Context Navigation

← Previous Change
Next Change →

Changeset 415 for trunk

Timestamp:

Oct 7, 2012, 8:37:15 PM (12 years ago)

Author:

chronos

Message:

Upraveno: Optimalizace kontroly oprávnění operací.
Upraveno: Načítání skupin odkazů na hlavní stránce.

Location:

Files:

: 7 edited

. (modified) (1 prop)
finance/spotreba.php (modified) (1 diff)
finance/user_state.php (modified) (1 diff)
index.php (modified) (4 diffs)
sql/updates/409.sql (modified) (1 diff)
sql/updates/410.sql (modified) (1 diff)
user.php (modified) (4 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk

Property svn:ignore

old	new
6	6	postfixadmin
7	7	backup
	8	.project
	9	.buildpath
	10	.settings

trunk/finance/spotreba.php

-              r409
+              r415
     $Output = 'Spotřeba zařízení jednotlivých segmentů:<div align="center"><table class="WideTable"><tr><th>Jméno segmentu</th><th>Spotřeba [W]</th><th>Cena [Kč/měsíc]</th></tr>';
     $CelkovaSpotreba = 0;
     $DbResult = $this->Database->query("SELECT * FROM NetworkSegment");
+    $DbResult = $this->Database->query('SELECT * FROM NetworkSegment');
     while($Segment = $DbResult->fetch_array())
+    {
       $DbResult2 = $this->Database->query("SELECT SUM(Consumption) FROM Product WHERE Segment=".$Segment['Id']." AND Used=1");
+      $DbResult2 = $this->Database->query('SELECT SUM(Consumption) FROM Product WHERE Segment='.$Segment['Id'].' AND Used=1');
       $Row2 = $DbResult2->fetch_array();
       $CelkovaSpotreba = $CelkovaSpotreba + $Row2[0];
       $Output .= '<tr><td>'.$Row['Name'].'</td><td align="right">'.$Row2[0].'</td><td align="right">'.$this->System->Modules['Finance']->W2Kc($Row2[0]).'</td></tr>';
+      $Output .= '<tr><td>'.$Segment['Name'].'</td><td align="right">'.$Row2[0].'</td><td align="right">'.$this->System->Modules['Finance']->W2Kc($Row2[0]).'</td></tr>';
+    }
     $Output .= '<tr style="font-weight: Bold;"><td><strong>Celkem</strong></td><td align="right">'.$CelkovaSpotreba.'</td><td align="right">'.$this->System->Modules['Finance']->W2Kc($CelkovaSpotreba).'</td></tr>';

trunk/finance/user_state.php

r413	r415
22	22	if(!$this->System->Modules['User']->CheckPermission('Finance', 'DisplaySubjectState')) return('Nemáte oprávnění');
23	23	$UserId = $this->System->Modules['User']->User['Id'];
24		$DbResult = $this->Database->query('SELECT * FROM Subject WHERE Id=(SELECT Subject FROM Member WHERE Id=(SELECT Customer FROM UserCustomerRel WHERE User='.$UserId.'))');
	24	$DbResult = $this->Database->query('SELECT * FROM Subject WHERE Id=(SELECT Subject FROM Member WHERE Id=(SELECT Customer FROM UserCustomerRel WHERE User='.$UserId.' LIMIT 1))');
25	25	$Subject = $DbResult->fetch_assoc();
26	26	}

