MINOR Unified permission control for i18nTextCollectorTask, TaskRunner, TestRunner, ModelViewer, DevelopmentAdmin, TestViewer, MigrateTranslatableTask

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86005 467b73ca-7a2a-4603-9d3b-597d59a354a9

core/i18nTextCollectorTask.php

@@ -13,8 +13,10 @@ class i18nTextCollectorTask extends BuildTask {
 	";
 	
 	function init() {
-		if(!Director::is_cli() && !Director::isDev() && !Permission::check("ADMIN")) Security::permissionFailure();
 		parent::init();
+		
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
 	}
 	
 	/**

dev/DevelopmentAdmin.php

@@ -21,16 +21,8 @@ class DevelopmentAdmin extends Controller {
 		
 		// We allow access to this controller regardless of live-status or ADMIN permission only
 		// if on CLI.  Access to this controller is always allowed in "dev-mode", or of the user is ADMIN.
-		$canAccess = (
-			Director::isDev() 
-			|| Director::is_cli() 
-			|| Permission::check("ADMIN")
-		);
-		if(!$canAccess) {
-			return Security::permissionFailure($this,
-				"This page is secured and you need administrator rights to access it. " .
-				"Enter your credentials below and we will send you right along.");
-		}
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
 		
 		// check for valid url mapping
 		// lacking this information can cause really nasty bugs,

dev/ModelViewer.php

@@ -21,7 +21,9 @@ class ModelViewer extends Controller {
 	
 	function init() {
 		parent::init();
-		if(!Permission::check("ADMIN")) Security::permissionFailure();
+
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
 
 		// check for graphviz dependencies
 		$returnCode = 0;

dev/TaskRunner.php

@@ -10,6 +10,13 @@ class TaskRunner extends Controller {
 		'$TaskName' => 'runTask'
 	);
 	
+	function init() {
+		parent::init();
+		
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
+	}
+	
 	function index() {
 		$tasks = $this->getTasks();
 

dev/TestRunner.php

@@ -59,6 +59,10 @@ class TestRunner extends Controller {
 	
 	function init() {
 		parent::init();
+		
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
+		
 		ManifestBuilder::load_test_manifest();
 		if (!self::$default_reporter) self::set_reporter(Director::is_cli() ? 'CliDebugView' : 'DebugView');
 		

dev/TestViewer.php

@@ -67,6 +67,13 @@ class TestViewer extends Controller {
 		),
 	);
 	
+	function init() {
+		parent::init();
+		
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
+	}
+
 	function createClass($token) {
 		$this->currentClass = array();
 	}

tasks/MigrateTranslatableTask.php

@@ -42,8 +42,10 @@ class MigrateTranslatableTask extends BuildTask {
 	protected $description = "Migrates site translations from SilverStripe 2.1/2.2 to new database structure.";
 	
 	function init() {
-		if(!Director::is_cli() && !Director::isDev() && !Permission::check("ADMIN")) Security::permissionFailure();
 		parent::init();
+		
+		$canAccess = (Director::isDev() || Director::is_cli() || Permission::check("ADMIN"));
+		if(!$canAccess) return Security::permissionFailure($this);
 	}
 	
 	function run($request) {