function getAdminlvl($token, $bdd)
{
if (!empty($token)) {
$tokenManager = new TokenManager($bdd);
if ($tokenbdd = $tokenManager->get($token, 'token')) {
if ($tokenbdd->userip() == $_SERVER['REMOTE_ADDR']) {
$userId = $tokenbdd->userid();
$userRightsManager = new UserRightsManager($bdd);
$userRights = $userRightsManager->get($userId, 'userid');
return $userRights;
} else {
header('Location: ?controler=user&action=logoutForced');
exit;
}
}
} else {
header('Location: ?controler=user&action=logoutForced');
exit;
}
}
require_once 'lib/checkRights.php';
if (!empty($_POST['userid']) && !empty($_POST['adminlvl'])) {
$userRights = new UserRights($_POST);
$userRightsManager = new UserRightsManager($bdd);
if ($userRightsManager->get($_POST['userid'], 'userid')) {
$userRights = $userRightsManager->get($_POST['userid'], 'userid');
$userRights->setAdminlvl($_POST['adminlvl']);
$userRightsManager->update($userRights);
header('Location: ?controler=user&action=list');
} else {
$userRightsManager->add($userRights);
header('Location: ?controler=user&action=list');
}
} elseif (!empty($_GET['userid'])) {
$userManager = new UserManager($bdd);
$userRightsManager = new UserRightsManager($bdd);
$user = $userManager->get($_GET['userid']);
$userRights = $userRightsManager->get($_GET['userid'], 'userid');
ob_start();
require_once 'view/user/useradminlvl.php';
$content = ob_get_contents();
ob_end_clean();
require_once 'view/layout/layout.php';
}
break;
case 'logoutForced':
$_SESSION = array();
$userError[] = 'token invalide : veuillez vous reconnecter';
ob_start();
require_once 'view/user/logoutforced.php';
$content = ob_get_contents();
$tokenManager->createTable();
/*redirection*/
header('Location: ?controler=install&action=firstuser');
break;
case 'firstuser':
$userManager = new UserManager($bdd);
if ($userManager->count() > 0) {
header('Location: ?controler=index');
} else {
if (isset($_POST['login']) && isset($_POST['pass'])) {
$_POST['pass'] = sha1($_POST['pass']);
$userManager = new UserManager($bdd);
$user = new User($_POST);
$userManager->add($user);
$user = $userManager->get($_POST['login'], 'login');
$userRights = new UserRights(array('userid' => $user->id(), 'adminlvl' => '4'));
$userRightsManager = new UserRightsManager($bdd);
$userRightsManager->add($userRights);
header('Location: ?controler=user&action=list');
} else {
ob_start();
require_once 'view/user/addfirstuser.php';
$content = ob_get_contents();
ob_end_clean();
require_once 'view/layout/layout.php';
}
}
break;
default:
break;
}
