private static function getHrefAction($href)
{
$app = Manager::getApp();
$re = '#^(\\/?)' . $app . '\\/#';
if (preg_match($re, $href)) {
$href = preg_replace($re, '', $href);
}
return Manager::getURL($href);
}
public function changeLevel()
{
$login = Manager::getLogin();
$toLevel = $this->data->id;
$user = $login->getUser();
$levels = $user->getAvaiableLevels();
if ($levels[$toLevel]) {
$newUser = new User($levels[$toLevel]);
$login->setUser($newUser);
Manager::getSession()->fnbrLayers = $newUser->getConfigData('fnbrLayers');
Manager::getSession()->fnbrLevel = $toLevel;
$this->redirect(Manager::getURL('fnbr/main'));
} else {
$this->renderPrompt('error', _M('You don\'t have such level.'));
}
}
public function checkAccess($transaction, $access, $deny = false)
{
//mdump($transaction);
//mdump('--------------------');
//mdump($access);
$module = Manager::getModule();
$ok = false;
if (!is_numeric($access)) {
$access = $this->access[$access];
}
if ($this->auth->isLogged()) {
$login = $this->auth->getLogin();
// MLogin object
$transaction = strtoupper($transaction);
// Transaction name
$isAdmin = $login->isAdmin();
// Is administrator?
$rights = (int) $login->getRights($transaction);
// user rights
$rightsInAll = (int) $login->getRights('ALL');
// user rights in all transactions
$ok = ($rights & $access) == $access || ($rightsInAll & $access) == $access || $isAdmin;
if (!$ok && $deny) {
$msg = _M('Acesso Negado') . "<br><br>\n" . "<center><big><i><font color=red>" . _M('Transação: ') . "{$transaction}</font></i></big></center><br><br>\n" . _M('Informe um login válido para acessar esta página.') . "<br>";
//$go = Manager::getCurrentURL();
//$error = MPrompt::error($msg, $go, $caption, '');
//Manager::prompt($error, $deny);
throw new \Maestro\Services\ESecurityException($msg);
}
} else {
if ($deny) {
$currentUrl = urlencode(\Manager::getCurrentURL());
$module = Manager::getConf('maestro.login.module');
$url = Manager::getURL("{$module}/main.login", array('return_to' => $currentUrl));
Manager::getPage()->redirect($url);
}
}
return $ok;
}
public function addAjax($objAjax)
{
$url = Manager::getURL($objAjax->url);
if ($objAjax->type == 'text') {
$handler = ['{$url}', '{$objAjax->target}', '{$this->id}'];
} else {
$handler = ['{$url}', '{$objAjax->callback}', '{$this->id}'];
}
$objEvent = (object) ['event' => $objAjax->event, 'handler' => $handler, 'preventDefault' => (bool) $objAjax->preventDefault];
$this->addEvent($objEvent);
}
public static function setHREF($id, $href)
{
$href = Manager::getURL($href);
return "manager.byId(\"{$id}\").set(\"href\",\"{$href}\");";
}
