-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathSuperUserOnlyRestrictions.php
61 lines (54 loc) · 1.63 KB
/
SuperUserOnlyRestrictions.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
<?php
/**
* Matomo - free/libre analytics platform
* Plugin developed for Web Analytics Italia (https://webanalytics.italia.it)
*
* @link https://matomo.org
* @license http://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
*/
namespace Piwik\Plugins\SuperUserOnlyRestrictions;
use Piwik\Config;
use Piwik\Piwik;
use Piwik\Plugins\UsersManager\UsersManager;
class SuperUserOnlyRestrictions extends \Piwik\Plugin
{
/**
* The configuration array.
*
* @var array
*/
protected $pluginConfig;
/**
* Construct a new SuperUserOnlyRestrictions instance.
*/
public function __construct() {
parent::__construct();
$this->pluginConfig = Config::getInstance()->{$this->pluginName};
}
/**
* Get event handlers.
*
* @return array the event handlers
*/
public function registerEvents()
{
return [
'Controller.UsersManager.userSettings' => 'restrictAccess',
'Controller.UsersManager.userSecurity' => 'restrictAccess',
'Controller.Widgetize.index' => 'restrictAccess',
'Controller.API.listAllAPI' => 'restrictAccess',
'Controller.CoreAdminHome.trackingCodeGenerator' => 'restrictAccess',
];
}
/**
* Restrict access to super users only, if the plugin is enabled.
*/
public function restrictAccess()
{
if(isset($this->pluginConfig['super_user_only_restrictions_enabled'])
&& $this->pluginConfig['super_user_only_restrictions_enabled']) {
Piwik::checkUserIsNotAnonymous();
Piwik::checkUserHasSuperUserAccess();
}
}
}