function permissions() { global $globals, $mysql, $theme, $done, $error; global $user; global $l; $theme['name'] = 'permissions'; $theme['call_theme_func'] = 'permissions'; loadlang(); fheader($title = 'Permissions'); include "{$globals['rootdir']}" . "/classes/User.php"; $actions = array('view', 'edit', 'publish', 'delete'); $users = array('a1u', 'a2u', 'a3u', 'a4u'); $action = isset($_GET['action']) && in_array($_GET['action'], $actions) ? $_GET['action'] : 'view'; $user = isset($_GET['user']) && in_array($_GET['user'], $users) ? $_GET['user'] : '******'; $q1 = "SELECT `groups`.`priv`, `groups`.`name` FROM `users` \n\tJOIN \n\t`groups` ON `users`.`group` = `groups`.`id` \n\tWHERE `users`.`uname` = '%s' \n\t'LIMIT 1'\n\t"; $qq1 = db_query(sprintf($q1, $user)); if (!$qq1) { error_reporting('Cud not select from DB'); } $temp = mysql_fetch_object($qq1); $userClass = new User(); $userClass->setGroup($temp->name); $userClass->setPriv($temp->priv); $q1 = "SELECT `priv` FROM `actions` WHERE `name` = '%s' "; $qq1 = db_query(sprintf($q1, $action)); if (!$qq1) { error_reporting('Cud not select frm DB'); } $temp = mysql_fetch_object($qq1); }
/** * このグループに参加 * @param User $user */ public function join($user) { $sql = \mysql\connect(); $state = $sql->prepare('INSERT INTO `user_belongsto_group` (`group_id`, `user_id`) VALUES(?, ?) ON DUPLICATE KEY UPDATE `group_id`=VALUES(`group_id`);'); $state->bind_param('ii', $this->id_, $user->getId()); if ($state->execute()) { $user->setGroup($this->id_); } $state->close(); }
} } elseif (isset($_POST["pseudoUpdateUser"])) { $_SESSION['email'] = $emailUpdateUser = $_POST['emailUpdateUser']; $verifEmail = User::verifiEmail($emailUpdateUser); if ($verifEmail == False) { $_SESSION["verifEmailUpdateUser"] = false; } else { $_SESSION['verifEmailUpdateUser'] = true; $verifEmail = User::existEmail($emailUpdateUser); if ($verifEmail == false) { $_SESSION["existEmailUpdateUser"] = false; $user = new User(); $_SESSION['pseudo'] = $pseudoUpdateUser = $_POST['pseudoUpdateUser']; $user->setLogin($pseudoUpdateUser); $user->setEmail($emailUpdateUser); $_SESSION['group'] = $groupUpdateUser = $_POST['groupUpdateUser']; $user->setGroup($groupUpdateUser); $id = $_SESSION["id"]; $user->updateUser($id); } else { $_SESSION["existEmailUpdateUser"] = true; } } } $dpList = Dp::getAllDp(); if ($dpList == null) { $_SESSION["msgToAllDp"] = "Aucun Design Patterns !"; } else { $_SESSION['dpList'] = $dpList; $_SESSION['msgToAllDp'] = ""; }