se/SE/se-lib/Core/AclHelper.php

<?php

Lib::loadClass('Api_WfsNs');
Lib::loadClass('ProcesHelper');
Lib::loadClass('Router');
Lib::loadClass('Route_UrlAction');

class Core_AclHelper {// Helper class for Acl

	public static function hasCreatePerms($acl) {
		foreach ($acl->getFieldListByIdZasob() as $fieldName) {// TODO: use getFieldList
			// echo"<p>\$acl->canCreateField({$fieldName}): (".$acl->canCreateField($fieldName).")</p>";
			DBG::log($acl->canCreateField($fieldName), 'array', "\$acl->canCreateField({$fieldName})");
			if ($acl->canCreateField($fieldName)) return true;
		}
		return false;
	}

	public static function hasGeomFields($acl) {
		foreach ($acl->getFieldListByIdZasob() as $fieldName) {
			// echo"<p>\$acl->isGeomField({$fieldName}): (".$acl->isGeomField($fieldName).") \$acl->canReadField({$fieldName}): (".$acl->canReadField($fieldName).")</p>";
			if ($acl->isGeomField($fieldName) && $acl->canReadField($fieldName)) return true;
		}
		return false;
	}

	// @returns array [ field => string(perms like 'RWX') ]
	public static function getFieldPerms($acl) {// TODO: fetch perms for given Acl by namespace
		// TODO:? cache session or only current request (static)
		$fieldPerms = array();
		// foreach ($acl->getFields() as $idField => $field) {
		// 	$fieldPerms[ $field['name'] ] = $field['perms'];
		// }
		$permsForFields = User::getAcl()->getPermsForTable($acl->getID());
		uasort($permsForFields, [ self, 'sortFieldsPermInfoCallback' ]);
		foreach ($permsForFields as $idField => $permInfo) {
			// $permInfo = Array:
			//     [ID_CELL] => 763
			//     [CELL_NAME] => ID
			//     [CELL_LABEL] => Nr
			//     [CELL_DESC] => Numer sprawy/projektu
			//     [SORT_PRIO] => 0
			//     [ID_TABLE] => 636
			//     [PERM_R] => 12
			//     [PERM_W] => 3
			//     [PERM_X] => 7
			//     [PERM_C] => 4
			//     [PERM_S] => 0
			//     [PERM_O] => 0
			//     [PERM_V] => 0
			//     [PERM_E] => 1
			$fieldPerms[ $permInfo['CELL_NAME'] ] = implode('', [
				($permInfo['PERM_R'] > 0) ? 'R' : '',
				($permInfo['PERM_W'] > 0) ? 'W' : '',
				($permInfo['PERM_X'] > 0) ? 'X' : '',
				($permInfo['PERM_C'] > 0) ? 'C' : '',
				($permInfo['PERM_S'] > 0) ? 'S' : '',
				($permInfo['PERM_O'] > 0) ? 'O' : '',
				($permInfo['PERM_V'] > 0) ? 'V' : '',
				($permInfo['PERM_E'] > 0) ? 'E' : '',
			]);
		}
		return $fieldPerms;
	}
	static function sortFieldsPermInfoCallback($a, $b) { // @see TableAcl::sortFieldsCallback
		if ($a['CELL_NAME'] == 'ID') {
			return -1;
		}
		else if ($b['CELL_NAME'] == 'ID') {
			return 1;
		}
		else if ($a['SORT_PRIO'] < $b['SORT_PRIO']) {
			return -1;
		}
		else if ($a['SORT_PRIO'] > $b['SORT_PRIO']) {
			return 1;
		}
		else {
			return 0;
		}
	}

	public static function getExportFieldList($acl) {
		$exportFields = array();
		foreach (self::getFieldPerms($acl) as $fieldName => $perms) {
			if (false !== strpos($perms, 'E')) {
				$exportFields[] = $fieldName;
			}
		}
		return $exportFields;
	}

	public static function getAclByTypeName($typeName, $forceTblAclInit = false) {// TODO: replace getAclFromTypeName in WFS
		return self::getAclByNamespace(str_replace(':', '/', $typeName), $forceTblAclInit);
	}
	public static function getAclByNamespace($namespace, $forceTblAclInit = false, $objItem = null) { // TODO: mv to ACL
		try {
			if (!$objItem) {
				Lib::loadClass('SchemaFactory');
				$objItem = SchemaFactory::loadDefaultObject('SystemObject')->getItem(str_replace('__x3A__', '/', $namespace), ['propertyName'=>"*,field"]);
			}
			DBG::log($objItem, 'array', "DBG objItem({$namespace})");
			if (!$objItem['idZasob']) throw new Exception("Missing idZasob for namespace '{$namespace}'");
			switch ($objItem['_type']) {
				// case 'TableAcl': // TODO: TEST - to replace TableAcl by AntAcl or use object with namespace + '/tableName'?
				case 'AntAcl': {
					if (!$objItem['isObjectActive']) {
						if (!$objItem['hasStruct']) throw new Exception("namespace has no structure '{$namespace}'");
						if (!$objItem['isStructInstalled']) throw new Exception("namespace structure not installed '{$namespace}'");
						throw new Exception("namespace is not activated '{$namespace}'");
					}

