centos / artwork-archive

Clone
Source Code
GIT

Blame Identity/Models/Html/phpBB/3.0.4/includes/acp/acp_permission_roles.php

master
  1.   d6e8d8bf7a746faee92c00ae7c8f971b76c393f4
  2.   Identity
  3.   Models
  4.   Html
  5.   phpBB
  6.   3.0.4
  7.   includes
  8.   acp
  9.   acp_permission_roles.php
Blob History Raw
d6e8d8
d6e8d8 
/**
d6e8d8 
*
d6e8d8 
* @package acp
d6e8d8 
* @version $Id: acp_permission_roles.php 8479 2008-03-29 00:22:48Z naderman $
d6e8d8 
* @copyright (c) 2005 phpBB Group
d6e8d8 
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
d6e8d8 
*
d6e8d8 
*/
d6e8d8
d6e8d8 
/**
d6e8d8 
* @ignore
d6e8d8 
*/
d6e8d8 
if (!defined('IN_PHPBB'))
d6e8d8 
{
d6e8d8 
	exit;
d6e8d8 
}
d6e8d8
d6e8d8 
/**
d6e8d8 
* @package acp
d6e8d8 
*/
d6e8d8 
class acp_permission_roles
d6e8d8 
{
d6e8d8 
	var $u_action;
d6e8d8
d6e8d8 
	function main($id, $mode)
d6e8d8 
	{
d6e8d8 
		global $db, $user, $auth, $template, $cache;
d6e8d8 
		global $config, $phpbb_root_path, $phpbb_admin_path, $phpEx;
d6e8d8
d6e8d8 
		include_once($phpbb_root_path . 'includes/functions_user.' . $phpEx);
d6e8d8 
		include_once($phpbb_root_path . 'includes/acp/auth.' . $phpEx);
d6e8d8
d6e8d8 
		$auth_admin = new auth_admin();
d6e8d8
d6e8d8 
		$user->add_lang('acp/permissions');
d6e8d8 
		add_permission_language();
d6e8d8
d6e8d8 
		$this->tpl_name = 'acp_permission_roles';
d6e8d8
d6e8d8 
		$submit = (isset($_POST['submit'])) ? true : false;
d6e8d8 
		$role_id = request_var('role_id', 0);
d6e8d8 
		$action = request_var('action', '');
d6e8d8 
		$action = (isset($_POST['add'])) ? 'add' : $action;
d6e8d8
d6e8d8 
		$form_name = 'acp_permissions';
d6e8d8 
		add_form_key($form_name);
d6e8d8
d6e8d8 
		switch ($mode)
d6e8d8 
		{
d6e8d8 
			case 'admin_roles':
d6e8d8 
				$permission_type = 'a_';
d6e8d8 
				$this->page_title = 'ACP_ADMIN_ROLES';
d6e8d8 
			break;
d6e8d8
d6e8d8 
			case 'user_roles':
d6e8d8 
				$permission_type = 'u_';
d6e8d8 
				$this->page_title = 'ACP_USER_ROLES';
d6e8d8 
			break;
d6e8d8
d6e8d8 
			case 'mod_roles':
d6e8d8 
				$permission_type = 'm_';
d6e8d8 
				$this->page_title = 'ACP_MOD_ROLES';
d6e8d8 
			break;
d6e8d8
d6e8d8 
			case 'forum_roles':
d6e8d8 
				$permission_type = 'f_';
d6e8d8 
				$this->page_title = 'ACP_FORUM_ROLES';
d6e8d8 
			break;
d6e8d8
d6e8d8 
			default:
d6e8d8 
				trigger_error('NO_MODE', E_USER_ERROR);
d6e8d8 
			break;
d6e8d8 
		}
d6e8d8
d6e8d8 
		$template->assign_vars(array(
d6e8d8 
			'L_TITLE'		=> $user->lang[$this->page_title],
d6e8d8 
			'L_EXPLAIN'		=> $user->lang[$this->page_title . '_EXPLAIN'])
d6e8d8 
		);
d6e8d8
d6e8d8 
		// Take action... admin submitted something
d6e8d8 
		if ($submit || $action == 'remove')
d6e8d8 
		{
d6e8d8 
			switch ($action)
d6e8d8 
			{
d6e8d8 
				case 'remove':
d6e8d8
d6e8d8 
					if (!$role_id)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					$sql = 'SELECT *
d6e8d8 
						FROM ' . ACL_ROLES_TABLE . '
d6e8d8 
						WHERE role_id = ' . $role_id;
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8 
					$role_row = $db->sql_fetchrow($result);
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8
d6e8d8 
					if (!$role_row)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					if (confirm_box(true))
d6e8d8 
					{
d6e8d8 
						$this->remove_role($role_id, $permission_type);
d6e8d8
d6e8d8 
						$role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name'];
d6e8d8 
						add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_REMOVED', $role_name);
d6e8d8 
						trigger_error($user->lang['ROLE_DELETED'] . adm_back_link($this->u_action));
d6e8d8 
					}
d6e8d8 
					else
d6e8d8 
					{
d6e8d8 
						confirm_box(false, 'DELETE_ROLE', build_hidden_fields(array(
d6e8d8 
							'i'			=> $id,
d6e8d8 
							'mode'		=> $mode,
d6e8d8 
							'role_id'	=> $role_id,
d6e8d8 
							'action'	=> $action,
d6e8d8 
						)));
d6e8d8 
					}
d6e8d8
d6e8d8 
				break;
d6e8d8
d6e8d8 
				case 'edit':
d6e8d8 
					if (!$role_id)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					// Get role we edit
d6e8d8 
					$sql = 'SELECT *
d6e8d8 
						FROM ' . ACL_ROLES_TABLE . '
d6e8d8 
						WHERE role_id = ' . $role_id;
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8 
					$role_row = $db->sql_fetchrow($result);
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8
d6e8d8 
					if (!$role_row)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
				// no break;
d6e8d8
d6e8d8 
				case 'add':
d6e8d8
d6e8d8 
					if (!check_form_key($form_name))
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['FORM_INVALID']. adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					$role_name = utf8_normalize_nfc(request_var('role_name', '', true));
d6e8d8 
					$role_description = utf8_normalize_nfc(request_var('role_description', '', true));
d6e8d8 
					$auth_settings = request_var('setting', array('' => 0));
d6e8d8
d6e8d8 
					if (!$role_name)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_NAME_SPECIFIED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					if (utf8_strlen($role_description) > 4000)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['ROLE_DESCRIPTION_LONG'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					// if we add/edit a role we check the name to be unique among the settings...
d6e8d8 
					$sql = 'SELECT role_id
d6e8d8 
						FROM ' . ACL_ROLES_TABLE . "
d6e8d8 
						WHERE role_type = '" . $db->sql_escape($permission_type) . "'
d6e8d8 
							AND role_name = '" . $db->sql_escape($role_name) . "'";
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8 
					$row = $db->sql_fetchrow($result);
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8
d6e8d8 
					// Make sure we only print out the error if we add the role or change it's name
d6e8d8 
					if ($row && ($mode == 'add' || ($mode == 'edit' && $role_row['role_name'] != $role_name)))
d6e8d8 
					{
d6e8d8 
						trigger_error(sprintf($user->lang['ROLE_NAME_ALREADY_EXIST'], $role_name) . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					$sql_ary = array(
d6e8d8 
						'role_name'			=> (string) $role_name,
d6e8d8 
						'role_description'	=> (string) $role_description,
d6e8d8 
						'role_type'			=> (string) $permission_type,
d6e8d8 
					);
d6e8d8
d6e8d8 
					if ($action == 'edit')
d6e8d8 
					{
d6e8d8 
						$sql = 'UPDATE ' . ACL_ROLES_TABLE . '
d6e8d8 
							SET ' . $db->sql_build_array('UPDATE', $sql_ary) . '
d6e8d8 
							WHERE role_id = ' . $role_id;
d6e8d8 
						$db->sql_query($sql);
d6e8d8 
					}
d6e8d8 
					else
d6e8d8 
					{
d6e8d8 
						// Get maximum role order for inserting a new role...
d6e8d8 
						$sql = 'SELECT MAX(role_order) as max_order
d6e8d8 
							FROM ' . ACL_ROLES_TABLE . "
d6e8d8 
							WHERE role_type = '" . $db->sql_escape($permission_type) . "'";
d6e8d8 
						$result = $db->sql_query($sql);
d6e8d8 
						$max_order = (int) $db->sql_fetchfield('max_order');
d6e8d8 
						$db->sql_freeresult($result);
d6e8d8
d6e8d8 
						$sql_ary['role_order'] = $max_order + 1;
d6e8d8
d6e8d8 
						$sql = 'INSERT INTO ' . ACL_ROLES_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary);
d6e8d8 
						$db->sql_query($sql);
d6e8d8
d6e8d8 
						$role_id = $db->sql_nextid();
d6e8d8 
					}
d6e8d8
d6e8d8 
					// Now add the auth settings
d6e8d8 
					$auth_admin->acl_set_role($role_id, $auth_settings);
d6e8d8
d6e8d8 
					$role_name = (!empty($user->lang[$role_name])) ? $user->lang[$role_name] : $role_name;
d6e8d8 
					add_log('admin', 'LOG_' . strtoupper($permission_type) . 'ROLE_' . strtoupper($action), $role_name);
d6e8d8
d6e8d8 
					trigger_error($user->lang['ROLE_' . strtoupper($action) . '_SUCCESS'] . adm_back_link($this->u_action));
d6e8d8
d6e8d8 
				break;
d6e8d8 
			}
d6e8d8 
		}
d6e8d8
d6e8d8 
		// Display screens
d6e8d8 
		switch ($action)
d6e8d8 
		{
d6e8d8 
			case 'add':
d6e8d8
d6e8d8 
				$options_from = request_var('options_from', 0);
d6e8d8
d6e8d8 
				$role_row = array(
d6e8d8 
					'role_name'			=> utf8_normalize_nfc(request_var('role_name', '', true)),
d6e8d8 
					'role_description'	=> utf8_normalize_nfc(request_var('role_description', '', true)),
d6e8d8 
					'role_type'			=> $permission_type,
d6e8d8 
				);
d6e8d8
d6e8d8 
				if ($options_from)
d6e8d8 
				{
d6e8d8 
					$sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option
d6e8d8 
						FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o
d6e8d8 
						WHERE o.auth_option_id = p.auth_option_id
d6e8d8 
							AND p.role_id = ' . $options_from . '
d6e8d8 
						ORDER BY p.auth_option_id';
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
					$auth_options = array();
d6e8d8 
					while ($row = $db->sql_fetchrow($result))
d6e8d8 
					{
d6e8d8 
						$auth_options[$row['auth_option']] = $row['auth_setting'];
d6e8d8 
					}
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8 
				}
d6e8d8 
				else
d6e8d8 
				{
d6e8d8 
					$sql = 'SELECT auth_option_id, auth_option
d6e8d8 
						FROM ' . ACL_OPTIONS_TABLE . "
d6e8d8 
						WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . "
d6e8d8 
							AND auth_option <> '{$permission_type}'
d6e8d8 
						ORDER BY auth_option_id";
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
					$auth_options = array();
d6e8d8 
					while ($row = $db->sql_fetchrow($result))
d6e8d8 
					{
d6e8d8 
						$auth_options[$row['auth_option']] = ACL_NO;
d6e8d8 
					}
