Почетна Преглед Помоћ
Регистрација Пријавите се
steve07s
/
Authorization
1
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: d686c5303a
Гране Ознаке
Authorization
/
script
/
php
/
API
/
get_dept_user.php

get_dept_user.php 3.9 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. <?php
    2. 

  2. session_start();
    3. 

  3. include('../permission/connect_sql.php');
    4. 

  4. 

  5. $user_id = $_SESSION['UserID'];
    6. 

  6. $sql = "SELECT [GroupID] FROM [permissions].[dbo].[UserGroup] WHERE [UserID] = ?;";
    7. 

  7. $stmt = sqlsrv_query($conn, $sql, array($user_id));
    8. 

  8. $is_admin = false;
    9. 

  9. while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    10. 

  10.     if ($row["GroupID"] == 'Admin') {
    11. 

  11.         $is_admin = true;
    12. 

  12.     }
    13. 

  13. }
    14. 

  14. 

  15. $user_list = array();
    16. 

  16. $users = array();
    17. 

  17. $permissions = array();
    18. 

  18. if ($is_admin) {
    19. 

  19.     $sql = "SELECT DISTINCT [User].[UserID],[Account],[UserName],[DepartmentID],[Group].[GroupID],[GroupName] FROM [User] 
    20. 

  20. LEFT JOIN [UserGroup] ON [User].[UserID] = [UserGroup].[UserID] 
    21. 

  21. LEFT JOIN [Group] ON [UserGroup].[GroupID] = [Group].[GroupID]
    22. 

  22. LEFT JOIN [GroupRight] ON [GroupRight].[GroupID] = [Group].[GroupID] 
    23. 

  23. LEFT JOIN [WebPage] ON [WebPage].[PgroupID] = [GroupRight].[PgroupID]
    24. 

  24. ORDER BY [GroupName]";
    25. 

  25.     $stmt = sqlsrv_query($conn, $sql);
    26. 

  26. 

  27.     while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    28. 

  28.         if (in_array($row["UserID"], $user_list)) {
    29. 

  29.             $index = array_search($row["UserID"], $user_list);
    30. 

  30.             array_push($users[$index]["GroupID"], $row["GroupID"]);
    31. 

  31.             array_push($users[$index]["GroupName"], $row["GroupName"]);
    32. 

  32.         } else {
    33. 

  33.             $temp = array();
    34. 

  34.             $temp["UserID"] = $row["UserID"];
    35. 

  35.             $temp["Account"] = $row["Account"];
    36. 

  36.             $temp["UserName"] = $row["UserName"];
    37. 

  37.             $temp["DepartmentID"] = $row["DepartmentID"];
    38. 

  38.             $temp["GroupID"] = array($row["GroupID"]);
    39. 

  39.             $temp["GroupName"] = array($row["GroupName"]);
    40. 

  40.             array_push($users, $temp);
    41. 

  41.             array_push($user_list, $row["UserID"]);
    42. 

  42.         }
    43. 

  43.     }
    44. 

  44. 

  45.     $sql = "SELECT [GroupID],[GroupName] FROM [Group] WHERE [GroupID] != 'Admin'";
    46. 

  46.     $stmt = sqlsrv_query($conn, $sql, array($_SESSION['UserID']));
    47. 

  47.     while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    48. 

  48.         $temp = array();
    49. 

  49.         $temp["GroupID"] = $row["GroupID"];
    50. 

  50.         $temp["GroupName"] = $row["GroupName"];
    51. 

  51.         array_push($permissions, $temp);
    52. 

  52.     }
    53. 

  53. } else {
    54. 

  54.     $sql = "SELECT DISTINCT [User].[UserID],[Account],[UserName],[DepartmentID],[Group].[GroupID],[GroupName] FROM [User] 
    55. 

  55.     LEFT JOIN [UserGroup] ON [User].[UserID] = [UserGroup].[UserID] 
    56. 

  56.     LEFT JOIN [Group] ON [UserGroup].[GroupID] = [Group].[GroupID]
    57. 

  57.     LEFT JOIN [GroupRight] ON [GroupRight].[GroupID] = [Group].[GroupID] 
    58. 

  58.     LEFT JOIN [WebPage] ON [WebPage].[PgroupID] = [GroupRight].[PgroupID]
    59. 

  59.     WHERE [DepartmentID] = (SELECT [DepartmentID] FROM [User] WHERE [UserID] = ?) AND [Group].[GroupID] != 'Admin' ORDER BY [GroupName]";
    60. 

  60.     $stmt = sqlsrv_query($conn, $sql, array($_SESSION['UserID']));
    61. 

  61. 

  62.     while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    63. 

  63.         if (in_array($row["UserID"], $user_list)) {
    64. 

  64.             $index = array_search($row["UserID"], $user_list);
    65. 

  65.             array_push($users[$index]["GroupID"], $row["GroupID"]);
    66. 

  66.             array_push($users[$index]["GroupName"], $row["GroupName"]);
    67. 

  67.         } else {
    68. 

  68.             $temp = array();
    69. 

  69.             $temp["UserID"] = $row["UserID"];
    70. 

  70.             $temp["Account"] = $row["Account"];
    71. 

  71.             $temp["UserName"] = $row["UserName"];
    72. 

  72.             $temp["DepartmentID"] = $row["DepartmentID"];
    73. 

  73.             $temp["GroupID"] = array($row["GroupID"]);
    74. 

  74.             $temp["GroupName"] = array($row["GroupName"]);
    75. 

  75.             array_push($users, $temp);
    76. 

  76.             array_push($user_list, $row["UserID"]);
    77. 

  77.         }
    78. 

  78.     }
    79. 

  79. 

  80.     $sql = "SELECT [GroupID],[GroupName] FROM [Group] WHERE [GroupID] != 'Admin'";
    81. 

  81.     $stmt = sqlsrv_query($conn, $sql, array($_SESSION['UserID']));
    82. 

  82.     while ($row = sqlsrv_fetch_array($stmt, SQLSRV_FETCH_ASSOC)) {
    83. 

  83.         $temp = array();
    84. 

  84.         $temp["GroupID"] = $row["GroupID"];
    85. 

  85.         $temp["GroupName"] = $row["GroupName"];
    86. 

  86.         array_push($permissions, $temp);
    87. 

  87.     }
    88. 

  88. }
    89. 

  89. 

  90. 

  91. $data["users"] = $users;
    92. 

  92. $data["permissions"] = $permissions;
    93. 

  93. echo json_encode($data);
    94.