| | |
|---|
| | | switch($key) { |
|---|
| | | case 'sys_userid': |
|---|
| | | // check if userid is valid |
|---|
| | | $check = $app->db->queryOneRecord('SELECT userid FROM sys_user WHERE userid = ' . $app->functions->intval($value)); |
|---|
| | | $check = $app->db->queryOneRecord('SELECT userid FROM sys_user WHERE userid = ?', $app->functions->intval($value)); |
|---|
| | | if(!$check || !$check['userid']) { |
|---|
| | | $this->server->fault('invalid parameters', $value . ' is no valid sys_userid.'); |
|---|
| | | return false; |
|---|
| | | } |
|---|
| | | $value = $app->functions->intval($value); |
|---|
| | | $permissions[$key] = $app->functions->intval($value); |
|---|
| | | break; |
|---|
| | | case 'sys_groupid': |
|---|
| | | // check if groupid is valid |
|---|
| | | $check = $app->db->queryOneRecord('SELECT groupid FROM sys_group WHERE groupid = ' . $app->functions->intval($value)); |
|---|
| | | $check = $app->db->queryOneRecord('SELECT groupid FROM sys_group WHERE groupid = ?', $app->functions->intval($value)); |
|---|
| | | if(!$check || !$check['groupid']) { |
|---|
| | | $this->server->fault('invalid parameters', $value . ' is no valid sys_groupid.'); |
|---|
| | | return false; |
|---|
| | | } |
|---|
| | | $value = $app->functions->intval($value); |
|---|
| | | $permissions[$key] = $app->functions->intval($value); |
|---|
| | | break; |
|---|
| | | case 'sys_perm_user': |
|---|
| | | case 'sys_perm_group': |
|---|
| | |
|---|
| | | if(strpos($value, 'i') !== false) $newvalue .= 'i'; |
|---|
| | | if(strpos($value, 'u') !== false) $newvalue .= 'u'; |
|---|
| | | if(strpos($value, 'd') !== false) $newvalue .= 'd'; |
|---|
| | | $value = $newvalue; |
|---|
| | | $permissions[$key] = $newvalue; |
|---|
| | | unset($newvalue); |
|---|
| | | |
|---|
| | | break; |
|---|
