// $gacl->add_object('sensitivities', 'Normal', 'normal', 10, 0, 'ACO'); // xl('Normal') $gacl->add_object('sensitivities', 'High', 'high', 20, 0, 'ACO'); // xl('High') // Create ACO for placeholder. // $gacl->add_object('placeholder', 'Placeholder (Maintains empty ACLs)', 'filler', 10, 0, 'ACO'); // xl('Placeholder (Maintains empty ACLs)') // Create ACO for nationnotes. // $gacl->add_object('nationnotes', 'Nation Notes Configure', 'nn_configure', 10, 0, 'ACO'); // xl('Nation Notes Configure') // Create ARO groups. // $users = $gacl->add_group('users', 'OpenEMR Users', 0, 'ARO'); // xl('OpenEMR Users') $admin = $gacl->add_group('admin', 'Administrators', $users, 'ARO'); // xl('Administrators') $clin = $gacl->add_group('clin', 'Clinicians', $users, 'ARO'); // xl('Clinicians') $doc = $gacl->add_group('doc', 'Physicians', $users, 'ARO'); // xl('Physicians') $front = $gacl->add_group('front', 'Front Office', $users, 'ARO'); // xl('Front Office') $back = $gacl->add_group('back', 'Accounting', $users, 'ARO'); // xl('Accounting') $breakglass = $gacl->add_group('breakglass', 'Emergency Login', $users, 'ARO'); // xl('Emergency Login') // Create a Users section for the AROs (humans). //
* First get the Passengers Groupid. */ $result = $gacl_api->get_group_id('passengers'); if ($outputDebug == TRUE) { if ($result !== FALSE) { echo "Got the groupid for Passengers!<br>\n"; } else { echo "Error failed getting the groupid for passengers.<br>\n"; } } $passengersGroupID = $result; unset($result); /* * We add the Jedi Group and use the Passengers groupid for the parent. */ $result = $gacl_api->add_group('jedi', 'Jedi', $passengersGroupID, 'aro'); if ($outputDebug == TRUE) { if ($result !== FALSE) { echo "The Jedi ARO Group has been added to the Passengers Successfully. <br>\n"; } else { echo "Error creating the Jedi ARO Group.<br>\n"; } } // Get the Jedi Group Id that has been returned from: add_group. $jediGroupID = $result; unset($result); /* * The tree now looks like: * * Millennium Falcon Passengers Group * |-Crew Group [ALLOW: ALL]
<?php global $conf; global $global; define('APPROOT', realpath(dirname(__FILE__) . '/../') . '/'); require_once APPROOT . 'conf/sysconf.php'; include APPROOT . '3rd/phpgacl/gacl.class.php'; include APPROOT . '3rd/phpgacl/gacl_api.class.php'; include APPROOT . 'inc/handler_db.inc'; # $gacl= new gacl(array('db_host'=> $conf['db_host'] , 'db_name'=> $conf['db_name'] , 'db_user'=> $conf['db_user'], 'db_password'=> $conf['db_pass'] , 'db_table_prefix'=>'gacl_' , 'db_type'=> 'mysql' )); # $gacl_api = new gacl_api(array('db_host'=> $conf['db_host'] , 'db_name'=> $conf['db_name'] , 'db_user'=> $conf['db_user'], 'db_password'=> $conf['db_pass'] , 'db_table_prefix'=>'gacl_' , 'db_type'=> 'mysql' )); $gacl = new gacl(array('db' => $global['db'], 'db_table_prefix' => 'gacl_')); $gacl_api = new gacl_api(array('db' => $global['db'], 'db_table_prefix' => 'gacl_')); $gacl_api->clear_database(); // ARO // $root_aro = $gacl_api->add_group('root', 'OpenEvSysUser', 0, 'ARO'); $user_group = $gacl_api->add_group('users', 'Users', $root_aro, 'ARO'); $g_user_admin = $gacl_api->add_group('admin', 'Admin', $user_group, ' ARO'); $g_user_analyst = $gacl_api->add_group('analyst', 'Analyst', $user_group, ' ARO'); $g_user_data_entry = $gacl_api->add_group('data_entry', 'Data Entry', $user_group, ' ARO'); $ws_group = $gacl_api->add_group('ws', 'WS', $root_aro, 'ARO'); // ARO sections $gacl_api->add_object_section('Users', 'users', 1, 0, 'ARO'); //ARO values $gacl_api->add_object('users', 'Admin', 'admin', 1, 0, 'ARO'); //ACO // //ACO sections $gacl_api->add_object_section('CRUD', 'crud', 1, 0, 'ACO'); $gacl_api->add_object_section('Access', 'access', 1, 0, 'ACO'); //ACO values $gacl_api->add_object('access', 'Access', 'access', 1, 0, 'ACO');
