public static function getByAction($action)
{
global $gDatabase, $gLogger;
$statement = $gDatabase->prepare("SELECT * FROM staffAccess WHERE action = :id LIMIT 1;");
$statement->bindParam(":id", $action);
$gLogger->log("StaffAccess::getByAction({$action})");
$statement->execute();
$resultObject = $statement->fetchObject("StaffAccess");
if ($resultObject != false) {
$resultObject->isNew = false;
$gLogger->log("StaffAccess::getByAction({$action}) object exists.");
} else {
$resultObject = new StaffAccess();
$resultObject->action = $action;
$resultObject->level = 99;
$gLogger->log("StaffAccess::getByAction({$action}) object missing... creating...");
$resultObject->save();
}
return $resultObject;
}
protected function runPage()
{
try {
self::checkAccess('edit-access-levels');
$this->mSmarty->assign("readonly", '');
} catch (AccessDeniedException $ex) {
// caution: if you're copying this, this is a hack to make sure
// users know they don't have the access to do this, not
// to actually stop them from doing it, though it will have
// that effect to the non-tech-savvy.
$this->mSmarty->assign("readonly", 'disabled="disabled"');
}
if (WebRequest::wasPosted()) {
// make SURE we have the right access level for this operation
self::checkAccess('edit-access-levels');
foreach (WebRequest::getPostKeys() as $k) {
$entry = StaffAccess::getById($k);
if ($entry == null) {
continue;
}
if ($entry->getLevel() != WebRequest::postInt($k)) {
$entry->setLevel(WebRequest::postInt($k));
$entry->save();
}
}
global $cWebPath;
$this->mHeaders[] = "HTTP/1.1 303 See Other";
$this->mHeaders[] = "Location: " . $cWebPath . "/management.php/Access";
return;
}
$this->mBasePage = "mgmt/access.tpl";
$accesslist = array();
$accessKeys = StaffAccess::getKnownActions();
foreach ($accessKeys as $k) {
$accessEntry = StaffAccess::getByAction($k);
global $gLogger;
$gLogger->log("Access entry {$accessEntry->getAction()}({$accessEntry->getLevel()}) found!");
$accesslist[] = array(id => $accessEntry->getId(), name => $accessEntry->getAction(), value => $accessEntry->getLevel());
}
$this->mSmarty->assign("accesslist", $accesslist);
}