1 # BEGIN BPS TAGGED BLOCK {{{
5 # This software is Copyright (c) 1996-2009 Best Practical Solutions, LLC
6 # <jesse@bestpractical.com>
8 # (Except where explicitly superseded by other copyright notices)
13 # This work is made available to you under the terms of Version 2 of
14 # the GNU General Public License. A copy of that license should have
15 # been provided with this software, but in any event can be snarfed
18 # This work is distributed in the hope that it will be useful, but
19 # WITHOUT ANY WARRANTY; without even the implied warranty of
20 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 # General Public License for more details.
23 # You should have received a copy of the GNU General Public License
24 # along with this program; if not, write to the Free Software
25 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
26 # 02110-1301 or visit their web page on the internet at
27 # http://www.gnu.org/licenses/old-licenses/gpl-2.0.html.
30 # CONTRIBUTION SUBMISSION POLICY:
32 # (The following paragraph is not intended to limit the rights granted
33 # to you to modify and distribute this software under the terms of
34 # the GNU General Public License and is only of importance to you if
35 # you choose to contribute your changes and enhancements to the
36 # community by submitting them to Best Practical Solutions, LLC.)
38 # By intentionally submitting any modifications, corrections or
39 # derivatives to this work, or any other work intended for use with
40 # Request Tracker, to Best Practical Solutions, LLC, you confirm that
41 # you are the copyright holder for those contributions and you grant
42 # Best Practical Solutions, LLC a nonexclusive, worldwide, irrevocable,
43 # royalty-free, perpetual, license to use, copy, create derivative
44 # works based on those contributions, and sublicense and distribute
45 # those contributions and any derivatives thereof.
47 # END BPS TAGGED BLOCK }}}
51 RT::Queue - an RT Queue object
69 no warnings qw(redefine);
73 use RT::Interface::Email;
75 our @DEFAULT_ACTIVE_STATUS = qw(new open stalled);
76 our @DEFAULT_INACTIVE_STATUS = qw(resolved rejected deleted);
78 # $self->loc('new'); # For the string extractor to get a string to localize
79 # $self->loc('open'); # For the string extractor to get a string to localize
80 # $self->loc('stalled'); # For the string extractor to get a string to localize
81 # $self->loc('resolved'); # For the string extractor to get a string to localize
82 # $self->loc('rejected'); # For the string extractor to get a string to localize
83 # $self->loc('deleted'); # For the string extractor to get a string to localize
87 SeeQueue => 'Can this principal see this queue', # loc_pair
88 AdminQueue => 'Create, delete and modify queues', # loc_pair
89 ShowACL => 'Display Access Control List', # loc_pair
90 ModifyACL => 'Modify Access Control List', # loc_pair
91 ModifyQueueWatchers => 'Modify the queue watchers', # loc_pair
92 SeeCustomField => 'See custom field values', # loc_pair
93 ModifyCustomField => 'Modify custom field values', # loc_pair
94 AssignCustomFields => 'Assign and remove custom fields', # loc_pair
95 ModifyTemplate => 'Modify Scrip templates for this queue', # loc_pair
96 ShowTemplate => 'Display Scrip templates for this queue', # loc_pair
98 ModifyScrips => 'Modify Scrips for this queue', # loc_pair
99 ShowScrips => 'Display Scrips for this queue', # loc_pair
101 ShowTicket => 'See ticket summaries', # loc_pair
102 ShowTicketComments => 'See ticket private commentary', # loc_pair
103 ShowOutgoingEmail => 'See exact outgoing email messages and their recipeients', # loc_pair
105 Watch => 'Sign up as a ticket Requestor or ticket or queue Cc', # loc_pair
106 WatchAsAdminCc => 'Sign up as a ticket or queue AdminCc', # loc_pair
107 CreateTicket => 'Create tickets in this queue', # loc_pair
108 ReplyToTicket => 'Reply to tickets', # loc_pair
109 CommentOnTicket => 'Comment on tickets', # loc_pair
110 OwnTicket => 'Own tickets', # loc_pair
111 ModifyTicket => 'Modify tickets', # loc_pair
112 DeleteTicket => 'Delete tickets', # loc_pair
113 TakeTicket => 'Take tickets', # loc_pair
114 StealTicket => 'Steal tickets', # loc_pair
116 ForwardMessage => 'Forward messages to third person(s)', # loc_pair
120 # Tell RT::ACE that this sort of object can get acls granted
121 $RT::ACE::OBJECT_TYPES{'RT::Queue'} = 1;
123 # TODO: This should be refactored out into an RT::ACLedObject or something
124 # stuff the rights into a hash of rights that can exist.
126 foreach my $right ( keys %{$RIGHTS} ) {
127 $RT::ACE::LOWERCASERIGHTNAMES{ lc $right } = $right;
130 =head2 AddRights C<RIGHT>, C<DESCRIPTION> [, ...]
132 Adds the given rights to the list of possible rights. This method
133 should be called during server startup, not at runtime.
140 $RIGHTS = { %$RIGHTS, %new };
141 %RT::ACE::LOWERCASERIGHTNAMES = ( %RT::ACE::LOWERCASERIGHTNAMES,
142 map { lc($_) => $_ } keys %new);
147 my %args = ( Target => '',
153 unless ( $self->CurrentUserHasRight('ModifyQueue') ) {
154 return ( 0, $self->loc("Permission Denied") );
157 return $self->SUPER::_AddLink(%args);
170 unless ( $self->CurrentUserHasRight('ModifyQueue') ) {
171 $RT::Logger->debug("No permission to delete links");
172 return ( 0, $self->loc('Permission Denied'))
175 return $self->SUPER::_DeleteLink(%args);
178 =head2 AvailableRights
180 Returns a hash of available rights for this object. The keys are the right names and the values are a description of what the rights do
184 sub AvailableRights {
189 # {{{ ActiveStatusArray
191 =head2 ActiveStatusArray
193 Returns an array of all ActiveStatuses for this queue
197 sub ActiveStatusArray {
199 if (RT->Config->Get('ActiveStatus')) {
200 return (RT->Config->Get('ActiveStatus'))
202 $RT::Logger->warning("RT::ActiveStatus undefined, falling back to deprecated defaults");
203 return (@DEFAULT_ACTIVE_STATUS);
209 # {{{ InactiveStatusArray
211 =head2 InactiveStatusArray
213 Returns an array of all InactiveStatuses for this queue
217 sub InactiveStatusArray {
219 if (RT->Config->Get('InactiveStatus')) {
220 return (RT->Config->Get('InactiveStatus'))
222 $RT::Logger->warning("RT::InactiveStatus undefined, falling back to deprecated defaults");
223 return (@DEFAULT_INACTIVE_STATUS);
233 Returns an array of all statuses for this queue
239 return ($self->ActiveStatusArray(), $self->InactiveStatusArray());
246 =head2 IsValidStatus VALUE
248 Returns true if VALUE is a valid status. Otherwise, returns 0.
257 my $retval = grep ( $_ eq $value, $self->StatusArray );
266 =head2 IsActiveStatus VALUE
268 Returns true if VALUE is a Active status. Otherwise, returns 0
277 my $retval = grep ( $_ eq $value, $self->ActiveStatusArray );
284 # {{{ IsInactiveStatus
286 =head2 IsInactiveStatus VALUE
288 Returns true if VALUE is a Inactive status. Otherwise, returns 0
293 sub IsInactiveStatus {
297 my $retval = grep ( $_ eq $value, $self->InactiveStatusArray );
312 Arguments: ARGS is a hash of named parameters. Valid parameters are:
322 If you pass the ACL check, it creates the queue and returns its queue id.
331 CorrespondAddress => '',
333 CommentAddress => '',
335 InitialPriority => 0,
340 _RecordTransaction => 1,
344 unless ( $self->CurrentUser->HasRight(Right => 'AdminQueue', Object => $RT::System) )
346 return ( 0, $self->loc("No permission to create queues") );
349 unless ( $self->ValidateName( $args{'Name'} ) ) {
350 return ( 0, $self->loc('Queue already exists') );
353 my %attrs = map {$_ => 1} $self->ReadableAttributes;
355 #TODO better input validation
356 $RT::Handle->BeginTransaction();
357 my $id = $self->SUPER::Create( map { $_ => $args{$_} } grep exists $args{$_}, keys %attrs );
359 $RT::Handle->Rollback();
360 return ( 0, $self->loc('Queue could not be created') );
363 my $create_ret = $self->_CreateQueueGroups();
364 unless ($create_ret) {
365 $RT::Handle->Rollback();
366 return ( 0, $self->loc('Queue could not be created') );
368 if ( $args{'_RecordTransaction'} ) {
369 $self->_NewTransaction( Type => "Create" );
373 if ( defined $args{'Sign'} ) {
374 my ($status, $msg) = $self->SetSign( $args{'Sign'} );
375 $RT::Logger->error("Couldn't set attribute 'Sign': $msg")
378 if ( defined $args{'Encrypt'} ) {
379 my ($status, $msg) = $self->SetEncrypt( $args{'Encrypt'} );
380 $RT::Logger->error("Couldn't set attribute 'Encrypt': $msg")
384 return ( $id, $self->loc("Queue created") );
394 $self->loc('Deleting this object would break referential integrity') );
399 # {{{ sub SetDisabled
404 1 will cause this queue to no longer be available for tickets.
405 0 will re-enable this queue.
413 $RT::Handle->BeginTransaction();
414 my $set_err = $self->SUPER::SetDisabled($val);
416 $RT::Handle->Rollback();
417 $RT::Logger->warning("Couldn't ".($val == 1) ? "disable" : "enable"." queue ".$self->PrincipalObj->Id);
420 $self->_NewTransaction( Type => ($val == 1) ? "Disabled" : "Enabled" );
422 $RT::Handle->Commit();
425 return (1, $self->loc("Queue disabled"));
427 return (1, $self->loc("Queue enabled"));
438 Takes either a numerical id or a textual Name and loads the specified queue.
445 my $identifier = shift;
446 if ( !$identifier ) {
450 if ( $identifier =~ /^(\d+)$/ ) {
451 $self->SUPER::LoadById($identifier);
454 $self->LoadByCols( Name => $identifier );
457 return ( $self->Id );
463 # {{{ sub ValidateName
465 =head2 ValidateName NAME
467 Takes a queue name. Returns true if it's an ok name for
468 a new queue. Returns undef if there's already a queue by that name.
476 my $tempqueue = new RT::Queue($RT::SystemUser);
477 $tempqueue->Load($name);
479 #If this queue exists, return undef
480 if ( $tempqueue->Name() && $tempqueue->id != $self->id) {
484 #If the queue doesn't exist, return 1
486 return ($self->SUPER::ValidateName($name));
501 return undef unless $self->CurrentUserHasRight('SeeQueue');
502 my $attr = $self->FirstAttribute('Sign') or return 0;
503 return $attr->Content;
510 return ( 0, $self->loc('Permission Denied') )
511 unless $self->CurrentUserHasRight('AdminQueue');
513 my ($status, $msg) = $self->SetAttribute(
515 Description => 'Sign outgoing messages by default',
518 return ($status, $msg) unless $status;
519 return ($status, $self->loc('Signing enabled')) if $value;
520 return ($status, $self->loc('Signing disabled'));
527 return undef unless $self->CurrentUserHasRight('SeeQueue');
528 my $attr = $self->FirstAttribute('Encrypt') or return 0;
529 return $attr->Content;
536 return ( 0, $self->loc('Permission Denied') )
537 unless $self->CurrentUserHasRight('AdminQueue');
539 my ($status, $msg) = $self->SetAttribute(
541 Description => 'Encrypt outgoing messages by default',
544 return ($status, $msg) unless $status;
545 return ($status, $self->loc('Encrypting enabled')) if $value;
546 return ($status, $self->loc('Encrypting disabled'));
551 return RT->System->SubjectTag( $self );
558 return ( 0, $self->loc('Permission Denied') )
559 unless $self->CurrentUserHasRight('AdminQueue');
561 my $attr = RT->System->FirstAttribute('BrandedSubjectTag');
562 my $map = $attr ? $attr->Content : {};
563 if ( defined $value && length $value ) {
564 $map->{ $self->id } = $value;
566 delete $map->{ $self->id };
569 my ($status, $msg) = RT->System->SetAttribute(
570 Name => 'BrandedSubjectTag',
571 Description => 'Queue id => subject tag map',
574 return ($status, $msg) unless $status;
575 return ($status, $self->loc(
576 "SubjectTag changed to [_1]",
577 (defined $value && length $value)? $value : $self->loc("(no value)")
585 Returns an RT::Templates object of all of this queue's templates.
592 my $templates = RT::Templates->new( $self->CurrentUser );
594 if ( $self->CurrentUserHasRight('ShowTemplate') ) {
595 $templates->LimitToQueue( $self->id );
603 # {{{ Dealing with custom fields
607 =head2 CustomField NAME
609 Load the queue-specific custom field named NAME
616 my $cf = RT::CustomField->new($self->CurrentUser);
617 $cf->LoadByNameAndQueue(Name => $name, Queue => $self->Id);
622 # {{{ TicketCustomFields
624 =head2 TicketCustomFields
626 Returns an L<RT::CustomFields> object containing all global and
627 queue-specific B<ticket> custom fields.
631 sub TicketCustomFields {
634 my $cfs = RT::CustomFields->new( $self->CurrentUser );
635 if ( $self->CurrentUserHasRight('SeeQueue') ) {
636 $cfs->SetContextObject( $self );
637 $cfs->LimitToGlobalOrObjectId( $self->Id );
638 $cfs->LimitToLookupType( 'RT::Queue-RT::Ticket' );
645 # {{{ TicketTransactionCustomFields
647 =head2 TicketTransactionCustomFields
649 Returns an L<RT::CustomFields> object containing all global and
650 queue-specific B<transaction> custom fields.
654 sub TicketTransactionCustomFields {
657 my $cfs = RT::CustomFields->new( $self->CurrentUser );
658 if ( $self->CurrentUserHasRight('SeeQueue') ) {
659 $cfs->LimitToGlobalOrObjectId( $self->Id );
660 $cfs->LimitToLookupType( 'RT::Queue-RT::Ticket-RT::Transaction' );
670 # {{{ Routines dealing with watchers.
672 # {{{ _CreateQueueGroups
674 =head2 _CreateQueueGroups
676 Create the ticket groups and links for this ticket.
677 This routine expects to be called from Ticket->Create _inside of a transaction_
679 It will create four groups for this ticket: Requestor, Cc, AdminCc and Owner.
681 It will return true on success and undef on failure.
687 sub _CreateQueueGroups {
690 my @types = qw(Cc AdminCc Requestor Owner);
692 foreach my $type (@types) {
693 my $type_obj = RT::Group->new($self->CurrentUser);
694 my ($id, $msg) = $type_obj->CreateRoleGroup(Instance => $self->Id,
696 Domain => 'RT::Queue-Role');
698 $RT::Logger->error("Couldn't create a Queue group of type '$type' for ticket ".
699 $self->Id.": ".$msg);
714 AddWatcher takes a parameter hash. The keys are as follows:
716 Type One of Requestor, Cc, AdminCc
718 PrinicpalId The RT::Principal id of the user or group that's being added as a watcher
719 Email The email address of the new watcher. If a user with this
720 email address can't be found, a new nonprivileged user will be created.
722 If the watcher you\'re trying to set has an RT account, set the Owner parameter to their User Id. Otherwise, set the Email parameter to their Email address.
