projects / fa-stable.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Partial changes for new access control system.
[fa-stable.git] / admin / db / security_db.inc
diff --git a/admin/db/security_db.inc b/admin/db/security_db.inc
new file mode 100644 (file)
index 0000000..55e56b5
--- /dev/null
+++ b/admin/db/security_db.inc
@@ -0,0 +1,65 @@
+<?php
+/**********************************************************************
+    Copyright (C) FrontAccounting, LLC.
+       Released under the terms of the GNU General Public License, GPL, 
+       as published by the Free Software Foundation, either version 3 
+       of the License, or (at your option) any later version.
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
+    See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
+***********************************************************************/
+//--------------------------------------------------------------------------------------------------
+
+function get_security_role($id)
+{
+       $sql = "SELECT * FROM ".TB_PREF."security_roles WHERE id='$id'";
+       $ret = db_query($sql, "could not retrieve security roles");
+       $row = db_fetch($ret);
+       $row['areas'] = explode(';', $row['areas']);
+       $row['modules'] = explode(';', $row['modules']);
+       return $row;
+}
+
+//--------------------------------------------------------------------------------------------------
+
+function add_security_role($name, $description, $modules, $areas)
+{
+       $sql = "INSERT INTO ".TB_PREF."security_roles (role, description, modules, areas)
+       VALUES ("
+       .db_escape($name).","
+       .db_escape($description).","
+       .db_escape(implode(';',$modules)).","
+       .db_escape(implode(';',$areas)).")";
+
+       db_query($sql, "could not add new security role");
+}
+
+//--------------------------------------------------------------------------------------------------
+
+function update_security_role($id, $name, $description, $modules, $areas)
+{
+       $sql = "UPDATE ".TB_PREF."security_roles SET role=".db_escape($name)
+       .",description=".db_escape($description)
+       .",modules=".db_escape(implode(';',$modules))
+       .",areas=".db_escape(implode(';',$areas))
+       ." WHERE id=$id";
+       db_query($sql, "could not update role");
+}
+//--------------------------------------------------------------------------------------------------
+
+function delete_security_role($id)
+{
+       $sql = "DELETE FROM ".TB_PREF."security_roles WHERE id=$id";
+
+       db_query($sql, "could not delete role");
+}
+//--------------------------------------------------------------------------------------------------
+
+function check_role_used($id) {
+       $sql = "SELECT count(*) FROM ".TB_PREF."users WHERE full_access=$id";
+       $ret = db_query($sql, 'cannot check role usage');
+       $row = db_fetch($ret);
+       return $row[0];
+}
+?>
\ No newline at end of file
FrontAccounting stable branch