bizproc_2lib_2_api_2_service_2_workflow_access_service_8php_source.html

<?php


namespace Bitrix\Bizproc\Api\Service;


use Bitrix\Bizproc\Api\Request\WorkflowAccessService\CanViewFacesRequest;

use Bitrix\Bizproc\Api\Request\WorkflowAccessService\CanViewTimelineRequest;

use Bitrix\Bizproc\Api\Request\WorkflowAccessService\CheckStartWorkflowRequest;

use Bitrix\Bizproc\Api\Response\Error;

use Bitrix\Bizproc\Api\Response\WorkflowAccessService\CanViewFacesResponse;

use Bitrix\Bizproc\Api\Response\WorkflowAccessService\CanViewTimelineResponse;

use Bitrix\Bizproc\Api\Response\WorkflowAccessService\CheckAccessResponse;

use Bitrix\Bizproc\Workflow\Entity\WorkflowUserTable;

use Bitrix\Main\Localization\Loc;


class WorkflowAccessService

{


    public function checkStartWorkflow(CheckStartWorkflowRequest $request): CheckAccessResponse

    {

        $hasAccess =

            \CBPDocument::canUserOperateDocument(

                \CBPCanUserOperateOperation::StartWorkflow,

                $request->userId,

                $request->complexDocumentId,

                $request->parameters,

            )

        ;


        $response = new CheckAccessResponse();

        if (!$hasAccess)

        {

            $response->addError(new Error(Loc::getMessage(

                'BIZPROC_LIB_API_WORKFLOW_ACCESS_SERVICE_START_WORKFLOW_RIGHTS_ERROR'

            )));

        }


        return $response;

    }


    public function canViewTimeline(CanViewTimelineRequest $request): CanViewTimelineResponse

    {

        $workflowUser =

            WorkflowUserTable::query()

                ->setSelect(['*'])

                ->setFilter([

                    '=WORKFLOW_ID' => $request->workflowId,

                    '=USER_ID' => $request->userId,

                ])

                ->setLimit(1)

                ->exec()

                ->fetchObject()

        ;


        if (!$workflowUser && !$this->canViewWorkflow($request->workflowId, $request->userId))

        {

            return CanViewTimelineResponse::createError(static::getViewAccessDeniedError());

        }


        return new CanViewTimelineResponse();

    }


    private function canViewWorkflow($workflowId, $userId): bool

    {

        $documentId = \CBPStateService::getStateDocumentId($workflowId);


        return (

            $documentId

            && \CBPDocument::canUserOperateDocument(

                \CBPCanUserOperateOperation::ViewWorkflow,

                $userId,

                $documentId,

                [

                    'WorkflowId' => $workflowId,

                ]

            )

        );

    }


    public function canCreateWorkflow(array $complexDocumentType, int $userId, array $parameters = []): bool

    {

        return \CBPDocument::CanUserOperateDocumentType(

            \CBPCanUserOperateOperation::CreateWorkflow,

            $userId,

            $complexDocumentType,

            $parameters

        );

    }


    public static function getViewAccessDeniedError(): \Bitrix\Bizproc\Error

    {

        return new \Bitrix\Bizproc\Error(Loc::getMessage(

            'BIZPROC_LIB_API_WORKFLOW_ACCESS_SERVICE_VIEW_TIMELINE_RIGHTS_ERROR_MSGVER_1'

        ));

    }


    public function canViewFaces(CanViewFacesRequest $request): CanViewFacesResponse

    {

        if (empty($request->workflowId) || $request->userId <= 0)

        {

            return CanViewFacesResponse::createError(self::getViewAccessDeniedError());

        }


        // admin can view all bp content

        if ($request->currentUserId > 0 && (new \CBPWorkflowTemplateUser($request->currentUserId))->isAdmin())

        {

            return CanViewFacesResponse::createOk();

        }


        $canViewResponse = $this->canViewTimeline(

            new CanViewTimelineRequest(

                $request->workflowId,

                $request->userId

            )

        );

        if (!$canViewResponse->isSuccess())

        {

            return CanViewFacesResponse::createError(self::getViewAccessDeniedError());

        }


        if (

            $request->currentUserId > 0

            && $request->currentUserId !== $request->userId

            && !\CBPHelper::checkUserSubordination($request->currentUserId, $request->userId)

        )

        {

            return CanViewFacesResponse::createError(self::getViewAccessDeniedError());

        }


        return CanViewFacesResponse::createOk();

    }


}


$request
if(!Loader::includeModule('catalog')) if(!AccessController::getCurrent() ->check(ActionDictionary::ACTION_PRICE_EDIT)) if(!check_bitrix_sessid()) $request
Определения catalog_reindex.php:36

$userId
if(!is_object($USER)||! $USER->IsAuthorized()) $userId
Определения check_mail.php:18

Bitrix\Bizproc\Api\Request\WorkflowAccessService\CanViewFacesRequest
Определения CanViewFacesRequest.php:6

Bitrix\Bizproc\Api\Request\WorkflowAccessService\CanViewTimelineRequest
Определения CanViewTimelineRequest.php:6

Bitrix\Bizproc\Api\Request\WorkflowAccessService\CheckStartWorkflowRequest
Определения CheckStartWorkflowRequest.php:6

Bitrix\Bizproc\Api\Response\WorkflowAccessService\CanViewFacesResponse
Определения CanViewFacesResponse.php:8

Bitrix\Bizproc\Api\Response\WorkflowAccessService\CanViewTimelineResponse
Определения CanViewTimelineResponse.php:8

Bitrix\Bizproc\Api\Response\WorkflowAccessService\CheckAccessResponse
Определения CheckAccessResponse.php:8

Bitrix\Bizproc\Api\Service\WorkflowAccessService\canViewFaces
canViewFaces(CanViewFacesRequest $request)
Определения WorkflowAccessService.php:95

Bitrix\Bizproc\Api\Service\WorkflowAccessService\getViewAccessDeniedError
static getViewAccessDeniedError()
Определения WorkflowAccessService.php:88

Bitrix\Bizproc\Api\Service\WorkflowAccessService\canViewTimeline
canViewTimeline(CanViewTimelineRequest $request)
Определения WorkflowAccessService.php:39

Bitrix\Bizproc\Api\Service\WorkflowAccessService\canCreateWorkflow
canCreateWorkflow(array $complexDocumentType, int $userId, array $parameters=[])
Определения WorkflowAccessService.php:78

Bitrix\Bizproc\Api\Service\WorkflowAccessService\checkStartWorkflow
checkStartWorkflow(CheckStartWorkflowRequest $request)
Определения WorkflowAccessService.php:17

Bitrix\Main\Error
Определения error.php:15

CBPCanUserOperateOperation\ViewWorkflow
const ViewWorkflow
Определения constants.php:211

CBPCanUserOperateOperation\CreateWorkflow
const CreateWorkflow
Определения constants.php:213

CBPCanUserOperateOperation\StartWorkflow
const StartWorkflow
Определения constants.php:212

CBPStateService\getStateDocumentId
static getStateDocumentId($workflowId)
Определения stateservice.php:75

CBPWorkflowTemplateUser
Определения workflowtemplateloader.php:1585

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

Bitrix\Bizproc\Api\Request\WorkflowAccessService
Определения CanViewFacesRequest.php:3

Bitrix\Bizproc

Bitrix

$response
$response
Определения result.php:21