private function validateView() { if (!isset($_REQUEST['view'])) { $this->exitWithError('View not set'); } $className = $_REQUEST['view']; //check if request is for view folder if (strpos($className, 'View_') !== 0) { $this->exitWithError('View does not existe'); } if (!class_exists($className)) { $this->exitWithError('View does not exist'); } $user = new Core_Auth_User(); $acl = Application::getAcl(); $role = $user->getRole(); if ($role != 'admin' && $role != 'superadmin') { $acl->addCurrentAsset($_REQUEST['view']); $acl->validate(); } return $className; }
public function actionLogin() { $this->preventTemplateRender(); $user = new Model_UserModel(); $isVarsSet = true; if (!isset($_POST['username'])) { $user->setValidationError('username', 'Username not set'); $isVarsSet = false; } if (!isset($_POST['password'])) { $user->setValidationError('password', 'Password not set'); $isVarsSet = false; } if (!$isVarsSet) { echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors())); return; } $user->setUserName($_POST['username']); $user->setPasswordBeforeSalt($_POST['password']); $user->validateFields(array('user_name', 'password_before_salt')); if ($user->isValid()) { if (!$user->login()) { echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors())); } else { $userSession = new Core_Auth_User(); $userSession->setData($user->getData()); $userStatus = new Model_UserStatusModel(); $userStatus->load($user->getUserStatusIdFK()); $userSession->isAuth(true); $userSession->setRole($userStatus->getStatusName()); echo json_encode(array('status' => 'ok')); } } else { echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors())); } }
public function getUserId() { $user = new Core_Auth_User(); return $user->getUserId(); }
public function setUserId($id = null) { $user = new Core_Auth_User(); $role = $user->getRole(); if ($role == 'admin' || $role == 'superadmin') { if ($id !== null) { $this->userId = $id; } } else { $this->userId = $user->getUserId(); } return $this->userId; }
<li><a href="<?php echo Application::getRouter()->getFullUrl(array('controller' => 'admin', 'action' => 'index')); ?> " class="<?php if (Application::getController() == 'admin') { echo 'active'; } ?> ">Admin</a></li> </ul> <img src="images/logo.gif" id="logo" /> </div> <!--navigation_cnr--> </div> <!--header_cnr--> <?php $user = new Core_Auth_User(); if ($user->getRole() == 'user') { ?> <div style="float:left;padding:10px" > <a href="javascript:void(0)" class="systemServiceLink" servicehtml="<?php echo Application::getRouter()->getFullUrl(array('controller' => 'servicehtml', 'action' => 'view', 'params' => 'view=View_Frontend_UserBets')); ?> " > My Bets </a> | <a href="javascript:void(0)" class="systemServiceLink" servicehtml="<?php echo Application::getRouter()->getFullUrl(array('controller' => 'servicehtml', 'action' => 'view', 'params' => 'view=View_Frontend_UserBank')); ?> "> My Bank</a> </div> <?php } ?>
<?php $user = new Core_Auth_User(); if (!$user->isAuth()) { ?> Y.one('<?php echo $this->getHtmlIds('loginPopUp', true); ?> ').on('click', function() { Y.one('#loginContent').setStyle('display','block'); <?php echo $this->getLoginPanel()->getId(); ?> .show(); } ) Y.one('<?php echo $this->getHtmlIds('registerPopUp', true); ?> ').on('click', function() { Y.one('#registrationContent').setStyle('display','block'); <?php echo $this->getRegistrationPanel()->getId();
} } var winnings =0; if(isNaN(value)==false) { winnings = value*Y.one('#betOdds').getContent(); } Y.one('#betWinnings').setContent(winnings.toFixed(2)); } Y.one('#placeBet').on('click', function(e) { <?php $user = new Core_Auth_User(); $role = $user->getRole(); if ($role == 'guest') { ?> <?php } ?> var oddsValues = betSlipRecordSet.getValuesByKey('odd_value_id'); var oddsValuesString = ''; if(oddsValues.length==0) { alert('Bet splip empty') return;
public function getAcl() { $acl = new Core_Acl_Controller(); $acl->addRole('guest'); $acl->addRoleAsset('guest', 'index_login'); $acl->addRoleAsset('guest', 'index_index'); $acl->addRoleAsset('guest', 'servicejson_login'); $acl->addRoleAsset('guest', 'servicejson_registration'); $acl->addRoleAsset('guest', 'admin_index'); $acl->addRoleAsset('guest', 'index_frontend'); $acl->addRoleAsset('guest', 'index_registration'); $acl->addRoleAsset('guest', 'servicehtml_view'); $acl->addRoleAsset('guest', 'View_Frontend_Offer'); $acl->addRoleAsset('guest', 'View_Frontend_WidgetsLoader'); $acl->addRoleAsset('guest', 'View_Frontend_Widgets_OfferTableEvents'); $acl->addRoleAsset('guest', 'View_Frontend_MenuContent'); $acl->addRoleAsset('guest', 'View_Frontend_Widgets_Ticket'); $acl->addRoleAsset('admin', 'modelgenerator_index'); $acl->addRole('user', 'guest'); $acl->addRoleAsset('user', 'index_logout'); $acl->addRoleAsset('guest', 'servicejson_logout'); $acl->addRoleAsset('user', 'Model_PlaceBetModel_insert'); $acl->addRoleAsset('user', 'View_Frontend_UserBets'); $acl->addRoleAsset('user', 'View_Frontend_UserBank'); $acl->addRoleAsset('user', 'View_Frontend_UserBetSlip'); $acl->addRoleAsset('user', 'servicejson_model'); $acl->addRoleAsset('user', 'servicejson_modelcollection'); $acl->addRoleAsset('user', 'Model_TransactionModel_getTransactionsByUser'); $acl->addRoleAsset('user', 'Model_BetSlipModel_getBetSlipsTransactionByUser'); $acl->addRole('admin', 'user'); $acl->addRole('superadmin', 'admin'); $user = new Core_Auth_User(); $role = $user->getRole(); $acl->addCurrentRole($role); if ($role == 'admin' || $role == 'superadmin') { //there is no restriction; } else { if ($role == 'guest' || $role == 'user') { $acl->addCurrentAsset($this->getRouter()->getController() . '_' . $this->getRouter()->getAction()); } } return $acl; }
<style> #loginContent { display:none; } #registrationContent { display:none; } </style> <?php $user = new Core_Auth_User(); if ($user->isAuth()) { ?> <div style="float:right"> <a href="<?php echo $url = Application::getRouter()->getFullUrl(array('controller' => 'index', 'action' => 'logout')); ?> "> Logout </a> </div> <?php } else { ?> <div style="float:right"> <span><a id="<?php echo $this->getHtmlIds('loginPopUp'); ?> " href="#"> Login </a></span>