Changeset 815 for trunk/admin/group_perm.php
- Timestamp:
- Aug 16, 2005, 5:19:40 PM (19 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/admin/group_perm.php
r675 r815 25 25 // | USA. | 26 26 // +-----------------------------------------------------------------------+ 27 27 28 if( !defined("PHPWG_ROOT_PATH") ) 28 29 { 29 die ("Hacking attempt!"); 30 die ("Hacking attempt!"); 31 } 32 include_once( PHPWG_ROOT_PATH.'admin/include/isadmin.inc.php' ); 33 34 // +-----------------------------------------------------------------------+ 35 // | variables init | 36 // +-----------------------------------------------------------------------+ 37 38 if (isset($_GET['group_id']) and is_numeric($_GET['group_id'])) 39 { 40 $page['group'] = $_GET['group_id']; 41 } 42 else 43 { 44 echo l10n('group_id URL parameter is missing'); 45 exit(); 30 46 } 31 47 32 include_once( PHPWG_ROOT_PATH.'admin/include/isadmin.inc.php' ); 33 //--------------------------------------------------------------------- updates 48 // +-----------------------------------------------------------------------+ 49 // | updates | 50 // +-----------------------------------------------------------------------+ 51 34 52 if (isset($_POST['falsify']) 35 36 53 and isset($_POST['cat_true']) 54 and count($_POST['cat_true']) > 0) 37 55 { 38 56 // if you forbid access to a category, all sub-categories become 39 57 // automatically forbidden 40 58 $subcats = get_subcat_ids($_POST['cat_true']); 41 $query = 'DELETE FROM '.GROUP_ACCESS_TABLE.' 42 WHERE group_id = '.$_POST['group_id'].' 43 AND cat_id IN ('.implode(',', $subcats).');'; 59 $query = ' 60 DELETE 61 FROM '.GROUP_ACCESS_TABLE.' 62 WHERE group_id = '.$page['group'].' 63 AND cat_id IN ('.implode(',', $subcats).') 64 ;'; 44 65 pwg_query($query); 45 66 } … … 51 72 $private_uppercats = array(); 52 73 53 $query = 'SELECT id 54 FROM '.CATEGORIES_TABLE.' 55 WHERE id IN ('.implode(',', $uppercats).') 56 AND status = \'private\';'; 74 $query = ' 75 SELECT id 76 FROM '.CATEGORIES_TABLE.' 77 WHERE id IN ('.implode(',', $uppercats).') 78 AND status = \'private\' 79 ;'; 57 80 $result = pwg_query($query); 58 81 while ($row = mysql_fetch_array($result)) … … 66 89 $authorized_ids = array(); 67 90 68 $query = 'SELECT cat_id 91 $query = ' 92 SELECT cat_id 69 93 FROM '.GROUP_ACCESS_TABLE.' 70 WHERE group_id = '.$_POST['group_id'].';'; 94 WHERE group_id = '.$page['group'].' 95 ;'; 71 96 $result = pwg_query($query); 72 97 … … 80 105 foreach ($to_autorize_ids as $to_autorize_id) 81 106 { 82 array_push($inserts, array('group_id' => $_POST['group_id'], 83 'cat_id' => $to_autorize_id)); 107 array_push( 108 $inserts, 109 array( 110 'group_id' => $page['group'], 111 'cat_id' => $to_autorize_id 112 ) 113 ); 84 114 } 85 115 … … 87 117 } 88 118 89 //----------------------------------------------------- template initialization 90 $query = 'SELECT id,name FROM '.GROUPS_TABLE; 91 $query.= ' ORDER BY id ASC;'; 92 $result = pwg_query( $query ); 93 $groups_display = '<select name="group_id">'; 94 $groups_nb=0; 95 while ( $row = mysql_fetch_array( $result ) ) 96 { 97 $groups_nb++; 98 $selected = ''; 99 if (isset($_POST['group_id']) && $_POST['group_id']==$row['id']) 100 $selected = 'selected'; 101 $groups_display .= '<option value="' . $row['id'] . '" '.$selected.'>' . $row['name'] . '</option>'; 102 } 103 $groups_display .