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8 
				}
d6e8d8
d6e8d8 
			// no break;
d6e8d8
d6e8d8 
			case 'edit':
d6e8d8
d6e8d8 
				if ($action == 'edit')
d6e8d8 
				{
d6e8d8 
					if (!$role_id)
d6e8d8 
					{
d6e8d8 
						trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
					}
d6e8d8
d6e8d8 
					$sql = 'SELECT *
d6e8d8 
						FROM ' . ACL_ROLES_TABLE . '
d6e8d8 
						WHERE role_id = ' . $role_id;
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8 
					$role_row = $db->sql_fetchrow($result);
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8
d6e8d8 
					$sql = 'SELECT p.auth_option_id, p.auth_setting, o.auth_option
d6e8d8 
						FROM ' . ACL_ROLES_DATA_TABLE . ' p, ' . ACL_OPTIONS_TABLE . ' o
d6e8d8 
						WHERE o.auth_option_id = p.auth_option_id
d6e8d8 
							AND p.role_id = ' . $role_id . '
d6e8d8 
						ORDER BY p.auth_option_id';
d6e8d8 
					$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
					$auth_options = array();
d6e8d8 
					while ($row = $db->sql_fetchrow($result))
d6e8d8 
					{
d6e8d8 
						$auth_options[$row['auth_option']] = $row['auth_setting'];
d6e8d8 
					}
d6e8d8 
					$db->sql_freeresult($result);
d6e8d8 
				}
d6e8d8
d6e8d8 
				if (!$role_row)
d6e8d8 
				{
d6e8d8 
					trigger_error($user->lang['NO_ROLE_SELECTED'] . adm_back_link($this->u_action), E_USER_WARNING);
d6e8d8 
				}
d6e8d8
d6e8d8 
				$template->assign_vars(array(
d6e8d8 
					'S_EDIT'			=> true,
d6e8d8
d6e8d8 
					'U_ACTION'			=> $this->u_action . "&action={$action}&role_id={$role_id}",
d6e8d8 
					'U_BACK'			=> $this->u_action,
d6e8d8
d6e8d8 
					'ROLE_NAME'			=> $role_row['role_name'],
d6e8d8 
					'ROLE_DESCRIPTION'	=> $role_row['role_description'],
d6e8d8 
					'L_ACL_TYPE'		=> $user->lang['ACL_TYPE_' . strtoupper($permission_type)],
d6e8d8 
					)
d6e8d8 
				);
d6e8d8
d6e8d8 
				// We need to fill the auth options array with ACL_NO options ;)
d6e8d8 
				$sql = 'SELECT auth_option_id, auth_option
d6e8d8 
					FROM ' . ACL_OPTIONS_TABLE . "
d6e8d8 
					WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char) . "
d6e8d8 
						AND auth_option <> '{$permission_type}'
d6e8d8 
					ORDER BY auth_option_id";
d6e8d8 
				$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
				while ($row = $db->sql_fetchrow($result))
d6e8d8 
				{
d6e8d8 
					if (!isset($auth_options[$row['auth_option']]))
d6e8d8 
					{
d6e8d8 
						$auth_options[$row['auth_option']] = ACL_NO;
d6e8d8 
					}
d6e8d8 
				}
d6e8d8 
				$db->sql_freeresult($result);
d6e8d8
d6e8d8 
				// Unset global permission option
d6e8d8 
				unset($auth_options[$permission_type]);
d6e8d8
d6e8d8 
				// Display auth options
d6e8d8 
				$this->display_auth_options($auth_options);
d6e8d8
d6e8d8 
				// Get users/groups/forums using this preset...
d6e8d8 
				if ($action == 'edit')
d6e8d8 
				{
d6e8d8 
					$hold_ary = $auth_admin->get_role_mask($role_id);
d6e8d8
d6e8d8 
					if (sizeof($hold_ary))
d6e8d8 
					{
d6e8d8 
						$role_name = (!empty($user->lang[$role_row['role_name']])) ? $user->lang[$role_row['role_name']] : $role_row['role_name'];
d6e8d8
d6e8d8 
						$template->assign_vars(array(
d6e8d8 
							'S_DISPLAY_ROLE_MASK'	=> true,
d6e8d8 
							'L_ROLE_ASSIGNED_TO'	=> sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name))
d6e8d8 
						);
d6e8d8
d6e8d8 
						$auth_admin->display_role_mask($hold_ary);
d6e8d8 
					}
d6e8d8 
				}
d6e8d8
d6e8d8 
				return;
d6e8d8 
			break;
d6e8d8
d6e8d8 
			case 'move_up':
d6e8d8 
			case 'move_down':
d6e8d8
d6e8d8 
				$order = request_var('order', 0);
d6e8d8 
				$order_total = $order * 2 + (($action == 'move_up') ? -1 : 1);
d6e8d8
d6e8d8 
				$sql = 'UPDATE ' . ACL_ROLES_TABLE . '
d6e8d8 
					SET role_order = ' . $order_total . " - role_order
d6e8d8 
					WHERE role_type = '" . $db->sql_escape($permission_type) . "'
d6e8d8 
						AND role_order IN ($order, " . (($action == 'move_up') ? $order - 1 : $order + 1) . ')';
d6e8d8 
				$db->sql_query($sql);
d6e8d8
d6e8d8 
			break;
d6e8d8 
		}
d6e8d8
d6e8d8 
		// By default, check that role_order is valid and fix it if necessary
d6e8d8 
		$sql = 'SELECT role_id, role_order
d6e8d8 
			FROM ' . ACL_ROLES_TABLE . "
d6e8d8 
			WHERE role_type = '" . $db->sql_escape($permission_type) . "'
d6e8d8 
			ORDER BY role_order ASC";
d6e8d8 
		$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
		if ($row = $db->sql_fetchrow($result))
d6e8d8 
		{
d6e8d8 
			$order = 0;
d6e8d8 
			do
d6e8d8 
			{
d6e8d8 
				$order++;
d6e8d8 
				if ($row['role_order'] != $order)
d6e8d8 
				{
d6e8d8 
					$db->sql_query('UPDATE ' . ACL_ROLES_TABLE . " SET role_order = $order WHERE role_id = {$row['role_id']}");
d6e8d8 
				}
d6e8d8 
			}
d6e8d8 
			while ($row = $db->sql_fetchrow($result));
d6e8d8 
		}
d6e8d8 
		$db->sql_freeresult($result);
d6e8d8
d6e8d8 
		// Display assigned items?
d6e8d8 
		$display_item = request_var('display_item', 0);
d6e8d8
d6e8d8 
		// Select existing roles
d6e8d8 
		$sql = 'SELECT *
d6e8d8 
			FROM ' . ACL_ROLES_TABLE . "
d6e8d8 
			WHERE role_type = '" . $db->sql_escape($permission_type) . "'
d6e8d8 
			ORDER BY role_order ASC";
d6e8d8 
		$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
		$s_role_options = '';
d6e8d8 
		while ($row = $db->sql_fetchrow($result))
d6e8d8 
		{
d6e8d8 
			$role_name = (!empty($user->lang[$row['role_name']])) ? $user->lang[$row['role_name']] : $row['role_name'];
d6e8d8
d6e8d8 
			$template->assign_block_vars('roles', array(
d6e8d8 
				'ROLE_NAME'				=> $role_name,
d6e8d8 
				'ROLE_DESCRIPTION'		=> (!empty($user->lang[$row['role_description']])) ? $user->lang[$row['role_description']] : nl2br($row['role_description']),
d6e8d8
d6e8d8 
				'U_EDIT'			=> $this->u_action . '&action=edit&role_id=' . $row['role_id'],
d6e8d8 
				'U_REMOVE'			=> $this->u_action . '&action=remove&role_id=' . $row['role_id'],
d6e8d8 
				'U_MOVE_UP'			=> $this->u_action . '&action=move_up&order=' . $row['role_order'],
d6e8d8 
				'U_MOVE_DOWN'		=> $this->u_action . '&action=move_down&order=' . $row['role_order'],
d6e8d8 
				'U_DISPLAY_ITEMS'	=> ($row['role_id'] == $display_item) ? '' : $this->u_action . '&display_item=' . $row['role_id'] . '#assigned_to')
