예제 #1
0
}
$intAddMenuCatCID = $consoleObj->findConsoleIDByName("Add Menu Category");
$intEditMenuCatCID = $consoleObj->findConsoleIDByName("Manage Menu Categories");
$consoleObj->select($intAddMenuCatCID);
$checkAccess1 = $member->hasAccess($consoleObj);
$consoleObj->select($intEditMenuCatCID);
$checkAccess2 = $member->hasAccess($consoleObj);
if ($member->authorizeLogin($_SESSION['btPassword']) && ($checkAccess1 || $checkAccess2)) {
    if (isset($_POST['section']) && is_numeric($_POST['section'])) {
        $orderoptions = "";
        $selectCatID = "";
        if (!isset($_POST['mcID'])) {
            $_POST['mcID'] = "";
        } else {
            $menuCatObj->select($_POST['mcID']);
            $selectCatID = $menuCatObj->findBeforeAfter();
            $selectCatID = $selectCatID[0];
        }
        $lastCategory = "";
        $result = $mysqli->query("SELECT * FROM " . $dbprefix . "menu_category WHERE section = '" . $_POST['section'] . "' ORDER BY sortnum");
        while ($row = $result->fetch_assoc()) {
            if ($_POST['mcID'] != $row['menucategory_id']) {
                $dispSelected = "";
                if ($selectCatID == $row['menucategory_id']) {
                    $dispSelected = " selected";
                }
                $orderoptions .= "<option value='" . $row['menucategory_id'] . "'" . $dispSelected . ">" . filterText($row['name']) . "</option>";
            }
            $lastCategory = $row['menucategory_id'];
        }
        if ($result->num_rows == 0 || $result->num_rows == 1 && $_POST['mcID'] != "" && $_POST['mcID'] == $lastCategory) {