Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
steve07s
/
Authorization
1
0
Fork 0
Tiedostot Ongelmat 0 Pull-pyynnöt 0 Wiki
Selaa lähdekoodia

修改檢查權限

manto07m 3 vuotta sitten
vanhempi
278886fa43
commit
455c02d2be
3 muutettua tiedostoa jossa 40 lisäystä ja 18 poistoa
Jaettu näkymä Näytä diff tilastot
  1. 38 16
      insert_Group_Right.php
  2. 1 1
      script/js/global.js
  3. 1 1
      script/php/permission/check_right.php

+ 38 - 16
insert_Group_Right.php
Näytä tiedosto 

@@ -1,24 +1,46 @@
 
 <?php
 
 
 include("./script/php/permission/connect_sql.php");
 
+$group = array(array('Admin', '4'), array('Manager', '3'), array('Editor', '2'), array('User', '1'));
 
+$Pgroup = array('MyAccount');
 
 
-$PageIDs = array();
 
-$sql = "SELECT [PageID] FROM [dbo].[WebPage]";
 
-$fetchResult = sqlsrv_query($conn, $sql);
 
-while ($row = sqlsrv_fetch_array($fetchResult,SQLSRV_FETCH_NUMERIC)) {
 
-    array_push($PageIDs,$row[0]);
 
-}
 
 
 
 
-for($i = 0; $i < count($PageIDs); $i++) {
 
-    
+// $PageIDs = array();
 
+// $sql = "SELECT [PageID] FROM [dbo].[WebPage]";
 
+// $fetchResult = sqlsrv_query($conn, $sql);
 
+// while ($row = sqlsrv_fetch_array($fetchResult,SQLSRV_FETCH_NUMERIC)) {
 
+//     array_push($PageIDs,$row[0]);
 
+// }
 
+
 
+
 
+
 
+for ($i = 0; $i < count($Pgroup); $i++) {
 
+    for ($j = 0; $j < count($group); $j++) {
 
+
 
+        $sql = 'INSERT INTO [GroupRight]
 
+        ([GroupID]
 
+        ,[PgroupID]
 
+        ,[RightID])
 
+        VALUES
 
+            (?,?,?)';
 
+            //$stmt = sqlsrv_query($conn, $sql, array($group[$j][0],$Pgroup[$i],$group[$j][1]));
 
+            if( $stmt === false ) {
 
+                if( ($errors = sqlsrv_errors() ) != null) {
 
+                    foreach( $errors as $error ) {
 
+                        echo "SQLSTATE: ".$error[ 'SQLSTATE']."<br />";
 
+                        echo "code: ".$error[ 'code']."<br />";
 
+                        echo "message: ".$error[ 'message']."<br />";
 
+                    }
 
+                }
 
+            }
 
+            echo('[GroupID]: ' . $group[$j][0].' [PgroupID]: '.$Pgroup[$i]. ' [RightID]: ' . $group[$j][1]);
 
+            echo('<br>');
 
 
-    $sql = 'INSERT INTO [dbo].[GroupRight]
 
-    ([GroupID]
 
-    ,[PageID]
 
-    ,[RightID])
 
-VALUES
 
-    (?,?,?)';
 
-    //$stmt = sqlsrv_query($conn, $sql, array('User', $PageIDs[$i],1));
 
-}
 
+    }
 
+
 
+
 
+
 
+    
+}

+ 1 - 1
script/js/global.js
Näytä tiedosto 

@@ -99,7 +99,7 @@ vm.component('header-menu', {
 
             <div class="dropdown-menu">
 
                 <ul class="list-unstyled">
 
                     <li class="divider"></li>
 
-                    <li> <a role="menuitem" tabindex="-1" href="./script/php/Logout.php"><i class="fa fa-power-off"></i> Logout</a> </li>
 
+                    <li> <a role="menuitem" tabindex="-1" href="/Front-Page/script/php/Logout.php"><i class="fa fa-power-off"></i> Logout</a> </li>
 
                 </ul>
 
             </div>
 
         </div>

+ 1 - 1
script/php/permission/check_right.php
Näytä tiedosto 

@@ -10,7 +10,7 @@ if (!isset($_SESSION['loggedin'])) {
 
 $sql = "SELECT [RightID],[GroupName] FROM [UserGroup]
 
 LEFT JOIN  [GroupRight] ON [GroupRight].[GroupID] = [UserGroup].[GroupID] 
 LEFT JOIN  [Group] ON [GroupRight].[GroupID] = [Group].[GroupID] 
-WHERE [PageID] = ? AND [UserGroup].UserID = ?";
 
+WHERE [PgroupID] = (SELECT [PgroupID] FROM [WebPage] WHERE [PageID] = ? ) AND [UserGroup].UserID = ?";
 
 $stmt = sqlsrv_query($conn, $sql, array(strtok($_SERVER["REQUEST_URI"], '?'), $_SESSION['UserID']));
 
 $right = -1;
 
 while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {