userSession = $userSession; $this->groupManager = $groupManager; $this->l = $l; } /** * @param string $operator * @param string $value * @return bool */ public function executeCheck($operator, $value) { $user = $this->userSession->getUser(); if ($user instanceof IUser) { $groupIds = $this->getUserGroups($user); return ($operator === 'is') === in_array($value, $groupIds); } else { return $operator !== 'is'; } } /** * @param string $operator * @param string $value * @throws \UnexpectedValueException */ public function validateCheck($operator, $value) { if (!in_array($operator, ['is', '!is'])) { throw new \UnexpectedValueException($this->l->t('The given operator is invalid'), 1); } if (!$this->groupManager->groupExists($value)) { throw new \UnexpectedValueException($this->l->t('The given group does not exist'), 2); } } /** * @param IUser $user * @return string[] */ protected function getUserGroups(IUser $user) { $uid = $user->getUID(); if ($this->cachedUser !== $uid) { $this->cachedUser = $uid; $this->cachedGroupMemberships = $this->groupManager->getUserGroupIds($user); } return $this->cachedGroupMemberships; } public function supportedEntities(): array { // universal by default return []; } public function isAvailableForScope(int $scope): bool { // admin only by default return $scope === IManager::SCOPE_ADMIN; } }