_by', 'readonly', 'true'); // [9700] Disable fields while saving. $form->setFieldAttribute('created_by', 'filter', 'unset'); } // [9703] Modify the form based on Edit Creaded Date access controls. if (!$user->authorise('core.edit.created', 'com_costbenefitprojection')) { // [9715] Disable fields for display. $form->setFieldAttribute('created', 'disabled', 'true'); // [9717] Disable fields while saving. $form->setFieldAttribute('created', 'filter', 'unset'); } return $form; } /** * Method to get the script that have to be included on the form * * @return string script files */ public function getScript() { return 'administrator/components/com_costbenefitprojection/models/forms/intervention.js'; } /** * Method to test whether a record can be deleted. * * @param object $record A record object. * * @return boolean True if allowed to delete the record. Defaults to the permission set in the component. * * @since 1.6 */ protected function canDelete($record) { if (!empty($record->id)) { if ($record->published != -2) { return; } $user = JFactory::getUser(); // [9867] The record has been set. Check the record permissions. return $user->authorise('intervention.delete', 'com_costbenefitprojection.intervention.' . (int) $record->id); } return false; } /** * Method to test whether a record can have its state edited. * * @param object $record A record object. * * @return boolean True if allowed to change the state of the record. Defaults to the permission set in the component. * * @since 1.6 */ protected function canEditState($record) { $user = JFactory::getUser(); $recordId = (!empty($record->id)) ? $record->id : 0; if ($recordId) { // [9954] The record has been set. Check the record permissions. $permission = $user->authorise('intervention.edit.state', 'com_costbenefitprojection.intervention.' . (int) $recordId); if (!$permission && !is_null($permission)) { return false; } } // [9971] In the absense of better information, revert to the component permissions. return $user->authorise('intervention.edit.state', 'com_costbenefitprojection'); } /** * Method override to check if you can edit an existing record. * * @param array $data An array of input data. * @param string $key The name of the key for the primary key. * * @return boolean * @since 2.5 */ protected function allowEdit($data = array(), $key = 'id') { // [9779] Check specific edit permission then general edit permission. $user = JFactory::getUser(); $recordId = (int) isset($data[$key]) ? $data[$key] : 0; // get company id $company = CostbenefitprojectionHelper::getId('intervention',$recordId,'id','company'); if (!$user->authorise('core.options', 'com_costbenefitprojection')) { // make absolutely sure that this intervention can be edited $companies = CostbenefitprojectionHelper::hisCompanies($user->id); if (!CostbenefitprojectionHelper::checkArray($companies) || !in_array($company,$companies)) { return false; } } // now check the access by sharing if (!CostbenefitprojectionHelper::checkIntervetionAccess($recordId,null,$company)) { return false; } return $user->authorise('intervention.edit', 'com_costbenefitprojection.intervention.'. ((int) isset($data[$key]) ? $data[$key] : 0)) or $user->authorise('intervention.edit', 'com_costbenefitprojection'); } /** * Prepare and sanitise the table data prior to saving. * * @param JTable $table A JTable object. * * @return void * * @since 1.6 */ protected function prepareTable($table) { $date = JFactory::getDate(); $user = JFactory::getUser(); if (isset($table->name)) { $table->name = htmlspecialchars_decode($table->name, ENT_QUOTES); } if (isset($table->alias) && empty($table->alias)) { $table->generateAlias(); } if (empty($table->id)) { $table->created = $date->toSql(); // set the user if ($table->created_by == 0) { $table->created_by = $user->id; } // Set ordering to the last item if not set if (empty($table->ordering)) { $db = JFactory::getDbo(); $query = $db->getQuery(true) ->select('MAX(ordering)') ->from($db->quoteName('#__costbenefitprojection_intervention')); $db->setQuery($query); $max = $db->loadResult(); $table->ordering = $max + 1; } } else { $table->modified = $date->toSql(); $table->modified_by = $user->id; } if (!empty($table->id)) { // Increment the items version number. $table->version++; } } /** * Method to get the data that should be injected in