private function validateView()
{
if (!isset($_REQUEST['view'])) {
$this->exitWithError('View not set');
}
$className = $_REQUEST['view'];
//check if request is for view folder
if (strpos($className, 'View_') !== 0) {
$this->exitWithError('View does not existe');
}
if (!class_exists($className)) {
$this->exitWithError('View does not exist');
}
$user = new Core_Auth_User();
$acl = Application::getAcl();
$role = $user->getRole();
if ($role != 'admin' && $role != 'superadmin') {
$acl->addCurrentAsset($_REQUEST['view']);
$acl->validate();
}
return $className;
}
public function actionLogin()
{
$this->preventTemplateRender();
$user = new Model_UserModel();
$isVarsSet = true;
if (!isset($_POST['username'])) {
$user->setValidationError('username', 'Username not set');
$isVarsSet = false;
}
if (!isset($_POST['password'])) {
$user->setValidationError('password', 'Password not set');
$isVarsSet = false;
}
if (!$isVarsSet) {
echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors()));
return;
}
$user->setUserName($_POST['username']);
$user->setPasswordBeforeSalt($_POST['password']);
$user->validateFields(array('user_name', 'password_before_salt'));
if ($user->isValid()) {
if (!$user->login()) {
echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors()));
} else {
$userSession = new Core_Auth_User();
$userSession->setData($user->getData());
$userStatus = new Model_UserStatusModel();
$userStatus->load($user->getUserStatusIdFK());
$userSession->isAuth(true);
$userSession->setRole($userStatus->getStatusName());
echo json_encode(array('status' => 'ok'));
}
} else {
echo json_encode(array('status' => 'error', 'errors' => $user->getValidationErrors()));
}
}
public function getUserId()
{
$user = new Core_Auth_User();
return $user->getUserId();
}
public function setUserId($id = null)
{
$user = new Core_Auth_User();
$role = $user->getRole();
if ($role == 'admin' || $role == 'superadmin') {
if ($id !== null) {
$this->userId = $id;
}
} else {
$this->userId = $user->getUserId();
}
return $this->userId;
}
<li><a href="<?php
echo Application::getRouter()->getFullUrl(array('controller' => 'admin', 'action' => 'index'));
?>
" class="<?php
if (Application::getController() == 'admin') {
echo 'active';
}
?>
">Admin</a></li>
</ul>
<img src="images/logo.gif" id="logo" /> </div>
<!--navigation_cnr-->
</div>
<!--header_cnr-->
<?php
$user = new Core_Auth_User();
if ($user->getRole() == 'user') {
?>
<div style="float:left;padding:10px" >
<a href="javascript:void(0)" class="systemServiceLink" servicehtml="<?php
echo Application::getRouter()->getFullUrl(array('controller' => 'servicehtml', 'action' => 'view', 'params' => 'view=View_Frontend_UserBets'));
?>
" > My Bets </a>
| <a href="javascript:void(0)" class="systemServiceLink" servicehtml="<?php
echo Application::getRouter()->getFullUrl(array('controller' => 'servicehtml', 'action' => 'view', 'params' => 'view=View_Frontend_UserBank'));
?>
"> My Bank</a>
</div>
<?php
}
?>
<?php
$user = new Core_Auth_User();
if (!$user->isAuth()) {
?>
Y.one('<?php
echo $this->getHtmlIds('loginPopUp', true);
?>
').on('click',
function()
{
Y.one('#loginContent').setStyle('display','block');
<?php
echo $this->getLoginPanel()->getId();
?>
.show();
}
)
Y.one('<?php
echo $this->getHtmlIds('registerPopUp', true);
?>
').on('click',
function()
{
Y.one('#registrationContent').setStyle('display','block');
<?php
echo $this->getRegistrationPanel()->getId();
}
}
var winnings =0;
if(isNaN(value)==false)
{
winnings = value*Y.one('#betOdds').getContent();
}
Y.one('#betWinnings').setContent(winnings.toFixed(2));
}
Y.one('#placeBet').on('click',
function(e)
{
<?php
$user = new Core_Auth_User();
$role = $user->getRole();
if ($role == 'guest') {
?>
<?php
}
?>
var oddsValues = betSlipRecordSet.getValuesByKey('odd_value_id');
var oddsValuesString = '';
if(oddsValues.length==0)
{
alert('Bet splip empty')
return;
public function getAcl()
{
$acl = new Core_Acl_Controller();
$acl->addRole('guest');
$acl->addRoleAsset('guest', 'index_login');
$acl->addRoleAsset('guest', 'index_index');
$acl->addRoleAsset('guest', 'servicejson_login');
$acl->addRoleAsset('guest', 'servicejson_registration');
$acl->addRoleAsset('guest', 'admin_index');
$acl->addRoleAsset('guest', 'index_frontend');
$acl->addRoleAsset('guest', 'index_registration');
$acl->addRoleAsset('guest', 'servicehtml_view');
$acl->addRoleAsset('guest', 'View_Frontend_Offer');
$acl->addRoleAsset('guest', 'View_Frontend_WidgetsLoader');
$acl->addRoleAsset('guest', 'View_Frontend_Widgets_OfferTableEvents');
$acl->addRoleAsset('guest', 'View_Frontend_MenuContent');
$acl->addRoleAsset('guest', 'View_Frontend_Widgets_Ticket');
$acl->addRoleAsset('admin', 'modelgenerator_index');
$acl->addRole('user', 'guest');
$acl->addRoleAsset('user', 'index_logout');
$acl->addRoleAsset('guest', 'servicejson_logout');
$acl->addRoleAsset('user', 'Model_PlaceBetModel_insert');
$acl->addRoleAsset('user', 'View_Frontend_UserBets');
$acl->addRoleAsset('user', 'View_Frontend_UserBank');
$acl->addRoleAsset('user', 'View_Frontend_UserBetSlip');
$acl->addRoleAsset('user', 'servicejson_model');
$acl->addRoleAsset('user', 'servicejson_modelcollection');
$acl->addRoleAsset('user', 'Model_TransactionModel_getTransactionsByUser');
$acl->addRoleAsset('user', 'Model_BetSlipModel_getBetSlipsTransactionByUser');
$acl->addRole('admin', 'user');
$acl->addRole('superadmin', 'admin');
$user = new Core_Auth_User();
$role = $user->getRole();
$acl->addCurrentRole($role);
if ($role == 'admin' || $role == 'superadmin') {
//there is no restriction;
} else {
if ($role == 'guest' || $role == 'user') {
$acl->addCurrentAsset($this->getRouter()->getController() . '_' . $this->getRouter()->getAction());
}
}
return $acl;
}
<style>
#loginContent
{
display:none;
}
#registrationContent
{
display:none;
}
</style>
<?php
$user = new Core_Auth_User();
if ($user->isAuth()) {
?>
<div style="float:right">
<a href="<?php
echo $url = Application::getRouter()->getFullUrl(array('controller' => 'index', 'action' => 'logout'));
?>
"> Logout </a>
</div>
<?php
} else {
?>
<div style="float:right">
<span><a id="<?php
echo $this->getHtmlIds('loginPopUp');
?>
" href="#"> Login </a></span>
