$dbConnectObj->beginTransaction(); $commonMethodObj = new COMMON_METHOD($dbConnectObj); // 2. Get URL Parameter $searchCompanyCode = ''; if ($_REQUEST['ccode'] != '' && $_REQUEST['ccode'] != null) { $searchCompanyCode = $_REQUEST['ccode']; } else { $dbConnectObj->rollback(); $dbConnectObj->close(); // redirect to company info page header('location: ./company_info.php'); exit; } // 3. Get Operator Info $resGetOperatorDetailArray = array(); $resGetOperatorDetailArray = $commonMethodObj->getOperatorDetail($operator_id); if (!$resGetOperatorDetailArray) { $dbConnectObj->rollback(); $dbConnectObj->close(); // redirect to error page header('location: ./error.php?ecode=SE1405'); exit; } $operatorRole = $resGetOperatorDetailArray['role']; // check user role: admin(role=1) is OK if ($operatorRole != 1) { $dbConnectObj->rollback(); $dbConnectObj->close(); // redirect to error page header('location: ./error.php?ecode=SE1406'); exit;