function _theme_footer() { global $PHP_SELF; $user_id = get_opendb_session_var('user_id'); if (is_site_public_access()) { $user_id = NULL; } $pageId = basename($PHP_SELF, '.php'); if (function_exists('theme_footer')) { return theme_footer($pageId, $user_id); } else { return NULL; } }
{ $index = strpos($help_page, "/"); if ($index !== FALSE) { $language = substr($help_page, 0, $index); // ensure someone is not trying to download the /etc/passwd file or something by basename it back to a simple filename $page = basename(substr($help_page, $index + 1)); } // make sure it ends in html if (is_exists_language($language) && ends_with($page, ".html") && @file_exists("./help/{$language}/{$page}")) { return "./help/{$language}/{$page}"; } // else return NULL; } if (is_site_enabled()) { if (is_opendb_valid_session() || is_site_public_access()) { echo _theme_header(get_opendb_lang_var('help'), FALSE); if (($page_location = validate_opendb_lang_help_page_url($HTTP_VARS['page'])) != NULL) { $page_title = get_opendb_lang_var('site_help', 'site', get_opendb_config_var('site', 'title')); echo "<h2>" . $page_title . "</h2>"; // TODO: Add support for topic and subtopic include $page_location; } else { echo _theme_header(get_opendb_lang_var('no_help_available'), FALSE); echo "<p class=\"error\">" . get_opendb_lang_var('no_help_available') . "</p>"; } echo _theme_footer(); } else { //not a valid session. // invalid login, so login instead. redirect_login($PHP_SELF, $HTTP_VARS);
function is_user_granted_permission($permission, $user_id = NULL, $ignoreRememberMe = FALSE) { if (strlen($user_id) == 0 && is_site_public_access()) { $perms_r = get_public_access_permission_r(); } else { if (strlen($user_id) == 0) { $user_id = $_SESSION['user_id']; if (!$ignoreRememberMe) { $is_remember_me = $_SESSION['login_method'] == 'remember_me'; } else { $is_remember_me = FALSE; } global $PERM_MATRIX; if (!is_array($PERM_MATRIX)) { $perms_r = get_user_granted_permissions_r($user_id); $PERM_MATRIX = $perms_r; } else { $perms_r = $PERM_MATRIX; } } else { // won't cache explicit request for perms $perms_r = get_user_granted_permissions_r($user_id); } } if (is_array($permission)) { reset($permission); while (list(, $perm) = each($permission)) { if (isset($perms_r[$perm])) { $rememberMe = $perms_r[$perm]; if (!$is_remember_me || $rememberMe == 'Y') { return TRUE; } } } } else { if (isset($perms_r[$permission])) { $rememberMe = $perms_r[$permission]; if (!$is_remember_me || $rememberMe == 'Y') { return TRUE; } } } return FALSE; }