Custom project roles inherit from project members

author: Frederic Guillot <fred@kanboard.net> 2016-09-08 20:44:03 -0400
committer: Frederic Guillot <fred@kanboard.net> 2016-09-08 20:44:03 -0400
commit: fedf4ea2de21fcf95fc5aa942cedc7924865f160 (patch)
tree: d2dd83bd08de6284c737bbfab47699ed1ef1d984 /app
parent: dded773749e869893a00865cf2183a7f0c684038 (diff)
2 files changed, 17 insertions, 0 deletions
diff --git a/app/Core/Security/Role.php b/app/Core/Security/Role.php
index cb45a8af..c16d4094 100644
--- a/app/Core/Security/Role.php
+++ b/app/Core/Security/Role.php
@@ -50,6 +50,18 @@ class Role
     }
 
     /**
+     * Check if the given role is custom or not
+     *
+     * @access public
+     * @param  string $role
+     * @return bool
+     */
+    public function isCustomProjectRole($role)
+    {
+        return ! empty($role) && $role !== self::PROJECT_MANAGER && $role !== self::PROJECT_MEMBER && $role !== self::PROJECT_VIEWER;
+    }
+
+    /**
      * Get role name
      *
      * @access public
diff --git a/app/Helper/UserHelper.php b/app/Helper/UserHelper.php
index e42bafe4..17c66616 100644
--- a/app/Helper/UserHelper.php
+++ b/app/Helper/UserHelper.php
@@ -150,6 +150,11 @@ class UserHelper extends Base
 
         if ($result === null) {
             $role = $this->getProjectUserRole($project_id);
+
+            if ($this->role->isCustomProjectRole($role)) {
+                $role = Role::PROJECT_MEMBER;
+            }
+
             $result = $this->projectAuthorization->isAllowed($controller, $action, $role);
             $this->memoryCache->set($key, $result);
         }
author	Frederic Guillot <fred@kanboard.net>	2016-09-08 20:44:03 -0400
committer	Frederic Guillot <fred@kanboard.net>	2016-09-08 20:44:03 -0400
commit	fedf4ea2de21fcf95fc5aa942cedc7924865f160 (patch)
tree	d2dd83bd08de6284c737bbfab47699ed1ef1d984 /app
parent	dded773749e869893a00865cf2183a7f0c684038 (diff)