tothbt/code-cegled
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

menu authorities

Browse Source
This commit is contained in:
Tóth Richárd
2019-07-26 16:03:01 +02:00
parent 2c663d7ed1
commit 13bf590aa0
15 changed files with 507 additions and 158 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
_class/class_authority.php Normal file
View File

@@ -0,0 +1,48 @@
<?php
/*
AUTHORITY CLASS
*/
class authority {
private $a_id;
private $a_name;
private $a_title;
public function set_a_id($_id) {
$this->a_id = $_id;
}
public function get_a_id() {
return $this->a_id;
}
public function set_a_name($_name) {
$this->a_name = $_name;
}
public function get_a_name() {
return $this->a_name;
}
public function set_a_title($_title) {
$this->a_title = $_title;
}
public function get_a_title() {
return $this->a_title;
}
public function set_a_data_by_id($_id) {
global $sql;
$a_query = "SELECT * FROM authority WHERE a_id = " . $_id . ";";
$a_assoc_array = $sql->assoc_array($a_query);
foreach ($a_assoc_array[0] as $field => $value) {
$function_name = "set_" . $field;
$this->$function_name($value); //alapadatok beállítása
}
}
}
?>

53
_class/class_page.php
View File

@@ -21,10 +21,28 @@ class page {
} }
public function get_page_nav() { public function get_page_nav() {
global $smarty, $sql; global $smarty, $sql, $user;
//nem kell if, hanem page alapján beillesztük az id-t //nem kell if, hanem page alapján beillesztük az id-t
if ($this->get_page() == 'admin') { if ($this->get_page() == 'admin') {
if ($user) {
$menus_query = "
SELECT
*
FROM
subpage
LEFT JOIN
authority ON a_name = spage_url
JOIN
user_authority ON (ua_authority_a_id = a_id
OR ua_authority_a_id = 1)
WHERE
spage_page_id = 1
AND ua_user_kid_uk_id = " . $user->get_ua_id() .";
";
}
else {
$menus_query = "SELECT * FROM subpage WHERE spage_page_id = 1;"; $menus_query = "SELECT * FROM subpage WHERE spage_page_id = 1;";
}
$menu_assoc_array = $sql->assoc_array($menus_query); $menu_assoc_array = $sql->assoc_array($menus_query);
$smarty->assign('menus', $menu_assoc_array); $smarty->assign('menus', $menu_assoc_array);
} }
@@ -53,8 +71,22 @@ class page {
$smarty->display('nav.tpl'); $smarty->display('nav.tpl');
} }
function findInStructure($id, &$array) {
if (array_key_exists($id, $array)) {
return $id;
}
foreach ($array as $key => $submenu) {
if (in_array($id, $submenu)) {
return $key;
}
}
}
public function get_page_content() { public function get_page_content() {
global $sql, $user, $smarty; global $sql, $user, $smarty, $structure;
//var_dump($user); //var_dump($user);
ini_set('include_path', '_include/'); ini_set('include_path', '_include/');
//ini_set('include_path', '/var/www/badminton_coach/_include'); //ini_set('include_path', '/var/www/badminton_coach/_include');
@@ -63,6 +95,23 @@ class page {
//TODO: mi van ha nincs page? átirányítás v 404? //TODO: mi van ha nincs page? átirányítás v 404?
//page alapján betölti a tpl-t //page alapján betölti a tpl-t
if ($this->is_subpage() && $this->get_page() == 'admin') {
if ('create' == $this->get_subpage()) {
$toFind = $this->get_id();
} elseif (strpos($this->get_subpage(), 'delete') !== false) {
//delete_ utáni rész
$toFind = substr($this->get_subpage(), 7);
}
else {
$toFind = $this->get_subpage();
}
$subPage = $this->findInStructure($toFind, $structure);
if ('exception' != $subPage && !$user->has_authority_by_name($subPage)) {
include('include_access_denied.php');
return;
}
}
switch ($this->get_page()) { switch ($this->get_page()) {
case 'admin': case 'admin':
# ADMIN OLDALAK # ADMIN OLDALAK

