If a user doesnt have permission to see an entries attributes - but can see the entry, disable edit and dont attempt to render. Further, if they cant see the objectclasses, dont make additional attributes available

leenooks · leenooks · commit 5d23cbf0ccc1 · 2025-05-01T12:12:20.000+09:30
diff --git a/app/Http/Controllers/HomeController.php b/app/Http/Controllers/HomeController.php
@@ -397,10 +397,10 @@ public function frame(Request $request,?Collection $old=NULL): \Illuminate\View\
 				->with('o',$o)
 				->with('page_actions',collect([
 					'copy'=>FALSE,
-					'create'=>TRUE,
-					'delete'=>TRUE,
-					'edit'=>TRUE,
-					'export'=>TRUE,
+					'create'=>($x=($o->getObjects()->except('entryuuid')->count() > 0)),
+					'delete'=>$x,
+					'edit'=>$x,
+					'export'=>$x,
 				])),
 
 			'import' => $view,
diff --git a/app/Ldap/Entry.php b/app/Ldap/Entry.php
@@ -274,7 +274,7 @@ public function getAvailableAttributes(): Collection
 	{
 		$result = collect();
 
-		foreach ($this->getObject('objectclass')->values as $oc)
+		foreach (($this->getObject('objectclass')?->values ?: []) as $oc)
 			$result = $result->merge(config('server')->schema('objectclasses',$oc)->attributes);
 
 		return $result;
@@ -439,9 +439,10 @@ public function hasAttribute(int|string $key): bool
 	 */
 	public function icon(): string
 	{
-		$objectclasses = $this->getObject('objectclass')
-			->tagValues()
-			->map(fn($item)=>strtolower($item));
+		$objectclasses = ($x=$this->getObject('objectclass'))
+			? $x->tagValues()
+				->map(fn($item)=>strtolower($item))
+			: collect();
 
 		// Return icon based upon objectClass value
 		if ($objectclasses->intersect([
diff --git a/resources/views/frames/dn.blade.php b/resources/views/frames/dn.blade.php
@@ -88,8 +88,14 @@
 							<div class="card-header border-bottom-0">
 								<div class="btn-actions-pane-right">
 									<div role="group" class="btn-group-sm nav btn-group">
-										@foreach($langtags->prepend(Entry::TAG_NOTAG)->push('+') as $tag)
-											<a data-bs-toggle="tab" href="#tab-lang-{{ $tag ?: '_default' }}" class="btn btn-outline-light border-dark-subtle @if(! $loop->index) active @endif @if($loop->last)ndisabled @endif">
+										@php
+											$langtags->prepend(Entry::TAG_NOTAG);
+											if (isset($page_actions) && $page_actions->get('edit'))
+												$langtags->push('+');
+										@endphp
+
+										@foreach($langtags as $tag)
+											<a data-bs-toggle="tab" href="#tab-lang-{{ $tag ?: '_default' }}" @class(['btn','btn-outline-light','border-dark-subtle','active'=>!$loop->index])>
 												@switch($tag)
 													@case(Entry::TAG_NOTAG)
 														<i class="fas fa-fw fa-border-none" data-bs-toggle="tooltip" data-bs-custom-class="custom-tooltip" title="@lang('No Lang Tag')"></i>
