X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=includes%2Faccess_levels.inc;h=62a71cb61d4f334cefe22364f91cc618b936331a;hb=630e99edecc3eabe708a9e7bda94eaa60bf16db7;hp=815a0b1a72b6b8efc4d0782bac7d068519ab3a09;hpb=3f3cfa578adbc2b71f4fd9c8d0f5536d26af43d8;p=fa-stable.git diff --git a/includes/access_levels.inc b/includes/access_levels.inc index 815a0b1a..62a71cb6 100644 --- a/includes/access_levels.inc +++ b/includes/access_levels.inc @@ -40,6 +40,10 @@ define('SS_ITEMS_C',31<<8); define('SS_ITEMS', 32<<8); define('SS_ITEMS_A',33<<8); +define('SS_ASSETS_C',36<<8); +define('SS_ASSETS', 37<<8); +define('SS_ASSETS_A',38<<8); + define('SS_MANUF_C',41<<8); define('SS_MANUF', 42<<8); define('SS_MANUF_A',43<<8); @@ -53,26 +57,29 @@ define('SS_GL', 62<<8); define('SS_GL_A', 63<<8); $security_sections = array( - SS_SADMIN => _("System administration"), - SS_SETUP => _("Company setup"), - SS_SPEC => _("Special maintenance"), - SS_SALES_C => _("Sales configuration"), - SS_SALES => _("Sales transactions"), - SS_SALES_A => _("Sales related reports"), - SS_PURCH_C => _("Purchase configuration"), - SS_PURCH => _("Purchase transactions"), - SS_PURCH_A => _("Purchase analytics"), - SS_ITEMS_C => _("Inventory configuration"), - SS_ITEMS => _("Inventory operations"), - SS_ITEMS_A => _("Inventory analytics"), - SS_MANUF_C => _("Manufacturing configuration"), - SS_MANUF => _("Manufacturing transactions"), - SS_MANUF_A => _("Manufacturing analytics"), - SS_DIM_C => _("Dimensions configuration"), - SS_DIM => _("Dimensions"), - SS_GL_C => _("Banking & GL configuration"), - SS_GL => _("Banking & GL transactions"), - SS_GL_A => _("Banking & GL analytics") + SS_SADMIN => _("System administration"), + SS_SETUP => _("Company setup"), + SS_SPEC => _("Special maintenance"), + SS_SALES_C => _("Sales configuration"), + SS_SALES => _("Sales transactions"), + SS_SALES_A => _("Sales related reports"), + SS_PURCH_C => _("Purchase configuration"), + SS_PURCH => _("Purchase transactions"), + SS_PURCH_A => _("Purchase analytics"), + SS_ITEMS_C => _("Inventory configuration"), + SS_ITEMS => _("Inventory operations"), + SS_ITEMS_A => _("Inventory analytics"), + SS_ASSETS_C => _("Fixed Assets configuration"), + SS_ASSETS => _("Fixed Assets operations"), + SS_ASSETS_A => _("Fixed Assets analytics"), + SS_MANUF_C => _("Manufacturing configuration"), + SS_MANUF => _("Manufacturing transactions"), + SS_MANUF_A => _("Manufacturing analytics"), + SS_DIM_C => _("Dimensions configuration"), + SS_DIM => _("Dimensions"), + SS_GL_C => _("Banking & GL configuration"), + SS_GL => _("Banking & GL transactions"), + SS_GL_A => _("Banking & GL analytics") ); /* @@ -187,6 +194,20 @@ $security_areas =array( 'SA_ITEMSANALYTIC' => array(SS_ITEMS_A|2, _("Items analytical reports and inquiries")), 'SA_ITEMSVALREP' => array(SS_ITEMS_A|3, _("Inventory valuation report")), +// +// Fixed Assets +// + 'SA_ASSET' => array(SS_ASSETS_C|1, _("Fixed Asset items add/edit")), + 'SA_ASSETCATEGORY' => array(SS_ASSETS_C|2, _("Fixed Asset categories")), + 'SA_ASSETCLASS' => array(SS_ASSETS_C|4, _("Fixed Asset classes")), + + 'SA_ASSETSTRANSVIEW' => array(SS_ASSETS|1, _("Fixed Asset transactions view")), + 'SA_ASSETTRANSFER' => array(SS_ASSETS|2, _("Fixed Asset location transfers")), + 'SA_ASSETDISPOSAL' => array(SS_ASSETS|3, _("Fixed Asset disposals")), + 'SA_DEPRECIATION' => array(SS_ASSETS|4, _("Depreciation")), + + 'SA_ASSETSANALYTIC' => array(SS_ASSETS_A|1, _("Fixed Asset analytical reports and inquiries")), + // // Manufacturing module // @@ -250,7 +271,7 @@ $security_areas =array( 'SA_GLREP' => array(SS_GL_A|4, _("GL reports and inquiries")), ); -if (!@$allow_gl_reopen) +if (!@$SysPrefs->allow_gl_reopen) unset($security_areas['SA_GLREOPEN']); /* This function should be called whenever we want to extend core access level system @@ -297,21 +318,39 @@ function add_access_extensions() } } } + +function check_edit_access($name) +{ + global $input_security; + + $access = @$input_security[$name]; + + if (!$access) + $access = @$input_security['']; // default access level + + if (!$access) + return true; // if constraint is not defined edit access is allowed + + return user_check_access($access); +} /* - Helper function to retrieve extension access definitions in isolated environment. + Returns POST value or null if edit access to $name control is forbidden. */ -/* -function get_access_extensions($id) { - global $path_to_root, $installed_extensions; - - $ext = $installed_extensions[$id]; - - $security_sections = $security_areas = array(); - - if (isset($ext['acc_file'])) - include_once($path_to_root.'/'.$ext['path'].'/'.$ext['acc_file']); - - return array($security_areas, $security_sections); +function access_post($name, $dflt=null) +{ + if (!check_edit_access($name)) + return $dflt; + else + return get_post($name, $dflt); } + +/* + Returns numeric input value or null if edit access to $name control is forbidden. */ -?> \ No newline at end of file +function access_num($name, $dflt=null) +{ + if (!check_edit_access($name)) + return $dflt; + else + return input_num($name, $dflt); +}