se/SE/se-lib/TableAcl.php

<?php

/**
 * $_SESSION['TableAcl_cache'][$tableID] = array(
 *   [db] => DB zasob ID
 *   [name] => Table name
 *   [opis] => Table opis
 *   [fields] => array(
 *     [$fieldID] => array(
 *       [name] => name
 *       [perms] => perms (FORM_TREAT)
 *       [opis] => opis
 *     )
 *   )
 *   [types] => array(
 *     [$fieldID] => array(
 *       [type] => type
 *       [null] => bool
 *       [default] => default value
 *     )
 *   )
 * );
 */
class TableAcl {

	private $_zasobID = '';
	private $_db = '';
	private $_name = '';
	private $_label = '';
	private $_opis = '';
	private $_fields = array();
	private $_types = array();
	private $_virtualFieldsIdList = array();

	public function __construct($zasobID) {
		$this->_zasobID = $zasobID;
	}

	public function getID() {
		return $this->_zasobID;
	}

	public function setName($name) {
		$this->_name = $name;
	}
	
	public function setNameByTableId($tableID) {
	//used for init without knowing table name	
		$sql="select `DESC` from CRM_LISTA_ZASOBOW where ID=".$tableID." and `TYPE`='TABELA'";
		$res=DB::query($sql);
		$res_=DB::fetch($res);
		//DEBUG_S(-3,'setNameByTableId',$res_,__FILE__,__FUNCTION__,__LINE__);
		self::setName($res->DESC);
		
	}

	public function getName() {
		return $this->_name;
	}

	public function setOpis($opis) {
		$this->_opis = $opis;
	}

	public function getOpis() {
		return $this->_opis;
	}

	public function setLabel($label) {
		$this->_label = $label;
	}

	public function getLabel() {
		return $this->_label;
	}

	public function getRawLabel($posLimit = 20) {
		$label = $this->_label;
		if (empty($label) && !empty($this->_opis)) {
			$label = $this->_opis;
			if (mb_strlen($this->_opis) > $posLimit) {
				$pos = strpos($this->_opis, ' - ');
				if ($pos > $posLimit || $pos < 5) {
					$pos = $posLimit;
					$label = mb_substr($this->_opis, 0, $posLimit, 'utf-8') . '...';
				} else {
					$label = mb_substr($this->_opis, 0, $pos, 'utf-8');
				}
			}
		}
		if (empty($label)) {
			$label = $this->_name;
		}
		return $label;
	}

	public function getShortLabel($posLimit = 20) {
		$shortLabel = $this->getRawLabel($posLimit);
		$opis = $this->_opis;
		$shortLabel = '<span title="' . htmlspecialchars($opis) . '">' . $shortLabel . '</span>';
		return $shortLabel;
	}

	public function getLongLabel($posLimit = 30) {
		$longLabel = $this->getRawLabel($posLimit);
		$opis = $this->_opis;
		if ($longLabel != $this->_name) {
			$longLabel .= ' <em>' . $this->_name . '</em>';
		}

		$longLabel = '<span title="' . htmlspecialchars($opis) . '">' . $longLabel . '</span>';
		return $longLabel;
	}

	public function setDB($db) {
		$this->_db = $db;
	}

	public function getDB() {
		return $this->_db;
	}

	public function addField($fieldID, $name, $opis, $sort_prio, $label = '') {
		$field = array();
		$field['name'] = $name;
		$field['perms'] = '';
		$field['opis'] = $opis;
		$field['sort_prio'] = $sort_prio;
		$field['label'] = $label;
		$this->_fields[$fieldID] = $field;
	}


	public function getTableDbId($tableID) {
		return $this->_db;
	}

	public function getField($fieldID) {
		return $this->_fields[$fieldID];
	}

	public function hasField($fieldID) {
		return array_key_exists($fieldID, $this->_fields);
	}

	public function removeField($fieldID) {
		if (array_key_exists($fieldID, $this->_fields)) {
			unset($this->_fields[$fieldID]);
		}
	}

	public function getFields() {
		return $this->_fields;
	}

	public function setFieldPerms($fieldID, $perms) {
		if (array_key_exists($fieldID, $this->_fields)) {
			$this->_fields[$fieldID]['perms'] .= $perms;
		}
	}

	public function getFieldPerms($fieldID) {
		if (array_key_exists($fieldID, $this->_fields)) {
			$perms = V::get('perms', '', $this->_fields[$fieldID]);
			if ($perms) {
				return implode(',', array_unique(str_split($perms)));
			}
		}
		return '';
	}

	public function hasFieldPerm($fieldID, $perm) {
		if (array_key_exists($fieldID, $this->_fields)) {
			if (false !== strpos($this->_fields[$fieldID]['perms'], $perm)) {
				return true;
			}
			return false;
		}
		return false;
	}

	public function getFieldIdByName($fieldName) {
		$fieldID = 0;
		if (empty($fieldName)) {
			return;
		}
		foreach ($this->_fields as $kID => $vField) {
			if ($vField['name'] == $fieldName) {
				$fieldID = $kID;
			}
		}
		return $fieldID;
	}

	public function hasEditPerms() {
		foreach ($this->_fields as $kFldID => $vFld) {
			if ($this->hasFieldPerm($kFldID, 'W')) return true;
			if ($this->hasFieldPerm($kFldID, 'C')) return true;
			if ($this->hasFieldPerm($kFldID, 'S')) return true;
		}
		return false;
	}

	public function hasSuperAccessPerms() {
		foreach ($this->_fields as $kFldID => $vFld) {
			if ($this->hasFieldPerm($kFldID, 'S')) {
				return true;
			}
			else if ($this->hasFieldPerm($kFldID, 'V')) {
				return true;
			}
		}
		return false;
	}

	public function hasPermSuperWrite() {
		foreach ($this->_fields as $kFldID => $vFld) {
			if ($this->hasFieldPerm($kFldID, 'S')) {
				return true;
			}
		}
		return false;
	}

