Extend permissions interface to allow resetting to the parental default.

1 files changed, 12 insertions, 12 deletions

diff --git a/core/controllers/permissions.php b/core/controllers/permissions.php
index 7e0d1e43..8ffb63de 100644
--- a/core/controllers/permissions.php
+++ b/core/controllers/permissions.php
@@ -45,7 +45,7 @@ class Permissions_Controller extends Controller {
     print $this->_get_form($item);
   }
 
-  function allow($group_id, $perm_id, $item_id) {
+  function change($command, $group_id, $perm_id, $item_id) {
     access::verify_csrf();
     $group = ORM::factory("group", $group_id);
     $perm = ORM::factory("permission", $perm_id);
@@ -53,19 +53,19 @@ class Permissions_Controller extends Controller {
     access::required("edit", $item);
 
     if ($group->loaded && $perm->loaded && $item->loaded) {
-      access::allow($group, $perm->name, $item);
-    }
-  }
+      switch($command) {
+      case "allow":
+        access::allow($group, $perm->name, $item);
+        break;
 
-  function deny($group_id, $perm_id, $item_id) {
-    access::verify_csrf();
-    $group = ORM::factory("group", $group_id);
-    $perm = ORM::factory("permission", $perm_id);
-    $item = ORM::factory("item", $item_id);
-    access::required("edit", $item);
+      case "deny":
+        access::deny($group, $perm->name, $item);
+        break;
 
-    if ($group->loaded && $perm->loaded && $item->loaded) {
-      access::deny($group, $perm->name, $item);
+      case "reset":
+        access::reset($group, $perm->name, $item);
+        break;
+      }
     }
   }