blue-twilight/app/Helpers/PermissionsHelper.php

<?php

namespace App\Helpers;

use App\Album;
use App\AlbumDefaultAnonymousPermission;
use App\AlbumDefaultGroupPermission;
use App\AlbumDefaultUserPermission;
use App\Permission;
use App\User;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\DB;

class PermissionsHelper
{
    public function getAlbumIDs($permission = 'list', User $user = null)
    {
        $result = [];

        // First check if the anonymous user can do what is being requested - if so, the permission would also inherit
        // to logged-in users
        $anonymousUsersCan = DB::table('album_permissions_cache')
            ->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')
            ->where([
                ['album_permissions_cache.user_id', null],
                ['permissions.section', 'album'],
                ['permissions.description', $permission]
            ])
            ->select('album_permissions_cache.album_id')
            ->distinct()
            ->get();

        foreach ($anonymousUsersCan as $item)
        {
            $result[] = $item->album_id;
        }

        $query = DB::table('album_permissions_cache')
            ->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')
            ->where([
                ['album_permissions_cache.user_id', (is_null($user) || $user->isAnonymous() ? null : $user->id)],
                ['permissions.section', 'album'],
                ['permissions.description', $permission]
            ])
            ->select('album_permissions_cache.album_id')
            ->distinct()
            ->get();

        foreach ($query as $item)
        {
            if (!in_array($item->album_id, $result))
            {
                $result[] = $item->album_id;
            }
        }

        return $result;
    }

    public function rebuildCache()
    {
        $this->rebuildAlbumCache();
    }

    public function userCan_Album(Album $album, User $user, $permission)
    {
        // First check if the anonymous user can do what is being requested - if so, the permission would also inherit
        // to logged-in users
        $anonymousUsersCan = DB::table('album_permissions_cache')
                ->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')
                ->where([
                    ['album_permissions_cache.album_id', $album->id],
                    ['album_permissions_cache.user_id', null],
                    ['permissions.section', 'album'],
                    ['permissions.description', $permission]
                ])
                ->count() > 0;

        if ($anonymousUsersCan)
        {
            return true;
        }

        return DB::table('album_permissions_cache')
            ->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')
            ->where([
                ['album_permissions_cache.album_id', $album->id],
                ['album_permissions_cache.user_id', (is_null($user) || $user->isAnonymous() ? null : $user->id)],
                ['permissions.section', 'album'],
                ['permissions.description', $permission]
            ])
            ->count() > 0;
    }

    public function usersWhoCan_Album(Album $album, $permission)
    {
        $users = DB::table('album_permissions_cache')
                ->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')
                ->where([
                    ['album_permissions_cache.album_id', $album->id],
                    ['permissions.section', 'album'],
                    ['permissions.description', $permission]
                ])
                ->get();

        // Include the album's owner (who can do everything)
        $users->push($album->user);

        return $users;
    }

    private function rebuildAlbumCache()
    {
        // Get a list of albums
        $albums = Album::all();

        // Get a list of all configured permissions
        $albumUserPermissions = DB::table('album_user_permissions')->get();
        $albumGroupPermissions = DB::table('album_group_permissions')->get();
        $albumAnonPermissions = DB::table('album_anonymous_permissions')->get();

        $defaultAlbumUserPermissions = AlbumDefaultUserPermission::all();
        $defaultAlbumGroupPermissions = AlbumDefaultGroupPermission::all();
        $defaultAnonPermissions = AlbumDefaultAnonymousPermission::all();

        // Get a list of all user->group memberships
        $userGroups = DB::table('user_groups')->get();

        // Build a matrix of new permissions
        $permissionsCache = [];

        /** @var Album $album */
        foreach ($albums as $album)
        {
            $effectiveAlbumID = $album->effectiveAlbumIDForPermissions();

            if ($effectiveAlbumID === 0)
            {
                /* Use the default permissions list */

                foreach ($defaultAnonPermissions as $anonymousPermission)
                {
                    $permissionsCache[] = [
                        'album_id' => $album->id,
                        'permission_id' => $anonymousPermission->permission_id,
                        'created_at' => new \DateTime(),
                        'updated_at' => new \DateTime()
                    ];
                }

