function getAPIListWhere($srcType, $authorCol = "creator,author") { $whr = ""; if (session_check(false)) { if (checkUserRoles($srcType, "Allow Moderation Of All " . toTitle($srcType)) || $_SESSION['SESS_PRIVILEGE_ID'] <= 3) { } else { $authorCol = explode(",", $authorCol); foreach ($authorCol as $a => $b) { $authorCol[$a] = "{$b} LIKE '%[{$_SESSION['SESS_USER_ID']}]'"; } $whr .= " AND (" . implode(" OR ", $authorCol) . " OR approved='true')"; } } else { $whr .= " AND approved='true'"; } return $whr; }
/** * function getGuideDetails returns the array of guide details of given id * @param $id |md5() * @return success/error **/ function getGuideDetails($id) { $cols = " *,guides_tbl.type as category,guides_tbl.guide_group as subcategory"; $whr = "blocked='false' AND md5(id)='" . $id . "'"; $sql = _db()->_selectQ('guides_tbl', $cols, $whr); $res = _dbQuery($sql); $data = _dbFetch($res); if (isset($data['author'])) { $data['authorid'] = extractUserID($data['author']); } else { $data['authorid'] = ""; } if (isset($data['creator'])) { $data['creatorid'] = extractUserID($data['creator']); } else { $data['creatorid'] = ""; } if ($data['authorid'] == $_SESSION['SESS_USER_ID'] || $data['creatorid'] == $_SESSION['SESS_USER_ID']) { $data['editable'] = "true"; $data['edit_url'] = _link("guides") . "/edit/" . md5($data['id']); } elseif (checkUserRoles("guides", "Allow Editing All Guides")) { $data['editable'] = "true"; $data['edit_url'] = _link("guides") . "/edit/" . md5($data['id']); } else { $data['editable'] = "false"; } if (checkUserRoles("guides", "Allow Editing All Guides")) { $data['viewable'] = true; } elseif ($data['status'] == "draft") { if ($data['authorid'] == $_SESSION['SESS_USER_ID'] || $data['creatorid'] == $_SESSION['SESS_USER_ID']) { $data['viewable'] = true; } else { $data['viewable'] = false; } } else { $data['viewable'] = true; } return $data; }
<?php } ?> <?php if ($guideDetails['status'] == "draft") { echo "<div class='alert alert-warning' style='margin-top: 40px;'>This guide is still a <b>DRAFT</b>."; if ($guideDetails['creatorid'] == $_SESSION['SESS_USER_ID']) { echo "<button id='publishArticle' rel='{$guideDetails['id']}' type='button' class='btn btn-success pull-right' style='margin-top: -7px;'> Publish</button></div>"; } else { echo "</div>"; } } elseif ($guideDetails['approved'] == "false") { echo "<div class='alert alert-danger' style='margin-top: 40px;'>This guide is still to be approved."; if ($_SESSION['SESS_PRIVILEGE_ID'] <= 3) { echo "<button id='approveArticle' rel='{$guideDetails['id']}' type='button' class='btn btn-success pull-right' style='margin-top: -7px;'>Approve</button></div>"; } elseif (checkUserRoles("guides", "Allow Approval Of Guides") && $guideDetails['creatorid'] != $_SESSION['SESS_USER_ID']) { echo "<button id='approveArticle' rel='{$guideDetails['id']}' type='button' class='btn btn-success pull-right' style='margin-top: -7px;'>Approve</button></div>"; } else { echo "</div>"; } } ?> <h1 class="page-header"> <small><?php echo $guideDetails['title']; ?> <?php if (strlen($guideDetails['tags']) > 0) { echo "<span class='tags'>"; $guideDetails['tags'] = explode(",", $guideDetails['tags']);
?> ">Add Example</a> | <?php } ?> <a href="#" id="addCommentLnk">Add Comment</a> </div> <?php } ?> <?php if ($apiDetails['approved'] == "false") { echo "<div class='alert alert-danger' style='margin-top: 40px;'>This api is still to be approved."; if ($_SESSION['SESS_PRIVILEGE_ID'] <= 3) { echo "<button id='approveArticle' rel='{$apiDetails['id']}' type='button' class='btn btn-success pull-right' style='margin-top: -7px;'>Approve</button></div>"; } elseif (checkUserRoles("api", "Allow Approval Of API") && $apiDetails['creatorid'] != $_SESSION['SESS_USER_ID']) { echo "<button id='approveArticle' rel='{$apiDetails['id']}' type='button' class='btn btn-success pull-right' style='margin-top: -7px;'>Approve</button></div>"; } else { echo "</div>"; } } ?> <h1 class="page-header"> <small><?php echo $apiDetails['title']; ?> <?php if (strlen($apiDetails['tags']) > 0) { echo "<span class='tags'>"; $apiDetails['tags'] = explode(",", $apiDetails['tags']); foreach ($apiDetails['tags'] as $tag) {
/** * function getApiDetails returns api details with examples and comments * @param $id |md5() * @return $data |array **/ function getApiDetails($id) { $cols = " *,src_name as subcategory,lgks_type as category"; $whr = "blocked='false' AND md5(id)='" . $id . "'"; $whr .= getAPIListWhere("api"); $sql = _db()->_selectQ('api_toc', $cols, $whr); $res = _dbQuery($sql); if ($res) { $data = _dbFetch($res); _dbFree($res); if (isset($data['author'])) { $data['authorid'] = extractUserID($data['author']); } else { $data['authorid'] = ""; } if (isset($data['creator'])) { $data['creatorid'] = extractUserID($data['creator']); } else { $data['creatorid'] = ""; } if ($data['authorid'] == $_SESSION['SESS_USER_ID'] || $data['creatorid'] == $_SESSION['SESS_USER_ID']) { $data['editable'] = "true"; $data['edit_url'] = _link("api/edit/") . md5($data['id']); } elseif (checkUserRoles("api", "Allow Editing ALL API")) { $data['editable'] = "true"; $data['edit_url'] = _link("api/edit/") . md5($data['id']); } else { $data['editable'] = "false"; } $data['defination'] = stripslashes($data['defination']); $data['addExample'] = _link("api/createExample/") . $data['id']; //getcomments $cols = " id,comment,username,userid,dtoc"; $whr = "api_id='" . $data['id'] . "' AND approved='true'"; $sql = _db()->_selectQ('api_comments', $cols, $whr); $res = _dbQuery($sql); $comments = _dbData($res); $data['comments'] = $comments; //getexamples $cols = " id,eg_descs,eg_php,eg_author,dtoe"; $whr = "api_id='" . $data['id'] . "' AND locked='true'"; $sql = _db()->_selectQ('api_examples', $cols, $whr); $res = _dbQuery($sql); $examples = _dbData($res); _dbFree($res); $i = 0; foreach ($examples as $example) { if (isset($example['eg_author'])) { $example['eg_authorid'] = extractUserID($example['eg_author']); } else { $example['eg_authorid'] = ""; } if ($example['eg_authorid'] == $_SESSION['SESS_USER_ID']) { $example['editable'] = 'true'; $example['edit_url'] = _link("api/edit_example/") . md5($example['id']); } $data['examples'][$i] = $example; $i++; } } else { $data = array(); } return $data; }