Файл: adm_panel/accesses.php
Строк: 61
<?
include_once '../sys/inc/start.php';
include_once COMPRESS;
include_once SESS;
include_once '../sys/inc/home.php';
include_once SETTINGS;
include_once DB_CONNECT;
include_once IPUA;
include_once FNC;
include_once ADM_CHECK;
include_once USER;
user_access('adm_accesses',null,'index.php?'.SID);
adm_check();
if (isset($_GET['id_group']) && dbresult(dbquery("SELECT COUNT(*) FROM `user_group` WHERE `id` = '".intval($_GET['id_group'])."'"), 0))
{
$group=dbassoc(dbquery("SELECT * FROM `user_group` WHERE `id` = '".intval($_GET['id_group'])."'"));
$set['title']=output_text('Группа "'.$group['name'].'" - привилегии'); // заголовок страницы
include_once THEAD;
title();
if (isset($_POST['accesses']))
{
dbquery("DELETE FROM `user_group_access` WHERE `id_group` = '$group[id]'");
$q=dbquery("SELECT * FROM `all_accesses`");
while ($post = dbassoc($q))
{
$type=$post['type'];
if (isset($_POST[$type]) && $_POST[$type]==1)
dbquery("INSERT INTO `user_group_access` (`id_group`, `id_access`) VALUES ('$group[id]', '$post[type]')");
}
msg('Привилегии успешно изменены');
}
aut();
echo "<form method='post' action='?id_group=$group[id]&$passgen'>n";
$q=dbquery("SELECT * FROM `all_accesses` ORDER BY `name` ASC");
while ($post = dbassoc($q))
{
echo "<label>";
echo "<input type='checkbox'".(dbresult(dbquery("SELECT COUNT(*) FROM `user_group_access` WHERE `id_group` = '$group[id]' AND `id_access` = '$post[type]' LIMIT 1"),0)==1?" checked='checked'":null)." name='$post[type]' value='1' />";
echo $post['name'];
echo "</label><br />n";
}
echo "<input value='Применить' name='accesses' type='submit' />n";
echo "</form>n";
echo "<div class='foot'>n";
echo "«<a href='accesses.php'>Группы</a><br />";
echo "«<a href='index.php'>Админка</a><br />";
echo "</div>n";
include_once TFOOT;
}
$set['title']='Группы пользователей'; // заголовок страницы
include_once THEAD;
title();
aut();
echo "<div class='menu'>n";
$accesses=dbquery("SELECT * FROM `user_group` ORDER BY `id` ASC");
while ($res = dbassoc($accesses))
{
echo "<a href='?id_group=$res[id]'>$res[name] (L$res[level], ".dbresult(dbquery("SELECT COUNT(*) FROM `user_group_access` WHERE `id_group` = '$res[id]'"),0).")</a><br />n";
}
echo "</div>n";
if (user_access('adm_panel_show')){
echo "<div class='foot'>n";
echo "«<a href='index.php'>Админка</a><br />";
echo "</div>n";}
include_once TFOOT;
?>