1
_class/class_sql.php
View File

@@ -82,6 +82,7 @@ class sql extends mysqli {
} }
public function execute_query($_query) { public function execute_query($_query) {
//var_dump($_query);
return self::query($_query); return self::query($_query);
} }

63
_class/class_user.php
View File

@@ -19,6 +19,7 @@ class user {
private $user_admin; private $user_admin;
private $logged_in; private $logged_in;
private $user_type; private $user_type;
private $authorities = array();
private $user_deleted; private $user_deleted;
public function set_ua_id($_uid) { public function set_ua_id($_uid) {
@@ -92,6 +93,16 @@ class user {
$this->logged_in = $_login; $this->logged_in = $_login;
} }
public function add_ua_authority($_a_id) {
$this->authorities[] = $_a_id;
}
public function remove_ua_authority($_a_id) {
if (($key = array_search($del_val, $messages)) !== false) {
unset($messages[$key]);
}
}
public function set_user_data_by_id($_ua_id) { public function set_user_data_by_id($_ua_id) {
global $sql, $user; global $sql, $user;
$user_data_assoc_array = $sql->assoc_array("select * from user_coach where ua_id = " . $_ua_id); $user_data_assoc_array = $sql->assoc_array("select * from user_coach where ua_id = " . $_ua_id);
@@ -103,6 +114,11 @@ class user {
$this->set_login(true); $this->set_login(true);
} }
$authorities_aa = $sql->assoc_array('SELECT * FROM user_authority WHERE ua_user_kid_uk_id = ' . $_ua_id);
foreach($authorities_aa as $key => $authority) {
$this->add_ua_authority($authority['ua_authority_a_id']);
}
} }
@@ -135,19 +151,44 @@ class user {
return $sql->single_variable('select count(distinct trc_id) from training_coach join training on tr_id = trc_training_tr_id where year(tr_date) = '.$_year.' and month(tr_date) = '.$_month.' and trc_coach_uc_id = '.$this->get_ua_id().' and tr_deleted = 0;'); return $sql->single_variable('select count(distinct trc_id) from training_coach join training on tr_id = trc_training_tr_id where year(tr_date) = '.$_year.' and month(tr_date) = '.$_month.' and trc_coach_uc_id = '.$this->get_ua_id().' and tr_deleted = 0;');
} }
public static function create_user($_name, $_password) { public function has_authority($a_id) {
global $sql; global $sql;
return $sql->insert_into('user_coach', array( return $sql->num_of_rows('SELECT * FROM user_authority WHERE ua_user_kid_uk_id = ' . $this->get_ua_id() . ' AND ua_authority_a_id = ' . $a_id. ';');
}
public function has_authority_by_name($a_name) {
global $sql;
return $sql->num_of_rows("SELECT * FROM user_authority JOIN authority ON a_id = ua_authority_a_id WHERE ua_user_kid_uk_id = " . $this->get_ua_id() . " AND (a_name = '" . $a_name. "' OR a_name = 'admin');");
}
public function get_authorities() {
return $this->authorities;
}
public static function create_user($_name, $_password, $_authorities = array()) {
global $sql;
$new_user_id = $sql->insert_into('user_coach', array(
'ua_name' => $_name, 'ua_name' => $_name,
'ua_password' => $_password 'ua_password' => $_password
) )
); );
if (is_array($_authorities) && !empty($_authorities)) {
foreach ($_authorities as $key => $authority_id) {
$sql->insert_into('user_authority', array(
'ua_user_kid_uk_id' => $new_user_id,
'ua_authority_a_id' => $authority_id,
));
}
} }
public static function update_user($_name, $_password, $_admin, $_ua_id) { return $new_user_id;
}
public static function update_user($_name, $_password, $_admin, $_ua_id, $_authorities = array()) {
global $sql; global $sql;
if ($_password != "-1") { if ($_password != "-1") {
return $sql->update_table('user_coach', $sql->update_table('user_coach',
array( array(
'ua_name' => $_name, 'ua_name' => $_name,
'ua_admin' => ($_admin?1:0), 'ua_admin' => ($_admin?1:0),
@@ -159,7 +200,7 @@ class user {
); );
} }
else { else {
return $sql->update_table('user_coach', $sql->update_table('user_coach',
array( array(
'ua_name' => $_name, 'ua_name' => $_name,
'ua_admin' => ($_admin?1:0), 'ua_admin' => ($_admin?1:0),
@@ -169,6 +210,18 @@ class user {
) )
); );
} }
$sql->execute_query('DELETE FROM user_authority WHERE ua_user_kid_uk_id = ' . $_ua_id);
if (is_array($_authorities) && !empty($_authorities)) {
foreach ($_authorities as $key => $authority_id) {
$sql->insert_into('user_authority', array(
'ua_user_kid_uk_id' => $_ua_id,
'ua_authority_a_id' => $authority_id,
));
}
}
return true;
} }
} }