	/**
	 * 
	 */
	public function canWriteRecord($record) {

		$dbgArr = array();
		$dbgArr['record_owner'] = (isset($record->L_APPOITMENT_USER))? $record->L_APPOITMENT_USER : '';
		$dbgArr['record_write'] = (isset($record->A_ADM_COMPANY))? $record->A_ADM_COMPANY : '';
		$dbgArr['record_read'] = (isset($record->A_CLASSIFIED))? $record->A_CLASSIFIED : '';
		$dbgArr['user_groups'] = User::getLdapGroupsNames();
		if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;">dbgArr (' . __CLASS__ . '::' . __FUNCTION__ . ':' . __LINE__ . '): ';print_r($dbgArr);echo'</pre>';}

		if ($dbgArr['record_owner'] && $dbgArr['record_owner'] == User::getLogin()) {
			if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - is record owner</p>';}
			return true;
		}

		if ($dbgArr['record_write']) {
			if (in_array($dbgArr['record_write'], $dbgArr['user_groups'])) {
				if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - has group write</p>';}
				return true;
			}
		} else {
			if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - group write not set</p>';}
			return true;
		}

		return false;
	}

	public function canReadRecord($record) {
		$dbgArr = array();
		$dbgArr['record_owner'] = (isset($record->L_APPOITMENT_USER))? $record->L_APPOITMENT_USER : '';
		$dbgArr['record_write'] = (isset($record->A_ADM_COMPANY))? $record->A_ADM_COMPANY : '';
		$dbgArr['record_read'] = (isset($record->A_CLASSIFIED))? $record->A_CLASSIFIED : '';
		$dbgArr['user_groups'] = User::getLdapGroupsNames();
		if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;">record('.$record->ID.') (' . __CLASS__ . '::' . __FUNCTION__ . ':' . __LINE__ . '): ';print_r($dbgArr);echo'</pre>';}

		if ($dbgArr['record_owner'] && $dbgArr['record_owner'] == User::getLogin()) {
			if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - is record owner</p>';}
			return true;
		}

		if ($dbgArr['record_read']) {
			if (in_array($dbgArr['record_read'], $dbgArr['user_groups'])) {
				if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - has group read</p>';}
				return true;
			}
		} else {
			if(V::get('DBG_ACL', '', $_REQUEST) > 2){echo '<p>true - group read not set</p>';}
			return true;
		}

		return false;
	}

	/**
	 * @param $taskPerm - 'C', 'W', 'R'
	 */
	public function isAllowed($fieldID, $taskPerm, $record = null) {
		if (!in_array($taskPerm, array('C', 'W', 'R'))) {
			return false;
		}
		$adminFields = array();
		$adminFields[] = 'ID';
		$adminFields[] = 'A_RECORD_CREATE_DATE';
		$adminFields[] = 'A_RECORD_CREATE_AUTHOR';
		$adminFields[] = 'A_RECORD_UPDATE_DATE';
		$adminFields[] = 'A_RECORD_UPDATE_AUTHOR';
		$fieldName = $this->_fields[$fieldID]['name'];
		if ($taskPerm == 'R' && in_array($fieldName, $adminFields)) {
			return true;
		}

		// check perm: allow 'RS', 'WS' - can R/W field even if cant read record
		// check 'O' - can read field even if cant read field but can read record
		if(V::get('DBG_ACL', '', $_REQUEST) > 1){ echo'<pre style="max-height:200px;overflow:auto;border:1px solid red;text-align:left;"> (' . __CLASS__ . '::' . __FUNCTION__ . ':' . __LINE__ . '): ';print_r(array('Field'=>$fieldID.'('.$fieldName.')'
				,'taskPerm'=>$taskPerm
				,'canReadRecord'=>'"'.$this->canReadRecord($record).'"'
				,'hasFieldPerm(O) || canWriteRecord'=>'"'.$this->hasFieldPerm($fieldID, 'O').'" || "'.$this->canReadRecord($record).'"'
				,'hasFieldPerm(S)'=>'"'.$this->hasFieldPerm($fieldID, 'S').'"'
				,'hasFieldPerm(V)'=>'"'.$this->hasFieldPerm($fieldID, 'V').'"'
			));echo'</pre>'; }
		if (!$this->hasFieldPerm($fieldID, $taskPerm)) {
			if ($taskPerm == 'R' && $this->hasFieldPerm($fieldID, 'V')) {
				return true;
			} else if ($taskPerm == 'R'
				&& $record
				&& $this->hasFieldPerm($fieldID, 'O')
				&& ($this->canReadRecord($record) || $this->canWriteRecord($record))
			) {
				return true;// 'WO' or 'CO'
			}
			return false;
		}

		// check 'R' - require can read record, or V - Super View
		if ($taskPerm == 'R') {
			if ($this->canReadRecord($record) || $this->hasFieldPerm($fieldID, 'V')) {
				return true;
			} else {
				return false;
			}
		}

		// 'C' and 'W' require colType
		$colType = $this->getFieldTypeById($fieldID);
		if (!$colType) {
			return false;
		}
		if ($taskPerm == 'W') {
			if ($record) {
				if(V::get('DBG_ACL', '', $_REQUEST) > 1){echo '(Field: '.$fieldID.', canWriteRecord: ' . $this->canWriteRecord($record) . ' || (hasFieldPerm(S): ' . $this->hasFieldPerm($fieldID, 'S') . ' && hasFieldPerm(W): ' . $this->hasFieldPerm($fieldID, 'W') . '))';}
				return ($this->canWriteRecord($record)|| $this->hasFieldPerm($fieldID, 'S'));
			}
		}
		return true;
	}

	/**
	 * @param $taskPerm - 'C', 'W'
	 */
	public function showFormItem($taskPerm, $fieldID, $fName, $fValue, $params = array(), $record = null) {
		$out = '';
		if (!$this->isAllowed($fieldID, $taskPerm, $record)) {
			if ($taskPerm == 'R') {
				$out .= 'Brak uprawnień do odczytu';
			}
			else if ($taskPerm == 'W') {
				$out .= 'Brak uprawnień do zapisu';
			} else {
				$out .= 'Brak uprawnień do tego pola (' . $taskPerm . ')';
			}
			return $out;
		}

		$colName = $this->_fields[$fieldID]['name'];
		if ($colName == 'ID') {
			return $out;
		}

		$colType = $this->getFieldTypeById($fieldID);
		if (!$colType) {
			$out .= 'Error - unknown type';
			return $out;
		}

		Lib::loadClass('Typespecial');
		$typeSpecial = Typespecial::getInstance($fieldID, $colName);

		$html = new stdClass();
		$html->_params = array();
		$html->tag = 'input';
		$html->cnt = '';
		$html->attrs = array();
		$html->attrs['id'] = $fName;
		$html->attrs['name'] = $fName;
		$html->attrs['type'] = 'text';
		$html->attrs['value'] = htmlspecialchars($fValue);
		if (isset($params['tabindex'])) {
			$html->attrs['tabindex'] = $params['tabindex'];
		}
		if (!$this->hasFieldPerm($fieldID, $taskPerm)) {
			$html->attrs['disabled'] = 'disabled';
		}
		$maxGrid = V::get('maxGrid', 10, $params);

		if (substr($colType['type'], 0, 3) == 'int' 
				|| substr($colType['type'], 0, 7) == 'tinyint'
				|| substr($colType['type'], 0, 8) == 'smallint'
				|| substr($colType['type'], 0, 6) == 'bigint'
		) {
			//$h->Type_value = (int)str_replace(array(' ','(',')'), '', substr($h->Type, 4));
			$html->attrs['type'] = 'number';
			$html->attrs['class'][] = 'input-small';
		}
		else if (substr($colType['type'], 0, 6) == 'double') {
			$html->attrs['type'] = 'text';
			$html->attrs['class'][] = 'input-small';
		}
		else if (substr($colType['type'], 0, 7) == 'decimal') {
			$html->attrs['type'] = 'text';
			$html->attrs['class'][] = 'input-small';
		}
		else if (substr($colType['type'], 0, 7) == 'varchar'
				|| substr($colType['type'], 0, 4) == 'char'
			) {
			//$h->Type_value = (int)str_replace(array(' ','(',')'), '', substr($h->Type, 8));
			$html->attrs['type'] = 'text';
			$maxLength = (int)str_replace(array(' ','(',')'), '', substr($colType['type'], strpos($colType['type'], '(') + 1, -1));
			if ($maxLength > 0) {
				$html->attrs['maxlength'] = $maxLength;
			}
			$valLength = strlen($fValue);
			if (isset($params['widthClass'])) {
				if ($params['widthClass'] == 'inside-modal') {
					$html->attrs['style'] = 'width:98%;';
				} else {
					$html->attrs['style'] = 'width:98%;';
				}
			} else {
				/*
				if ($maxLength < 11) {
					$html->attrs['class'][] = 'span2';
				} else if ($maxLength < 31) {
					$html->attrs['class'][] = 'span5';
				} else if ($maxLength < 51) {
					$html->attrs['class'][] = (8 <= $maxGrid)? 'span8' : "span{$maxGrid}";
				} else if ($maxLength < 101) {
					$html->attrs['class'][] = (10 <= $maxGrid)? 'span10' : "span{$maxGrid}";
				} else {
					$html->attrs['class'][] = (12 <= $maxGrid)? 'span12' : "span{$maxGrid}";
				}
				*/
			}
		}
		else if (substr($colType['type'], 0, 4) == 'date') {
			$testDatePicker = true;
			if ($testDatePicker) {
				$html->attrs['type'] = 'text';
				$html->_params[] = 'date';
				if (substr($colType['type'], 0, 8) == 'datetime') {
					$html->attrs['class'][] = 'se_type-datetime';// datetimepicker';
					$html->attrs['data-format'] = 'yyyy-MM-dd hh:mm';
					$html->attrs['maxlength'] = 19;
				} else {
					$html->attrs['class'][] = 'se_type-date';// datetimepicker';
					$html->attrs['maxlength'] = 10;
				}
				if (substr($html->attrs['value'], 0, 10) == '0000-00-00') {
					$html->attrs['value'] = '';
				}
			} else {
				$html->attrs['type'] = 'date';
			}
		}
		else if ($colType['type'] == 'time') {
			$testDatePicker = true;
			if ($testDatePicker) {
				$html->attrs['type'] = 'text';
				$html->_params[] = 'time';
				$html->attrs['class'][] = 'se_type-time';// datetimepicker';
				$html->attrs['data-format'] = 'hh:mm:ss';
				$html->attrs['maxlength'] = 8;
				if (substr($html->attrs['value'], 0, 8) == '00:00:00') {
					$html->attrs['value'] = '';
				}
			} else {
				$html->attrs['type'] = 'time';
			}
		}
		else if (substr($colType['type'], 0, 4) == 'enum') {
			unset($html->attrs['type']);
			unset($html->attrs['value']);
			$html->tag = 'select';

			$values = explode(',', str_replace(array('(',')',"'",'"'), '', substr($colType['type'], 5)));
			$selValue = $fValue;
			if (empty($selValue) && $selValue !== '0' && !empty($colType['default'])) {
				if ($taskPerm == 'C') {
					$selValue = $colType['default'];
				} else if ($taskPerm == 'W' && $this->isAllowed($fieldID, 'R', $record)) {
					$selValue = $colType['default'];
				}
			}