724 Returns a tuple of (status/id, message).
732 PrincipalId => undef,
737 return ( 0, "No principal specified" )
738 unless $args{'Email'} or $args{'PrincipalId'};
740 if ( !$args{'PrincipalId'} && $args{'Email'} ) {
741 my $user = RT::User->new( $self->CurrentUser );
742 $user->LoadByEmail( $args{'Email'} );
743 $args{'PrincipalId'} = $user->PrincipalId if $user->id;
747 return ( $self->_AddWatcher(%args) )
748 if $self->CurrentUserHasRight('ModifyQueueWatchers');
750 #If the watcher we're trying to add is for the current user
751 if ( defined $args{'PrincipalId'} && $self->CurrentUser->PrincipalId eq $args{'PrincipalId'}) {
752 # If it's an AdminCc and they don't have
753 # 'WatchAsAdminCc' or 'ModifyTicket', bail
754 if ( defined $args{'Type'} && ($args{'Type'} eq 'AdminCc') ) {
755 return ( $self->_AddWatcher(%args) )
756 if $self->CurrentUserHasRight('WatchAsAdminCc');
759 # If it's a Requestor or Cc and they don't have
760 # 'Watch' or 'ModifyTicket', bail
761 elsif ( $args{'Type'} eq 'Cc' or $args{'Type'} eq 'Requestor' ) {
762 return ( $self->_AddWatcher(%args) )
763 if $self->CurrentUserHasRight('Watch');
766 $RT::Logger->warning( "$self -> AddWatcher got passed a bogus type");
767 return ( 0, $self->loc('Error in parameters to Queue->AddWatcher') );
771 return ( 0, $self->loc("Permission Denied") );
774 #This contains the meat of AddWatcher. but can be called from a routine like
775 # Create, which doesn't need the additional acl check
781 PrincipalId => undef,
787 my $principal = RT::Principal->new( $self->CurrentUser );
788 if ( $args{'PrincipalId'} ) {
789 $principal->Load( $args{'PrincipalId'} );
791 elsif ( $args{'Email'} ) {
792 my $user = RT::User->new($self->CurrentUser);
793 $user->LoadByEmail( $args{'Email'} );
794 $user->Load( $args{'Email'} )
797 if ( $user->Id ) { # If the user exists
798 $principal->Load( $user->PrincipalId );
800 # if the user doesn't exist, we need to create a new user
801 my $new_user = RT::User->new($RT::SystemUser);
803 my ( $Address, $Name ) =
804 RT::Interface::Email::ParseAddressFromHeader($args{'Email'});
806 my ( $Val, $Message ) = $new_user->Create(
808 EmailAddress => $Address,
811 Comments => 'Autocreated when added as a watcher'
814 $RT::Logger->error("Failed to create user ".$args{'Email'} .": " .$Message);
815 # Deal with the race condition of two account creations at once
816 $new_user->LoadByEmail( $args{'Email'} );
818 $principal->Load( $new_user->PrincipalId );
821 # If we can't find this watcher, we need to bail.
