-
Notifications
You must be signed in to change notification settings - Fork 0
/
tng_create_group_code.php
96 lines (87 loc) · 2.06 KB
/
tng_create_group_code.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<?php
/*---------------------------------------------------------------
author: alim karim
date: April 18, 2007
file: tng_manage_permissions_code.php
desc: code behind permission manager.
---------------------------------------------------------------*/
include_once('classes/class_login.php');
include_once('classes/class_dbconn.php');
session_start();
// form is being loaded first time or
// it is being loaded through ajax
if(isset($_SESSION['obj_login'])){
global $user_list;
global $obj_list;
global $xslt_user;
if(isset($_POST['ajax_action'])){
switch($_POST['ajax_action']){
// check for duplicate group name
case "check_gname":
if(check_duplicate_gname(str_replace("'", "''", $_POST['gname'])))
echo "true";
else
echo "false";
break;
// request to create a group
// with the given name
case "create_group":
if(create_group(str_replace("'", "''", $_POST['gname'])))
echo "true";
else
echo "false";
break;
}
}
}
///
/// check_duplicate_gname()
/// check if a group with the given name
/// exists
///
function check_duplicate_gname($gname){
$result = true;
$sql_str = "SELECT "
. "gid "
. "FROM "
. "tng_group "
. "WHERE "
. "gname = '" .$gname . "'";
$dbconn =& new DBConn();
$dbconn->connect();
$result = pg_query($dbconn->conn, $sql_str);
if(!$result){
echo "An error occurred while executing the query " . pg_last_error($dbconn->conn);
$dbconn->disconnect();
return false;
}
if(pg_num_rows($result) == 0)
$result = false;
$dbconn->disconnect();
return $result;
}
///
/// create_group()
/// create a group with the given name
///
function create_group($gname){
$sql_str = "INSERT INTO "
. "tng_group "
. "( "
. "gname "
. ") "
. "VALUES "
. "( "
. "'" . $gname . "'"
. ") ";
$dbconn =& new DBConn();
$dbconn->connect();
$result = pg_query($dbconn->conn, $sql_str);
if(!$result){
echo "An error occurred while executing the query " . pg_last_error($dbconn->conn);
$dbconn->disconnect();
return false;
}
return true;
}
?>