X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=admin%2Fdb%2Fsecurity_db.inc;fp=admin%2Fdb%2Fsecurity_db.inc;h=55e56b556ae7fcab6f6b0fc52e8cd872b6a183cf;hb=3e2f1b46bb33c1720b4373f324f6126ca26d2ac7;hp=0000000000000000000000000000000000000000;hpb=4a66afcbed7fb883d00c1a6a807497ccfd181378;p=fa-stable.git

diff --git a/admin/db/security_db.inc b/admin/db/security_db.inc
new file mode 100644
index 00000000..55e56b55
--- /dev/null
+++ b/admin/db/security_db.inc
@@ -0,0 +1,65 @@
+<?php
+/**********************************************************************
+    Copyright (C) FrontAccounting, LLC.
+	Released under the terms of the GNU General Public License, GPL, 
+	as published by the Free Software Foundation, either version 3 
+	of the License, or (at your option) any later version.
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
+    See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
+***********************************************************************/
+//--------------------------------------------------------------------------------------------------
+
+function get_security_role($id)
+{
+	$sql = "SELECT * FROM ".TB_PREF."security_roles WHERE id='$id'";
+	$ret = db_query($sql, "could not retrieve security roles");
+	$row = db_fetch($ret);
+	$row['areas'] = explode(';', $row['areas']);
+	$row['modules'] = explode(';', $row['modules']);
+	return $row;
+}
+
+//--------------------------------------------------------------------------------------------------
+
+function add_security_role($name, $description, $modules, $areas)
+{
+	$sql = "INSERT INTO ".TB_PREF."security_roles (role, description, modules, areas)
+	VALUES ("
+	.db_escape($name).","
+	.db_escape($description).","
+	.db_escape(implode(';',$modules)).","
+	.db_escape(implode(';',$areas)).")";
+
+	db_query($sql, "could not add new security role");
+}
+
+//--------------------------------------------------------------------------------------------------
+
+function update_security_role($id, $name, $description, $modules, $areas)
+{
+    	$sql = "UPDATE ".TB_PREF."security_roles SET role=".db_escape($name)
+    	.",description=".db_escape($description)
+    	.",modules=".db_escape(implode(';',$modules))
+    	.",areas=".db_escape(implode(';',$areas))
+    	." WHERE id=$id";
+    	db_query($sql, "could not update role");
+}
+//--------------------------------------------------------------------------------------------------
+
+function delete_security_role($id)
+{
+	$sql = "DELETE FROM ".TB_PREF."security_roles WHERE id=$id";
+
+	db_query($sql, "could not delete role");
+}
+//--------------------------------------------------------------------------------------------------
+
+function check_role_used($id) {
+	$sql = "SELECT count(*) FROM ".TB_PREF."users WHERE full_access=$id";
+	$ret = db_query($sql, 'cannot check role usage');
+	$row = db_fetch($ret);
+	return $row[0];
+}
+?>
\ No newline at end of file