/usr/share/phpgacl/admin/edit_object_sections.php is in phpgacl 3.3.7-7.3.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 | <?php
require_once("gacl_admin.inc.php");
//GET takes precedence.
if ( isset($_GET['object_type']) AND $_GET['object_type'] != '' ) {
$object_type = $_GET['object_type'];
} else {
$object_type = $_POST['object_type'];
}
switch(strtolower(trim($object_type))) {
case 'aco':
$object_type = 'aco';
$object_sections_table = $gacl_api->_db_table_prefix . 'aco_sections';
break;
case 'aro':
$object_type = 'aro';
$object_sections_table = $gacl_api->_db_table_prefix . 'aro_sections';
break;
case 'axo':
$object_type = 'axo';
$object_sections_table = $gacl_api->_db_table_prefix . 'axo_sections';
break;
case 'acl':
$object_type = 'acl';
$object_sections_table = $gacl_api->_db_table_prefix . 'acl_sections';
break;
default:
echo "ERROR: Must select an object type<br>\n";
exit();
break;
}
switch ($_POST['action']) {
case 'Delete':
if (count($_POST['delete_sections']) > 0) {
foreach($_POST['delete_sections'] as $id) {
$gacl_api->del_object_section($id, $object_type, TRUE);
}
}
//Return page.
$gacl_api->return_page($_POST['return_page']);
break;
case 'Submit':
$gacl_api->debug_text("Submit!!");
//Update sections
while (list(,$row) = @each($_POST['sections'])) {
list($id, $value, $order, $name) = $row;
$gacl_api->edit_object_section($id, $name, $value, $order,0,$object_type );
}
unset($id);
unset($value);
unset($order);
unset($name);
//Insert new sections
while (list(,$row) = @each($_POST['new_sections'])) {
list($value, $order, $name) = $row;
if (!empty($value) AND !empty($order) AND !empty($name)) {
$object_section_id = $gacl_api->add_object_section($name, $value, $order, 0, $object_type);
$gacl_api->debug_text("Section ID: $object_section_id");
}
}
$gacl_api->debug_text("return_page: ". $_POST['return_page']);
$gacl_api->return_page($_POST['return_page']);
break;
default:
$query = "select id,value,order_value,name from $object_sections_table order by order_value";
$rs = $db->pageexecute($query, $gacl_api->_items_per_page, $_GET['page']);
$rows = $rs->GetRows();
$sections = array();
while (list(,$row) = @each($rows)) {
list($id, $value, $order_value, $name) = $row;
$sections[] = array(
'id' => $id,
'value' => $value,
'order' => $order_value,
'name' => $name
);
}
$new_sections = array();
for($i=0; $i < 5; $i++) {
$new_sections[] = array(
'id' => $i,
'value' => NULL,
'order' => NULL,
'name' => NULL
);
}
$smarty->assign('sections', $sections);
$smarty->assign('new_sections', $new_sections);
$smarty->assign("paging_data", $gacl_api->get_paging_data($rs));
break;
}
$smarty->assign('object_type', $object_type);
$smarty->assign('return_page', $_SERVER['REQUEST_URI']);
$smarty->assign('current','edit_'. $object_type .'_sections');
$smarty->assign('page_title', 'Edit '. strtoupper($object_type) .' Sections');
$smarty->assign("phpgacl_version", $gacl_api->get_version() );
$smarty->assign("phpgacl_schema_version", $gacl_api->get_schema_version() );
$smarty->display('phpgacl/edit_object_sections.tpl');
?>
|