/** * Gives all available survey permissions for a certain survey to a user * * @param mixed $iUserID The User ID * @param mixed $iSurveyID The Survey ID */ function GiveAllSurveyPermissions($iUserID, $iSurveyID) { $aPermissions = aGetBaseSurveyPermissions(); $aPermissionsToSet = array(); foreach ($aPermissions as $sPermissionName => $aPermissionDetails) { foreach ($aPermissionDetails as $sPermissionDetailKey => $sPermissionDetailValue) { if (in_array($sPermissionDetailKey, array('create', 'read', 'update', 'delete', 'import', 'export')) && $sPermissionDetailValue == true) { $aPermissionsToSet[$sPermissionName][$sPermissionDetailKey] = 1; } } } SetSurveyPermissions($iUserID, $iSurveyID, $aPermissionsToSet); }
} elseif ($action == "surveyrights") { $addsummary = "<div class='header ui-widget-header'>" . $clang->gT("Edit survey permissions") . "</div>\n"; $addsummary .= "<div class='messagebox ui-corner-all'>\n"; if (isset($postuserid)) { $query = "SELECT sid, owner_id FROM " . db_table_name('surveys') . " WHERE sid = {$surveyid}"; if ($_SESSION['USER_RIGHT_SUPERADMIN'] != 1) { $query .= " AND owner_id != {$postuserid} AND owner_id = " . $_SESSION['loginID']; } } else { $sQuery = "SELECT owner_id FROM " . db_table_name('surveys') . " WHERE sid = {$surveyid}"; if ($_SESSION['USER_RIGHT_SUPERADMIN'] != 1) { $query .= " AND owner_id = " . $_SESSION['loginID']; } $iOwnerID = $connect->GetOne($sQuery); } $aBaseSurveyPermissions = aGetBaseSurveyPermissions(); $aPermissions = array(); foreach ($aBaseSurveyPermissions as $sPermissionKey => $aCRUDPermissions) { foreach ($aCRUDPermissions as $sCRUDKey => $CRUDValue) { if (!in_array($sCRUDKey, array('create', 'read', 'update', 'delete', 'import', 'export'))) { continue; } if ($CRUDValue) { if (isset($_POST["perm_{$sPermissionKey}_{$sCRUDKey}"])) { $aPermissions[$sPermissionKey][$sCRUDKey] = 1; } else { $aPermissions[$sPermissionKey][$sCRUDKey] = 0; } } } }