do not use new categoryAccess Api methods because category values are not instances AbstractCategoryAssignment, so revert old method to use old tech.

craigh · craigh · commit 3b174de2e2f1 · 2017-07-28T10:21:50.000-04:00
diff --git a/src/lib/legacy/util/CategoryUtil.php b/src/lib/legacy/util/CategoryUtil.php
@@ -687,7 +687,31 @@ public static function rebuildPaths($pathField = 'path', $sourceField = 'name',
     public static function hasCategoryAccess($categories, $module, $permLevel = ACCESS_OVERVIEW)
     {
         @trigger_error('CategoryUtil is deprecated. please use the new category permission api instead.', E_USER_DEPRECATED);
-
-        return ServiceUtil::get('zikula_categories_module.api.category_permission')->hasCategoryAccess($categories, $permLevel);
+        // Always allow access to content with no categories associated
+        if (count($categories) == 0) {
+            return true;
+        }
+
+        // Check if access is required for all categories or for at least one category
+        $requireAccessForAll = \ModUtil::getVar('ZikulaCategoriesModule', 'permissionsall', 0);
+
+        $accessGranted = true;
+        foreach ($categories as $propertyName => $cats) {
+            $categoriesForProperty = is_array($cats) ? $cats : [$cats];
+            foreach ($categoriesForProperty as $cat) {
+                $hasAccess = \SecurityUtil::checkPermission("ZikulaCategoriesModule:$propertyName:Category", "$cat[id]:$cat[path]:$cat[ipath]", $permLevel);
+                if ($requireAccessForAll && !$hasAccess) {
+                    return false;
+                }
+                if (!$requireAccessForAll) {
+                    if ($hasAccess) {
+                        return true;
+                    }
+                    $accessGranted = false;
+                }
+            }
+        }
+
+        return $accessGranted;
     }
 }
