Rewrite of the authentication and authorization system

This commit is contained in:
Frederic Guillot
2015-12-05 20:31:27 -05:00
parent 346b8312e5
commit e9fedf3e5c
255 changed files with 14114 additions and 9820 deletions

View File

@@ -3,9 +3,33 @@
namespace Schema;
use Kanboard\Core\Security\Token;
use Kanboard\Core\Security\Role;
use PDO;
const VERSION = 89;
const VERSION = 91;
function version_91(PDO $pdo)
{
$pdo->exec("ALTER TABLE users ADD COLUMN role TEXT NOT NULL DEFAULT '".Role::APP_USER."'");
$rq = $pdo->prepare('SELECT * FROM users');
$rq->execute();
$rows = $rq->fetchAll(PDO::FETCH_ASSOC) ?: array();
$rq = $pdo->prepare('UPDATE users SET "role"=? WHERE "id"=?');
foreach ($rows as $row) {
$role = Role::APP_USER;
if ($row['is_admin'] == 1) {
$role = Role::APP_ADMIN;
} else if ($row['is_project_admin']) {
$role = Role::APP_MANAGER;
}
$rq->execute(array($role, $row['id']));
}
}
function version_90(PDO $pdo)
{
@@ -19,6 +43,21 @@ function version_90(PDO $pdo)
UNIQUE(group_id, project_id)
)
");
$pdo->exec("ALTER TABLE project_has_users ADD COLUMN role TEXT NOT NULL DEFAULT '".Role::PROJECT_VIEWER."'");
$rq = $pdo->prepare('SELECT * FROM project_has_users');
$rq->execute();
$rows = $rq->fetchAll(PDO::FETCH_ASSOC) ?: array();
$rq = $pdo->prepare('UPDATE project_has_users SET "role"=? WHERE "id"=?');
foreach ($rows as $row) {
$rq->execute(array(
$row['is_owner'] == 1 ? Role::PROJECT_MANAGER : Role::PROJECT_MEMBER,
$row['id'],
));
}
}
function version_89(PDO $pdo)
@@ -1004,7 +1043,6 @@ function version_7(PDO $pdo)
{
$pdo->exec("
CREATE TABLE project_has_users (
id INTEGER PRIMARY KEY,
project_id INTEGER NOT NULL,
user_id INTEGER NOT NULL,
FOREIGN KEY(project_id) REFERENCES projects(id) ON DELETE CASCADE,