                foreach ($defaultAlbumUserPermissions as $userPermission)
                {
                    $permissionsCache[] = [
                        'user_id' => $userPermission->user_id,
                        'album_id' => $album->id,
                        'permission_id' => $userPermission->permission_id,
                        'created_at' => new \DateTime(),
                        'updated_at' => new \DateTime()
                    ];
                }

                foreach ($defaultAlbumGroupPermissions as $groupPermission)
                {
                    // Get a list of users in this group, and add one per user
                    $usersInGroup = array_filter($userGroups->toArray(), function ($item) use ($groupPermission)
                    {
                        return $item->group_id = $groupPermission->group_id;
                    });

                    foreach ($usersInGroup as $userGroup)
                    {
                        $permissionsCache[] = [
                            'user_id' => $userGroup->user_id,
                            'album_id' => $album->id,
                            'permission_id' => $groupPermission->permission_id,
                            'created_at' => new \DateTime(),
                            'updated_at' => new \DateTime()
                        ];
                    }
                }
            }
            else
            {
                /* Use the specified album-specific permissions */
                $anonymousPermissions = array_filter($albumAnonPermissions->toArray(), function ($item) use ($effectiveAlbumID)
                {
                    return ($item->album_id == $effectiveAlbumID);
                });

                foreach ($anonymousPermissions as $anonymousPermission)
                {
                    $permissionsCache[] = [
                        'album_id' => $album->id,
                        'permission_id' => $anonymousPermission->permission_id,
                        'created_at' => new \DateTime(),
                        'updated_at' => new \DateTime()
                    ];
                }

                $userPermissions = array_filter($albumUserPermissions->toArray(), function ($item) use ($effectiveAlbumID)
                {
                    return ($item->album_id == $effectiveAlbumID);
                });

                foreach ($userPermissions as $userPermission)
                {
                    $permissionsCache[] = [
                        'user_id' => $userPermission->user_id,
                        'album_id' => $album->id,
                        'permission_id' => $userPermission->permission_id,
                        'created_at' => new \DateTime(),
                        'updated_at' => new \DateTime()
                    ];
                }

                $groupPermissions = array_filter($albumGroupPermissions->toArray(), function ($item) use ($effectiveAlbumID)
                {
                    return ($item->album_id == $effectiveAlbumID);
                });

                foreach ($groupPermissions as $groupPermission)
                {
                    // Get a list of users in this group, and add one per user
                    $usersInGroup = array_filter($userGroups->toArray(), function ($item) use ($groupPermission)
                    {
                        return $item->group_id = $groupPermission->group_id;
                    });

                    foreach ($usersInGroup as $userGroup)
                    {
                        $permissionsCache[] = [
                            'user_id' => $userGroup->user_id,
                            'album_id' => $album->id,
                            'permission_id' => $groupPermission->permission_id,
                            'created_at' => new \DateTime(),
                            'updated_at' => new \DateTime()
                        ];
                    }
                }
            }
        }

        $this->savePermissionsCache($permissionsCache);
    }

    private function savePermissionsCache(array $cacheToSave)
    {
        DB::transaction(function() use ($cacheToSave)
        {
            DB::table('album_permissions_cache')->truncate();

            foreach ($cacheToSave as $cacheItem)
            {
                DB::table('album_permissions_cache')->insert($cacheItem);
            }
        });
    }
}
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`<?php`

			`namespace App\Helpers;`

			`use App\Album;`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`use App\AlbumDefaultAnonymousPermission;`
			`use App\AlbumDefaultGroupPermission;`
			`use App\AlbumDefaultUserPermission;`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`use App\Permission;`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`use App\User;`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`use Illuminate\Support\Facades\Auth;`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`use Illuminate\Support\Facades\DB;`

			`class PermissionsHelper`
			`{`
#71: Permissions are now fully inherited from an "ultimate parent". Most actions that can change the outcome of a user's permissions rebuild the permissions cache. Corrected a few minor HTML issues in layouts. 2018-09-16 22:11:53 +01:00			`public function getAlbumIDs($permission = 'list', User $user = null)`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`{`
			`$result = [];`
#71, #111: Implemented security checking in the JSON feed methods. Also users now automatically inherit the anonymous permissions by way of an additional check specifically against the anonymous user first 2018-11-18 21:39:19 +00:00
			`// First check if the anonymous user can do what is being requested - if so, the permission would also inherit`
			`// to logged-in users`
			`$anonymousUsersCan = DB::table('album_permissions_cache')`
			`->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')`
			`->where([`
			`['album_permissions_cache.user_id', null],`
			`['permissions.section', 'album'],`
			`['permissions.description', $permission]`
			`])`
			`->select('album_permissions_cache.album_id')`
			`->distinct()`
			`->get();`