3
_include/include_access_denied.php Normal file
View File

@@ -0,0 +1,3 @@
<?php
$smarty->display('access_denied.tpl');
?>

11
_include/include_coaches.php
View File

@@ -13,6 +13,17 @@ if ($this->is_id()) {
//smarty thingz //smarty thingz
$a_assoc_array = $sql->assoc_array('SELECT * FROM authority');
$a_array = array();
foreach ($a_assoc_array as $key => $a) {
$new_a = new authority();
$new_a->set_a_data_by_id($a['a_id']);
$a_array[] = $new_a;
}
$smarty->assign('a_array', $a_array);
$smarty->assign('user_data', $user_data_assoc_array[0]); $smarty->assign('user_data', $user_data_assoc_array[0]);
$smarty->assign('coach', $new_coach); $smarty->assign('coach', $new_coach);
$smarty->display('coach_data_edit.tpl'); $smarty->display('coach_data_edit.tpl');

10
_include/include_create.php
View File

@@ -77,6 +77,16 @@ switch ($this->get_id()) {
break; break;
case 'coach': case 'coach':
# COACH létrehozása # COACH létrehozása
$a_assoc_array = $sql->assoc_array('SELECT * FROM authority');
$a_array = array();
foreach ($a_assoc_array as $key => $a) {
$new_a = new authority();
$new_a->set_a_data_by_id($a['a_id']);
$a_array[] = $new_a;
}
$smarty->assign('a_array', $a_array);
$smarty->display('coach_create.tpl'); $smarty->display('coach_create.tpl');
break; break;
case 'shirt': case 'shirt':

49
common.php
View File

@@ -112,6 +112,55 @@ else {
//var_dump($sql); //var_dump($sql);
//PAGE STRUCTURE FOR AUTHORITIES
$structure = array(
'members' => array(
'parents',
'shirts',
'cities',
'schools',
'regions',
'member',
'parent',
'shirt',
'city',
'school',
'region'
),
'trainings' => array(
'training_types',
'training_templates',
'training',
'training_type',
'training_template',
'edit_training',
),
'presence' => array(
'lock_training',
),
'coaches' => array(
'coach'
),
'money_deposit' => array(
'balance_list',
'money_update',
'money_deposit',
),
'money_expense' => array(
'money_expense_category',
'money_expense',
),
'money_income' => array(
'money_incode_category',
'money_income'
),
'settings' => array(),
'exception' => array(
'logout'
),
);
//echo $_GET['page']; //echo $_GET['page'];
$logout = false; //meg kell-e jeleníteni a kijelentkezés gombot $logout = false; //meg kell-e jeleníteni a kijelentkezés gombot

6
event_handler.php
View File

@@ -187,7 +187,7 @@ if (isset($_POST['action'])) {
$psw = "null"; $psw = "null";
} }
$new_coach_id = user::create_user($_POST['ua_name'], $psw); $new_coach_id = user::create_user($_POST['ua_name'], $psw, $_POST['authorities']);
log::register('new_coach', $new_coach_id); log::register('new_coach', $new_coach_id);
header("Location: /admin/coaches"); header("Location: /admin/coaches");
break; break;
@@ -200,9 +200,9 @@ if (isset($_POST['action'])) {
$psw = "-1"; //ez jelzi h nem szabad updatelni $psw = "-1"; //ez jelzi h nem szabad updatelni
} }
user::update_user($_POST['ua_name'], $psw, isset($_POST['ua_admin']), $_POST['ua_id']); user::update_user($_POST['ua_name'], $psw, isset($_POST['ua_admin']), $_POST['ua_id'], $_POST['authorities']);
log::register('update_coach', $_POST['ua_id']); log::register('update_coach', $_POST['ua_id']);
header("Location: /admin/coaches"); header("Location: /admin/coaches/".$_POST['ua_id']);
break; break;
case 'shirt_create': case 'shirt_create':
# póló létrehozása # póló létrehozása

31
queries/authority_20190725.sql Normal file
View File

@@ -0,0 +1,31 @@
CREATE TABLE `authority` (
`a_id` INT NOT NULL AUTO_INCREMENT,
`a_name` VARCHAR(126) CHARACTER SET 'utf8' COLLATE 'utf8_hungarian_ci' NOT NULL,
`a_title` VARCHAR(126) CHARACTER SET 'utf8' COLLATE 'utf8_hungarian_ci' NOT NULL,
PRIMARY KEY (`a_id`));
CREATE TABLE `user_authority` (
`ua_id` INT NOT NULL AUTO_INCREMENT,
`ua_user_kid_uk_id` INT NOT NULL,
`ua_authority_a_id` INT NOT NULL,
PRIMARY KEY (`ua_id`),
INDEX `index2` (`ua_user_kid_uk_id` ASC),
INDEX `index3` (`ua_authority_a_id` ASC));
CREATE TABLE `user_authority` (
`ua_id` int(11) NOT NULL AUTO_INCREMENT,
`ua_user_kid_uk_id` int(11) NOT NULL,
`ua_authority_a_id` int(11) DEFAULT NULL,
PRIMARY KEY (`ua_id`),
INDEX `index2` (`ua_user_kid_uk_id` ASC),
INDEX `index3` (`ua_authority_a_id` ASC));
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('admin', 'Admin');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('members', 'Tagok');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('trainings', 'Edzések');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('presence', 'Jelenlét');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('coaches', 'Edzők');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('money_deposit', 'Befizetések');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('money_expense', 'Kiadások');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('money_income', 'Bevételek');
INSERT INTO `authority` (`a_name`, `a_title`) VALUES ('settings', 'Beállítások');

4
queries/trt_default_price_20190718.sql
View File

@@ -1,5 +1,5 @@
ALTER TABLE `badminton_coach`.`training_type` ALTER TABLE `training_type`
ADD COLUMN `trt_default_price` INT NULL DEFAULT NULL AFTER `trt_deleted`; ADD COLUMN `trt_default_price` INT NULL DEFAULT NULL AFTER `trt_deleted`;
ALTER TABLE `badminton_coach`.`training` ALTER TABLE `training`
ADD COLUMN `tr_price` INT NULL DEFAULT NULL AFTER `tr_deleted`; ADD COLUMN `tr_price` INT NULL DEFAULT NULL AFTER `tr_deleted`;

1
template/templates/access_denied.tpl Normal file
View File

@@ -0,0 +1 @@
<h2>Nincs jogosultsága ehhez a menüponthoz!</h2>

39
template/templates/coach_create.tpl
View File

@@ -12,10 +12,21 @@
<div><input type="checkbox" name="ua_can_login" id="ua_can_login"></div> <div><input type="checkbox" name="ua_can_login" id="ua_can_login"></div>
</div> </div>
<div id="password"> <div id="password" class="admin_area">
<label class="desc" id="title1" for="ua_password">Jelszó:</label> <label class="desc" for="ua_password">Jelszó:</label>
<div><input type="text" name="ua_password" id="ua_password"></div> <div><input type="text" name="ua_password" id="ua_password"></div>
</div> </div>
<div class="admin_area">
<label>Jogosultságok:</label>
<table id="authorities">
{foreach $a_array as $a}
<tr id="a_{$a->get_a_id()}">
<td><label for="authority_{$a->get_a_id()}">{$a->get_a_title()}</label></td>
<td><input class="authorities" value="{$a->get_a_id()}" type="checkbox" name="authorities[]" id="authority_{$a->get_a_id()}"></td>
</tr>
{/foreach}
</table>
</div>
<div> <div>
<div> <div>
@@ -26,14 +37,30 @@
</form> </form>
</div> </div>
<script type="text/javascript"> <script type="text/javascript">
$( document ).ready(function() { $(document).ready(function() {
$("#password").hide(); $(".admin_area").hide();
}); });
$('#ua_can_login').click(function() { $('#ua_can_login').click(function() {
$("#password").toggle(this.checked); $(".admin_area").toggle(this.checked);
}); });
$('.authorities').on('change', function () {
if ($('#authority_1').is(':checked')) {
$('.authorities').each(function (k,v) {
if ($(v).val() > 1) {
$(this).prop('checked', false);
$(this).prop('disabled', true);
}
});
}
else {
$('.authorities').each(function (k,v) {
if ($(v).val() > 1) {
$(this).removeAttr('disabled');
}
});
}
});
</script> </script>