					Lib::loadClass('AntAclBase');
					$acl = AntAclBase::buildInstance($objItem['idZasob'], $objItem);
					return $acl;
				} break;
				case 'StorageAcl': {
					if (!$objItem['isObjectActive']) {
						if (!$objItem['hasStruct']) throw new Exception("namespace has no structure '{$namespace}'");
						if (!$objItem['isStructInstalled']) throw new Exception("namespace structure not installed '{$namespace}'");
						throw new Exception("namespace is not activated '{$namespace}'");
					}

					Lib::loadClass('StorageAclBase');
					$acl = StorageAclBase::buildInstance($objItem['idZasob'], $objItem);
					return $acl;
				} break;
				case 'TableAcl': {
					if (!$objItem['isObjectActive']) throw new Exception("TODO:RENAME Not Implemented acl type '{$objItem['_type']}' for namespace '{$namespace}' -- Object not active");
					Lib::loadClass('TableAcl');
					$tableAcl = new TableAcl($objItem['idZasob']);
					$tableAcl->fromArray([
						'db' => $objItem['idDatabase'],
						'name' => $objItem['name'],
						'_rootTableName' => $objItem['_rootTableName'],
						'label' => '', // TODO: read from zasoby table?
						'opis' => '', // TODO: read from zasoby table?
						'fields' => [], // if not set then will be fetched by `TableAcl::fieldsInit`
						// 'virtualFieldsIdList' => [],
						// 'types' => [],
					]);
					$tableAcl->_primaryKeyField = V::get('primaryKey', 'ID', $objItem);
					$tableAcl->_sourceNamespace = $objItem['nsPrefix'];
					DBG::log($tableAcl, 'array', "DBG: \$tableAcl '{$namespace}'");
					return $tableAcl;
				}
				default: throw new Exception("Not Implemented acl type '{$objItem['_type']}' for namespace '{$namespace}'");
			}
		} catch (Exception $e) {
			DBG::log($e);
		}

		$ns = self::parseNamespaceUrl($namespace);

		DBG::log($ns, 'array', "parseNamespaceUrl({$namespace})");
		$acl = User::getAcl()->getObjectAcl($ns['prefix'], $ns['name']);
		$acl->init($forceTblAclInit);
		return $acl;
	}

	public static function getMoreFunctionsCell($acl, $args) {
		$id = V::get('primary_key', 0, $args, 'int');
		if ($id <= 0) throw new HttpException("404", 404);
		$record = V::get('record', null, $args);

		$rowFunList = array();
		$tableName = $acl->getName();
		$record = ($record)? $record : $acl->getItem($id);

		if(1){// TODO: fetch $totalMsgs from TableMsgs
			$msgs = Router::getRoute('Msgs');
			$msgsList = $msgs->getActiveMessagesForTableRecord($tableName, $id);
			$totalMsgs = count($msgsList);
			$rowFunc = new stdClass();
			$rowFunc->id = 'msgs';
			$rowFunc->ico = 'glyphicon glyphicon-envelope';
			$rowFunc->href = 'index.php?_route=TableMsgs&_task=tableRow&idTable=' . $acl->getID() . '&idRow=' . $id;
			$rowFunc->title = "Wiadomości ({$totalMsgs})";
			$rowFunc->label = "Wiadomości <span class=\"badge\">{$totalMsgs}</span>";
			$rowFunList[] = $rowFunc;
		}

		if ('CRM_PROCES' == $acl->getName()) {// TODO: mv to table gui xml or php class
			// procesy5.php?task=CRM_LISTA_ZASOBOW&filtr_id=22001
			$rowFunc = new stdClass();
			$rowFunc->ico = 'glyphicon glyphicon-eye-open';
			$rowFunc->href = "procesy5.php?task=CRM_PROCES&filtr_id={$id}";
			$rowFunc->title = "Zobacz na drzewie procesów {{$id}}";
			$rowFunList[] = $rowFunc;

			$wskazniki = ProcesHelper::get_wskazniki($id);
			$connectedZasobyTotal = count($wskazniki);
			$rowFunc = new stdClass();
			$rowFunc->ico = 'glyphicon glyphicon-random';
			$rowFunc->href = "index.php?MENU_INIT=PROCES_ADD_ZASOB&procesID={$id}";
			$rowFunc->title = "Powiązane zasoby ({$connectedZasobyTotal})";
			$rowFunc->label = "Powiązane zasoby <span class=\"badge\">{$connectedZasobyTotal}</span>";
			$rowFunList[] = $rowFunc;
		}

		if ('CRM_LISTA_ZASOBOW' == $acl->getName()) {// TODO: mv to table gui xml or php class
			// procesy5.php?task=CRM_LISTA_ZASOBOW&filtr_id=22001
			$rowFunc = new stdClass();
			$rowFunc->ico = 'glyphicon glyphicon-eye-open';
			$rowFunc->href = "procesy5.php?task=CRM_LISTA_ZASOBOW&filtr_id={$id}";
			$rowFunc->title = "Zobacz na drzewie zasobów [{$id}]";
			$rowFunList[] = $rowFunc;