d6e8d8 
			);
d6e8d8
d6e8d8 
			$s_role_options .= '<option value="' . $row['role_id'] . '">' . $role_name . '</option>';
d6e8d8
d6e8d8 
			if ($display_item == $row['role_id'])
d6e8d8 
			{
d6e8d8 
				$template->assign_vars(array(
d6e8d8 
					'L_ROLE_ASSIGNED_TO'	=> sprintf($user->lang['ROLE_ASSIGNED_TO'], $role_name))
d6e8d8 
				);
d6e8d8 
			}
d6e8d8 
		}
d6e8d8 
		$db->sql_freeresult($result);
d6e8d8
d6e8d8 
		$template->assign_vars(array(
d6e8d8 
			'S_ROLE_OPTIONS'		=> $s_role_options)
d6e8d8 
		);
d6e8d8
d6e8d8 
		if ($display_item)
d6e8d8 
		{
d6e8d8 
			$template->assign_vars(array(
d6e8d8 
				'S_DISPLAY_ROLE_MASK'	=> true)
d6e8d8 
			);
d6e8d8
d6e8d8 
			$hold_ary = $auth_admin->get_role_mask($display_item);
d6e8d8 
			$auth_admin->display_role_mask($hold_ary);
d6e8d8 
		}
d6e8d8 
	}
d6e8d8
d6e8d8 
	/**
d6e8d8 
	* Display permission settings able to be set
d6e8d8 
	*/
d6e8d8 
	function display_auth_options($auth_options)
d6e8d8 
	{
d6e8d8 
		global $template, $user;
d6e8d8
d6e8d8 
		$content_array = $categories = array();
d6e8d8 
		$key_sort_array = array(0);
d6e8d8 
		$auth_options = array(0 => $auth_options);
d6e8d8
d6e8d8 
		// Making use of auth_admin method here (we do not really want to change two similar code fragments)
d6e8d8 
		auth_admin::build_permission_array($auth_options, $content_array, $categories, $key_sort_array);
d6e8d8
d6e8d8 
		$content_array = $content_array[0];
d6e8d8
d6e8d8 
		$template->assign_var('S_NUM_PERM_COLS', sizeof($categories));
d6e8d8
d6e8d8 
		// Assign to template
d6e8d8 
		foreach ($content_array as $cat => $cat_array)
d6e8d8 
		{
d6e8d8 
			$template->assign_block_vars('auth', array(
d6e8d8 
				'CAT_NAME'	=> $user->lang['permission_cat'][$cat],
d6e8d8
d6e8d8 
				'S_YES'		=> ($cat_array['S_YES'] && !$cat_array['S_NEVER'] && !$cat_array['S_NO']) ? true : false,
d6e8d8 
				'S_NEVER'	=> ($cat_array['S_NEVER'] && !$cat_array['S_YES'] && !$cat_array['S_NO']) ? true : false,
d6e8d8 
				'S_NO'		=> ($cat_array['S_NO'] && !$cat_array['S_NEVER'] && !$cat_array['S_YES']) ? true : false)
d6e8d8 
			);
d6e8d8
d6e8d8 
			foreach ($cat_array['permissions'] as $permission => $allowed)
d6e8d8 
			{
d6e8d8 
				$template->assign_block_vars('auth.mask', array(
d6e8d8 
					'S_YES'		=> ($allowed == ACL_YES) ? true : false,
d6e8d8 
					'S_NEVER'	=> ($allowed == ACL_NEVER) ? true : false,
d6e8d8 
					'S_NO'		=> ($allowed == ACL_NO) ? true : false,
d6e8d8
d6e8d8 
					'FIELD_NAME'	=> $permission,
d6e8d8 
					'PERMISSION'	=> $user->lang['acl_' . $permission]['lang'])
d6e8d8 
				);
d6e8d8 
			}
d6e8d8 
		}
d6e8d8 
	}
d6e8d8
d6e8d8 
	/**
d6e8d8 
	* Remove role
d6e8d8 
	*/
d6e8d8 
	function remove_role($role_id, $permission_type)
d6e8d8 
	{
d6e8d8 
		global $db;
d6e8d8
d6e8d8 
		$auth_admin = new auth_admin();
d6e8d8
d6e8d8 
		// Get complete auth array
d6e8d8 
		$sql = 'SELECT auth_option, auth_option_id
d6e8d8 
			FROM ' . ACL_OPTIONS_TABLE . "
d6e8d8 
			WHERE auth_option " . $db->sql_like_expression($permission_type . $db->any_char);
d6e8d8 
		$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
		$auth_settings = array();
d6e8d8 
		while ($row = $db->sql_fetchrow($result))
d6e8d8 
		{
d6e8d8 
			$auth_settings[$row['auth_option']] = ACL_NO;
d6e8d8 
		}
d6e8d8 
		$db->sql_freeresult($result);
d6e8d8
d6e8d8 
		// Get the role auth settings we need to re-set...