			$html->cnt .= '<option value="">' . "" . '</option>';
			if (!empty($selValue) && !in_array($selValue, $values)) {
				$html->cnt .= '<option value="' . $selValue . '" selected="selected">' . $selValue . '</option>';
			}
			foreach ($values as $val) {
				$sel = ($selValue == $val)? ' selected="selected"' : '';
				$html->cnt .= '<option value="' . $val . '"' . $sel . '>' . $val . '</option>';
			}
		}
		else if (substr($colType['type'], 0, 4) == 'text'
			|| substr($colType['type'], 0, 8) == 'tinytext'
			|| substr($colType['type'], 0, 10) == 'mediumtext'
			|| substr($colType['type'], 0, 8) == 'longtext'
		) {
			$html->tag = 'textarea';
			$html->cnt = htmlspecialchars($fValue);
			if (isset($params['widthClass'])) {
				if ($params['widthClass'] == 'inside-modal') {
					$html->attrs['style'] = 'width:98%;';
				} else {
					$html->attrs['style'] = 'width:98%;';
				}
			} else {
				//$html->attrs['class'][] = (8 <= $maxGrid)? 'span8' : "span{$maxGrid}";
			}
			$html->attrs['rows'] = '3';
			unset($html->attrs['type']);
			unset($html->attrs['value']);
		}
		else if ('polygon' == $colType['type']) { return '...'; }// Wielokąt
		else if ('multipolygon' == $colType['type']) { return '...'; }// Zbiór wielokątów
		else if ('linestring' == $colType['type']) { return '...'; }// Krzywa z interpolacji liniowej pomiędzy punktami
		else if ('point' == $colType['type']) { return '...'; }// Punkt w przestrzeni 2-wymiarowej
		else if ('geometry' == $colType['type']) { return '...'; }// Typy, które mogą przechowywać geometrię dowolnego typu
		else if ('multipoint' == $colType['type']) { return '...'; }// Zbiór punktów
		else if ('multilinestring' == $colType['type']) { return '...'; }// Zbiór krzywych z interpolacji liniowej pomiędzy punktami
		else if ('geometrycollection' == $colType['type']) { return '...'; }// Zbiór obiektów geometrycznych dowolnego typu
		else {
			return 'unknown Type "'.$colType['type'].'"';
		}

		$html->attrs['class'][] = 'form-control';

		$attrsOut = array();
		foreach ($html->attrs as $k => $v) {
			if (is_array($v)) $v = implode(' ', $v);
			$attrsOut[] = "{$k}=\"{$v}\"";
		}

		if (in_array($html->tag, array('select', 'textarea'))) {
			$out .= '<' . $html->tag . '' . (($attrsOut)? ' ' . implode(' ', $attrsOut) : '') . '>';
			$out .= $html->cnt;
			$out .= '</' . $html->tag . '>';
		} else {
			$out .= '<' . $html->tag . '' . (($attrsOut)? ' ' . implode(' ', $attrsOut) : '') . ' />';
		}

		if (in_array('date', $html->_params)) {
			$out = '<div class="input-group">' . $out . '<span class="input-group-addon">
					<span class="glyphicon glyphicon-calendar"></span>
				</span>
			</div>';
		}
		else if (in_array('time', $html->_params)) {
			$out = '<div class="input-group">' . $out . '<span class="input-group-addon">
					<span class="glyphicon glyphicon-time"></span>
				</span>
			</div>';
		}

		if (true == V::get('appendBack', '', $params)
				&& !in_array('date', $html->_params)
				&& !in_array('time', $html->_params)
			 ) {
			if ($html->tag == 'input' && $taskPerm == 'W') {
				$out = '<div class="input-group show-last-value">' . $out . '<span class="input-group-addon button-appendBack" title="' . htmlspecialchars($fValue) . '"><span class="glyphicon glyphicon-arrow-left"></span></span></div>';
			}
		}

		if ($typeSpecial) {
			$tsParams = array();
			$tsValue = V::get('typespecialValue', '', $params);
			if (!empty($tsValue)) {
				$tsParams['typespecialValue'] = $tsValue;
			}
			$out .= ' ' . $typeSpecial->showFormItem($this->_zasobID, $fName, $fValue, $tsParams, $record);
		}

		return $out;
	}

	/**
	* List table ids by database
	* 
	*
	*/
	public static function GetTablesByDbId($db) {
	   		DEBUG_S(3,'TableAcl_cache',$_SESSION['TableAcl_cache'],__FILE__,__FUNCTION__,__LINE__);
	    	static $_cache;
	   	 	$return=array();
	    	if (!$_cache) $_cache = array();
	    	if (!empty($_SESSION['TableAcl_cache'])) {
	    		foreach($_SESSION['TableAcl_cache'] as $tableID=>$obj) {
		    		//if($obj->db==$db)
		    		 $return[$obj['name']]=$tableID;
		    		
	    		}
	    		return $return;
	    	}
	    	return null;
	}

	


	/**
	 * Get column object. Not initialize
	 * @returns object - column instance if exists else null
	 * 
	 * static
	 */
	public static function getInstance($idTable) {
		static $_cache;
		if (!$_cache) $_cache = array();
		if (array_key_exists($idTable, $_cache)) {
			return $_cache[$idTable];
		}
		if (!empty($_SESSION['TableAcl_cache'][$idTable])) {
			$tableAcl = new TableAcl($idTable);
			$tableAcl->fromArray($_SESSION['TableAcl_cache'][$idTable]);
			$_cache[$idTable] = $tableAcl;
			return $_cache[$idTable];
		}
		return null;
	}

	public static function buildInstance($idTable, $tableConfig) {
		static $_cache;
		if (!$_cache) $_cache = array();
		if (array_key_exists($idTable, $_cache)) {
			return $_cache[$idTable];
		}

		if (empty($tableConfig)) {
			throw new Exception("Brak danych konfiguracyjnych do tabeli nr {$idTable} #TACL" . __LINE__);

