<?php
defined('C5_EXECUTE') or die("Access Denied.");

class Concrete5_Model_AddBlockBlockTypePermissionKey extends BlockTypePermissionKey  {

	protected function getAllowedBlockTypeIDs() {

		$u = new User();
		$pae = $this->getPermissionAccessObject();
		if (!is_object($pae)) {
			return array();
		}
		$accessEntities = $u->getUserAccessEntityObjects();
		$accessEntities = $pae->validateAndFilterAccessEntities($accessEntities);
		$list = $this->getAccessListItems(PermissionKey::ACCESS_TYPE_ALL, $accessEntities);
		$list = PermissionDuration::filterByActive($list);
		
		$db = Loader::db();
		$btIDs = array();
		if (count($list) > 0) {
			$dsh = Loader::helper('concrete/dashboard');
			if ($dsh->inDashboard()) {
				$allBTIDs = $db->GetCol('select btID from BlockTypes');
			} else { 
				$allBTIDs = $db->GetCol('select btID from BlockTypes where btIsInternal = 0');
			}
			foreach($list as $l) {
				if ($l->getBlockTypesAllowedPermission() == 'N') {
					$btIDs = array();
				}
				if ($l->getBlockTypesAllowedPermission() == 'C') {
					if ($l->getAccessType() == PermissionKey::ACCESS_TYPE_EXCLUDE) {
						$btIDs = array_values(array_diff($btIDs, $l->getBlockTypesAllowedArray()));
					} else { 
						$btIDs = array_unique(array_merge($btIDs, $l->getBlockTypesAllowedArray()));
					}
				}
				if ($l->getBlockTypesAllowedPermission() == 'A') {
					$btIDs = $allBTIDs;
				}
			}
		}
				
		return $btIDs;
	}
	
	public function validate($bt = false) {
		$u = new User();
		if ($u->isSuperUser()) {
			return true;
		}

		$types = $this->getAllowedBlockTypeIDs();
		if ($bt != false) {
			return in_array($bt->getBlockTypeID(), $types);
		} else {
			return count($types) > 0;
		}
	}	

	
}