Core/Commands: Move lookup commands to RBAC (using individual permissions)

2026-02-03 23:57:10 +01:00 · 2013-09-02 12:54:51 +02:00
parent eb73684952
commit 2d508387e5
4 changed files with 105 additions and 25 deletions
--- a/sql/updates/auth/2013_09_02_14_auth_misc.sql
+++ b/sql/updates/auth/2013_09_02_14_auth_misc.sql
@@ -0,0 +1,43 @@
+/* cs_lookup.cpp */
+
+SET @id = 442;
+
+-- Add new permissions
+DELETE FROM `rbac_permissions` WHERE `id` BETWEEN @id AND @id+15;
+INSERT INTO `rbac_permissions` (`id`, `name`) VALUES
+(@id+0, 'lookup'),
+(@id+1, 'lookup area'),
+(@id+2, 'lookup creature'),
+(@id+3, 'lookup event'),
+(@id+4, 'lookup faction'),
+(@id+5, 'lookup item'),
+(@id+6, 'lookup itemset'),
+(@id+7, 'lookup object'),
+(@id+8, 'lookup quest'),
+(@id+9, 'lookup player'),
+(@id+10, 'lookup skill'),
+(@id+11, 'lookup spell'),
+(@id+12, 'lookup taxinode'),
+(@id+13, 'lookup tele'),
+(@id+14, 'lookup title'),
+(@id+15, 'lookup map');
+
+-- Add permissions to "corresponding Commands Role"
+DELETE FROM `rbac_role_permissions` WHERE `permissionId` BETWEEN @id AND @id+15;
+INSERT INTO `rbac_role_permissions` (`roleId`, `permissionId`) VALUES
+(4, @id+0),
+(4, @id+1),
+(4, @id+2),
+(4, @id+3),
+(4, @id+4),
+(4, @id+5),
+(4, @id+6),
+(4, @id+7),
+(4, @id+8),
+(4, @id+9),
+(4, @id+10),
+(4, @id+11),
+(4, @id+12),
+(4, @id+13),
+(4, @id+14),
+(4, @id+15);
--- a/sql/updates/world/2013_09_02_15_world_command.sql
+++ b/sql/updates/world/2013_09_02_15_world_command.sql
@@ -0,0 +1,21 @@
+/* cs_lookup.cpp */
+
+SET @id = 436;
+
+-- Update command table with new RBAC permissions
+UPDATE `command` SET `permission` = @id+0 WHERE `name` = 'lookup';
+UPDATE `command` SET `permission` = @id+1 WHERE `name` = 'lookup area';
+UPDATE `command` SET `permission` = @id+2 WHERE `name` = 'lookup creature';
+UPDATE `command` SET `permission` = @id+3 WHERE `name` = 'lookup event';
+UPDATE `command` SET `permission` = @id+4 WHERE `name` = 'lookup faction';
+UPDATE `command` SET `permission` = @id+5 WHERE `name` = 'lookup item';
+UPDATE `command` SET `permission` = @id+6 WHERE `name` = 'lookup itemset';
+UPDATE `command` SET `permission` = @id+7 WHERE `name` = 'lookup object';
+UPDATE `command` SET `permission` = @id+8 WHERE `name` = 'lookup quest';
+UPDATE `command` SET `permission` = @id+9 WHERE `name` = 'lookup player';
+UPDATE `command` SET `permission` = @id+10 WHERE `name` = 'lookup skill';
+UPDATE `command` SET `permission` = @id+11 WHERE `name` = 'lookup spell';
+UPDATE `command` SET `permission` = @id+12 WHERE `name` = 'lookup taxinode';
+UPDATE `command` SET `permission` = @id+13 WHERE `name` = 'lookup tele';
+UPDATE `command` SET `permission` = @id+14 WHERE `name` = 'lookup title';
+UPDATE `command` SET `permission` = @id+15 WHERE `name` = 'lookup map');