			Lib::loadClass('ProcesHelper');
			$zasobObj = ProcesHelper::getZasobTableInfo($idTable);
			if (!$zasobObj) {
				return null;// TODO: throw new Exception("Zasob TABELA ID={$idTable} nie istnieje");
			}
			$tableConfig['db'] = $zasobObj->P__ID;
			$tableConfig['name'] = $zasobObj->DESC;
			$tableConfig['label'] = $zasobObj->DESC_PL;
			$tableConfig['opis'] = $zasobObj->OPIS;

			$userAcl = User::getAcl();
			$userPermsForTable = $userAcl->getPermsForTable($idTable);
			if (!$userPermsForTable) {
				return null;// TODO: throw new Exception("Brak uprawnień do pól Tabeli nr {$idTable} '{$zasobObj->DESC}'");
			}
			echo'<pre>$userPermsForTable('.$idTable.') ';print_r($userPermsForTable);echo'</pre>';
			if(0){// TODO: from UserAcl big query
				$foundTbls[$r->ZASOB_PARENT_ID]->addField($r->ID_ZASOB, $r->ZASOB_DESC, $r->ZASOB_OPIS, $r->z__SORT_PRIO, $r->ZASOB_DESC_PL);
				$foundTbls[$r->ZASOB_PARENT_ID]->setFieldPerms($r->ID_ZASOB, $r->FORM_TREAT);
				$tableConfig['fields'];// $this->_fields
				$tableConfig['virtualFieldsIdList'];// $this->_virtualFieldsIdList
				//$tableConfig['types'];// $this->_types
			}
		}
		if (empty($tableConfig)) {
			throw new Exception("Brak danych konfiguracyjnych do tabeli nr {$idTable} #TACL" . __LINE__);
		}
		$obj = new TableAcl($idTable);
		$obj->fromArray($tableConfig);
		$obj->save();
		$_cache[$idTable] = $obj;
		return $_cache[$idTable];
	}

	public function init($force = false) {
		if (empty($this->_fields)) {
			$this->_types = array();// clear _types @see $this->isInitialized
			$userAcl = User::getAcl();
			$fieldsConfig = $userAcl->getPermsForTable($this->_zasobID);
			DBG::_('DBG_SCH', '1', "INIT::\$fieldsConfig({$this->_zasobID}) fields(".count($this->_fields).")", $fieldsConfig, __CLASS__, __FUNCTION__, __LINE__ );
			$this->initFieldsFromConfig($fieldsConfig);
			//DBG::_('DBG_SCH', '1', "INIT::\$fieldsConfig({$this->_zasobID}) fields(".count($this->_fields).")", $this, __CLASS__, __FUNCTION__, __LINE__ );
		}

		if ($this->isInitialized() && $force == false) {
			return;
		}

		$ds = $this->getDataSource();
		$this->_types = $ds->getFieldTypes();

		uasort($this->_fields, array($this, 'sortFieldsCallback'));

		$this->_fixDateFields();
		$this->_sortEnumFields();
		$this->_fixProjectType();

		$fieldIds = array_keys($this->_fields);
		Lib::loadClass('Typespecial');
		$vColsIdList = Typespecial::initFields($fieldIds);
		if (!empty($vColsIdList)) {
			$this->_virtualFieldsIdList = $vColsIdList;
		}

		$this->save();
	}

	public function initFieldsFromConfig($fieldsConfig) {
		foreach ($fieldsConfig as $idField => $vFieldConfig) {
			if ((int)$idField <= 0) {
				DBG::_('DBG_SCH', '1', "BUG key must be integer - skipping '{$idField}'", $vFieldConfig, __CLASS__, __FUNCTION__, __LINE__ );
				trigger_error("BUG " . __CLASS__ . "->" . __FUNCTION__ . "(\$fieldsConfig) key must be integer - skipping '{$idField}'", E_USER_NOTICE);
				continue;
			}
			//echo'<pre>INIT::$permField('.$vFieldConfig->ID_CELL.') hasFld('.$this->hasField($vFieldConfig->ID_CELL).') ';echo'</pre>';
			if (!$this->hasField($vFieldConfig['ID_CELL'])) {
				//echo'<pre>INIT::$permField('.$vFieldConfig['ID_CELL'].') addFld('.$vFieldConfig['ID_CELL'] . ', ' . $vFieldConfig['CELL_NAME'] . ', ' . $vFieldConfig['CELL_DESC'] . ', ' . $vFieldConfig['SORT_PRIO'] . ', ' . $vFieldConfig['CELL_LABEL'].') ';echo'</pre>';
				$this->addField($vFieldConfig['ID_CELL'], $vFieldConfig['CELL_NAME'], $vFieldConfig['CELL_DESC'], $vFieldConfig['SORT_PRIO'], $vFieldConfig['CELL_LABEL']);
			}
			//echo'<pre>INIT::$permField('.$vFieldConfig['ID_CELL'].') hasFld('.$this->hasField($vFieldConfig['ID_CELL']).') ';echo'</pre>';
			if (!isset($vFieldConfig['FORM_TREAT'])) {// TODO: convert to legacy perms
				$vFieldConfig['FORM_TREAT'] = '';
				if ($vFieldConfig['PERM_R'] > 0) $vFieldConfig['FORM_TREAT'] .= 'R';
				if ($vFieldConfig['PERM_W'] > 0) $vFieldConfig['FORM_TREAT'] .= 'W';
				if ($vFieldConfig['PERM_X'] > 0) $vFieldConfig['FORM_TREAT'] .= 'X';
				if ($vFieldConfig['PERM_C'] > 0) $vFieldConfig['FORM_TREAT'] .= 'C';
				if ($vFieldConfig['PERM_S'] > 0) $vFieldConfig['FORM_TREAT'] .= 'S';
				if ($vFieldConfig['PERM_O'] > 0) $vFieldConfig['FORM_TREAT'] .= 'O';
				if ($vFieldConfig['PERM_V'] > 0) $vFieldConfig['FORM_TREAT'] .= 'V';
				if ($vFieldConfig['PERM_E'] > 0) $vFieldConfig['FORM_TREAT'] .= 'E';
			}
			//echo'<pre>INIT::$permField('.$vFieldConfig['ID_CELL'].') ';print_r($vFieldConfig);echo'</pre>';
			if (!empty($vFieldConfig['FORM_TREAT'])) {
				$this->setFieldPerms($vFieldConfig['ID_CELL'], $vFieldConfig['FORM_TREAT']);
			}
		}
	}

