acl = $registry->acl; $this->action = $registry->action; $this->board = $registry->board; $this->config = $registry->config; $this->project = $registry->project; $this->task = $registry->task; $this->user = $registry->user; $this->comment = $registry->comment; $this->event = $registry->shared('event'); } /** * Method executed before each action * * @access public */ public function beforeAction($controller, $action) { // Start the session $this->session->open(dirname($_SERVER['PHP_SELF']), SESSION_SAVE_PATH); // HTTP secure headers $this->response->csp(); $this->response->nosniff(); $this->response->xss(); $this->response->hsts(); $this->response->xframe(); // Load translations $language = $this->config->get('language', 'en_US'); if ($language !== 'en_US') \Translator\load($language); // Set timezone date_default_timezone_set($this->config->get('timezone', 'UTC')); // If the user is not authenticated redirect to the login form, if the action is public continue if (! isset($_SESSION['user']) && ! $this->acl->isPublicAction($controller, $action)) { $this->response->redirect('?controller=user&action=login'); } // Check if the user is allowed to see this page if (! $this->acl->isPageAccessAllowed($controller, $action)) { $this->response->redirect('?controller=user&action=forbidden'); } // Attach events for automatic actions $this->action->attachEvents(); } /** * Check if the current user have access to the given project * * @access protected * @param integer $project_id Project id */ protected function checkProjectPermissions($project_id) { if ($this->acl->isRegularUser()) { if ($project_id > 0 && ! $this->project->isUserAllowed($project_id, $this->acl->getUserId())) { $this->response->redirect('?controller=project&action=forbidden'); } } } /** * Redirection when there is no project in the database * * @access protected */ protected function redirectNoProject() { $this->session->flash(t('There is no active project, the first step is to create a new project.')); $this->response->redirect('?controller=project&action=create'); } /** * Application not found page (404 error) * * @access public */ public function notfound() { $this->response->html($this->template->layout('app_notfound', array('title' => t('Page not found')))); } /** * Display the template show task (common between different actions) * * @access protected * @param array $task Task data * @param array $comment_form Comment form data * @param array $description_form Description form data * @param array $comment_edit_form Comment edit form data */ protected function showTask(array $task, array $comment_form = array(), array $description_form = array(), array $comment_edit_form = array()) { if (empty($comment_form)) { $comment_form = array( 'values' => array('task_id' => $task['id'], 'user_id' => $this->acl->getUserId()), 'errors' => array() ); } if (empty($description_form)) { $description_form = array( 'values' => array('id' => $task['id']), 'errors' => array() ); } if (empty($comment_edit_form)) { $comment_edit_form = array( 'values' => array('id' => 0), 'errors' => array() ); } else { $hide_comment_form = true; } $this->response->html($this->template->layout('task_show', array( 'hide_comment_form' => isset($hide_comment_form), 'comment_edit_form' => $comment_edit_form, 'comment_form' => $comment_form, 'description_form' => $description_form, 'comments' => $this->comment->getAll($task['id']), 'task' => $task, 'columns_list' => $this->board->getColumnsList($task['project_id']), 'colors_list' => $this->task->getColors(), 'menu' => 'tasks', 'title' => $task['title'], ))); } }