function getAdminlvl($token, $bdd) { if (!empty($token)) { $tokenManager = new TokenManager($bdd); if ($tokenbdd = $tokenManager->get($token, 'token')) { if ($tokenbdd->userip() == $_SERVER['REMOTE_ADDR']) { $userId = $tokenbdd->userid(); $userRightsManager = new UserRightsManager($bdd); $userRights = $userRightsManager->get($userId, 'userid'); return $userRights; } else { header('Location: ?controler=user&action=logoutForced'); exit; } } } else { header('Location: ?controler=user&action=logoutForced'); exit; } }
$userRights = new UserRights($_POST); $userRightsManager = new UserRightsManager($bdd); if ($userRightsManager->get($_POST['userid'], 'userid')) { $userRights = $userRightsManager->get($_POST['userid'], 'userid'); $userRights->setAdminlvl($_POST['adminlvl']); $userRightsManager->update($userRights); header('Location: ?controler=user&action=list'); } else { $userRightsManager->add($userRights); header('Location: ?controler=user&action=list'); } } elseif (!empty($_GET['userid'])) { $userManager = new UserManager($bdd); $userRightsManager = new UserRightsManager($bdd); $user = $userManager->get($_GET['userid']); $userRights = $userRightsManager->get($_GET['userid'], 'userid'); ob_start(); require_once 'view/user/useradminlvl.php'; $content = ob_get_contents(); ob_end_clean(); require_once 'view/layout/layout.php'; } break; case 'logoutForced': $_SESSION = array(); $userError[] = 'token invalide : veuillez vous reconnecter'; ob_start(); require_once 'view/user/logoutforced.php'; $content = ob_get_contents(); ob_end_clean(); require_once 'view/layout/layout.php';