	private function _fixProjectType() {
		$tblName = $this->getName();
		$fldName = 'M_DIST_TYPE';
		if ($tblName == 'IN7_MK_BAZA_DYSTRYBUCJI') {
			foreach ($this->_fields as $kFldId => $vFld) {
				if ($vFld['name'] == $fldName) {
					$sqlTypes = array();

					if (!empty($this->_types[$fldName])) {
						if (substr($this->_types[$fldName]['type'], 0, 4) == 'enum') {
							$sqlTypes = explode(',', str_replace(array('(',')',"'",'"'), '', substr($this->_types[$fldName]['type'], 5)));
						}
					}

					if (!empty($sqlTypes)) {
						$allowedTypes = array();
						$db = DB::getDB();
						$sql = "select z.DESC
							from `CRM_LISTA_ZASOBOW` as z
							where z.`A_STATUS`='NORMAL'
								and z.`PARENT_ID`={$kFldId}
							order by z.`DESC` asc
						";
						$res = $db->query($sql);
						while ($r = $db->fetch($res)) {
							if (in_array($r->DESC, $sqlTypes)) {
								$allowedTypes[] = $r->DESC;
							}
						}

						sort($allowedTypes);

						if (!empty($allowedTypes)) {
							$this->_types[$fldName]['type'] = "enum('" . implode("','", $allowedTypes) . "')";
						}
					}
				}
			}
		}
	}

	private function _sortEnumFields() {
		foreach ($this->_fields as $kFldId => $vFld) {
			$type = $this->getFieldTypeById($kFldId);
			if (!empty($type['type'])) {
				if (substr($type['type'], 0, 4) == 'enum') {
					$sqlTypes = explode(',', str_replace(array('(',')',"'",'"'), '', substr($type['type'], 5)));

					if (!empty($sqlTypes)) {
						sort($sqlTypes);
						$this->_types[$vFld['name']]['type'] = "enum('" . implode("','", $sqlTypes) . "')";
					}
				}
			}
		}
	}

	private function _fixDateFields() {
		foreach ($this->_types as $kFldName => $vType) {
			if ($kFldName == 'L_APPOITMENT_DATE') {
				$this->_types[$kFldName]['type'] = 'datetime';
			} else if ($kFldName == 'A_PROBLEM_DATE') {
				$this->_types[$kFldName]['type'] = 'datetime';
			}
		}
	}

	public function getUniqueKeys() {// TODO: RM NOT USED?
		$sqlKeys = array();
		$dbID = $this->getDB();
		$tblName = $this->getName();
		$db = DB::getDB($dbID);
		if (!$db) {
			die('Error - Brak konfiguracji dla bazy danych ID=' . $dbID);
		}
		$sql = "SHOW KEYS FROM  `{$tblName}`";
		$res = $db->query($sql);
		while ($r = $db->fetch($res)) {
			if ($r->Non_unique == '0') {
				$sqlKeys[$r->Column_name] = true;
			}
		}
		$sqlKeys = array_keys($sqlKeys);
		return $sqlKeys;
	}

	public function sortFieldsCallback($a, $b) {
		if ($a['name'] == 'ID') {
			return -1;
		}
		else if ($b['name'] == 'ID') {
			return 1;
		}
		else if ($a['sort_prio'] < $b['sort_prio']) {
			return -1;
		}
		else if ($a['sort_prio'] > $b['sort_prio']) {
			return 1;
		}
		else {
			return 0;
		}
	}

	public function isInitialized() {
		return (!empty($this->_types));
	}

	/**
	 * Save data in session cache.
	 */
	function save() {
		$_SESSION['TableAcl_cache'][$this->_zasobID] = $this->toArray();
	}

	public function getFieldTypeById($fieldID) {
		if (!array_key_exists($fieldID, $this->_fields)) {
			return null;
		}
		$colName = $this->_fields[$fieldID]['name'];
		if (!array_key_exists($colName, $this->_types)) {
			return null;
		}
		return $this->_types[$colName];
	}

	public function getFieldType($colName) {
		if (!array_key_exists($colName, $this->_types)) {
			return null;
		}
		return $this->_types[$colName];
	}

	public function hasFieldType($colName) {
		if (array_key_exists($colName, $this->_types)) {
			return true;
		}
		return false;
	}

	public function getVisibleFieldList() {
		$cols = array();
		$id = 0;
		foreach ($this->_fields as $kFieldID => $vField) {
			if ($vField['name'] == 'ID') {
				$id = $kFieldID;
			}
		}
		$cols[$id] = 'ID';
		foreach ($this->_fields as $kFieldID => $vField) {
			if ($vField['name'] == 'ID') {
				continue;
			}
			$cols[$kFieldID] = $vField['name'];
		}
		return $cols;
	}

	public function getExportFieldList() {
		$cols = array();
		$realFlds = $this->getRealFieldList();
		foreach ($realFlds as $vFieldName) {
			$fldId = $this->getFieldIdByName($vFieldName);
			if ($fldId > 0 && $this->hasFieldPerm($fldId, 'E')) {
				$cols[] = $vFieldName;
			}
		}
		return $cols;
	}

	/**
	 * List of real fields in database.
	 */
	public function getRealFieldList() {
		$cols = array();
		$cols[] = 'ID';
		foreach ($this->_fields as $kFieldID => $vField) {
			if ($vField['name'] == 'ID') {
				continue;
			}
			if (array_key_exists($vField['name'], $this->_types)) {
				$cols[] = $vField['name'];
			}
		}
		return $cols;
	}

	public function getVirtualFieldList() {
		$cols = array();
		foreach ($this->_fields as $kFieldID => $vField) {
			if ($vField['name'] == 'ID') {
				continue;
			}

			if (in_array($kFieldID, $this->_virtualFieldsIdList)) {
				$cols[$kFieldID] = $vField['name'];
			}
			else if (!array_key_exists($vField['name'], $this->_types)) {
				$cols[$kFieldID] = $vField['name'];
			}
		}
		return $cols;
	}

	public function getFieldLabel($fieldID) {
		if (array_key_exists($fieldID, $this->_fields)) {
			if (!empty($this->_fields[$fieldID]['label'])) {
				return $this->_fields[$fieldID]['label'];
			}
		}
		return null;
	}

	public function getFieldOpis($fieldID) {
		if (array_key_exists($fieldID, $this->_fields)) {
			if (!empty($this->_fields[$fieldID]['opis'])) {
				return $this->_fields[$fieldID]['opis'];
			}
		}
		return null;
	}

	public function getTypes() {
		return $this->_types;
	}

	public function fixEmptyValueFromUser($fieldID) {
		$value = '';
		$type = $this->getFieldTypeById($fieldID);
		if ($type) {
			if ($type['type'] == 'date') {
				$value = $type['default'];
			}

			if (substr($type['type'], 0, 3) == 'int'
					|| substr($type['type'], 0, 7) == 'tinyint'
					|| substr($type['type'], 0, 8) == 'smallint'
					|| substr($type['type'], 0, 6) == 'bigint'
			) {
				$value = intval($type['default']);
			}

			// fix bug when field is unique and is null allowed: change empty string to null
			if ($type['null']) {
				$value = 'NULL';
			}

			// fix bug when field is enum and is set to '0': for php '0' is empty
			if (substr($type['type'], 0, 4) == 'enum') {// && $args["f{$fieldID}"] === '0') {
				if (false !== strpos($type['type'], "''")) {
					// enum('', '1','2')
					$value = '';
				} else if (false !== strpos($type['type'], "'0'")) {
					// enum('0', '1','2')
					$value = '0';
				} else {
					$value = $type['default'];
				}
			}
		}
		return $value;
	}

	public function fromArray($arr) {
		$this->_db = $arr['db'];
		$this->_name = $arr['name'];
		$this->_label = $arr['label'];
		$this->_opis = $arr['opis'];
		$this->_fields = V::get('fields', array(), $arr);
		$this->_virtualFieldsIdList = V::get('virtualFieldsIdList', array(), $arr);
		$this->_types = V::get('types', array(), $arr);
	}

	public function toArray() {
		$arr = array();
		$arr['db'] = $this->_db;
		$arr['name'] = $this->_name;
		$arr['label'] = $this->_label;
		$arr['opis'] = $this->_opis;
		$arr['fields'] = $this->_fields;
		$arr['virtualFieldsIdList'] = $this->_virtualFieldsIdList;
		$arr['types'] = $this->_types;
		return $arr;
	}

	public function convertObjectFromUserInput($args, $type = 'array_by_id', $prefix = 'f') {
		$item = array();
		$fields = $this->getFields();
		foreach ($fields as $kID => $vField) {
			$vFieldName = $vField['name'];
			if (array_key_exists("f{$kID}", $args)) {
				$value = $args["f{$kID}"];

				if (empty($args["f{$kID}"]) && strlen($args["f{$kID}"]) == 0) {// fix bug in input type date and value="0000-00-00"
					$value = $this->fixEmptyValueFromUser($kID);
				}
				$item[$vFieldName] = $value;
			}
		}
		return $item;
	}

	public function getItem($id) {
		$ds = $this->getDataSource();
		return $ds->getItem($id);
	}

	public function getItems($params) {
		$ds = $this->getDataSource();
		return $ds->getItems($params);
	}

	public function getTotal($params) {
		$ds = $this->getDataSource();
		return $ds->getTotal($params);
	}

	public function getColDefault($fieldName) {
		$ds = $this->getDataSource();
		return $ds->getColDefault($fieldName);
	}

	public function getSpecialFilters() {
		$ds = $this->getDataSource();
		return $ds->getSpecialFilters();
	}

	public function getGeomFields() {
		$ds = $this->getDataSource();
		return $ds->getGeomFields();
	}

	public function isGeomField($fldName) {
		$ds = $this->getDataSource();
		return $ds->isGeomField($fldName);
	}

	public function getHistItems($id) {
		$ds = $this->getDataSource();
		return $ds->getHistItems($id);
	}

	public function addItem($itemTodo) {
		if (is_object($itemTodo)) {
			$itemTodo = (array)$itemTodo;
		} else if (!is_array($itemTodo)) {
			throw new HttpException('Item is not array', 400);
		}
		if (empty($itemTodo)) {
			//throw new Exception('Item patch is empty');
			return 0;// nothing to insert
		}
		$ds = $this->getDataSource();

		// from convertObjectFromUserInput
		$item = array();
		$fields = $this->getFields();
		foreach ($fields as $kID => $vField) {
			$vFieldName = $vField['name'];
			if (!$this->isAllowed($kID, 'C')) {
				continue;
			}
			if (isset($itemTodo[$vFieldName])) {
				$value = $itemTodo[$vFieldName];

				if (empty($value) && strlen($value) == 0) {// fix bug in input type date and value="0000-00-00"
					$value = $this->fixEmptyValueFromUser($kID);
				}
				$item[$vFieldName] = $value;
			}
		}
		if (empty($item)) {
			throw new Exception("Nothing to add");
		}

