BookStack Code Mirror - bookstack/blobdiff

diff --git a/app/Repos/EntityRepo.php b/app/Repos/EntityRepo.php

index 95ae2ed0e78673c73fbe19856fb923dcadf582cd..2c92e1907228548dc2d2f89209e27608fa8fb71f 100644 (file)

--- a/app/Repos/EntityRepo.php

+++ b/app/Repos/EntityRepo.php

@@ -113,9 +113,9 @@ class EntityRepo

* @param bool $allowDrafts

* @return \Illuminate\Database\Query\Builder

*/

- protected function entityQuery($type, $allowDrafts = false)

+ protected function entityQuery($type, $allowDrafts = false, $permission = 'view')

{

- $q = $this->permissionService->enforceEntityRestrictions($type, $this->getEntity($type), 'view');

+ $q = $this->permissionService->enforceEntityRestrictions($type, $this->getEntity($type), $permission);

if (strtolower($type) === 'page' && !$allowDrafts) {

$q = $q->where('draft', '=', false);

}

@@ -196,14 +196,15 @@ class EntityRepo

}

/**

- * Get all entities of a type limited by count unless count if false.

+ * Get all entities of a type with the given permission, limited by count unless count is false.

* @param string $type

* @param integer|bool $count

+ * @param string $permission

* @return Collection

*/

- public function getAll($type, $count = 20)

+ public function getAll($type, $count = 20, $permission = 'view')

{

- $q = $this->entityQuery($type)->orderBy('name', 'asc');

+ $q = $this->entityQuery($type, false, $permission)->orderBy('name', 'asc');

if ($count !== false) $q = $q->take($count);

return $q->get();

}

@@ -442,9 +443,10 @@ class EntityRepo

*/

public function updateEntityPermissionsFromRequest($request, Entity $entity)

{

- $entity->restricted = $request->has('restricted') && $request->get('restricted') === 'true';

+ $entity->restricted = $request->get('restricted', '') === 'true';

$entity->permissions()->delete();

- if ($request->has('restrictions')) {

+

+ if ($request->filled('restrictions')) {

foreach ($request->get('restrictions') as $roleId => $restrictions) {

foreach ($restrictions as $action => $value) {

$entity->permissions()->create([

@@ -454,6 +456,7 @@ class EntityRepo

}

+

$entity->save();

$this->permissionService->buildJointPermissionsForEntity($entity);

}

@@ -553,8 +556,9 @@ class EntityRepo

*/

protected function nameToSlug($name)

{

- $slug = str_replace(' ', '-', strtolower($name));

- $slug = preg_replace('/[\+\/\\\?\@\}\{\.\,\=\[\]\#\&\!\*\'\;\:\$\%]/', '', $slug);

+ $slug = preg_replace('/[\+\/\\\?\@\}\{\.\,\=\[\]\#\&\!\*\'\;\:\$\%]/', '', mb_strtolower($name));

+ $slug = preg_replace('/\s{2,}/', ' ', $slug);

+ $slug = str_replace(' ', '-', $slug);

if ($slug === "") $slug = substr(md5(rand(1, 500)), 0, 5);

return $slug;

}

@@ -687,6 +691,7 @@ class EntityRepo

preg_match_all("/{{@\s?([0-9].*?)}}/", $content, $matches);

if (count($matches[0]) === 0) return $content;

+ $topLevelTags = ['table', 'ul', 'ol'];

foreach ($matches[1] as $index => $includeId) {

$splitInclude = explode('#', $includeId, 2);

$pageId = intval($splitInclude[0]);

@@ -711,8 +716,13 @@ class EntityRepo

continue;

}

$innerContent = '';

- foreach ($matchingElem->childNodes as $childNode) {

- $innerContent .= $doc->saveHTML($childNode);

+ $isTopLevel = in_array(strtolower($matchingElem->nodeName), $topLevelTags);

+ if ($isTopLevel) {

+ $innerContent .= $doc->saveHTML($matchingElem);

+ } else {

+ foreach ($matchingElem->childNodes as $childNode) {

+ $innerContent .= $doc->saveHTML($childNode);

+ }

}

$content = str_replace($matches[0][$index], trim($innerContent), $content);

}