[FEATURE] Respect access rights for newsletter selection in options i…

…n new/edit view Related: #211
in2code-de · Mar 1, 2024 · 69d1bfb · 69d1bfb
1 parent dc4ad95
commit 69d1bfb
Show file tree

Hide file tree

Showing 2 changed files with 37 additions and 5 deletions.
diff --git a/Classes/Domain/Repository/PageRepository.php b/Classes/Domain/Repository/PageRepository.php
@@ -3,7 +3,9 @@
 declare(strict_types=1);
 namespace In2code\Luxletter\Domain\Repository;
 
+use In2code\Luxletter\Domain\Service\PermissionTrait;
 use In2code\Luxletter\Exception\MisconfigurationException;
+use In2code\Luxletter\Utility\BackendUserUtility;
 use In2code\Luxletter\Utility\ConfigurationUtility;
 use In2code\Luxletter\Utility\DatabaseUtility;
 use PDO;
@@ -14,6 +16,8 @@
 
 class PageRepository
 {
+    use PermissionTrait;
+
     const TABLE_NAME = 'pages';
 
     /**
@@ -30,21 +34,28 @@ public function findAllNewsletterPages(): array
         $pages = [];
         try {
             $queryBuilder = DatabaseUtility::getQueryBuilderForTable(self::TABLE_NAME);
-            $results = $queryBuilder
+            $rows = $queryBuilder
                 ->select('*')
                 ->from(self::TABLE_NAME)
                 ->where(
                     'doktype=' . ConfigurationUtility::getMultilanguageNewsletterPageDoktype()
                     . ' and sys_language_uid=0'
                 )
-                ->orderBy('title', 'desc')
+                ->orderBy('title', 'asc')
                 ->executeQuery()
                 ->fetchAllAssociative();
-            foreach ($results as $result) {
-                $pages[$result['uid']] = $result['title'];
+            if (BackendUserUtility::isAdministrator() === false) {
+                foreach ($rows as $key => $row) {
+                    if ($this->isAuthenticated($row) === false) {
+                        unset($rows[$key]);
+                    }
+                }
+            }
+            foreach ($rows as $row) {
+                $pages[$row['uid']] = $row['title'];
             }
         } catch (Throwable $exception) {
-            return $pages;
+            unset($exception);
         }
         return $pages;
     }

diff --git a/Classes/Domain/Service/PermissionTrait.php b/Classes/Domain/Service/PermissionTrait.php
@@ -0,0 +1,21 @@
+<?php
+
+declare(strict_types=1);
+namespace In2code\Luxletter\Domain\Service;
+
+use In2code\Luxletter\Utility\BackendUserUtility;
+use TYPO3\CMS\Core\Type\Bitmask\Permission;
+
+trait PermissionTrait
+{
+    private function isAuthenticated(array $pageRecord): bool
+    {
+        if (BackendUserUtility::isAdministrator()) {
+            return true;
+        }
+
+        $beuserAuthentication = BackendUserUtility::getBackendUserAuthentication();
+        return $beuserAuthentication !== null &&
+            $beuserAuthentication->doesUserHaveAccess($pageRecord, Permission::PAGE_SHOW);
+    }
+}