mirror/zoneminder
1
0
Fork 0
mirror of https://github.com/ZoneMinder/zoneminder.git synced 2026-03-25 01:01:53 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
f04a9075cc3bc6778e1d4875dfcd9cabc485bbe9
zoneminder/web/api/app/Model/Role.php
Isaac Connor 4e60cb96a7 feat: add User Roles feature for reusable permission templates 
Add a User Roles system where roles define reusable permission templates.
When a user has a role assigned, the role provides fallback permissions
(user's direct permissions take precedence; role is used when user has 'None').

Database changes:
- Add User_Roles table with same permission fields as Users
- Add Role_Groups_Permissions table for per-role group overrides
- Add Role_Monitors_Permissions table for per-role monitor overrides
- Add RoleId foreign key to Users table

Permission resolution order:
1. User's direct Monitor/Group permissions (if not 'Inherit')
2. Role's Monitor/Group permissions (if user has role)
3. Role's base permission (if user's is 'None')
4. User's base permission (fallback)

Includes:
- PHP models: User_Role, Role_Group_Permission, Role_Monitor_Permission
- Role management UI in Options > Roles tab
- Role selector in user edit form
- REST API endpoints for roles CRUD
- Translation strings for en_gb

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 13:34:27 -05:00

66 lines
1.1 KiB
PHP
Raw Blame History

<?php
App::uses('AppModel', 'Model');
/**
* Role Model
*
*/
class Role extends AppModel {
public $validate = array(
'Name' => array(
'required' => array(
'rule' => array('notEmpty'),
'message' => 'A role name is required'
)
)
);
/**
* Use table
*
* @var mixed False or table name
*/
public $useTable = 'User_Roles';
/**
* Primary key field
*
* @var string
*/
public $primaryKey = 'Id';
/**
* Display field
*
* @var string
*/
public $displayField = 'Name';
//The Associations below have been created with all possible keys, those that are not needed can be removed
/**
* hasMany associations
*
* @var array
*/
public $hasMany = array(
'RoleGroupPermission' => array(
'className' => 'RoleGroupPermission',
'foreignKey' => 'RoleId',
'dependent' => true,
),
'RoleMonitorPermission' => array(
'className' => 'RoleMonitorPermission',
'foreignKey' => 'RoleId',
'dependent' => true,
),
'User' => array(
'className' => 'User',
'foreignKey' => 'RoleId',
'dependent' => false,
),
);
}
Reference in New Issue View Git Blame Copy Permalink