d6e8d8 
		$sql = 'SELECT o.auth_option, r.auth_setting
d6e8d8 
			FROM ' . ACL_ROLES_DATA_TABLE . ' r, ' . ACL_OPTIONS_TABLE . ' o
d6e8d8 
			WHERE o.auth_option_id = r.auth_option_id
d6e8d8 
				AND r.role_id = ' . $role_id;
d6e8d8 
		$result = $db->sql_query($sql);
d6e8d8
d6e8d8 
		while ($row = $db->sql_fetchrow($result))
d6e8d8 
		{
d6e8d8 
			$auth_settings[$row['auth_option']] = $row['auth_setting'];
d6e8d8 
		}
d6e8d8 
		$db->sql_freeresult($result);
d6e8d8
d6e8d8 
		// Get role assignments
d6e8d8 
		$hold_ary = $auth_admin->get_role_mask($role_id);
d6e8d8
d6e8d8 
		// Re-assign permissions
d6e8d8 
		foreach ($hold_ary as $forum_id => $forum_ary)
d6e8d8 
		{
d6e8d8 
			if (isset($forum_ary['users']))
d6e8d8 
			{
d6e8d8 
				$auth_admin->acl_set('user', $forum_id, $forum_ary['users'], $auth_settings, 0, false);
d6e8d8 
			}
d6e8d8
d6e8d8 
			if (isset($forum_ary['groups']))
d6e8d8 
			{
d6e8d8 
				$auth_admin->acl_set('group', $forum_id, $forum_ary['groups'], $auth_settings, 0, false);
d6e8d8 
			}
d6e8d8 
		}
d6e8d8
d6e8d8 
		// Remove role from users and groups just to be sure (happens through acl_set)
d6e8d8 
		$sql = 'DELETE FROM ' . ACL_USERS_TABLE . '
d6e8d8 
			WHERE auth_role_id = ' . $role_id;
d6e8d8 
		$db->sql_query($sql);
d6e8d8
d6e8d8 
		$sql = 'DELETE FROM ' . ACL_GROUPS_TABLE . '
d6e8d8 
			WHERE auth_role_id = ' . $role_id;
d6e8d8 
		$db->sql_query($sql);
d6e8d8
d6e8d8 
		// Remove role data and role
d6e8d8 
		$sql = 'DELETE FROM ' . ACL_ROLES_DATA_TABLE . '
d6e8d8 
			WHERE role_id = ' . $role_id;
d6e8d8 
		$db->sql_query($sql);
d6e8d8
d6e8d8 
		$sql = 'DELETE FROM ' . ACL_ROLES_TABLE . '
d6e8d8 
			WHERE role_id = ' . $role_id;
d6e8d8 
		$db->sql_query($sql);
d6e8d8
d6e8d8 
		$auth_admin->acl_clear_prefetch();
d6e8d8 
	}
d6e8d8 
}
d6e8d8
d6e8d8 
?>

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation