Infra-Mirrors/BookStack
1
0
Fork 0
mirror of https://github.com/BookStackApp/BookStack.git synced 2024-08-25 19:56:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Checks the target and the source book before performing the sort.

Browse Source 
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
This commit is contained in:
Abijeet 2017-12-31 16:25:21 +05:30
parent 96b8c403a8
commit 4a24d1c31b
1 changed files with 25 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
app/Http/Controllers/BookController.php
View File

@ -195,20 +195,43 @@ class BookController extends Controller
$sortMap = json_decode($request->get('sort-tree'));
$defaultBookId = $book->id;
$permissionsList = [$book->id];
// Loop through contents of provided map and update entities accordingly
foreach ($sortMap as $bookChild) {
$priority = $bookChild->sort;
$id = intval($bookChild->id);
$isPage = $bookChild->type == 'page';
$bookId = $this->entityRepo->exists('book', $bookChild->book) ? intval($bookChild->book) : $defaultBookId;
$bookId = $defaultBookId;
$targetBook = $this->entityRepo->getById('book', $bookChild->book);
// Check permission for target book
if (!empty($targetBook)) {
$bookId = $targetBook->id;
if (!in_array($bookId, $permissionsList)) {
$this->checkOwnablePermission('book-update', $targetBook);
// cache the permission for future use.
$permissionsList[] = $bookId;
}
}
$chapterId = ($isPage && $bookChild->parentChapter === false) ? 0 : intval($bookChild->parentChapter);
$model = $this->entityRepo->getById($isPage?'page':'chapter', $id);
// Check permissions for the source book
$sourceBook = $model->book;
if (!in_array($sourceBook->id, $permissionsList)) {
$this->checkOwnablePermission('book-update', $sourceBook);
$permissionsList[] = $sourceBook->id;
}
// Update models only if there's a change in parent chain or ordering.
if ($model->priority !== $priority || $model->book_id !== $bookId || ($isPage && $model->chapter_id !== $chapterId)) {
$this->entityRepo->changeBook($isPage?'page':'chapter', $bookId, $model);
$model->priority = $priority;
if ($isPage) $model->chapter_id = $chapterId;
if ($isPage) {
$model->chapter_id = $chapterId;
}
$model->save();
$updatedModels->push($model);
}