} unset($result); /* * The Millennium Falcon has now got all its passengers. * Now we need to add the groups: * * Millennium Falcon Passengers Group * |-Crew Group * '-Passengers Group * * add_group($value, $name, $parent_id, $group_type); */ /* * So working from the Top lets add the Millennium Falcon Passengers Group */ $result = $gacl_api->add_group('millennium_falcon_passengers', 'Millennium Falcon Passengers', 0, 'aro'); if ($outputDebug == TRUE) { if ($result !== FALSE) { echo "Created our Millennium Falcon Passengers ARO Group Successfully. <br>\n"; } else { echo "Error Millennium Falcon Passengers ARO Group.<br>\n"; } } $millenniumFalconPassengersGroupID = $result; unset($result); /* * Next its the Crew Group */ $result = $gacl_api->add_group('crew', 'Crew', $millenniumFalconPassengersGroupID, 'aro'); if ($outputDebug == TRUE) { if ($result !== FALSE) {
public function act_test() { include APPROOT . '3rd/phpgacl/gacl_api.class.php'; // $gacl_api = new gacl_api(array('db'=>$global['db'] , 'db_table_prefix'=>'gacl_')); $gacl_api = new gacl_api(); $gacl_api->clear_database(); // ARO // $root_aro = $gacl_api->add_group('root', 'OpenEvSysUser', 0, 'ARO'); $user_group = $gacl_api->add_group('users', 'Users', $root_aro, 'ARO'); $g_user_admin = $gacl_api->add_group('admin', 'Admin', $user_group, ' ARO'); $g_user_analyst = $gacl_api->add_group('analyst', 'Analyst', $user_group, ' ARO'); $g_user_data_entry = $gacl_api->add_group('data_entry', 'Data Entry', $user_group, ' ARO'); $ws_group = $gacl_api->add_group('ws', 'WS', $root_aro, 'ARO'); // ARO sections $gacl_api->add_object_section('Users', 'users', 1, 0, 'ARO'); //ARO values $gacl_api->add_object('users', 'Admin', 'admin', 1, 0, 'ARO'); $gacl_api->add_object('users', 'User1', 'user1', 2, 0, 'ARO'); $gacl_api->add_object('users', 'User2', 'user2', 3, 0, 'ARO'); $gacl_api->add_object('users', 'User3', 'user3', 4, 0, 'ARO'); //ACO // //ACO sections $gacl_api->add_object_section('CRUD', 'crud', 1, 0, 'ACO'); $gacl_api->add_object_section('Access', 'access', 1, 0, 'ACO'); //ACO values $gacl_api->add_object('access', 'Access', 'access', 1, 0, 'ACO'); $gacl_api->add_object('crud', 'Create', 'create', 1, 0, 'ACO'); $gacl_api->add_object('crud', 'Read', 'read', 2, 0, 'ACO'); $gacl_api->add_object('crud', 'Update', 'update', 3, 0, 'ACO'); $gacl_api->add_object('crud', 'Delete', 'delete', 4, 0, 'ACO'); // AXO // $root_axo = $gacl_api->add_group('root', 'root', 0, 'AXO'); $gacl_api->add_group('modules', 'Modules', $root_axo, 'AXO'); $entity_group = $gacl_api->add_group('entities', 'Entities', $root_axo, 'AXO'); $g_entities_primary = $gacl_api->add_group('primary', 'Primary', $entity_group, 'AXO'); $g_entities_linking = $gacl_api->add_group('linking', 'Linking', $entity_group, 'AXO'); $g_entities_additional = $gacl_api->add_group('additional', 'Additional Details', $entity_group, 'AXO'); $g_events = $gacl_api->add_group('events', 'Events', $root_axo, 'AXO'); // AXO sections // $gacl_api->add_object_section('Modules', 'modules', 1, 0, 'AXO'); $gacl_api->add_object_section('Entities', 'entities', 2, 0, 'AXO'); $gacl_api->add_object_section('Events', 'events', 3, 0, 'AXO'); // AXO values $gacl_api->add_object('modules', 