822 unless ( $principal->Id ) {
823 return(0, $self->loc("Could not find or create that user"));
826 my $group = RT::Group->new($self->CurrentUser);
827 $group->LoadQueueRoleGroup(Type => $args{'Type'}, Queue => $self->Id);
828 unless ($group->id) {
829 return(0,$self->loc("Group not found"));
832 if ( $group->HasMember( $principal)) {
834 return ( 0, $self->loc('That principal is already a [_1] for this queue', $args{'Type'}) );
838 my ($m_id, $m_msg) = $group->_AddMember(PrincipalId => $principal->Id);
840 $RT::Logger->error("Failed to add ".$principal->Id." as a member of group ".$group->Id.": ".$m_msg);
842 return ( 0, $self->loc('Could not make that principal a [_1] for this queue', $args{'Type'}) );
844 return ( 1, $self->loc('Added principal as a [_1] for this queue', $args{'Type'}) );
849 # {{{ sub DeleteWatcher
851 =head2 DeleteWatcher { Type => TYPE, PrincipalId => PRINCIPAL_ID, Email => EMAIL_ADDRESS }
854 Deletes a queue watcher. Takes two arguments:
856 Type (one of Requestor,Cc,AdminCc)
860 PrincipalId (an RT::Principal Id of the watcher you want to remove)
862 Email (the email address of an existing wathcer)
871 my %args = ( Type => undef,
872 PrincipalId => undef,
876 unless ( $args{'PrincipalId'} || $args{'Email'} ) {
877 return ( 0, $self->loc("No principal specified") );
880 if ( !$args{PrincipalId} and $args{Email} ) {
881 my $user = RT::User->new( $self->CurrentUser );
882 my ($rv, $msg) = $user->LoadByEmail( $args{Email} );
883 $args{PrincipalId} = $user->PrincipalId if $rv;
886 my $principal = RT::Principal->new( $self->CurrentUser );
887 if ( $args{'PrincipalId'} ) {
888 $principal->Load( $args{'PrincipalId'} );
891 my $user = RT::User->new( $self->CurrentUser );
892 $user->LoadByEmail( $args{'Email'} );
893 $principal->Load( $user->Id );
896 # If we can't find this watcher, we need to bail.
897 unless ( $principal->Id ) {
898 return ( 0, $self->loc("Could not find that principal") );
901 my $group = RT::Group->new($self->CurrentUser);
902 $group->LoadQueueRoleGroup(Type => $args{'Type'}, Queue => $self->Id);
903 unless ($group->id) {
904 return(0,$self->loc("Group not found"));
907 my $can_modify_queue = $self->CurrentUserHasRight('ModifyQueueWatchers');
910 #If the watcher we're trying to add is for the current user
911 if ( defined $args{'PrincipalId'} and $self->CurrentUser->PrincipalId eq $args{'PrincipalId'}) {
912 # If it's an AdminCc and they don't have
913 # 'WatchAsAdminCc' or 'ModifyQueue', bail
914 if ( $args{'Type'} eq 'AdminCc' ) {
915 unless ( $can_modify_queue
916 or $self->CurrentUserHasRight('WatchAsAdminCc') ) {
917 return ( 0, $self->loc('Permission Denied'))
921 # If it's a Requestor or Cc and they don't have
922 # 'Watch' or 'ModifyQueue', bail
923 elsif ( ( $args{'Type'} eq 'Cc' ) or ( $args{'Type'} eq 'Requestor' ) ) {
924 unless ( $can_modify_queue
925 or $self->CurrentUserHasRight('Watch') ) {
926 return ( 0, $self->loc('Permission Denied'))
930 $RT::Logger->warning( "$self -> DeleteWatcher got passed a bogus type");
931 return ( 0, $self->loc('Error in parameters to Queue->DeleteWatcher') );
935 # If the watcher isn't the current user
936 # and the current user doesn't have 'ModifyQueueWathcers' bail
938 unless ( $can_modify_queue ) {
939 return ( 0, $self->loc("Permission Denied") );
946 # see if this user is already a watcher.
948 unless ( $group->HasMember($principal)) {
950 $self->loc('That principal is not a [_1] for this queue', $args{'Type'}) );
953 my ($m_id, $m_msg) = $group->_DeleteMember($principal->Id);
955 $RT::Logger->error("Failed to delete ".$principal->Id.
