delPower('share'); } return $perm; } function getPerm($fid, $bz='',$i=0){ global $_G; if(isset($_G['gperm'])) return intval($_G['gperm']);//可以通过这个参数直接使用此权限值不去查询权限 $i++; if($i>20){ //防死循环，如果循环20次以上，直接退出； return perm_binPerm::getGroupPower('read'); } if($folder=C::t('folder')->fetch($fid)){ $perm=intval($folder['perm']); $power=new perm_binPerm($perm); if($folder['gid']){ if(C::t('organization_admin')->chk_memberperm($folder['gid'],$_G['uid'])) return (perm_binPerm::getGroupPower('all')); if($power->isPower('flag')){//不继承，使用此权限 if($_G['setting']['allowshare']){ $perm=$power->delPower('share'); } $power1=new perm_binPerm($perm); return $power1->power;//mergePower(self::getuserPerm()); }else{ //继承上级，查找上级 if($folder['pfid']>0 && $folder['pfid']!=$folder['fid']){ //有上级目录 //return self::getPerm($folder['pfid'],$bz,$i); $perm=self::getPerm($folder['pfid'],$bz,$i); $power1=new perm_binPerm($perm); return $power1->power;//mergePower(self::getuserPerm()); }else{ //其他的情况使用 return perm_binPerm::getGroupPower('read'); } } }else{ if($folder['uid']==$_G['uid'] || $_G['adminid']==1) return perm_binPerm::getGroupPower('all'); if($power->isPower('flag')){//不继承，使用此权限 if($_G['setting']['allowshare']){ $perm=$power->delPower('share'); } $power1=new perm_binPerm($perm); return $power1->mergePower(self::getuserPerm()); }else{ //继承上级，查找上级 if($folder['pfid']>0 && $folder['pfid']!=$folder['fid']){ //有上级目录 return self::getPerm($folder['pfid'],$bz,$i); }elseif (shareLink($_GET['shareLink'],$_GET['path'])){ return perm_binPerm::getGroupPower('read'); }elseif($folder = C::t('folder')->fetch_home_by_uid($uid)){//查看当前用户的个人网盘fid if($folder['fid']){ if(!($folder['fid']==$fid)){//判断当前用户的个人网盘fid是否等于当前用户访问的fid $fids = get_all_chilrdenfid_by_pfid($folder['fid']); if (!(in_array($fid,$fids))){ return false; } } } }else{ //其他的情况使用 return self::getuserPerm(); } } } }else{ return perm_binPerm::getGroupPower('read'); } } function getPerm1($fid, $bz='',$i=0,$newperm = 0){ global $_G; $i++; if($i>20){ //防死循环，如果循环20次以上，直接退出； return perm_binPerm::getGroupPower('all'); } if($folder=C::t('folder')->fetch($fid)){ $perm=($newperm) ? intval($newperm):intval($folder['perm']); if($folder['gid']){ $power=new perm_binPerm($perm); if($power->isPower('flag')){//不继承，使用此权限 return $perm; }else{ //继承上级，查找上级 if($folder['pfid']>0 && $folder['pfid']!=$folder['fid']){ //有上级目录 return self::getPerm1($folder['pfid'],$bz,$i,$newperm); }else{ //其他的情况使用 return perm_binPerm::getGroupPower('read'); } } }else{ $power=new perm_binPerm($perm); if($power->isPower('flag')){//不继承，使用此权限 if($_G['setting']['allowshare']){ $perm=$power->delPower('share'); } $power1=new perm_binPerm($perm); return $power1->mergePower(self::getuserPerm());; }else{ //继承上级，查找上级 if($folder['pfid']>0 && $folder['pfid']!=$folder['fid']){ //有上级目录 return self::getPerm1($folder['pfid'],$bz,$i); }else{ //其他的情况使用 return self::getuserPerm(); } } } }else{ return perm_binPerm::getGroupPower('read'); } } function userPerm($fid,$action){ //判断容器有没有指定的权限 global $_G; if($_G['adminid']==1){ //是管理员 return true; } if(!$_G['uid']){ //如果不是登录用户，返回false; return false; } //if($action=='download' || $action=='saveto' || $action=='copy' ) return true; $perm=self::getPerm($fid); //exit($perm.'===='.$action); return perm_binPerm::havePower($action,$perm); /* if($perm<5){ if($action=='view') return true; else return false; } return true;*/ } function groupPerm($fid,$action,$gid){ //判断容器有没有指定的权限 global $_G; $ismoderator=C::t('organization_admin')->chk_memberperm($gid,$_G['uid']); if($action=='admin' && !$ismoderator) return false; if($ismoderator){ //是部门管理员或上级部门管理员 return true; } //不是部门成员或下级部门成员没有权限 if(!C::t('organization')->ismember($gid,$_G['uid'],false)) return false; //if($action=='download' || $action=='saveto' || $action=='copy' ) return true; $perm=self::getPerm($fid); //exit($perm.'====='.$fid.'======='.$gid.'===='.$action); if($perm>0){ $power=new perm_binPerm($perm); //exit($perm.'====='.$fid.'======='.$gid.'===='.$action.'==='.$power->isPower($action)); return $power->isPower($action); } return false; } //$arr=array('uid','gid','desktop');其中这几项必须 function checkperm($action,$arr,$bz=''){ //检查某个图标是否有权限; global $_G; if($_G['uid']<1){ //游客没有权限 return false; } if(($bz && $bz!='dzz') || ($arr['bz'] && $arr['bz']!='dzz')){ return self::checkperm_Container($arr['pfid'],$action,$bz?$bz:$arr['bz']); }else{ if($action=='rename'){ $action='edit'; } if(in_array($action,array('read','delete','edit','download','copy'))){ if($_G['uid']==$arr['uid']) $action.='1'; else $action.='2'; } //首先判断ico的超级权限； if(!perm_FileSPerm::isPower($arr['sperm'],$action)) return false; if($folder=C::t('folder')->fetch_by_fid($arr['pfid'])){ //首先判断目录的超级权限； if(!perm_FolderSPerm::isPower($folder['fsperm'],$action)) return false; } if($_G['adminid']==1) return true; //网站管理员 有权限; return self::checkperm_Container($arr['pfid'],$action,$bz); } } function checkperm_Container($pfid,$action='',$bz=''){ //检查容器是否有权限操作; global $_G; if($_G['uid']<1){ //游客没有权限 return false; } if($bz){ if(!perm_FolderSPerm::isPower(perm_FolderSPerm::flagPower($bz),$action)) return false; return true; }else{ if($folder=C::t('folder')->fetch($pfid)){ //首先判断目录的超级权限； if($action=='rename'){ $action='edit'; } if(in_array($action,array('read','delete','edit','download','copy'))){ if($_G['uid']==$folder['uid']) $action.='1'; else $action.='2'; } if(!perm_FolderSPerm::isPower($folder['fsperm'],$action)) return false; //默认目录只有管理员有权限改变排列 //if($action=='admin' && $_G['adminid']!=1 && $folder['flag']!='folder') return false; } if($_G['adminid']==1) return true; //网址管理员 有权限; if($folder['gid']){ return self::groupPerm($pfid,$action,$folder['gid']); }else{ return self::userPerm($pfid,$action); } } } }