3 UserCake Version: 2.0.2
\r
7 require_once("models/config.php");
\r
8 if (!securePage($_SERVER['PHP_SELF'])){die();}
\r
9 $permissionId = $_GET['id'];
\r
11 //Check if selected permission level exists
\r
12 if(!permissionIdExists($permissionId)){
\r
13 header("Location: admin_permissions.php"); die();
\r
16 $permissionDetails = fetchPermissionDetails($permissionId); //Fetch information specific to permission level
\r
21 //Delete selected permission level
\r
22 if(!empty($_POST['delete'])){
\r
23 $deletions = $_POST['delete'];
\r
24 if ($deletion_count = deletePermission($deletions)){
\r
25 $successes[] = lang("PERMISSION_DELETIONS_SUCCESSFUL", array($deletion_count));
\r
28 $errors[] = lang("SQL_ERROR");
\r
33 //Update permission level name
\r
34 if($permissionDetails['name'] != $_POST['name']) {
\r
35 $permission = trim($_POST['name']);
\r
38 if (permissionNameExists($permission)){
\r
39 $errors[] = lang("ACCOUNT_PERMISSIONNAME_IN_USE", array($permission));
\r
41 elseif (minMaxRange(1, 50, $permission)){
\r
42 $errors[] = lang("ACCOUNT_PERMISSION_CHAR_LIMIT", array(1, 50));
\r
45 if (updatePermissionName($permissionId, $permission)){
\r
46 $successes[] = lang("PERMISSION_NAME_UPDATE", array($permission));
\r
49 $errors[] = lang("SQL_ERROR");
\r
54 //Remove access to pages
\r
55 if(!empty($_POST['removePermission'])){
\r
56 $remove = $_POST['removePermission'];
\r
57 if ($deletion_count = removePermission($permissionId, $remove)) {
\r
58 $successes[] = lang("PERMISSION_REMOVE_USERS", array($deletion_count));
\r
61 $errors[] = lang("SQL_ERROR");
\r
65 //Add access to pages
\r
66 if(!empty($_POST['addPermission'])){
\r
67 $add = $_POST['addPermission'];
\r
68 if ($addition_count = addPermission($permissionId, $add)) {
\r
69 $successes[] = lang("PERMISSION_ADD_USERS", array($addition_count));
\r
72 $errors[] = lang("SQL_ERROR");
\r
76 //Remove access to pages
\r
77 if(!empty($_POST['removePage'])){
\r
78 $remove = $_POST['removePage'];
\r
79 if ($deletion_count = removePage($remove, $permissionId)) {
\r
80 $successes[] = lang("PERMISSION_REMOVE_PAGES", array($deletion_count));
\r
83 $errors[] = lang("SQL_ERROR");
\r
87 //Add access to pages
\r
88 if(!empty($_POST['addPage'])){
\r
89 $add = $_POST['addPage'];
\r
90 if ($addition_count = addPage($add, $permissionId)) {
\r
91 $successes[] = lang("PERMISSION_ADD_PAGES", array($addition_count));
\r
94 $errors[] = lang("SQL_ERROR");
\r
97 $permissionDetails = fetchPermissionDetails($permissionId);
\r
101 $pagePermissions = fetchPermissionPages($permissionId); //Retrieve list of accessible pages
\r
102 $permissionUsers = fetchPermissionUsers($permissionId); //Retrieve list of users with membership
\r
103 $userData = fetchAllUsers(); //Fetch all users
\r
104 $pageData = fetchAllPages(); //Fetch all pages
\r
106 require_once("models/header.php");
\r
110 <div id='top'><div id='logo'></div></div>
\r
113 <h2>Admin Permissions</h2>
\r
114 <div id='left-nav'>";
\r
116 include("left-nav.php");
\r
122 echo resultBlock($errors,$successes);
\r
125 <form name='adminPermission' action='".$_SERVER['PHP_SELF']."?id=".$permissionId."' method='post'>
\r
126 <table class='admin'>
\r
128 <h3>Permission Information</h3>
\r
132 ".$permissionDetails['id']."
\r
135 <label>Name:</label>
\r
136 <input type='text' name='name' value='".$permissionDetails['name']."' />
\r
138 <label>Delete:</label>
\r
139 <input type='checkbox' name='delete[".$permissionDetails['id']."]' id='delete[".$permissionDetails['id']."]' value='".$permissionDetails['id']."'>
\r
142 <h3>Permission Membership</h3>
\r
147 //List users with permission level
\r
148 foreach ($userData as $v1) {
\r
149 if(isset($permissionUsers[$v1['id']])){
\r
150 echo "<br><input type='checkbox' name='removePermission[".$v1['id']."]' id='removePermission[".$v1['id']."]' value='".$v1['id']."'> ".$v1['display_name'];
\r
155 </p><p>Add Members:";
\r
157 //List users without permission level
\r
158 foreach ($userData as $v1) {
\r
159 if(!isset($permissionUsers[$v1['id']])){
\r
160 echo "<br><input type='checkbox' name='addPermission[".$v1['id']."]' id='addPermission[".$v1['id']."]' value='".$v1['id']."'> ".$v1['display_name'];
\r
169 <h3>Permission Access</h3>
\r
174 //List public pages
\r
175 foreach ($pageData as $v1) {
\r
176 if($v1['private'] != 1){
\r
177 echo "<br>".$v1['page'];
\r
186 //List pages accessible to permission level
\r
187 foreach ($pageData as $v1) {
\r
188 if(isset($pagePermissions[$v1['id']]) AND $v1['private'] == 1){
\r
189 echo "<br><input type='checkbox' name='removePage[".$v1['id']."]' id='removePage[".$v1['id']."]' value='".$v1['id']."'> ".$v1['page'];
\r
194 </p><p>Add Access:";
\r
196 //List pages inaccessible to permission level
\r
197 foreach ($pageData as $v1) {
\r
198 if(!isset($pagePermissions[$v1['id']]) AND $v1['private'] == 1){
\r
199 echo "<br><input type='checkbox' name='addPage[".$v1['id']."]' id='addPage[".$v1['id']."]' value='".$v1['id']."'> ".$v1['page'];
\r
210 <label> </label>
\r
211 <input type='submit' value='Update' class='submit' />
\r
215 <div id='bottom'></div>
\r