}
$intAddMenuCatCID = $consoleObj->findConsoleIDByName("Add Menu Category");
$intEditMenuCatCID = $consoleObj->findConsoleIDByName("Manage Menu Categories");
$consoleObj->select($intAddMenuCatCID);
$checkAccess1 = $member->hasAccess($consoleObj);
$consoleObj->select($intEditMenuCatCID);
$checkAccess2 = $member->hasAccess($consoleObj);
if ($member->authorizeLogin($_SESSION['btPassword']) && ($checkAccess1 || $checkAccess2)) {
if (isset($_POST['section']) && is_numeric($_POST['section'])) {
$orderoptions = "";
$selectCatID = "";
if (!isset($_POST['mcID'])) {
$_POST['mcID'] = "";
} else {
$menuCatObj->select($_POST['mcID']);
$selectCatID = $menuCatObj->findBeforeAfter();
$selectCatID = $selectCatID[0];
}
$lastCategory = "";
$result = $mysqli->query("SELECT * FROM " . $dbprefix . "menu_category WHERE section = '" . $_POST['section'] . "' ORDER BY sortnum");
while ($row = $result->fetch_assoc()) {
if ($_POST['mcID'] != $row['menucategory_id']) {
$dispSelected = "";
if ($selectCatID == $row['menucategory_id']) {
$dispSelected = " selected";
}
$orderoptions .= "<option value='" . $row['menucategory_id'] . "'" . $dispSelected . ">" . filterText($row['name']) . "</option>";
}
$lastCategory = $row['menucategory_id'];
}
if ($result->num_rows == 0 || $result->num_rows == 1 && $_POST['mcID'] != "" && $_POST['mcID'] == $lastCategory) {