956 " as a member of group ".$group->Id.": ".$m_msg);
958 return ( 0, $self->loc('Could not remove that principal as a [_1] for this queue', $args{'Type'}) );
961 return ( 1, $self->loc("[_1] is no longer a [_2] for this queue.", $principal->Object->Name, $args{'Type'} ));
966 # {{{ AdminCcAddresses
968 =head2 AdminCcAddresses
970 returns String: All queue AdminCc email addresses as a string
974 sub AdminCcAddresses {
977 unless ( $self->CurrentUserHasRight('SeeQueue') ) {
981 return ( $self->AdminCc->MemberEmailAddressesAsString )
991 returns String: All queue Ccs as a string of email addresses
998 unless ( $self->CurrentUserHasRight('SeeQueue') ) {
1002 return ( $self->Cc->MemberEmailAddressesAsString);
1013 Returns an RT::Group object which contains this Queue's Ccs.
1014 If the user doesn't have "ShowQueue" permission, returns an empty group
1021 my $group = RT::Group->new($self->CurrentUser);
1022 if ( $self->CurrentUserHasRight('SeeQueue') ) {
1023 $group->LoadQueueRoleGroup(Type => 'Cc', Queue => $self->Id);
1036 Returns an RT::Group object which contains this Queue's AdminCcs.
1037 If the user doesn't have "ShowQueue" permission, returns an empty group
1044 my $group = RT::Group->new($self->CurrentUser);
1045 if ( $self->CurrentUserHasRight('SeeQueue') ) {
1046 $group->LoadQueueRoleGroup(Type => 'AdminCc', Queue => $self->Id);
1054 # {{{ IsWatcher, IsCc, IsAdminCc
1057 # a generic routine to be called by IsRequestor, IsCc and IsAdminCc
1059 =head2 IsWatcher { Type => TYPE, PrincipalId => PRINCIPAL_ID }
1061 Takes a param hash with the attributes Type and PrincipalId
1063 Type is one of Requestor, Cc, AdminCc and Owner
1065 PrincipalId is an RT::Principal id
1067 Returns true if that principal is a member of the group Type for this queue
1075 my %args = ( Type => 'Cc',
1076 PrincipalId => undef,
1080 # Load the relevant group.
1081 my $group = RT::Group->new($self->CurrentUser);
1082 $group->LoadQueueRoleGroup(Type => $args{'Type'}, Queue => $self->id);
1083 # Ask if it has the member in question
1085 my $principal = RT::Principal->new($self->CurrentUser);
1086 $principal->Load($args{'PrincipalId'});
1087 unless ($principal->Id) {
1091 return ($group->HasMemberRecursively($principal));
1099 =head2 IsCc PRINCIPAL_ID
1101 Takes an RT::Principal id.
1102 Returns true if the principal is a requestor of the current queue.
1111 return ( $self->IsWatcher( Type => 'Cc', PrincipalId => $cc ) );
1119 =head2 IsAdminCc PRINCIPAL_ID
1121 Takes an RT::Principal id.
1122 Returns true if the principal is a requestor of the current queue.
1130 return ( $self->IsWatcher( Type => 'AdminCc', PrincipalId => $person ) );
1145 # {{{ ACCESS CONTROL
1151 unless ( $self->CurrentUserHasRight('AdminQueue') ) {
1152 return ( 0, $self->loc('Permission Denied') );
1154 return ( $self->SUPER::_Set(@_) );
1164 unless ( $self->CurrentUserHasRight('SeeQueue') ) {
1168 return ( $self->__Value(@_) );
1173 # {{{ sub CurrentUserHasRight
1175 =head2 CurrentUserHasRight
1177 Takes one argument. A textual string with the name of the right we want to check.
1178 Returns true if the current user has that right for this queue.
1179 Returns undef otherwise.
1183 sub CurrentUserHasRight {
1189 Principal => $self->CurrentUser,
1202 Takes a param hash with the fields 'Right' and 'Principal'.
1203 Principal defaults to the current user.
1204 Returns true if the principal has that right for this queue.
1205 Returns undef otherwise.
1209 # TAKES: Right and optional "Principal" which defaults to the current user
1214 Principal => $self->CurrentUser,
1217 my $principal = delete $args{'Principal'};
1218 unless ( $principal ) {
1219 $RT::Logger->error("Principal undefined in Queue::HasRight");
1223 return $principal->HasRight(
1225 Object => ($self->Id ? $self : $RT::System),