Главная Обзор Помощь
Регистрация Вход
steve07s
/
Authorization
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 455c02d2be
Ветки Метки
Authorization
/
script
/
php
/
permission
/
check_right.php

check_right.php 1.0 KB
История Исходник

123456789101112131415161718192021222324252627 
  1. <?php
    2. 

  2. include($_SERVER['DOCUMENT_ROOT'] . "/Authorization/script/php/permission/connect_sql.php");
    3. 

  3. session_start();
    4. 

  4. $href = 'http://' . $_SERVER['HTTP_HOST'] . '/Front-Page/pages-signin.html';
    5. 

  5. //Can't come in without logged in
    6. 

  6. if (!isset($_SESSION['loggedin'])) {
    7. 

  7. 	header('Location:' . $href);
    8. 

  8. 	exit;
    9. 

  9. }
    10. 

  10. $sql = "SELECT [RightID],[GroupName] FROM [UserGroup]
    11. 

  11. LEFT JOIN  [GroupRight] ON [GroupRight].[GroupID] = [UserGroup].[GroupID] 
    12. 

  12. LEFT JOIN  [Group] ON [GroupRight].[GroupID] = [Group].[GroupID] 
    13. 

  13. WHERE [PgroupID] = (SELECT [PgroupID] FROM [WebPage] WHERE [PageID] = ? ) AND [UserGroup].UserID = ?";
    14. 

  14. $stmt = sqlsrv_query($conn, $sql, array(strtok($_SERVER["REQUEST_URI"], '?'), $_SESSION['UserID']));
    15. 

  15. $right = -1;
    16. 

  16. while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    17. 

  17. 	if ($row["RightID"] > $right) {
    18. 

  18. 		$groupName = $row["GroupName"];
    19. 

  19. 		$right = $row["RightID"];
    20. 

  20. 	}
    21. 

  21. }
    22. 

  22. //Can't come in without right
    23. 

  23. if ($right < 0) {	
    24. 

  24. 	$url = 'http://' . $_SERVER['HTTP_HOST'] . '/Front-Page/home.php';		
    25. 

  25. 	header('Location: ' . $url);
    26. 

  26. 	exit;	
    27. 

  27. }
    28.