From 7c939a930125bb42d23ef5ec2bcb2dc669a625ff Mon Sep 17 00:00:00 2001
From: FusionPBX <markjcrane@gmail.com>
Date: Mon, 24 Feb 2020 13:27:17 -0700
Subject: [PATCH] Update permission.php

---
 core/groups/resources/classes/permission.php | 71 +++++++++++++++-----
 1 file changed, 55 insertions(+), 16 deletions(-)

diff --git a/core/groups/resources/classes/permission.php b/core/groups/resources/classes/permission.php
index a7881d79f5..1bfd39af94 100644
--- a/core/groups/resources/classes/permission.php
+++ b/core/groups/resources/classes/permission.php
@@ -27,28 +27,66 @@
 //define the permission class
 	class permission {
 
+		//delete the permissions
 		//delete the permissions
 			function delete() {
-				//get unprotected groups and their domain uuids (if any)
-					$sql = "select group_name, domain_uuid ";
-					$sql .= "from v_groups ";
-					$sql .= "where group_protected <> 'true' ";
-					$database = new database;
-					$result = $database->select($sql, null, 'all');
-					if (is_array($result) && @sizeof($result) != 0) {
-						foreach($result as $row) {
-							$unprotected_groups[$row['group_name']] = $row['domain_uuid'];
+
+				//get the $apps array from the installed apps from the core and mod directories
+					$config_list = glob($_SERVER["DOCUMENT_ROOT"].PROJECT_PATH."/*/*/app_config.php");
+					$x = 0;
+					foreach ($config_list as &$config_path) {
+						include($config_path);
+						$x++;
+					}
+
+				//restore default permissions
+					$x = 0;
+					foreach ($apps as $row) {
+						if (is_array($row['permissions']) && @sizeof($row['permissions']) != 0) {
+							foreach ($row['permissions'] as $permission) {
+								foreach ($permission['groups'] as $group_name) {
+									if (!in_array($group_name, $group_name_array)) {
+										$group_name_array[] = $group_name;
+									}
+								}
+							}
 						}
 					}
-					unset($sql, $result, $row);
+					$group_names = "'".implode("','", $group_name_array)."'";
+
+				//delete unprotected system group permissions
+					$sql = "delete from v_group_permissions as p ";
+					$sql .= "where group_name in ( ";
+					$sql .= "	select group_name ";
+					$sql .= "	from v_groups ";
+					$sql .= "	where group_protected <> 'true' ";
+					$sql .= "	and group_name in (".$group_names.") ";
+					$sql .= ");";
+					$database = new database;
+					$result = $database->select($sql);
+
+				//get the group_permissons
+					/*
+					$sql = "select * from v_group_permissions as p ";
+					$sql .= "where group_name in ( ";
+					$sql .= "	select group_name ";
+					$sql .= "	from v_groups ";
+					$sql .= "	where group_protected <> 'true' ";
+					$sql .= "	and group_name in (".$group_names.") ";
+					$sql .= ");";
+					$database = new database;
+					$group_permissions = $database->select($sql, null, 'all');
+					*/
+
 				//delete unprotected group permissions
-					if (is_array($unprotected_groups) && sizeof($unprotected_groups) > 0) {
+					/*
+					if (is_array($group_permissions) && sizeof($group_permissions) > 0) {
 						$x = 0;
-						foreach ($unprotected_groups as $unprotected_group_name => $unprotected_domain_uuid) {
+						foreach ($group_permissions as $row) {
 							//build delete array
-								$array['group_permissions'][$x]['group_name'] = $unprotected_group_name;
-								$array['group_permissions'][$x]['domain_uuid'] = $unprotected_domain_uuid != '' ? $unprotected_domain_uuid : null;
-							$x++;
+								$array['group_permissions'][$x]['group_permission_uuid'] = $row['group_permission_uuid'];
+								$array['group_permissions'][$x]['domain_uuid'] = ($row['domain_uuid'] != '') ? $row['domain_uuid'] : null;
+								$x++;
 						}
 						if (is_array($array) && @sizeof($array) != 0) {
 							//grant temporary permissions
@@ -64,6 +102,7 @@
 								$p->delete('group_permission_delete', 'temp');
 						}
 					}
+					*/
 			}
 
 		//restore the permissions
@@ -149,4 +188,4 @@
 
 	}
 
-?>
\ No newline at end of file
+?>