'Event', 'events', 1, 0, 'AXO'); $gacl_api->add_object('modules', 'Person', 'person', 2, 0, 'AXO'); $gacl_api->add_object('modules', 'Documents', 'docu', 3, 0, 'AXO'); $gacl_api->add_object('modules', 'Home', 'home', 4, 0, 'AXO'); $gacl_api->add_object('modules', 'Help', 'help', 5, 0, 'AXO'); $gacl_api->add_object('modules', 'Admin', 'admin', 6, 0, 'AXO'); $gacl_api->add_object('modules', 'Analysis', 'analysis', 7, 0, 'AXO'); $gacl_api->add_object('entities', 'Event', 'event', 1, 0, 'AXO'); $gacl_api->add_object('entities', 'Person', 'person', 2, 0, 'AXO'); $gacl_api->add_object('entities', 'Document', 'document', 3, 0, 'AXO'); $gacl_api->add_object('entities', 'Information', 'information', 4, 0, 'AXO'); $gacl_api->add_object('entities', 'Involvement', 'involvement', 5, 0, 'AXO'); $gacl_api->add_object('entities', 'Intervention', 'intervention', 6, 0, 'AXO'); $gacl_api->add_object('entities', 'Act', 'act', 7, 0, 'AXO'); $gacl_api->add_object('entities', 'Chain Of Events', 'chain_of_events', 8, 0, 'AXO'); $gacl_api->add_object('entities', 'Biographic Details', 'biographic_details', 9, 0, 'AXO'); // Add Groups $gacl_api->add_group_object($g_entities_primary, 'entities', 'event', 'AXO'); $gacl_api->add_group_object($g_entities_primary, 'entities', 'person', 'AXO'); $gacl_api->add_group_object($g_entities_primary, 'entities', 'document', 'AXO'); $gacl_api->add_group_object($g_entities_linking, 'entities', 'act', 'AXO'); $gacl_api->add_group_object($g_entities_linking, 'entities', 'information', 'AXO'); $gacl_api->add_group_object($g_entities_linking, 'entities', 'intervention', 'AXO'); $gacl_api->add_group_object($g_entities_linking, 'entities', 'involvement', 'AXO'); $gacl_api->add_group_object($g_entities_linking, 'entities', 'chain_of_events', 'AXO'); $gacl_api->add_group_object($g_entities_additional, 'entities', 'biographic_details', 'AXO'); $gacl_api->add_group_object($g_user_admin, 'users', 'admin', 'ARO'); $gacl_api->add_group_object($g_user_data_entry, 'users', 'user1', 'ARO'); $gacl_api->add_group_object($g_user_analyst, 'users', 'user2', 'ARO'); $gacl_api->add_group_object($g_user_data_entry, 'users', 'user3', 'ARO'); // permissions $gacl_api->add_acl(array('access' => array('access')), null, array($root_aro), array('modules' => array('home', 'help'))); $gacl_api->add_acl(array('access' => array('access')), null, array($g_user_admin), array('modules' => array('events', 'person', 'docu', 'analysis', 'admin'))); $gacl_api->add_acl(array('access' => array('access')), null, array($g_user_analyst), array('modules' => array('analysis'))); $gacl_api->add_acl(array('access' => array('access')), null, array($g_user_data_entry), array('modules' => array('person', 'events', 'docu'))); $gacl_api->add_acl(array('crud' => array('create', 'read', 'update', 'delete')), null, array($root_aro), array('entities' => array('person', 'event', 'act', 'information', 'intervention', 'involvement', 'chain_of_events', 'biographic_details'))); $gacl_api->add_acl(array('crud' => array('create', 'read', 'update', 'delete')), null, array($root_aro), null, array($g_events)); }