			`foreach ($anonymousUsersCan as $item)`
			`{`
			`$result[] = $item->album_id;`
			`}`

#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`$query = DB::table('album_permissions_cache')`
			`->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')`
			`->where([`
#71: Permissions are now fully inherited from an "ultimate parent". Most actions that can change the outcome of a user's permissions rebuild the permissions cache. Corrected a few minor HTML issues in layouts. 2018-09-16 22:11:53 +01:00			`['album_permissions_cache.user_id', (is_null($user) \|\| $user->isAnonymous() ? null : $user->id)],`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`['permissions.section', 'album'],`
			`['permissions.description', $permission]`
			`])`
			`->select('album_permissions_cache.album_id')`
			`->distinct()`
			`->get();`

			`foreach ($query as $item)`
			`{`
#71, #111: Implemented security checking in the JSON feed methods. Also users now automatically inherit the anonymous permissions by way of an additional check specifically against the anonymous user first 2018-11-18 21:39:19 +00:00			`if (!in_array($item->album_id, $result))`
			`{`
			`$result[] = $item->album_id;`
			`}`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`}`

			`return $result;`
			`}`

#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`public function rebuildCache()`
#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`{`
			`$this->rebuildAlbumCache();`
			`}`

			`public function userCan_Album(Album $album, User $user, $permission)`
			`{`
#71, #111: Implemented security checking in the JSON feed methods. Also users now automatically inherit the anonymous permissions by way of an additional check specifically against the anonymous user first 2018-11-18 21:39:19 +00:00			`// First check if the anonymous user can do what is being requested - if so, the permission would also inherit`
			`// to logged-in users`
			`$anonymousUsersCan = DB::table('album_permissions_cache')`
			`->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')`
			`->where([`
			`['album_permissions_cache.album_id', $album->id],`
			`['album_permissions_cache.user_id', null],`
			`['permissions.section', 'album'],`
			`['permissions.description', $permission]`
			`])`
			`->count() > 0;`

			`if ($anonymousUsersCan)`
			`{`
			`return true;`
			`}`

#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`return DB::table('album_permissions_cache')`
			`->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')`
			`->where([`
			`['album_permissions_cache.album_id', $album->id],`
			`['album_permissions_cache.user_id', (is_null($user) \|\| $user->isAnonymous() ? null : $user->id)],`
			`['permissions.section', 'album'],`
			`['permissions.description', $permission]`
			`])`
			`->count() > 0;`
			`}`

#4: Started working on notification to moderators when a comment has been posted 2018-09-20 21:32:50 +01:00			`public function usersWhoCan_Album(Album $album, $permission)`
			`{`
			`$users = DB::table('album_permissions_cache')`
			`->join('permissions', 'permissions.id', '=', 'album_permissions_cache.permission_id')`
			`->where([`
			`['album_permissions_cache.album_id', $album->id],`
			`['permissions.section', 'album'],`
			`['permissions.description', $permission]`
			`])`
			`->get();`

			`// Include the album's owner (who can do everything)`
			`$users->push($album->user);`

			`return $users;`
			`}`

#71: Permissions are now read from the new cache table, which has reduced complexity in the code significantly 2018-09-16 08:41:36 +01:00			`private function rebuildAlbumCache()`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`{`
			`// Get a list of albums`
			`$albums = Album::all();`

			`// Get a list of all configured permissions`
			`$albumUserPermissions = DB::table('album_user_permissions')->get();`
			`$albumGroupPermissions = DB::table('album_group_permissions')->get();`
			`$albumAnonPermissions = DB::table('album_anonymous_permissions')->get();`

#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`$defaultAlbumUserPermissions = AlbumDefaultUserPermission::all();`
			`$defaultAlbumGroupPermissions = AlbumDefaultGroupPermission::all();`
			`$defaultAnonPermissions = AlbumDefaultAnonymousPermission::all();`

#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`// Get a list of all user->group memberships`
			`$userGroups = DB::table('user_groups')->get();`

