function handle($request) {
$groupIdParamName = 'group';
$groupId = Form::getField($request, $groupIdParamName);
if (strlen($groupId) == 0) {
die(IsatisText::getText("MissingParameter").": ".$groupIdParamName);
}
$g = SecurityGroup::getById($groupId);
if ($g == NULL) {
die(Text::getText("GroupNotFound").": '".$groupId."'");
}
$allPermissions = SecurityPermission::getAll();
$allResources = SecurityResource::getAll();
foreach ($allResources as $res) {
foreach ($allPermissions as $perm) {
$fieldName = "res".$res->getId()."_perm".$perm->getId();
$value = Form::getField($request, $fieldName);
if ($value == "on") {
if (!$g->hasPermission($res, $perm)) {
$g->addPermission($res, $perm);
}
} else {
$g->removePermission($res, $perm);
}
}
}
return $g;
}
<?php
require_once "config.php";
require_once RESACCMAN_BASE . "/classes/Text.php";
require_once RESACCMAN_BASE . "/classes/html/GroupPermissionsForm.php";
$title = Text::getText("GroupPermissions");
if (GroupPermissionsForm::isSubmitted($_REQUEST)) {
$g = GroupPermissionsForm::handle($_REQUEST);
$today = date("r");
header("Location: groupPermissions.php?id=" . $g->getId() . "&saved=" . $today);
} else {
if (sizeof($_REQUEST['id']) > 0) {
$g = SecurityGroup::getById($id);
}
}
if ($g == NULL) {
$errMsg = Text::getText("GroupNotFound") . ": '" . $id . "'";
die($errMsg);
}
$title .= ": " . $g->getName();
$form = new GroupPermissionsForm($g);
if (strlen($_REQUEST['saved']) > 0) {
$form->setMessage(IsatisText::getText("Saved") . ": " . $_REQUEST['saved']);
}
include "header.php";
?>
<h2><?php
echo $title;
?>
</h2><?
$form->printContent();
<? require_once("classes/SecurityGroup.php"); ?>
<? require_once("classes/Text.php"); ?>
<?
$g = SecurityGroup::getById($_REQUEST['id']);
if ($g == NULL) {
$errMsg = Text::getText("GroupNotFound");
$title = Text::getText("Delete");
include("error.php");
} else {
$g->delete();
header("Location: groups.php");
}
?>
<? require_once("classes/SecurityGroup.php"); ?>
<? require_once("classes/SecurityResource.php"); ?>
<? require_once("classes/SecurityPermission.php"); ?>
<?
$group = $_REQUEST['group'];
$g = SecurityGroup::getById($group);
if ($g == NULL) {
$errMsg = Text::getText("GroupNotFound");
$title = Text::getText("GroupPermissions");
include("error.php");
exit;
}
$allPermissions = SecurityPermission::getAll();
$allResources = SecurityResource::getAll();
foreach ($allResources as $res) {
foreach ($allPermissions as $perm) {
$fieldName = "res".$res->getId()."_perm".$perm->getId();
$value = $_REQUEST[$fieldName];
//print $fieldName."=".$value."<br>";
if ($value == "on") {
if (!$g->hasPermission($res, $perm)) {
$g->addPermission($res, $perm);
}
} else {
$g->removePermission($res, $perm);
}
}
}
header("Location: groups.php");
?>