$gacl_api->add_object(ACL_DEFAULT_DOMAIN_SECTION, ACL_DEFAULT_DOMAIN_SENSORS, ACL_DEFAULT_DOMAIN_SENSORS, 4, 0, 'ACO'); /* Menu access */ $menu_count = 10; $submenu_count = 1; echo _("Setting up Menu access") . "...<br/>"; foreach ($ACL_MAIN_MENU as $menu_name => $menu) { $gacl_api->add_object_section($menu_name, $menu_name, $menu_count++, 0, 'ACO'); foreach ($menu as $submenu_name => $submenu) { echo " * " . $submenu["name"] . " ...<br/>"; $gacl_api->add_object($menu_name, $submenu_name, $submenu_name, $submenu_count++, 0, "ACO"); } $submenu_count = 1; } /* Groups */ echo "<br/>Setting up default admin user...<br/><br/>"; $groups['ossim'] = $gacl_api->add_group('ossim', 'OSSIM', 0, 'ARO'); $groups['users'] = $gacl_api->add_group(ACL_DEFAULT_USER_GROUP, 'Users', $groups['ossim'], 'ARO'); /* Default User */ $gacl_api->add_object_section('Users', ACL_DEFAULT_USER_SECTION, 1, 0, 'ARO'); $gacl_api->add_object(ACL_DEFAULT_USER_SECTION, 'Admin', ACL_DEFAULT_OSSIM_ADMIN, 1, 0, 'ARO'); $gacl_api->add_acl(array(ACL_DEFAULT_DOMAIN_SECTION => array(ACL_DEFAULT_DOMAIN_ALL)), array(ACL_DEFAULT_USER_SECTION => array(ACL_DEFAULT_OSSIM_ADMIN))); // The upgrade system at include/classes/Upgrade_base.inc includes // that file like: include 'http://foo/setup/ossim_acl.php' // In this case, there is not HTTP_REFERER and btw we don't want to show // this "go back" link. if (isset($_SERVER['HTTP_REFERER'])) { ?> <center> <form><input type="button" class="button" onclick="document.location.href='<?php echo $_SERVER['HTTP_REFERER']; ?>
for ($i = 0; $i < count($arr_id); $i++) { $usergroup->id = $arr_id[$i]; $usergroup->deleteusergroup(); $id = $gacl_api->get_group_id($group->id, $group->id, 'ARO'); $gacl_api->del_group($id, true, 'ARO'); } } else { $usergroup->name = $_POST['name']; $usergroup->description = $_POST['description']; $aco_array = array(); $aco_array['system'] = array(); $aco_array['system'] = $_POST['permission']; if ($op == 'creategroup') { $usergroup->insertusergroup(); $id = $usergroup->getInsert_ID(); $group_id = $gacl_api->add_group($id, $id, 10, 'aro'); $arr_group = array(); $arr_group[] = $group_id; $gacl_api->add_acl($aco_array, NULL, $arr_group, NULL, NULL, true, true, NULL, NULL); } else { $usergroup->id = $_POST['group_id']; $usergroup->updateusergroup(); $group_id = $gacl_api->get_group_id($usergroup->id, $usergroup->id, 'aro'); $arr_group[] = $group_id; $arr_acl = $gacl_api->search_acl('system', false, false, false, $usergroup->id, false, false, false, false); // print_r($arr_acl); if (count($arr_acl)) { $gacl_api->edit_acl($arr_acl[0], $aco_array, NULL, $arr_group); } else { $gacl_api->add_acl($aco_array, NULL, $arr_group); }
require_once APPROOT . '3rd/Zend/ ' . $class_name . '.php'; } if (file_exists(APPROOT . 'data/' . $class_name . '.php')) { require_once APPROOT . 'data/' . $class_name . '.php'; } } } spl_autoload_register(array('AutoLoadClass', '__autoload')); //include(APPROOT.'3rd/phpgacl/gacl.class.php'); include APPROOT . '3rd/phpgacl/gacl_api.class.php'; include APPROOT . 'inc/handler_db.inc'; # $gacl= new gacl(array('db_host'=> $conf['db_host'] , 'db_name'=> $conf['db_name'] , 'db_user'=> $conf['db_user'], 'db_password'=> $conf['db_pass'] , 'db_table_prefix'=>'gacl_' , 'db_type'=> 'mysql' )); # $gacl_api = new gacl_api(array('db_host'=> $conf['db_host'] , 'db_name'=> $conf['db_name'] , 'db_user'=> $conf['db_user'], 'db_password'=> $conf['db_pass'] , 'db_table_prefix'=>'gacl_' , 'db_type'=> 'mysql' )); $gacl = new gacl(array('db' => $global['db'], 'db_table_prefix' => 'gacl_')); $gacl_api = new gacl_api(array('db' => $global['db'], 'db_table_prefix' => 'gacl_')); $root_aro = $gacl_api->get_group_id('root', 'OpenEvSysUser', 'ARO'); //var_dump('root_aro' , $root_aro); exit(0); $root_axo = $gacl_api->get_group_id('root', 'root', 'AXO'); //var_dump($root_axo); $g_person = $gacl_api->add_group('person', 'Person', $root_axo, 'AXO'); $gacl_api->add_object_section('Person', 'person', 3, 0, 'AXO'); $gacl_api->add_acl(array('access' => array('access')), null, array($root_aro), null, array($g_person)); $persons = Browse::getPersonConf(); //var_dump($persons); exit(0); foreach ($persons as $person) { acl_add_person($person['person_record_number']); //if event is marked as confidential limit it to this user and admin. if ($person['confidentiality'] == 'y') { acl_set_person_permissions($person['person_record_number']); } }