38
template/templates/coach_data_edit.tpl
View File

@@ -13,7 +13,7 @@
<div> <div>
<label class="desc" id="title1" for="ua_can_login">Admin:</label> <label class="desc" id="title1" for="ua_can_login">Be tud lépni:</label>
<div><input type="checkbox" name="ua_admin" id="ua_admin" {if $coach->get_ua_admin()}checked{/if}></div> <div><input type="checkbox" name="ua_admin" id="ua_admin" {if $coach->get_ua_admin()}checked{/if}></div>
</div> </div>
@@ -22,6 +22,18 @@
<div><input type="text" name="ua_password" id="ua_password"></div> <div><input type="text" name="ua_password" id="ua_password"></div>
</div> </div>
<div class="admin_area">
<label>Jogosultságok:</label>
<table id="authorities">
{foreach $a_array as $a}
<tr id="a_{$a->get_a_id()}">
<td><label for="authority_{$a->get_a_id()}">{$a->get_a_title()}</label></td>
<td><input class="authorities" value="{$a->get_a_id()}" type="checkbox" name="authorities[]" id="authority_{$a->get_a_id()}" {if $coach->has_authority($a->get_a_id())}checked{/if}></td>
</tr>
{/foreach}
</table>
</div>
<div> <div>
<div> <div>
<input class="button black" type="submit" value="Mentés"> <input class="button black" type="submit" value="Mentés">
@@ -30,3 +42,27 @@
</form> </form>
</div> </div>
<script type="text/javascript">
$('.authorities').on('change', function () {
if ($('#authority_1').is(':checked')) {
$('.authorities').each(function (k,v) {
if ($(v).val() > 1) {
$(this).prop('checked', false);
$(this).prop('disabled', true);
}
});
}
else {
$('.authorities').each(function (k,v) {
if ($(v).val() > 1) {
$(this).removeAttr('disabled');
}
});
}
});
$(document).ready(function() {
$('.authorities').trigger('change');
});
</script>

30
template/templates/training_data_edit.tpl
View File

@@ -30,6 +30,11 @@
<div><input type="text" name="tr_duration" id="tr_duration" value="{$training_data.tr_duration}" required></div> <div><input type="text" name="tr_duration" id="tr_duration" value="{$training_data.tr_duration}" required></div>
</div> </div>
<div>
<label class="desc" for="tr_price">Ár:</label>
<div><input type="text" name="tr_price" id="tr_price" value="{$training_data.tr_price}" required></div>
</div>
<div> <div>
<label class="desc" for="tr_note">Megjegyzés:</label> <label class="desc" for="tr_note">Megjegyzés:</label>
<div> <div>
@@ -63,3 +68,28 @@
</form> </form>
</div> </div>
<script type="text/javascript">
$('#tr_training_type_trt_id').on('change', function(e) {
//get trt default price by ajax
let selectedType = $('#tr_training_type_trt_id option:selected').val();
$.ajax({
url: '/_ajax/get_trt_default_price.php',
//method: 'GET',
data: {
'trt_id' : selectedType
},
success: function(data, status, jqXHR) {
let pdata = JSON.parse(data);
console.log(pdata);
if (null === pdata) {
$('#tr_price').val('');
return;
}
$('#tr_price').val(pdata);
}
});
});
</script>