			`// Build a matrix of new permissions`
			`$permissionsCache = [];`

			`/** @var Album $album */`
			`foreach ($albums as $album)`
			`{`
#71: Permissions are now fully inherited from an "ultimate parent". Most actions that can change the outcome of a user's permissions rebuild the permissions cache. Corrected a few minor HTML issues in layouts. 2018-09-16 22:11:53 +01:00			`$effectiveAlbumID = $album->effectiveAlbumIDForPermissions();`

#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`if ($effectiveAlbumID === 0)`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`{`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`/* Use the default permissions list */`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`foreach ($defaultAnonPermissions as $anonymousPermission)`
			`{`
			`$permissionsCache[] = [`
			`'album_id' => $album->id,`
			`'permission_id' => $anonymousPermission->permission_id,`
			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`foreach ($defaultAlbumUserPermissions as $userPermission)`
			`{`
			`$permissionsCache[] = [`
			`'user_id' => $userPermission->user_id,`
			`'album_id' => $album->id,`
			`'permission_id' => $userPermission->permission_id,`
			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`foreach ($defaultAlbumGroupPermissions as $groupPermission)`
			`{`
			`// Get a list of users in this group, and add one per user`
			`$usersInGroup = array_filter($userGroups->toArray(), function ($item) use ($groupPermission)`
			`{`
			`return $item->group_id = $groupPermission->group_id;`
			`});`

			`foreach ($usersInGroup as $userGroup)`
			`{`
			`$permissionsCache[] = [`
			`'user_id' => $userGroup->user_id,`
			`'album_id' => $album->id,`
			`'permission_id' => $groupPermission->permission_id,`
			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`
			`}`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`}`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`else`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`{`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`/* Use the specified album-specific permissions */`
			`$anonymousPermissions = array_filter($albumAnonPermissions->toArray(), function ($item) use ($effectiveAlbumID)`
			`{`
			`return ($item->album_id == $effectiveAlbumID);`
			`});`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`foreach ($anonymousPermissions as $anonymousPermission)`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`{`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`$permissionsCache[] = [`
			`'album_id' => $album->id,`
			`'permission_id' => $anonymousPermission->permission_id,`
			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`

			`$userPermissions = array_filter($albumUserPermissions->toArray(), function ($item) use ($effectiveAlbumID)`
			`{`
			`return ($item->album_id == $effectiveAlbumID);`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`});`

#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`foreach ($userPermissions as $userPermission)`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`{`
			`$permissionsCache[] = [`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`'user_id' => $userPermission->user_id,`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`'album_id' => $album->id,`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00			`'permission_id' => $userPermission->permission_id,`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`
#4, #112: Default permissions can now be saved. There's a link to the default permissions screen from the admin/settings screen. The permissions cache rebuild now takes into account the default permissions. The permissions tab on the albums screen now correctly shows text based on if permissions are inherited from a parent album, or the default permissions. 2018-09-23 22:20:03 +01:00
			`$groupPermissions = array_filter($albumGroupPermissions->toArray(), function ($item) use ($effectiveAlbumID)`
			`{`
			`return ($item->album_id == $effectiveAlbumID);`
			`});`

			`foreach ($groupPermissions as $groupPermission)`
			`{`
			`// Get a list of users in this group, and add one per user`
			`$usersInGroup = array_filter($userGroups->toArray(), function ($item) use ($groupPermission)`
			`{`
			`return $item->group_id = $groupPermission->group_id;`
			`});`

			`foreach ($usersInGroup as $userGroup)`
			`{`
			`$permissionsCache[] = [`
			`'user_id' => $userGroup->user_id,`
			`'album_id' => $album->id,`
			`'permission_id' => $groupPermission->permission_id,`
			`'created_at' => new \DateTime(),`
			`'updated_at' => new \DateTime()`
			`];`
			`}`
			`}`
#71: The rebuildPermissionsCache controller method now calls a new helper class, PermissionsHelper, that rebuilds the permissions in the new album_permissions_cache DB table 2018-09-14 21:03:07 +01:00			`}`
			`}`

			`$this->savePermissionsCache($permissionsCache);`
			`}`

			`private function savePermissionsCache(array $cacheToSave)`
			`{`
			`DB::transaction(function() use ($cacheToSave)`
			`{`
			`DB::table('album_permissions_cache')->truncate();`

			`foreach ($cacheToSave as $cacheItem)`
			`{`
			`DB::table('album_permissions_cache')->insert($cacheItem);`
			`}`
			`});`
			`}`
			`}`