public function act_acl() { global $global; include_once APPROOT . '3rd/phpgacl/gacl_api.class.php'; $gacl = new gacl_api(array('db' => $global['db'], 'db_table_prefix' => 'gacl_')); $parent_id = $gacl->get_group_id('users', 'Users', 'ARO'); if (isset($_POST['add_role']) && isset($_POST['role_name'])) { $value = str_ireplace(" ", "_", $_POST['role_name']); $gacl->add_group($value, $_POST['role_name'], $parent_id, 'ARO'); } $this->modules = array('admin' => _t('ADMIN'), 'analysis' => _t('ANALYSIS'), 'events' => _t('EVENTS'), 'person' => _t('PERSON'), 'docu' => _t('DOCUMENTS'), 'dashboard' => _t('Dashboard')); $modules = $gacl->get_objects('modules', '0', 'AXO'); //add the user to acl list $group_id = $gacl->get_group_id('users', 'Users', 'ARO'); $roles = $gacl->get_group_children($group_id, 'ARO', 'NO_RECURSE'); foreach ($roles as $role_id) { $role = $gacl->get_group_data($role_id, 'ARO'); $groups[$role_id] = $role[3]; $roles_user = $gacl->get_group_children($role_id, 'ARO', 'NO_RECURSE'); foreach ($roles_user as $role_id_user) { $role_user = $gacl->get_group_data($role_id_user, 'ARO'); $groups[$role_id_user] = $role_user[3]; } } $this->roles = $groups; if (isset($_POST['submit'])) { foreach ($groups as $id => $role) { if ($role == 'Admin') { continue; } $axo_array['modules'] = array(); foreach ($this->modules as $key => $module) { if (isset($_POST[$key . '_' . $id])) { array_push($axo_array['modules'], $key); } } $acl_ids = $gacl->search_acl(FALSE, FALSE, FALSE, FALSE, $role, FALSE, FALSE, FALSE, FALSE); $gacl->add_acl(array('access' => array('access')), NULL, array($id), $axo_array); //delete other acl foreach ($acl_ids as $acl_id) { $gacl->del_acl($acl_id); } } } foreach ($groups as $id => $role) { $acl_ids = $gacl->search_acl(FALSE, FALSE, FALSE, FALSE, $role, FALSE, 'modules', FALSE, FALSE); foreach ($acl_ids as $acl_id) { $acl = $gacl->get_acl($acl_id); $select = $acl['axo']['modules']; if (is_array($select)) { foreach ($select as $mod) { $this->selected[$mod . '_' . $id] = 'checked="true"'; } } } } }
function commit_update() { //set phpgacl options $gacl_options = array('smarty_dir' => 'phpgacl/admin/smarty/libs', 'smarty_template_dir' => 'phpgacl/admin/templates', 'smarty_compile_dir' => AMP_SYSTEM_CACHE_PATH, 'db_type' => AMP_DB_TYPE, 'db_host' => AMP_DB_HOST, 'db_user' => AMP_DB_USER, 'db_password' => AMP_DB_PASS, 'db_name' => AMP_DB_NAME, 'db_table_prefix' => 'acl_'); if (!defined('AMP_SYSTEM_PERMISSIONS_LOADING')) { define('AMP_SYSTEM_PERMISSIONS_LOADING', 1); } require_once 'phpgacl/gacl_api.class.php'; $gacl = new gacl_api($gacl_options); //$gacl = AMP_acl( true ); $this->_upgrade_database('acl_'); $gacl->clear_database(); //ACOs $aco_objects = array('view' => 'View', 'access' => 'Access', 'create' => 'Create', 'save' => 'Save', 'submit' => 'Submit', 'publish' => 'Publish', 'delete' => 'Delete'); $aco_sections = array('commands' => 'Commands'); $aco_complete_set = array('commands' => $aco_objects); foreach ($aco_sections as $value => $name) { $aco_section_id[$value] = $gacl->add_object_section($name, $value, 0, 0, 'ACO'); foreach ($aco_objects as $aco_value => $aco_name) { $aco_id[$aco_value] = $gacl->add_object($value, $aco_name, $aco_value, 0, 0, 'ACO'); } } // AROs $client_root_id = $gacl->add_group('clients', 'Clients', 0, 'ARO'); $admin_group = $gacl->add_group('admins', 'Admins', $client_root_id, 'ARO'); $users = AMP_lookup('admins'); $aro_sections = array('users' => 'Users'); foreach ($users as $id => $name) { $aro_objects['user_' . $id] = $name; } foreach ($aro_sections as $value => $name) { $gacl->add_object_section($name, $value, 0, 0, 'ARO'); } foreach ($aro_objects as $value => $name) { $aro_object_ids[$value] = $gacl->add_object('users', $name, $value, 0, 0, 'ARO'); $gacl->add_group_object($admin_group, 'users', $value, 'ARO'); } //AXOs $system_root = $gacl->add_group('system', 'AMP', 0, 'AXO'); $site_root = $gacl->add_group('site', AMP_SITE_NAME, $system_root, 'AXO'); $section_root = $gacl->add_object_section(AMP_SITE_NAME . ' Content', 'sections', 0, 0, 'AXO'); $section_order_ref = AMP_lookup('sectionMap'); require_once 'AMP/Content/Map/Complete.php'; $map = AMP_Content_Map_Complete::instance(); $map_result = $map->selectOptions(); $section_order_ref = $map_result; $section_names_source = new AMPContentLookup_Sections(); //AMP_lookup( 'sections' ); $section_parents_source = new AMPContentLookup_SectionParents(); AMP_lookup('sectionParents'); $section_names = $section_names_source->dataset; $section_parents = $section_parents_source->dataset; if ($section_order_ref && $section_names) { $sections = array_combine_key(array_keys($section_order_ref), $section_names); $sections = array(AMP_CONTENT_MAP_ROOT_SECTION => AMP_SITE_NAME) + $sections; } else { $sections = array(AMP_CONTENT_MAP_ROOT_SECTION => AMP_SITE_NAME); } $axo_group_ids = array(); foreach ($sections as $id => $name) { $parent_group_id = $site_root; $parent_id_content = isset($section_parents[$id]) ? $section_parents[$id] : AMP_CONTENT_MAP_ROOT_SECTION; if (isset($axo_group_ids[$parent_id_content])) { $parent_group_id = $axo_group_ids[$parent_id_content]; } $parent_group_id = $gacl->add_group('section_' . $id, $name, $parent_group_id, 'AXO'); $axo_group_ids['section'][$id] = $parent_group_id; $axo_object_ids[$id] = $gacl->add_object('sections', $name, 'section_' . $id, 0, 0, 'AXO'); $gacl->add_group_object($parent_group_id, 'sections', 'section_' . $id, 'AXO'); } //ACLs $group_ids = AMP_lookup('permissionGroups'); foreach ($group_ids as $group_id => $group_name) { $acl_group_id = $gacl->add_group('group_' . $group_id, $group_name, $admin_group, 'ARO'); $allowed_sections_lookup = new AMPSystemLookup_SectionsByGroup($group_id); //AMP_lookup( 'sectionsByGroup', $group_id ); $allowed_sections = $allowed_sections_lookup->dataset; $affected_users = AMP_lookup('usersByGroup', $group_id); if (!$affected_users) { continue; } foreach ($affected_users as $user_id => $user_name) { $gacl->add_group_object($acl_group_id, 'users', 'user_' . $user_id, 'ARO'); } if (!$allowed_sections) { $allow_group = array($site_root); } else { $allow_group = array_combine_key(array_keys($allowed_sections), $axo_group_ids['section']); } $acl_id = $gacl->add_acl($aco_complete_set, array(), array($acl_group_id), array(), $allow_group, true, true); } $reg =& AMP_Registry::instance(); $reg->setEntry(AMP_REGISTRY_PERMISSION_MANAGER, $gacl); $this->message('Permissions Update Successful'); AMP_cacheFlush(AMP_CACHE_TOKEN_LOOKUP); return true; }