public function DeletePost($blogID, $postID) { //Returns true if the user has privilege {Editor, Owner}. Returns true if the user has privilege Author and is the creator of the post. Otherwise, false. $permission = BusinessLogic_User_User::GetInstance()->GetPermissionForBlog($blogID); if ($permission == "Nobody") { return false; } elseif ($permission == "Author" and BusinessLogic_User_User::GetInstance()->GetUserID() == BusinessLogic_Post_PostDataAccess::GetInstance()->GetPostAuthorID($postID)) { return true; } else { return true; } }
public function ViewPostsByDay($blogID, $year, $month, $date) { //Calls the PostSecurity class to determine the user's permissions. The PostDataAccess class is then called and a ViewPostCollectionView is returned. $permission = BusinessLogic_Post_PostSecurity::GetInstance()->ViewPostsByDay($blogID); $postCollectionView = BusinessLogic_Post_PostDataAccess::GetInstance()->ViewPostsByDay($blogID, $year, $month, $date, $permission[1]); BusinessLogic_Post_PostSecurity::GetInstance()->ActivateControls($postCollectionView, $blogID, $permission[0]); return $postCollectionView; }