X-Git-Url: http://wagnertech.de/git?a=blobdiff_plain;f=role_add.php;h=d26cb6ad03d97c13e8a41db3acb42c0b32a137fe;hb=a490f47a3440b85efc7ef9c1795dd59dac60c83b;hp=de25f70c3cd937a2cbe57917b61d3503b0f18ff3;hpb=8ccdc0ed79c1703162607702c6846d2c76a7a755;p=timetracker.git diff --git a/role_add.php b/role_add.php index de25f70c..d26cb6ad 100644 --- a/role_add.php +++ b/role_add.php @@ -32,7 +32,7 @@ import('ttTeamHelper'); import('ttRoleHelper'); // Access check. -if (!ttAccessCheck(right_manage_team)) { +if (!ttAccessAllowed('manage_roles')) { header('Location: access_denied.php'); exit(); } @@ -40,26 +40,26 @@ if (!ttAccessCheck(right_manage_team)) { if ($request->isPost()) { $cl_name = trim($request->getParameter('name')); $cl_description = trim($request->getParameter('description')); - $cl_rank = (int) $request->getParameter('rank'); + $cl_rank = (int)$request->getParameter('rank'); } $form = new Form('roleForm'); $form->addInput(array('type'=>'text','maxlength'=>'100','name'=>'name','style'=>'width: 250px;','value'=>$cl_name)); $form->addInput(array('type'=>'textarea','name'=>'description','style'=>'width: 250px; height: 40px;','value'=>$cl_description)); -for ($i = 0; $i < $user->role; $i++) { - $existing_role_name = null; +for ($i = 0; $i < $user->rank; $i++) { $rank_data[] = $i; } $form->addInput(array('type'=>'combobox','name'=>'rank','data'=>$rank_data)); -$form->addInput(array('type'=>'submit','name'=>'btn_submit','value'=>$i18n->getKey('button.submit'))); +$form->addInput(array('type'=>'submit','name'=>'btn_submit','value'=>$i18n->get('button.submit'))); if ($request->isPost()) { // Validate user input. - if (!ttValidString($cl_name)) $err->add($i18n->getKey('error.field'), $i18n->getKey('label.thing_name')); - if (!ttValidString($cl_description, true)) $err->add($i18n->getKey('error.field'), $i18n->getKey('label.description')); + if (!ttValidString($cl_name)) $err->add($i18n->get('error.field'), $i18n->get('label.thing_name')); + if (!ttValidString($cl_description, true)) $err->add($i18n->get('error.field'), $i18n->get('label.description')); + if ($cl_rank >= $user->rank || $cl_rank < 0) $err->add($i18n->get('error.field'), $i18n->get('form.roles.rank')); if ($err->no()) { - $existing_role = ttRoleHelper::getRoleByRank($cl_rank); + $existing_role = ttRoleHelper::getRoleByRank($cl_rank, $user->team_id); if (!$existing_role) { // Insert a role with default user rights. if (ttRoleHelper::insert(array( @@ -67,18 +67,18 @@ if ($request->isPost()) { 'name' => $cl_name, 'rank' => $cl_rank, 'description' => $cl_description, - 'rights' => 'data_entry,view_own_reports,view_own_charts,manage_own_settings,view_users', // Default user rights. + 'rights' => 'track_own_time,track_own_expenses,view_own_reports,view_own_charts,manage_own_settings,view_users', // Default user rights. 'status' => ACTIVE))) { header('Location: roles.php'); exit(); } else - $err->add($i18n->getKey('error.db')); + $err->add($i18n->get('error.db')); } else - $err->add($i18n->getKey('error.role_exists')); + $err->add($i18n->get('error.role_exists')); } } // isPost $smarty->assign('forms', array($form->getName()=>$form->toArray())); -$smarty->assign('title', $i18n->getKey('title.add_role')); +$smarty->assign('title', $i18n->get('title.add_role')); $smarty->assign('content_page_name', 'role_add.tpl'); $smarty->display('index.tpl');