the form. * * @return mixed The data for the form. * * @since 1.6 */ protected function loadFormData() { // Check the session for previously entered form data. $data = JFactory::getApplication()->getUserState('com_costbenefitprojection.edit.intervention.data', array()); if (empty($data)) { $data = $this->getItem(); } return $data; } /** * Method to validate the form data. * * @param JForm $form The form to validate against. * @param array $data The data to validate. * @param string $group The name of the field group to validate. * * @return mixed Array of filtered data if valid, false otherwise. * * @see JFormRule * @see JFilterInput * @since 12.2 */ public function validate($form, $data, $group = null) { // [8770] check if the not_required field is set if (CostbenefitprojectionHelper::checkString($data['not_required'])) { $requiredFields = (array) explode(',',(string) $data['not_required']); $requiredFields = array_unique($requiredFields); // [8775] now change the required field attributes value foreach ($requiredFields as $requiredField) { // [8778] make sure there is a string value if (CostbenefitprojectionHelper::checkString($requiredField)) { // [8781] change to false $form->setFieldAttribute($requiredField, 'required', 'false'); // [8783] also clear the data set $data[$requiredField] = ''; } } } return parent::validate($form, $data, $group); } /** * Method to get the unique fields of this table. * * @return mixed An array of field names, boolean false if none is set. * * @since 3.0 */ protected function getUniqeFields() { return false; } /** * Method to perform batch operations on an item or a set of items. * * @param array $commands An array of commands to perform. * @param array $pks An array of item ids. * @param array $contexts An array of item contexts. * * @return boolean Returns true on success, false on failure. * * @since 12.2 */ public function batch($commands, $pks, $contexts) { // Sanitize ids. $pks = array_unique($pks); JArrayHelper::toInteger($pks); // Remove any values of zero. if (array_search(0, $pks, true)) { unset($pks[array_search(0, $pks, true)]); } if (empty($pks)) { $this->setError(JText::_('JGLOBAL_NO_ITEM_SELECTED')); return false; } $done = false; // Set some needed variables. $this->user = JFactory::getUser(); $this->table = $this->getTable(); $this->tableClassName = get_class($this->table); $this->contentType = new JUcmType; $this->type = $this->contentType->getTypeByTable($this->tableClassName); $this->canDo = CostbenefitprojectionHelper::getActions('intervention'); $this->batchSet = true; if (!$this->canDo->get('core.batch')) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_INSUFFICIENT_BATCH_INFORMATION')); return false; } if ($this->type == false) { $type = new JUcmType; $this->type = $type->getTypeByAlias($this->typeAlias); } $this->tagsObserver = $this->table->getObserverOfClass('JTableObserverTags'); if (!empty($commands['move_copy'])) { $cmd = JArrayHelper::getValue($commands, 'move_copy', 'c'); if ($cmd == 'c') { $result = $this->batchCopy($commands, $pks, $contexts); if (is_array($result)) { foreach ($result as $old => $new) { $contexts[$new] = $contexts[$old]; } $pks = array_values($result); } else { return false; } } elseif ($cmd == 'm' && !$this->batchMove($commands, $pks, $contexts)) { return false; } $done = true; } if (!$done) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_INSUFFICIENT_BATCH_INFORMATION')); return false; } // Clear the cache $this->cleanCache(); return true; } /** * Batch copy items to a new category or current. * * @param integer $values The new values. * @param array $pks An array of row IDs. * @param array $contexts An array of item contexts. * * @return mixed An array of new IDs on success, boolean false on failure. * * @since 12.2 */ protected function batchCopy($values, $pks, $contexts) { if (empty($this->batchSet)) { // [4932] Set some needed variables. $this->user = JFactory::getUser(); $this->table = $this->getTable(); $this->tableClassName = get_class($this->table); $this->contentType = new JUcmType; $this->type = $this->contentType->getTypeByTable($this->tableClassName); $this->canDo = CostbenefitprojectionHelper::getActions('intervention'); } if (!$this->canDo->get('intervention.create') && !$this->canDo->get('intervention.batch')) { return false; } // set company array $company = array(); foreach ($pks as $nr => $pk) { $company[$pk] = CostbenefitprojectionHelper::getId('intervention',$pk,'id','company'); // check based on sharing option if (!CostbenefitprojectionHelper::checkIntervetionAccess($pk,null,$company)) { unset($pks[$nr]); } } if (empty($pks)) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_BATCH_CANNOT_EDIT')); return false; } // admin can all if (!$this->user->authorise('core.options', 'com_costbenefitprojection')) { // make absolutely sure that this intervention can be copied $companies = CostbenefitprojectionHelper::hisCompanies($this->user->id); if (CostbenefitprojectionHelper::checkArray($companies)) { foreach ($pks as $nr => $pk) { if (!in_array($company[$pk],$companies)) { unset($pks[$nr]); } } if (empty($pks)) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_BATCH_CANNOT_EDIT')); return false; } } else { $this->setError(JText::_('JLIB_APPLICATION_ERROR_BATCH_CANNOT_EDIT')); return false; } } // [4952] get list of uniqe fields $uniqeFields = $this->getUniqeFields(); // [4954] remove move_copy from array unset($values['move_copy']); // [4957] make sure published is set if (!isset($values['published'])) { $values['published'] = 0; } elseif (isset($values['published']) && !$this->canDo->get('intervention.edit.state')) { $values['published'] = 0; } $newIds = array(); // [4994] Parent exists so let's proceed while (!empty($pks)) { // [4997] Pop the first ID off the stack $pk = array_shift($pks); $this->table->reset(); // [5002] only allow copy if user may edit this item. if (!$this->user->authorise('intervention.edit', $contexts[$pk])) { // [5012] Not fatal error $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', $pk)); continue; } // [5017] Check that the row actually exists if (!$this->table->load($pk)) { if ($error = $this->table->getError()) { // [5022] Fatal error $this->setError($error); return false; } else { // [5029] Not fatal error $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', $pk)); continue; } } $this->table->name = $this->generateUniqe('name',$this->table->name); // [5065] insert all set values if (CostbenefitprojectionHelper::checkArray($values)) { foreach ($values as $key => $value) { if (strlen($value) > 0 && isset($this->table->$key)) { $this->table->$key = $value; } } } // [5077] update all uniqe fields if (CostbenefitprojectionHelper::checkArray($uniqeFields)) { foreach ($uniqeFields as $uniqeField) { $this->table->$uniqeField = $this->generateUniqe($uniqeField,$this->table->$uniqeField); } } // [5086] Reset the ID because we are making a copy $this->table->id = 0; // [5089] TODO: Deal with ordering? // [5090] $this->table->ordering = 1; // [5092] Check the row. if (!$this->table->check()) { $this->setError($this->table->getError()); return false; } if (!empty($this->type)) { $this->createTagsHelper($this->tagsObserver, $this->type, $pk, $this->typeAlias, $this->table); } // [5105] Store the row. if (!$this->table->store()) { $this->setError($this->table->getError()); return false; } // [5113] Get the new item ID $newId = $this->table->get('id'); // [5116] Add the new ID to the array $newIds[$pk] = $newId; } // [5120] Clean the cache $this->cleanCache(); return $newIds; } /** * Batch move items to a new category * * @param integer $value The new category ID. * @param array $pks An array of row IDs. * @param array $contexts An array of item contexts. * * @return boolean True if successful, false otherwise and internal error is set. * * @since 12.2 */ protected function batchMove($values, $pks, $contexts) { if (empty($this->batchSet)) { // [4734] Set some needed variables. $this->user = JFactory::getUser(); $this->table = $this->getTable(); $this->tableClassName = get_class($this->table); $this->contentType = new JUcmType; $this->type = $this->contentType->getTypeByTable($this->tableClassName); $this->canDo = CostbenefitprojectionHelper::getActions('intervention'); } if (!$this->canDo->get('intervention.edit') && !$this->canDo->get('intervention.batch')) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_BATCH_CANNOT_EDIT')); return false; } // set company array $company = array(); foreach ($pks as $nr => $pk) { $company[$pk] = CostbenefitprojectionHelper::getId('intervention',$pk,'id','company'); // check based on sharing option if (!CostbenefitprojectionHelper::checkIntervetionAccess($pk,null,$company[$pk])) { unset($pks[$nr]); } } if (empty($pks)) { $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', 0)); return false; } // admin can all if (!$this->user->authorise('core.options', 'com_costbenefitprojection')) { // make absolutely sure that this intervention can be moved $companies = CostbenefitprojectionHelper::hisCompanies($this->user->id); if (CostbenefitprojectionHelper::checkArray($companies)) { foreach ($pks as $nr => $pk) { if (!in_array($company[$pk],$companies)) { unset($pks[$nr]); } } if (empty($pks)) { $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', 0)); return false; } } else { $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', 0)); return false; } } // [4756] make sure published only updates if user has the permission. if (isset($values['published']) && !$this->canDo->get('intervention.edit.state')) { unset($values['published']); } // [4769] remove move_copy from array unset($values['move_copy']); // [4790] Parent exists so we proceed foreach ($pks as $pk) { if (!$this->user->authorise('intervention.edit', $contexts[$pk])) { $this->setError(JText::_('JLIB_APPLICATION_ERROR_BATCH_CANNOT_EDIT')); return false; } // [4807] Check that the row actually exists if (!$this->table->load($pk)) { if ($error = $this->table->getError()) { // [4812] Fatal error $this->setError($error); return false; } else { // [4819] Not fatal error $this->setError(JText::sprintf('JLIB_APPLICATION_ERROR_BATCH_MOVE_ROW_NOT_FOUND', $pk)); continue; } } // [4825] insert all set values. if (CostbenefitprojectionHelper::checkArray($values)) { foreach ($values as $key => $value) { // [4830] Do special action for access. if ('access' == $key && strlen($value) > 0) { $this->table->$key = $value; } elseif (strlen($value) > 0 && isset($this->table->$key)) { $this->table->$key = $value; } } } // [4842] Check the row. if (!$this->table->check()) { $this->setError($this->table->getError()); return false; } if (!empty($this->type)) { $this->createTagsHelper($this->tagsObserver, $this->type, $pk, $this->typeAlias, $this->table); } // [4855] Store the row. if (!$this->table->store()) { $this->setError($this->table->getError()); return false; } } // [4864] Clean the cache $this->cleanCache(); return true; } /** * Method to save the form data. * * @param array $data The form data. * * @return boolean True on success. * * @since 1.6 */ public function save($data) { $input = JFactory::getApplication()->input; $filter = JFilterInput::getInstance(); // set the metadata to the Item Data if (isset($data['metadata']) && isset($data['metadata']['author'])) { $data['metadata']['author'] = $filter->clean($data['metadata']['author'], 'TRIM'); $metadata = new JRegistry; $metadata->loadArray($data['metadata']); $data['metadata'] = (string) $metadata; } // [4106] Set the interventions string to JSON string. if (isset($data['interventions'])) { $data['interventions'] = (string) json_encode($data['interventions']); } // Set the Params Items to data if (isset($data['params']) && is_array($data['params'])) { $params = new JRegistry; $params->loadArray($data['params']); $data['params'] = (string) $params; } // [5212] Alter the uniqe field for save as copy if ($input->get('task') == 'save2copy') { // [5215] Automatic handling of other uniqe fields $uniqeFields = $this->getUniqeFields(); if (CostbenefitprojectionHelper::checkArray($uniqeFields)) { foreach ($uniqeFields as $uniqeField) { $data[$uniqeField] = $this->generateUniqe($uniqeField,$data[$uniqeField]); } } } if (parent::save($data)) { return true; } return false; } /** * Method to generate a uniqe value. * * @param string $field name. * @param string $value data. * * @return string New value. * * @since 3.0 */ protected function generateUniqe($field,$value) { // set field value uniqe $table = $this->getTable(); while ($table->load(array($field => $value))) { $value = JString::increment($value); } return $value; } /** * Method to change the title & alias. * * @param string $title The title. * * @return array Contains the modified title and alias. * */ protected function _generateNewTitle($title) { // [5270] Alter the title $table = $this->getTable(); while ($table->load(array('title' => $title))) { $title = JString::increment($title); } return $title; } }