= '</select>'; 119 // +-----------------------------------------------------------------------+ 120 // | template init | 121 // +-----------------------------------------------------------------------+ 104 122 105 $action = PHPWG_ROOT_PATH.'admin.php?page=group_perm'; 106 $template->set_filenames( array('groups'=>'admin/group_perm.tpl') ); 107 $template->assign_vars(array( 108 'S_GROUP_SELECT'=>$groups_display, 109 'L_GROUP_SELECT'=>$lang['group_list_title'], 110 'L_LOOK_UP'=>$lang['edit'], 111 'S_GROUP_ACTION'=>add_session_id($action) 112 )); 123 $template->set_filenames(array('group_perm'=>'admin/cat_options.tpl')); 124 125 $template->assign_vars( 126 array( 127 'L_RESET'=>$lang['reset'], 128 'L_CAT_OPTIONS_TRUE'=>$lang['authorized'], 129 'L_CAT_OPTIONS_FALSE'=>$lang['forbidden'], 130 'L_CAT_OPTIONS_INFO'=>$lang['permuser_info'], 131 132 'F_ACTION' => 133 add_session_id( 134 PHPWG_ROOT_PATH. 135 'admin.php?page=group_perm&group_id='. 136 $page['group'] 137 ) 138 ) 139 ); 113 140 114 if ($groups_nb) 115 { 116 $template->assign_block_vars('select_box',array()); 117 } 118 119 if ( isset( $_POST['edit']) || isset($_POST['falsify']) || isset($_POST['trueify'])) 120 { 121 $template->set_filenames(array('groups_auth'=>'admin/cat_options.tpl')); 122 $template->assign_vars(array( 123 'L_RESET'=>$lang['reset'], 124 'L_CAT_OPTIONS_TRUE'=>$lang['authorized'], 125 'L_CAT_OPTIONS_FALSE'=>$lang['forbidden'], 126 'L_CAT_OPTIONS_INFO'=>$lang['permuser_info'], 127 128 'HIDDEN_NAME'=> 'group_id', 129 'HIDDEN_VALUE'=>$_POST['group_id'], 130 'F_ACTION' => add_session_id(PHPWG_ROOT_PATH.'admin.php?page=group_perm'), 131 )); 132 133 // only private categories are listed 134 $query_true = ' 141 // only private categories are listed 142 $query_true = ' 135 143 SELECT id,name,uppercats,global_rank 136 144 FROM '.CATEGORIES_TABLE.' INNER JOIN '.GROUP_ACCESS_TABLE.' ON cat_id = id 137 145 WHERE status = \'private\' 138 AND group_id = '.$ _POST['group_id'].'146 AND group_id = '.$page['group'].' 139 147 ;'; 140 141 142 143 144 145 146 147 148 149 148 display_select_cat_wrapper($query_true,array(),'category_option_true'); 149 150 $result = pwg_query($query_true); 151 $authorized_ids = array(); 152 while ($row = mysql_fetch_array($result)) 153 { 154 array_push($authorized_ids, $row['id']); 155 } 156 157 $query_false = ' 150 158 SELECT id,name,uppercats,global_rank 151 159 FROM '.CATEGORIES_TABLE.' 152 160 WHERE status = \'private\''; 153 154 155 161 if (count($authorized_ids) > 0) 162 { 163 $query_false.= ' 156 164 AND id NOT IN ('.implode(',', $authorized_ids).')'; 157 158 165 } 166 $query_false.= ' 159 167 ;'; 160 display_select_cat_wrapper($query_false,array(),'category_option_false'); 161 162 $template->assign_var_from_handle('ADMIN_CONTENT_2', 'groups_auth'); 163 } 164 //----------------------------------------------------------- sending html code 165 $template->assign_var_from_handle('ADMIN_CONTENT', 'groups'); 168 display_select_cat_wrapper($query_false,array(),'category_option_false'); 169 170 // +-----------------------------------------------------------------------+ 171 // | html code display | 172 // +-----------------------------------------------------------------------+ 173 174 $template->assign_var_from_handle('ADMIN_CONTENT', 'group_perm'); 166 175 167 176 ?>
Note: See TracChangeset
for help on using the changeset viewer.