admin/mygroupperm.php
<?php
/*
* You may not change or alter any portion of this comment or credits
* of supporting developers from this source code or any supporting source code
* which is considered copyrighted (c) material of the original comment or credit authors.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
*/
/**
* @copyright {@link http://xoops.org/ XOOPS Project}
* @license {@link http://www.fsf.org/copyleft/gpl.html GNU public license}
* @package
* @since
* @author XOOPS Development Team,
* @author GIJ=CHECKMATE (PEAK Corp. http://www.peak.ne.jp/)
*/
defined('XOOPS_ROOT_PATH') || exit('XOOPS Root Path not defined');
/**
* @param $db
* @param $gperm_modid
* @param null $gperm_name
* @param null $gperm_itemid
* @return bool
*/
function myDeleteByModule(XoopsDatabase $db, $gperm_modid, $gperm_name = null, $gperm_itemid = null)
{
$criteria = new CriteriaCompo(new Criteria('gperm_modid', (int)$gperm_modid));
if (isset($gperm_name)) {
$criteria->add(new Criteria('gperm_name', $gperm_name));
if (isset($gperm_itemid)) {
$criteria->add(new Criteria('gperm_itemid', (int)$gperm_itemid));
}
}
$sql = 'DELETE FROM ' . $db->prefix('group_permission') . ' ' . $criteria->renderWhere();
if (!$result = $db->query($sql)) {
return false;
}
return true;
}
// require_once __DIR__ . '/../../../include/cp_header.php'; GIJ
$modid = isset($_POST['modid']) ? (int)$_POST['modid'] : 1;
// we dont want system module permissions to be changed here ( 1 -> 0 GIJ)
if ($modid <= 0 || !is_object($xoopsUser) || !$xoopsUser->isAdmin($modid)) {
redirect_header(XOOPS_URL . '/user.php', 1, _NOPERM);
}
/** @var XoopsModuleHandler $moduleHandler */
$moduleHandler = xoops_getHandler('module');
$module = $moduleHandler->get($modid);
if (!is_object($module) || !$module->getVar('isactive')) {
redirect_header(XOOPS_URL . '/admin.php', 1, _MODULENOEXIST);
}
$memberHandler = xoops_getHandler('member');
$group_list = $memberHandler->getGroupList();
if (is_array($_POST['perms']) && !empty($_POST['perms'])) {
$gpermHandler = xoops_getHandler('groupperm');
foreach ($_POST['perms'] as $perm_name => $perm_data) {
foreach ($perm_data['itemname'] as $item_id => $item_name) {
// checking code
// echo "<pre>" ;
// var_dump( $_POST['perms'] ) ;
// exit ;
if (false !== myDeleteByModule($gpermHandler->db, $modid, $perm_name, $item_id)) {
if (empty($perm_data['groups'])) {
continue;
}
foreach ($perm_data['groups'] as $group_id => $item_ids) {
// foreach ($item_ids as $item_id => $selected) {
$selected = isset($item_ids[$item_id]) ? $item_ids[$item_id] : 0;
if ($selected == 1) {
// make sure that all parent ids are selected as well
if ($perm_data['parents'][$item_id] !== '') {
$parent_ids = explode(':', $perm_data['parents'][$item_id]);
foreach ($parent_ids as $pid) {
if ($pid != 0 && !in_array($pid, array_keys($item_ids))) {
// one of the parent items were not selected, so skip this item
$msg[] = sprintf(_MD_APCAL_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>',
'<b>' . $group_list[$group_id] . '</b>') . ' (' . _MD_APCAL_PERMADDNGP . ')';
continue 2;
}
}
}
$gperm = $gpermHandler->create();
$gperm->setVar('gperm_groupid', $group_id);
$gperm->setVar('gperm_name', $perm_name);
$gperm->setVar('gperm_modid', $modid);
$gperm->setVar('gperm_itemid', $item_id);
if (!$gpermHandler->insert($gperm)) {
$msg[] = sprintf(_MD_APCAL_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
} else {
$msg[] = sprintf(_MD_APCAL_PERMADDOK, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
}
unset($gperm);
}
}
} else {
$msg[] = sprintf(_MD_APCAL_PERMRESETNG, $module->getVar('name'));
}
}
}
}
/*
$backlink = XOOPS_URL.'/admin.php';
if ($module->getVar('hasadmin')) {
$adminindex = $module->getInfo('adminindex');
if ($adminindex) {
$backlink = XOOPS_URL.'/modules/'.$module->getVar('dirname').'/'.$adminindex;
}
}
$msg[] = '<br><br><a href="'.$backlink.'">'._BACK.'</a>';
xoops_cp_header();
xoops_result($msg);
xoops_cp_footer(); GIJ */