		{// add DefaultAclGroup if no create perms ('C')
			$defaultAclGroup = User::getDefaultAclGroup();
			if ($defaultAclGroup) {
				foreach ($fields as $kID => $vField) {
					$vFieldName = $vField['name'];
					if (!$this->isAllowed($kID, 'C')) {
						if ($vFieldName == 'A_ADM_COMPANY') {
							$item[$vFieldName] = $defaultAclGroup;
						}
						else if ($vFieldName == 'A_CLASSIFIED') {
							$item[$vFieldName] = $defaultAclGroup;
						}
					}
				}
			}
		}

		return $ds->addItem($item);
	}

	/**
	 * @param array $itemPatch
	 */
	public function updateItem($itemPatch) {
		if (is_object($itemPatch)) {
			$itemPatch = (array)$itemPatch;
		} else if (!is_array($itemPatch)) {
			throw new HttpException('Item patch is not array', 400);
		}
		if (empty($itemPatch)) {
			//throw new Exception('Item patch is empty');
			return 0;// nothing to change
		}

		$ds = $this->getDataSource();
		$primaryKeyField = $ds->getPrimaryKeyField();
		if (empty($itemPatch[$primaryKeyField])) {
			throw new HttpException("Item Primary Key not set!", 400);
		}

		$primaryKey = $itemPatch[$primaryKeyField];
		$itemOld = $this->getItem($primaryKey);
		if (!$itemOld) {
			throw new HttpException("Item not exists!", 404);
		}

		if (!$this->canWriteRecord($itemOld) && !$this->hasPermSuperWrite()) {
			throw new HttpException("Brak dostępu do rekordu", 403);
		}

		// $itemPatch from user input to $itemPatchChecked
		$itemPatchChecked = array();
		$fields = $this->getFields();
		foreach ($fields as $kID => $vField) {
			$vFieldName = $vField['name'];
			if (!$this->isAllowed($kID, 'W', $itemOld)) {
				continue;
			}
			if (isset($itemPatch[$vFieldName])) {
				if (!$this->isAllowed($kID, 'R', $itemOld) && '*****' == $itemPatch[$vFieldName]) {
					// default value for perms 'W' without 'R' is '*****'
				}
				else {
					$value = $itemPatch[$vFieldName];

					if (empty($itemPatch[$vFieldName]) && strlen($itemPatch[$vFieldName]) == 0) {// fix bug in input type date and value="0000-00-00"
						$value = $this->fixEmptyValueFromUser($kID);
					}
					if ($value != $itemOld->$vFieldName) {
						$itemPatchChecked[$vFieldName] = $value;
					}
				}
			}
		}
		if (empty($itemPatchChecked)) {
			//throw new HttpException("Item Primary Key not set!", 400);
			return 0;// nothing to change
		}
		$itemPatchChecked[$primaryKeyField] = $primaryKey;

		$affected = $ds->updateItem($itemPatchChecked);

		return $affected;
	}

	public function createItemCopy($item) {
		$ds = $this->getDataSource();
		$types = $this->getTypes();
		$uniqKeys = $ds->getUniqueKeys();// TODO: getUniqueFields
		$primaryKeyField = $ds->getPrimaryKeyField();
		$itemCopy = new stdClass();

		foreach ($types as $kName => $vType) {
			if ($kName == $primaryKeyField) {
				continue;
			} else if (in_array($kName, array('A_RECORD_UPDATE_AUTHOR','A_RECORD_UPDATE_DATE'))) {
				continue;
			}
			$value = V::get($kName, '', $item);
			if (in_array($kName, $uniqKeys)) {
				$value .= '?';
			}
			if ($ds->isGeomField($kName)) {
				$value = "GeomFromText('{$value}')";
			}
			$itemCopy->{$kName} = $value;
		}
		return $itemCopy;
	}

	public function getExportDataSource($cols = array()) {
		$exportFieldList = $this->getExportFieldList();
		if (!empty($cols)) {
			$fltrExportFlds = array();
			foreach ($exportFieldList as $fldName) {
				if (in_array($fldName, $cols)) {
					$fltrExportFlds[] = $fldName;
				}
			}
			$exportFieldList = $fltrExportFlds;
		}
		$dataSource = $this->_getDataSource($exportFieldList);
		return $dataSource;
	}

	public function getDataSource() {
		$realFieldList = $this->getRealFieldList();
		$dataSource = $this->_getDataSource($realFieldList);

		$dataSource->setFieldGroupWrite('A_ADM_COMPANY', $this->hasFieldType('A_ADM_COMPANY'));
		$dataSource->setFieldGroupRead('A_CLASSIFIED', $this->hasFieldType('A_CLASSIFIED'));
		$dataSource->setFieldOwner('L_APPOITMENT_USER', $this->hasFieldType('L_APPOITMENT_USER'));

		$adminFields = array('A_RECORD_CREATE_DATE', 'A_RECORD_CREATE_AUTHOR', 'A_RECORD_UPDATE_DATE', 'A_RECORD_UPDATE_AUTHOR');
		foreach ($adminFields as $vAdmFld) {
			if (!in_array($vAdmFld, $realFieldList) && $this->hasFieldType($vAdmFld)) {
				$dataSource->addCol($vAdmFld);
			}
		}
		return $dataSource;
	}

	private function _getDataSource($cols) {
		Lib::loadClass('DataSourceFactory');
		$dsConfig = array();
		$dsConfig['source_id'] = $this->getDB();
		$dsConfig['object_name'] = $this->getName();
		$dsConfig['fields'] = $cols;
		$dsConfig['field_types'] = $this->getTypes();
		$dsConfig['fields_virtual'] = $this->getVirtualFieldList();
		$dsConfig['acl_fltr_allowed'] = !$this->hasSuperAccessPerms();
		return DataSourceFactory::buildFromZasobInfo($dsConfig);
	}

	public function getPrimaryKeyField() {
		$ds = $this->getDataSource();
		return $ds->getPrimaryKeyField();
	}

}