trunk/index.php

-              r305
+              r415
   var $ShortTitle = '';
+  function ShowLinks($GroupId)
+  {
+    global $Database;
+    $DbResult = $Database->query('SELECT * FROM `HyperlinkGroup` WHERE `Id`='.$GroupId);
+    $HyperlinkGroup = $DbResult->fetch_assoc();
+  function ShowLinks($HyperlinkGroup)
+  {
     $Output = '';
     $DbResult = $Database->query('SELECT * FROM `Hyperlink` WHERE (`Group`='.$GroupId.') AND (`Enable` = 1)');
+    $DbResult = $this->Database->query('SELECT * FROM `Hyperlink` WHERE (`Group`='.$HyperlinkGroup['Id'].') AND (`Enable` = 1)');
     while($HyperLink = $DbResult->fetch_assoc())
+    {
       if($HyperLink['IconFile'] == '') $HyperLink['IconFile'] = 'clear.png';
         if(substr($HyperLink['URL'], 0, 4) != 'http') $HyperLink['URL'] = $this->System->Config['Web']['RootFolder'].$HyperLink['URL'];
         if(($HyperLink['PermissionModule'] == '') or (($HyperLink['PermissionModule'] != '') and $this->System->Modules['User']->CheckPermission($HyperLink['PermissionModule'], $HyperLink['PermissionOperation'])))
+        if(($HyperLink['PermissionModule'] == '') or (($HyperLink['PermissionModule'] != '') and $this->System->Modules['User']->Models['User']->CheckPermission($HyperLink['PermissionModule'], $HyperLink['PermissionOperation'])))
         $Output .= '<img alt="'.$HyperLink['Name'].'" src="images/favicons/'.$HyperLink['IconFile'].'" width="16" height="16" /> <a href="'.$HyperLink['URL'].'">'.$HyperLink['Name'].'</a><br />';
+    }
 …
     if($this->System->Modules['User']->CheckPermission('Finance', 'DisplaySubjectState'))
+    {
       $DbResult = $this->Database->select('Subject', 'Money', 'Id=(SELECT Subject FROM Member WHERE Id=(SELECT Member FROM User WHERE Id='.$this->System->Modules['User']->User['Id'].'))');
+      $DbResult = $this->Database->select('MemberPayment', 'Cash', 'Member=(SELECT Customer FROM UserCustomerRel WHERE Id='.$this->System->Modules['User']->User['Id'].')');
       if($DbResult->num_rows > 0)
+      {
         $DbRow = $DbResult->fetch_assoc();
         $Output2 .= ' &nbsp;  &nbsp; <img alt="" src="images/favicons/money.png" width="16" height="16" /> '.$DbRow['Money'].' Kč';
+        $Output2 .= ' &nbsp;  &nbsp; <img alt="" src="images/favicons/money.png" width="16" height="16" /> '.$DbRow['Cash'].' Kč';
+      }
+    }
 …
     $Database->select_db($Config['Database']['Database']);
+    $DbResult = $Database->query('SELECT * FROM `HyperlinkGroup`');
+    while($DbRow = $DbResult->fetch_assoc())
+      $HyperlinkGroups[$DbRow['Id']] = $DbRow;
     // Show pannels
     //if(IsInternetAddr()) echo('Internet'); else echo('LAN');
     //$Output .= $this->InfoBar();
+    $Output .= $this->InfoBar();
     $Output .= '<table id="MainTable"><tr>';
     $DbResult = $Database->select('PanelColumn', '*');
 …
         else $Width = '';
       $Output .= '<td valign="top"'.$Width.'>';
       $DbResult2 = $Database->query('SELECT * FROM  `Panel` WHERE `PanelColumn`='.$PanelColumn['Id'].' ORDER BY `Order`');
+      $DbResult2 = $Database->query('SELECT * FROM `Panel` WHERE `PanelColumn`='.$PanelColumn['Id'].' ORDER BY `Order`');
       while($Panel = $DbResult2->fetch_assoc())
+      {
         if($Panel['Module'] == 'HyperlinkGroup') $Output .= $this->ShowLinks($Panel['Parameters']);
+        if($Panel['Module'] == 'HyperlinkGroup') $Output .= $this->ShowLinks($HyperlinkGroups[$Panel['Parameters']]);
         else if($Panel['Module'] == 'OnlineHostList') $Output .= $this->Panel('Online počítače', $this->OnlineHostList());
         else if($Panel['Module'] == 'UserOptions')

trunk/sql/updates/409.sql

r409	r415
6	6	CHANGE `pos` `Pos` INT( 11 ) NOT NULL DEFAULT '0',
7	7	CHANGE `first` `First` INT( 11 ) NOT NULL DEFAULT '0',
8		CHANGE `last` `Last` INT( 11 ) NOT NULL DEFAULT '0'
	8	CHANGE `last` `Last` INT( 11 ) NOT NULL DEFAULT '0';
9	9
10	10

trunk/sql/updates/410.sql

-              r410
+              r415
 ALTER TABLE `UserCustomerRel`
   ADD CONSTRAINT `usercustomerrel_ibfk_2` FOREIGN KEY (`User`) REFERENCES `user` (`Id`),
   ADD CONSTRAINT `usercustomerrel_ibfk_1` FOREIGN KEY (`Customer`) REFERENCES `member` (`Id`);
+  ADD CONSTRAINT `usercustomerrel_ibfk_2` FOREIGN KEY (`User`) REFERENCES `User` (`Id`),
+  ADD CONSTRAINT `usercustomerrel_ibfk_1` FOREIGN KEY (`Customer`) REFERENCES `Member` (`Id`);
 INSERT INTO `UserCustomerRel` (SELECT NULL as Id, Member as Customer, Id AS User FROM User WHERE Member IS NOT NULL);

trunk/user.php

-              r410
+              r415
   var $AnonymousUserId = 98;
   var $OnlineStateTimeout = 600; // in seconds
+  var $PermissionCache = array();
   function Check()
 …
     if($Row['User'] != $this->AnonymousUserId)
+    {
       $Query = $this->Database->query('SELECT *, UserCustomerRel.Customer AS Member FROM User JOIN UserCustomerRel ON UserCustomerRel.User=User.Id WHERE User.Id='.$Row['User']);
+      $Query = $this->Database->query('SELECT User.*, UserCustomerRel.Customer AS Member FROM User JOIN UserCustomerRel ON UserCustomerRel.User=User.Id WHERE User.Id='.$Row['User']);
       $this->User = $Query->fetch_assoc();
       $Result = USER_LOGGED;
 …
   function CheckPermission($Module, $Operation, $ItemType = '', $ItemIndex = 0)
+  {
+        $DbResult = $this->Database->select('PermissionOperation', 'Id', '`Module`="'.$Module.'" AND `Item`="'.$ItemType.'" AND `ItemId`='.$ItemIndex.' AND `Operation`="'.$Operation.'"');
+    if($DbResult->num_rows > 0)
+    {
+      $DbRow = $DbResult->fetch_array();
+      $OperationId = $DbRow['Id'];
+    // First try to check cache
+    if(in_array(array($Module, $Operation, $ItemType, $ItemType), $this->PermissionCache))
+    {
+      $OperationId = array_search(array($Module, $Operation, $ItemType, $ItemType), $this->PermissionCache);
+      $PermissionExists = is_numeric($OperationId);
+    } else
+    {
+      // If no permission combination exists in cache, do new check of database items
+      $DbResult = $this->Database->select('PermissionOperation', 'Id', '`Module`="'.$Module.'" AND `Item`="'.$ItemType.'" AND `ItemId`='.$ItemIndex.' AND `Operation`="'.$Operation.'"');
+      if($DbResult->num_rows > 0)
+      {
+        $DbRow = $DbResult->fetch_array();
+        $OperationId = $DbRow['Id'];
+        $this->PermissionCache[$DbRow['Id']] = array($Module, $Operation, $ItemType, $ItemType);
+        $PermissionExists = true;
+      } else
+      {
+        $this->PermissionCache[$DbRow['Id'].'_'] = array($Module, $Operation, $ItemType, $ItemType);
+        $PermissionExists = false;
+      }
+    }
+    if($PermissionExists)
+    {
       // Check user-operation relation
       $DbResult = $this->Database->select('PermissionUserAssignment', '*', '`User`="'.$this->User['Id'].'" AND `AssignedOperation`="'.$OperationId.'"');
 …
       // Check user-group relation
       $DbResult = $this->Database->select('PermissionUserAssignment', 'AssignedGroup', '`User`="'.$this->User['Id'].'" AND `AssignedGroup` IS NOT NULL');
+      $DbResult = $this->Database->select('PermissionUserAssignment', 'AssignedGroup', '`User`="'.$this->User['Id'].'"');
       while($DbRow = $DbResult->fetch_array())
+      {
          if($this->CheckGroupPermission($DbRow['AssignedGroup'], $OperationId) == true) return(true);
+       if($this->CheckGroupPermission($DbRow['AssignedGroup'], $OperationId) == true) return(true);
+      }
       return(false);

Note: See TracChangeset for help on using the changeset viewer.

Download in other formats: