Gecko [ garmin.alinaous.com ]

Name	Size	Permission
.pkexec	[ DIR ]	drwxr-xr-x
GCONV_PATH=.	[ DIR ]	drwxr-xr-x
.mad-root	0 B	-rw-r--r--
AdminAccessController.php	7.76 KB	-rw----r--
AdminAttributeGeneratorControl...	11.59 KB	-rw----r--
AdminAttributesGroupsControlle...	39.3 KB	-rw----r--
AdminCarrierWizardController.p...	40.47 KB	-rw----r--
AdminCarriersController.php	32.05 KB	-rw----r--
AdminCartRulesController.php	37.94 KB	-rw----r--
AdminCartsController.php	43.36 KB	-rw----r--
AdminCountriesController.php	21.89 KB	-rw----r--
AdminCustomerThreadsController...	53.46 KB	-rw----r--
AdminDashboardController.php	23.83 KB	-rw----r--
AdminFeaturesController.php	24.16 KB	-rw----r--
AdminGendersController.php	8.5 KB	-rw----r--
AdminGroupsController.php	26.09 KB	-rw----r--
AdminImagesController.php	37.67 KB	-rw----r--
AdminImportController.php	240.43 KB	-rw----r--
AdminLegacyLayoutController.ph...	6.55 KB	-rw----r--
AdminLoginController.php	21.1 KB	-rw----r--
AdminModulesController.php	76.69 KB	-rw----r--
AdminModulesPositionsControlle...	29.72 KB	-rw----r--
AdminNotFoundController.php	1.68 KB	-rw----r--
AdminOutstandingController.php	6.38 KB	-rw----r--
AdminPatternsController.php	25.2 KB	-rw----r--
AdminPdfController.php	8.26 KB	-rw----r--
AdminProductsController.php	160.42 KB	-rw----r--
AdminQuickAccessesController.p...	9.29 KB	-rw----r--
AdminReferrersController.php	21.58 KB	-rw----r--
AdminRequestSqlController.php	21.3 KB	-rw----r--
AdminReturnController.php	14.54 KB	-rw----r--
AdminSearchConfController.php	23.54 KB	-rw----r--
AdminSearchController.php	23.45 KB	-rw----r--
AdminSearchEnginesController.p...	3.57 KB	-rw----r--
AdminShopController.php	36.4 KB	-rw----r--
AdminShopGroupController.php	14.6 KB	-rw----r--
AdminShopUrlController.php	23.96 KB	-rw----r--
AdminSpecificPriceRuleControll...	15.93 KB	-rw----r--
AdminStatesController.php	12.62 KB	-rw----r--
AdminStatsController.php	46.01 KB	-rw----r--
AdminStatsTabController.php	11.41 KB	-rw----r--
AdminStatusesController.php	29.33 KB	-rw----r--
AdminStoresController.php	24.67 KB	-rw----r--
AdminSuppliersController.php	24.06 KB	-rw----r--
AdminTabsController.php	14.62 KB	-rw----r--
AdminTagsController.php	5.53 KB	-rw----r--
AdminTaxRulesGroupController.p...	22.01 KB	-rw----r--
AdminTranslationsController.ph...	148.17 KB	-rw----r--
AdminZonesController.php	5.27 KB	-rw----r--
BoOrder.php	1.29 KB	-rw----r--
adminer.php	465.43 KB	-rw-r--r--
index.php	1.34 KB	-rw----r--
pwnkit	10.99 KB	-rwxr-xr-x

Code Editor : AdminAccessController.php

<?php
/**
 * Copyright since 2007 PrestaShop SA and Contributors
 * PrestaShop is an International Registered Trademark & Property of PrestaShop SA
 *
 * NOTICE OF LICENSE
 *
 * This source file is subject to the Open Software License (OSL 3.0)
 * that is bundled with this package in the file LICENSE.md.
 * It is also available through the world-wide-web at this URL:
 * https://opensource.org/licenses/OSL-3.0
 * If you did not receive a copy of the license and are unable to
 * obtain it through the world-wide-web, please send an email
 * to license@prestashop.com so we can send you a copy immediately.
 *
 * DISCLAIMER
 *
 * Do not edit or add to this file if you wish to upgrade PrestaShop to newer
 * versions in the future. If you wish to customize PrestaShop for your
 * needs please refer to https://devdocs.prestashop.com/ for more information.
 *
 * @author    PrestaShop SA and Contributors <contact@prestashop.com>
 * @copyright Since 2007 PrestaShop SA and Contributors
 * @license   https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0)
 */

/**
 * @property Profile $object
 */
class AdminAccessControllerCore extends AdminController
{
    /** @var array : Black list of id_tab that do not have access */
    public $accesses_black_list = [];

public function __construct()
    {
        $this->bootstrap = true;
        $this->show_toolbar = false;
        $this->table = 'access';
        $this->className = 'Profile';
        $this->multishop_context = Shop::CONTEXT_ALL;
        $this->lang = false;
        $this->context = Context::getContext();

// Blacklist AdminLogin
        $this->accesses_black_list[] = Tab::getIdFromClassName('AdminLogin');

parent::__construct();
    }

/**
     * AdminController::renderForm() override.
     *
     * @see AdminController::renderForm()
     */
    public function renderForm()
    {
        $current_profile = (int) $this->getCurrentProfileId();
        $profiles = Profile::getProfiles($this->context->language->id);
        $tabs = Tab::getTabs($this->context->language->id);

$accesses = [];
        foreach ($profiles as $profile) {
            $accesses[$profile['id_profile']] = Profile::getProfileAccesses($profile['id_profile']);
        }

// Deleted id_tab that do not have access
        foreach ($tabs as $key => $tab) {
            // Don't allow permissions for unnamed tabs (ie. AdminLogin)
            if (empty($tab['name'])) {
                unset($tabs[$key]);
            }

foreach ($this->accesses_black_list as $id_tab) {
                if ($tab['id_tab'] == (int) $id_tab) {
                    unset($tabs[$key]);
                }
            }
        }

$modules = [];
        foreach ($profiles as $profile) {
            $modules[$profile['id_profile']] = Module::getModulesAccessesByIdProfile($profile['id_profile']);
            uasort($modules[$profile['id_profile']], [$this, 'sortModuleByName']);
        }

$this->fields_form = [''];
        $this->tpl_form_vars = [
            'profiles' => $profiles,
            'accesses' => $accesses,
            'id_tab_parentmodule' => (int) Tab::getIdFromClassName('AdminParentModules'),
            'id_tab_module' => (int) Tab::getIdFromClassName('AdminModules'),
            'tabs' => $this->displayTabs($tabs),
            'current_profile' => (int) $current_profile,
            'admin_profile' => (int) _PS_ADMIN_PROFILE_,
            'access_edit' => $this->access('edit'),
            'perms' => ['view', 'add', 'edit', 'delete'],
            'id_perms' => ['view' => 0, 'add' => 1, 'edit' => 2, 'delete' => 3, 'all' => 4],
            'modules' => $modules,
            'link' => $this->context->link,
            'employee_profile_id' => (int) $this->context->employee->id_profile,
        ];

return parent::renderForm();
    }

/**
     * AdminController::initContent() override.
     *
     * @see AdminController::initContent()
     */
    public function initContent()
    {
        $this->display = 'edit';

if (!$this->loadObject(true)) {
            return;
        }

$this->content .= $this->renderForm();

$this->context->smarty->assign([
            'content' => $this->content,
        ]);
    }

public function initToolbarTitle()
    {
        $this->toolbar_title = array_unique($this->breadcrumbs);
    }

public function initPageHeaderToolbar()
    {
        parent::initPageHeaderToolbar();
        unset($this->page_header_toolbar_btn['cancel']);
    }

public function ajaxProcessUpdateAccess()
    {
        if (_PS_MODE_DEMO_) {
            throw new PrestaShopException($this->trans('This functionality has been disabled.', [], 'Admin.Notifications.Error'));
        }
        if ($this->access('edit') != '1') {
            throw new PrestaShopException($this->trans('You do not have permission to edit this.', [], 'Admin.Notifications.Error'));
        }

if (Tools::isSubmit('submitAddAccess')) {
            $access = new Access();
            $perm = Tools::getValue('perm');
            if (!in_array($perm, ['view', 'add', 'edit', 'delete', 'all'])) {
                throw new PrestaShopException('permission does not exist');
            }

$enabled = (int) Tools::getValue('enabled');
            $id_tab = (int) Tools::getValue('id_tab');
            $id_profile = (int) Tools::getValue('id_profile');
            $addFromParent = (int) Tools::getValue('addFromParent');

die($access->updateLgcAccess((int) $id_profile, $id_tab, $perm, $enabled, $addFromParent));
        }
    }

public function ajaxProcessUpdateModuleAccess()
    {
        if (_PS_MODE_DEMO_) {
            throw new PrestaShopException($this->trans('This functionality has been disabled.', [], 'Admin.Notifications.Error'));
        }
        if ($this->access('edit') != '1') {
            throw new PrestaShopException($this->trans('You do not have permission to edit this.', [], 'Admin.Notifications.Error'));
        }

if (Tools::isSubmit('changeModuleAccess')) {
            $access = new Access();
            $perm = Tools::getValue('perm');
            $enabled = (int) Tools::getValue('enabled');
            $id_module = (int) Tools::getValue('id_module');
            $id_profile = (int) Tools::getValue('id_profile');

if (!in_array($perm, ['view', 'configure', 'uninstall'])) {
                throw new PrestaShopException('permission does not exist');
            }

die($access->updateLgcModuleAccess((int) $id_profile, $id_module, $perm, $enabled));
        }
    }

/**
     * Get the current profile id.
     *
     * @return int the $_GET['profile'] if valid, else 1 (the first profile id)
     */
    public function getCurrentProfileId()
    {
        return (isset($_GET['id_profile']) && !empty($_GET['id_profile']) && is_numeric($_GET['id_profile'])) ? (int) $_GET['id_profile'] : 1;
    }

/**
     * @param array $a module data
     * @param array $b module data
     *
     * @return int
     */
    protected function sortModuleByName($a, $b)
    {
        $moduleAName = isset($a['name']) ? $a['name'] : null;
        $moduleBName = isset($b['name']) ? $b['name'] : null;

return strnatcmp($moduleAName, $moduleBName);
    }

/**
     * return human readable Tabs hierarchy for display.
     */
    protected function displayTabs(array $tabs)
    {
        $tabsTree = $this->getChildrenTab($tabs);

return $tabsTree;
    }

protected function getChildrenTab(array &$tabs, $id_parent = 0)
    {
        $children = [];
        foreach ($tabs as &$tab) {
            $id = $tab['id_tab'];

if ($tab['id_parent'] == $id_parent) {
                $children[$id] = $tab;
                $children[$id]['children'] = $this->getChildrenTab($tabs, $id);
            }
        }

return $children;
    }
}

${this.title}

Code Editor : AdminAccessController.php