			// index.php?MENU_INIT=ZASOB_OBOWIAZKI&id_zasob=22001
			$rowFunc = new stdClass();
			$rowFunc->ico = 'glyphicon glyphicon-random';
			$rowFunc->href = "index.php?MENU_INIT=ZASOB_OBOWIAZKI&id_zasob={$id}";
			$rowFunc->title = "Powiązane procesy (OB)";
			$rowFunList[] = $rowFunc;

			// index.php?MENU_INIT=ZASOB_EXTERNAL_IDS&id_zasob=22001
			$rowFunc = new stdClass();
			$rowFunc->ico = 'glyphicon glyphicon-random';
			$rowFunc->href = "index.php?MENU_INIT=ZASOB_EXTERNAL_IDS&id_zasob={$id}";
			$rowFunc->title = "Powiązane dane (IDS)";
			$rowFunList[] = $rowFunc;

			$groupTypeList = array();
			$groupTypeList[] = 'STANOWISKO';
			$groupTypeList[] = 'PODMIOT';
			$groupTypeList[] = 'DZIAL';
			if (in_array($record->TYPE, $groupTypeList)) {
				$rowFunc = new stdClass();
				$rowFunc->ico = 'glyphicon glyphicon-retweet';
				$rowFunc->href = "index.php?_route=Users&_task=syncGroup&idGroup={$id}";
				$rowFunc->title = "Synchronizuj do LDAP";
				$rowFunList[] = $rowFunc;
			}
		}

		if ('ADMIN_USERS' == $acl->getName()) {// TODO: mv to table gui xml
			if ($acl->canReadRecord($record) && $acl->canReadObjectField('ADM_ACCOUNT', $record)) {
				$rowFunc = new stdClass();
				$rowFunc->ico = 'glyphicon glyphicon-user';
				$rowFunc->href = 'index.php?_route=Users&_task=userGroups&usrLogin=' . $record->ADM_ACCOUNT;
				$rowFunc->title = "Ustal stanowisko";
				$rowFunList[] = $rowFunc;

				$rowFunc = new stdClass();
				$rowFunc->ico = 'glyphicon glyphicon-retweet';
				$rowFunc->href = 'index.php?_route=Users&_task=syncUser&usrLogin=' . $record->ADM_ACCOUNT;
				$rowFunc->title = "Synchronizuj do LDAP";
				$rowFunList[] = $rowFunc;

				$rowFunc = new stdClass();
				$rowFunc->ico = 'glyphicon glyphicon-minus';
				$rowFunc->href = 'index.php?MENU_INIT=USER_OCENA_PRACOWNIKA&usrLogin=' . $record->ADM_ACCOUNT;
				$rowFunc->title = "Ocena pracownika";
				$rowFunList[] = $rowFunc;
			}
		}

		if ($urlFunctions = Route_UrlAction::getFeatureTools($acl->getID(), $id, User::getLogin())) {
			foreach ($urlFunctions as $urlFunction) {
				// TODO: is allowed to view - test by Router::getRoute('UrlAction')->isFunctionAllowedForRecord($routeName = $urlFunction['name'], $acl->getID(), $id);
				$rowFunction = array();
				$rowFunction['href'] = $urlFunction['baseLink'];
				$rowFunction['ico'] = V::get('ico', 'glyphicon glyphicon-share', $urlFunction);
				$rowFunction['label'] = $urlFunction['label'];
				$rowFunction['title'] = V::get('title', $urlFunction['label'], $urlFunction);
				if (!empty($urlFunction['link_target'])) $rowFunction['target'] = $urlFunction['link_target'];
				if (!empty($urlFunction['cell_id_params'])) {
					$urlParams = array();// [ "{$urlParamName}={$paramValue}" ]
					foreach ($urlFunction['cell_id_params'] as $idField => $urlParamName) {
						$paramValue = '';
						$fld = $acl->getField($idField);
						if ($fld) {
							$fldName = $fld['name'];
							$paramValue = V::get($fldName, '', $record);
							$urlParams[] = "{$urlParamName}={$paramValue}";
						}
					}
					if (!empty($urlParams)) $rowFunction['href'] .= "&" . implode("&", $urlParams);
				}
				$rowFunList[] = $rowFunction;
			}
		}

		if (1 && !Config::get('VIEW_TABLE_HIDE_BASE_ROW_FUNCTIONS')) {// Druki
			$parsedNs = self::parseNamespaceUrl($acl->getNamespace());
			// array (
			//	 'name' => 'TEST_PERMS',
			//	 'prefix' => 'default_db',
			//	 'url' => 'https://biuro.biall-net.pl/wfs/default_db',
			//	 'sourceName' => 'default_db',
			// ),
			$typeName = "{$parsedNs['prefix']}:{$parsedNs['name']}";
			DBG::log([
				'msg' => "getMoreFunctionsCell Druki",
				'namespace' => $acl->getNamespace(),
				'typeName' => $typeName,
				'primaryKey' => $id,
				'parseNamespace' => $parsedNs,
			]);
			$rowFunList[] = [
				'href' => Request::getPathUri() . "index.php?_route=UrlAction_Ant&typeName={$typeName}&primaryKey={$id}",
				'ico' => 'glyphicon glyphicon-file',
				'label' => "Druki",
				'title' => "Druki"
			];
		}
		DBG::log(['msg'=>"\$rowFunList", '$rowFunList'=>$rowFunList]);

		$ns = $acl->getNamespace();
		$partsNs = explode('/', $ns);
		$typeName = Api_WfsNs::typeName($acl->getNamespace());
		// DBG::log([
		// 	'Api_WfsNs::typeName' => Api_WfsNs::typeName($acl->getNamespace()),
		// 	'self::parseNamespaceUrl' => self::parseNamespaceUrl($acl->getNamespace()),
		// ], 'array', "DBG typeName");
		if (count($partsNs) > 2) { // is AntAcl
			$backRefList = ACL::getBackRefList($ns);
			DBG::log($backRefList, 'array', "\$backRefList");
			if (!empty($backRefList)) {
				$backRefNsList = array_map( V::makePick('namespace'), $backRefList );
				$backRefLabelList = ACL::fetchAllAclInfoByNs( $backRefNsList );
				// DBG::log($backRefLabelList, 'array', "\$backRefLabelList");
				$backRefLabelsByNs = array_combine( array_map( V::makePick('namespace'), $backRefLabelList ), array_map( V::makePick('DESC_PL'), $backRefLabelList ) );
				// DBG::log($backRefLabelsByNs, 'array', "\$backRefLabelsByNs");
			}
			foreach ($backRefList as $backRef) { // [ namespace, idInstance ]
				$backRefLabel = V::get($backRef['namespace'], $backRef['namespace'], $backRefLabelsByNs);
				$backRefShort = explode("/", $backRefLabel);
				$backRefShort = trim( array_pop($backRefShort) );
				$backRefShort = (strlen($backRefShort) > 28) ? substr($backRefShort, 0, 28) . "..." : $backRefShort;

				try {
					$totalBackRefs = ACL::fetchBackRefs($acl->getNamespace(), $id, $backRef['namespace'], [ 'total' => true ]);
				} catch (Exception $e) {
					DBG::log($e);
					continue;
				}
				DBG::log($totalBackRefs, 'array', "\$totalBackRefs {$backRef['namespace']} pk({$id})");

				$rowFunList[] = [
					'ico' => 'glyphicon glyphicon-random',
					'href' => Router::getRoute('ViewTableAjax')->getLink('', [
						'namespace' => $backRef['namespace'],
						'childRefNS' => $acl->getNamespace(),
						'childRefPK' => $id,
					]),
					'title' => "Powiązania od '{$backRefLabel}' ({$totalBackRefs})",
					'label' => "Powiązania od '{$backRefShort}' <span class=\"badge\">{$totalBackRefs}</span>",
					'total' => (int)$totalBackRefs,
				];
			}
		}
		if (count($partsNs) > 2) { // is AntAcl
			$refList = ACL::getRefList($ns);
			DBG::log($refList, 'array', "\$refList");
			if (!empty($refList)) {
				$refNsList = array_map( V::makePick('namespace'), $refList );
				$refLabelList = ACL::fetchAllAclInfoByNs( $refNsList );
				// DBG::log($refLabelList, 'array', "\$refLabelList");
				$refLabelsByNs = array_combine( array_map( V::makePick('namespace'), $refLabelList ), array_map( V::makePick('DESC_PL'), $refLabelList ) );
				// DBG::log($refLabelsByNs, 'array', "\$refLabelsByNs");
			}
			foreach ($refList as $refInfo) { // [ namespace, idInstance ]
				$refLabel = V::get($refInfo['namespace'], $refInfo['namespace'], $refLabelsByNs);
				$refShortLabel = explode("/", $refLabel);
				$refShortLabel = trim( array_pop($refShortLabel) );
				$refShortLabel = (strlen($refShortLabel) > 28) ? substr($refShortLabel, 0, 28) . "..." : $refShortLabel;

				try {
					$totalRefs = ACL::fetchRefs($acl->getNamespace(), $id, $refInfo['namespace'], [ 'total' => true ]);
				} catch (Exception $e) {
					DBG::log($e);
					continue;
				}
				DBG::log($totalRefs, 'array', "\$totalRefs {$refInfo['namespace']} pk({$id})");

				$rowFunList[] = [
					'ico' => 'glyphicon glyphicon-random',
					'href' => Router::getRoute('ViewTableAjax')->getLink('', [
						'namespace' => $refInfo['namespace'],
						'backRefNS' => $acl->getNamespace(),
						'backRefPK' => $id,
						'backRefField' => Api_WfsNs::typeName($refInfo['namespace']),
					]),
					'title' => "Powiązania do '{$refLabel}' ({$totalRefs})",
					'label' => "Powiązania do '{$refShortLabel}' <span class=\"badge\">{$totalRefs}</span>",
					'total' => (int)$totalRefs,
				];
			}
		}
		return $rowFunList;
	}

	public static function getAclList() { return self::getCustomAclList(); } // TODO: RMME renamed to getCustomAclList
	public static function getCustomAclList() {// @usage Core_AclHelper::getCustomAclList();// @returns array [ $typeName , ... ]
		$aclList = array();
		// Schema_AccessGroupStorageAcl, load by User::getAcl()->getObjectAcl('default_objects', $objName);
		//		$objClassName = "Schema_{$objName}StorageAcl";
		//		if (!Lib::tryLoadClass($objClassName)) throw new HttpException("Not implemented", 501);
		// $ grep -r 'class ' SE/se-lib/Schema/*Acl.php
		// SE/se-lib/Schema/AccessGroupStorageAcl.php:class Schema_AccessGroupStorageAcl extends Core_AclBase
		// SE/se-lib/Schema/AccessOwnerStorageAcl.php:class Schema_AccessOwnerStorageAcl extends Core_AclBase
		// SE/se-lib/Schema/FileStorageAcl.php:class Schema_FileStorageAcl extends Core_AclBase
		// SE/se-lib/Schema/KorespondencjaStorageAcl.php:class Schema_KorespondencjaStorageAcl extends Core_AclBase
		// SE/se-lib/Schema/TestPermsStorageAcl.php:class Schema_TestPermsStorageAcl extends Core_AclBase
		$aclList[] = 'default_objects:AccessGroupRead';
		$aclList[] = 'default_objects:AccessGroupWrite';
		$aclList[] = 'default_objects:AccessOwner';
		$aclList[] = 'default_objects:SystemObject';// tabele i obiekty możliwe do podłączenia do procesu (default_db/*, default_objects/*)
		$aclList[] = 'default_objects:SystemFunction';// funkcje możliwe do podłączenia do procesu UrlAction
		// $aclList[] = 'default_objects:UserFunction';// TODO: funkcje możliwe do uruchomienia przez usera
		// $aclList[] = 'default_objects:UserObject';// TODO: tabele i obiekty widoczne dla aktualnego usera
		$aclList[] = 'default_objects:SystemProcess';// wszystkie proces init
		$aclList[] = 'default_objects:UserProcess';// proces init przypisane do aktualnego usera
		$aclList[] = 'default_objects:UserTestStats';// TODO: testy stats by user proces init
		$aclList[] = 'default_objects:File';
		$aclList[] = 'default_objects:Korespondencja';
		$aclList[] = 'default_objects:TestPerms';

		// TODO: read from Database
		// $aclList[] = 'default_db__x3A__TEST_PERMS:TEST_PERMS';// uproszczona wersja: default_db:TEST_PERMS

		$cleanHostName = str_replace(array(".", "-"), '_', $_SERVER['SERVER_NAME']);
		if (file_exists(APP_PATH_SCHEMA . "/gui/company/{$cleanHostName}/get_object_list.php")) {
			$objList = include APP_PATH_SCHEMA . "/gui/company/{$cleanHostName}/get_object_list.php";
			if (!empty($objList) && is_array($objList)) {
				foreach ($objList as $objectName) {
					if (!in_array($objectName, $aclList)) $aclList[] = $objectName;
				}
			}
		}

		return $aclList;
	}

	public static function parseTypeName($typeName) {
		return self::parseNamespaceUrl(str_replace(':', '/', $typeName));
	}
	/**
	 * Parse namespace url into parts.
	 *
	 * @param $namespace - absolute or relative url
	 * @return array:
	 *	 name: element name
	 *	 url: url wihtout name
	 *	 prefix: xml prefix
	 *	 sourceName: used by engine - maybe to remove (used by Core_AclHelper::getAclByNamespace($namespace))
	 *
	 * @example - create xmlns attribute:
	 *		xmlns:{$ns['prefix']}="{$ns['url']}"
	 *
	 * @example - wfs typeName:
	 *		typeName = "{$ns['prefix']}:{$ns['name']}"
	 *
	 * @example 'default_db/TEST_PERMS' => Array:
	 *		[name] => TEST_PERMS
	 *		[prefix] => default_db
	 *		[url] => https://biuro.biall-net.pl/wfs/default_db
	 *		[sourceName] => default_db
	 *
	 * @example 'default_objects/AccessOwner' => Array:
	 *		[name] => AccessOwner
	 *		[prefix] => default_objects
	 *		[url] => https://biuro.biall-net.pl/wfs/default_objects
	 *		[sourceName] => default_objects
	 *
	 * @example 'default_db/ZALICZKA/Zaliczka' => Array:
	 *		[name] => Zaliczka
	 *		[prefix] => default_db__x3A__Zaliczka
	 *		[url] => https://biuro.biall-net.pl/wfs/default_db/ZALICZKA
	 *		[sourceName] => table_objects
	 *
	 */
	public static function parseNamespaceUrl($namespace) {// returns assoc array: [ 'name', 'url', 'prefix', 'sourceName' ]
		// TODO: the same algo like getAclByNamespace($namespace)
		$baseNsUri = Api_WfsNs::getBaseWfsUri();
		if ('http' != substr($namespace, 0, 4)) $namespace = "{$baseNsUri}/{$namespace}";//Request::getHostUri() . '/' . $namespace;

		$nsUrl = $baseNsUri . '/' . '';
		if ("{$baseNsUri}/" != substr($namespace, 0, strlen($baseNsUri) + 1)) throw new HttpException("Zasoby zewnętrzenj systemu nie są jeszcze zaimplementowane", 501);

		$relativeNsUrl = substr($namespace, strlen($baseNsUri) + 1);
		// convert '__x3A__' to '/' in url
		$nsEx = explode('/', str_replace('__x3A__', '/', $relativeNsUrl));// "http://biuro.biall-net.pl/wfs/	default_db/{$nazwa_tabeli}/{$nazwa_obj}
		// default_db__x3A__ZALICZKA/Zaliczka => default_db/ZALICZKA/Zaliczka
		$sourceName = array_shift($nsEx);// remove first element - source name
		$objName = array_pop($nsEx);// name is always last part from url

		if ('default_db' == $sourceName || 'p5_default_db' == $sourceName) {
			if (count($nsEx) > 1) throw new Exception("Nieznany namespace default_db: '{$relativeNsUrl}'", 501);

			$sourceName = 'default_db';
			$nsPrefix = $sourceName;
			if (1 == count($nsEx)) {
				$sourceName = 'table_objects';// TODO: another source name to read from simpleSchema @see Core_AclSimpleSchemaBase
				$nsPrefix = 'default_db__x3A__' . $nsEx[0];
			}
			// $objName = $nsEx[1];// 'default_db/ZALICZKA:Zaliczka' => ('objects', 'Zaliczka') - possible name conflicts
			$nsUrl = trim($baseNsUri . '/default_db/' . implode("/", $nsEx), '/');
			return [ 'name' => $objName, 'prefix' => $nsPrefix, 'url' => $nsUrl, 'sourceName' => $sourceName ];
		}
		else if ('default_objects' == $sourceName || 'SystemObjects' == $sourceName) {
			if (count($nsEx) > 1) throw new Exception("Nieznany namespace SystemObjects: '{$relativeNsUrl}'", 501);

			$sourceName = 'default_objects';
			$nsUrl = trim($baseNsUri . '/default_objects/' . implode("/", $nsEx), '/');
			$nsPrefix = 'default_objects';
			return [ 'name' => $objName, 'prefix' => $nsPrefix, 'url' => $nsUrl, 'sourceName' => $sourceName ];
		}
		else if ('p5_objects' == $sourceName || 'objects' == $sourceName) {
			if (count($nsEx) > 1) throw new Exception("Nieznany namespace SystemObjects: '{$relativeNsUrl}'", 501);

			$sourceName = 'default_objects';
			$nsUrl = trim($baseNsUri . '/default_objects/' . implode("/", $nsEx), '/');
			$nsPrefix = 'default_objects';
			return [ 'name' => $objName, 'prefix' => $nsPrefix, 'url' => $nsUrl, 'sourceName' => $sourceName ];
		}
		else if ('zasob_' == substr($sourceName, 0, 6)) {
			$dbName = substr($sourceName, 6);// database id
			$remotePdo = DB::getPDO($dbName);
			DBG::log($remotePdo, 'array', '$remotePdo');
			if (!$remotePdo || $remotePdo->getZasobId() <= 0) throw new Exception("Database [{$dbName}] not exists - namespace '{$relativeNsUrl}'", 501);
			if (count($nsEx) > 0) throw new Exception("Nieznany namespace {$sourceName}: '{$relativeNsUrl}'", 501);
			return [ 'name' => $objName, 'prefix' => $sourceName, 'url' => implode('/', [$baseNsUri, $sourceName, $objName]), 'sourceName' => $sourceName ];
		}
		else throw new Exception("Nieznany namespace '{$relativeNsUrl}'", 501);
	}
	public static function getIdDatabaseFromNamespace($namespace) {
		$ns = self::parseNamespaceUrl($namespace);
		if ('default_db' == substr($ns['sourceName'], 0, strlen('default_db'))) {
			return DB::getPDO()->getZasobId();
		} else if ('default_objects' == substr($ns['sourceName'], 0, strlen('default_objects'))) {
			return DB::getPDO()->getZasobId();
		} else if ('table_objects' == $ns['sourceName']) {
			if ('default_db' == substr($ns['prefix'], 0, strlen('default_db'))) {
				return DB::getPDO()->getZasobId();
			}
		} else if ('zasob_' == substr($ns['sourceName'], 0, strlen('zasob_'))) {
			// 'zasob_931', 'zasob_931__x3A__...'
			$idDatabase = substr($ns['sourceName'], strlen('zasob_'));
			if (false !== strpos($idDatabase, '_')) $idDatabase = substr($idDatabase, 0, strpos($idDatabase, '_'));
			if (!$idDatabase || !is_numeric($idDatabase)) throw new Exception("Not implemented idDatabase({$idDatabase})");
			return $idDatabase;
		}
		throw new Exception("Not implemented idDatabase for namespace({$namespace})");
	}

	public static function insertRef($objectName, $pk, $childName, $childPk) {// TODO: $idTransaction
		$refTable = self::getRefTable($objectName, $childName);
		$sqlPk = DB::getPDO()->quote($pk, PDO::PARAM_STR);
		$sqlChildPk = DB::getPDO()->quote($childPk, PDO::PARAM_STR);
		DB::getPDO()->exec("
			insert into `{$refTable}` (`PRIMARY_KEY`, `REMOTE_PRIMARY_KEY`)
			values ({$sqlPk}, {$sqlChildPk})
		");
	}

	public static function cleanRefs($objectName, $pk, $childName) {// TODO: $idTransaction
		$refTable = self::getRefTable($objectName, $childName);
		$sqlPk = DB::getPDO()->quote($pk, PDO::PARAM_STR);
		DB::getPDO()->exec("
			update `{$refTable}` set `A_STATUS` = 'DELETED'
			where `PRIMARY_KEY` = {$sqlPk}
		");
	}

	public static function getRefTable($objectName, $childName) {// TODO: wrong - add prefix to avoid name collisions or generate unique hash
		static $cacheRefTables = array();
		$refTable = "{$objectName}__#REF__{$childName}";
		if (in_array($refTable, $cacheRefTables)) return $refTable;
		DB::getPDO()->exec("
			CREATE TABLE IF NOT EXISTS `{$refTable}` (
				`PRIMARY_KEY` int(11) NOT NULL,
				`REMOTE_PRIMARY_KEY` int(11) NOT NULL,
				`REMOTE_TYPENAME` varchar(255) NOT NULL DEFAULT '',
				`A_STATUS` enum('WAITING', 'NORMAL', 'DELETED') NOT NULL DEFAULT 'WAITING',
				`A_RECORD_UPDATE_DATE` timestamp ON UPDATE CURRENT_TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
				-- TODO `TRANACTION_ID` int(11) NOT NULL
				KEY `PRIMARY_KEY` (`PRIMARY_KEY`),
				KEY `REMOTE_PRIMARY_KEY` (`REMOTE_PRIMARY_KEY`)
			) ENGINE=MyISAM DEFAULT CHARSET=latin2;
		");
		try {
			DB::getPDO()->exec(" ALTER TABLE `{$refTable}` ADD `A_STATUS` enum('WAITING', 'NORMAL', 'DELETED') NOT NULL DEFAULT 'WAITING' ");
		} catch (Exception $e) {
			// echo 'C.'.get_class($this).' L.' . __LINE__ . " Error:";print_r($e->getMessage());echo "\n";
		}
		try {
			DB::getPDO()->exec(" ALTER TABLE `{$refTable}` ADD `A_RECORD_UPDATE_DATE` timestamp ON UPDATE CURRENT_TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP ");
		} catch (Exception $e) {
			// echo 'C.'.get_class($this).' L.' . __LINE__ . " Error:";print_r($e->getMessage());echo "\n";
		}
		try {
			DB::getPDO()->exec(" ALTER TABLE `{$refTable}` ADD `REMOTE_TYPENAME` varchar(255) NOT NULL DEFAULT '' ");
		} catch (Exception $e) {
			// echo 'C.'.get_class($this).' L.' . __LINE__ . " Error:";print_r($e->getMessage());echo "\n";
		}
		$cacheRefTables[] = $refTable;
		return $refTable;
	}

	public static function getChildHistTable($rootTableName, $childName, $schema) {
		// $childName(id) => Array:
		//		 [@type] => xsd:integer
		// $childName(created) => Array:
		//		 [@type] => xsd:date
		// $childName(worker) => Array:
		//		 [@ref] => default_objects/AccessOwner
		// $childName(kwota) => Array:
		//		 [@type] => xsd:decimal
		//		 [@totalDigits] => 16
		//		 [@fractionDigits] => 2
		// $childName(nierozliczona_kwota) => Array:
		//		 [@type] => xsd:decimal
		//		 [@totalDigits] => 16
		//		 [@fractionDigits] => 2
		// $childName(pozycja) => Array:
		//		 [@ref] => ZaliczkaPozycja
		//		 [@maxOccurs] => unbounded
		static $cacheHistTables = array();
		$histTable = "{$rootTableName}__#HIST__{$childName}";
		if (in_array($histTable, $cacheHistTables)) return $histTable;
		$sqlType = '';
		switch ($schema['@type']) {
			case 'xsd:integer': $sqlType = "int(11) NOT NULL DEFAULT 0"; break;
			case 'xsd:date': $sqlType = "date DEFAULT NULL"; break;
			case 'xsd:decimal': $sqlType = "decimal(" . V::get('@totalDigits', 16, $schema) . ", " . V::get('@fractionDigits', 2, $schema) . ") NOT NULL DEFAULT 0"; break;
			case 'xsd:string': $sqlType = "varchar(255) NOT NULL DEFAULT ''"; break;
			// TODO: type alias like enum fields: @type => "{$prefix}:{$field_name}Type"
		}
		if (!$sqlType && !empty($schema['@ref'])) $sqlType = "int(11) NOT NULL DEFAULT 0";// TODO: type from ref instance @primaryKey - mostly int
		if (!$sqlType) throw new Exception("Unimplemented schema to sql for '{$rootTableName}/{$childName}' schema(".json_encode($schema).")");
		DB::getPDO()->exec("
			CREATE TABLE IF NOT EXISTS `{$histTable}` (
				`ID` int(11) NOT NULL AUTO_INCREMENT,
				`VALUE` {$sqlType},
				`A_TRANSACTION_ID` int(11) NOT NULL DEFAULT 0,
				PRIMARY KEY (`ID`)
			) ENGINE=MyISAM DEFAULT CHARSET=latin2;
		");
		$cacheHistTables[] = $histTable;
		return $histTable;
	}

	public static function getTransactionTable($rootTableName) {
		static $cacheTransactionTables = array();
		$transactionTable = "{$rootTableName}__#TRANSACTION";
		if (in_array($transactionTable, $cacheTransactionTables)) return $transactionTable;
		DB::getPDO()->exec("
			CREATE TABLE IF NOT EXISTS `{$transactionTable}` (
				`ID` int(11) NOT NULL AUTO_INCREMENT,
				`A_ACTION_ID_USER` int(11) DEFAULT NULL, -- NULL for scripts
				`A_ACTION_AUTHOR` varchar(255) NOT NULL DEFAULT '',
				`A_ACTION_DATE` timestamp ON UPDATE CURRENT_TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
				`A_STATUS` enum('WAITING', 'NORMAL', 'DELETED') NOT NULL DEFAULT 'WAITING',
				`A_CONTEXT_TRANSACTION` varchar(255) NOT NULL DEFAULT '',
				PRIMARY KEY (`ID`)
			) ENGINE=MyISAM DEFAULT CHARSET=latin2;
		");
		$cacheTransactionTables[] = $transactionTable;
		return $transactionTable;
	}

	public static function startTransaction($rootTableName, $idUser, $author = '') {
		$refTable = self::getTransactionTable($rootTableName);
		$sqlIdUser = ((int)$idUser > 0) ? DB::getPDO()->quote($idUser, PDO::PARAM_INT) : 'NULL';
		$sqlAuthor = DB::getPDO()->quote($author, PDO::PARAM_STR);
		DB::getPDO()->exec("
			insert into `{$refTable}` (`A_ACTION_ID_USER`, `A_ACTION_AUTHOR`)
			values ({$sqlIdUser}, {$sqlAuthor})
		");
		return DB::getPDO()->lastInsertId();
	}

	public static function rollbackTransaction($rootTableName, $idTransaction) {
		// TODO: ROLLBACK - do nothing
	}

	public static function commitTransaction($idTransaction, $simpleSchema_or_acl) {
		// TODO: COMMIT
		// TODO: save changes to rootTableName and every childrens - recurence
	}

	public static function commitContextTransaction($rootTableName, $rootIdTransaction, $simpleSchema_or_acl_for_child) {
		// TODO: COMMIT - changes for childrens
		// TODO: find transaction with context transaction like "{$rootTableName}.{$rootIdTransaction}" = A_CONTEXT_TRANSACTION
		// TODO: save changes to rootTableName and every childrens - recurence
	}

}