X-Git-Url: http://wagnertech.de/gitweb/gitweb.cgi/timetracker.git/blobdiff_plain/1c40fb09e97ff643c80e9b96106d891e6fdbde1b..4d07dc7fef357e5139f35df6271cc15dc6bea955:/WEB-INF/lib/ttRoleHelper.class.php diff --git a/WEB-INF/lib/ttRoleHelper.class.php b/WEB-INF/lib/ttRoleHelper.class.php index 62d2bafe..7e103943 100644 --- a/WEB-INF/lib/ttRoleHelper.class.php +++ b/WEB-INF/lib/ttRoleHelper.class.php @@ -50,6 +50,40 @@ class ttRoleHelper { return false; } + // The getRoleByName looks up a role by name. + static function getRoleByName($role_name) { + + $mdb2 = getConnection(); + global $user; + + $sql = "select id from tt_roless where team_id = $user->team_id and name = ". + $mdb2->quote($role_name)." and (status = 1 or status = 0)"; + $res = $mdb2->query($sql); + + if (!is_a($res, 'PEAR_Error')) { + $val = $res->fetchRow(); + if ($val['id']) + return $val; + } + return false; + } + + // update function updates a role in the database. + static function update($fields) { + global $user; + $mdb2 = getConnection(); + + $id = (int)$fields['id']; + if (isset($fields['name'])) $name_part = 'name = '.$mdb2->quote($fields['name']); + if (isset($fields['description'])) $descr_part = ', description = '.$mdb2->quote($fields['description']); + if (isset($fields['status'])) $status_part = ', status = '.(int)$fields['status']; + if (isset($fields['rights'])) $rights_part = ', rights = '.$mdb2->quote($fields['rights']); + $parts = trim($name_part.$descr_part.$status_part.$rights_part, ','); + $sql = "update tt_roles set $parts where id = $id and team_id = $user->team_id"; + $affected = $mdb2->exec($sql); + return (!is_a($affected, 'PEAR_Error')); + } + // delete - marks the role as deleted. static function delete($role_id) { global $user; @@ -105,10 +139,16 @@ class ttRoleHelper { global $i18n; global $user; + $rights_client = 'view_own_data,manage_own_settings'; + $rights_user = 'data_entry,view_own_data,manage_own_settings,view_users'; + $rights_supervisor = $rights_user.',on_behalf_data_entry,view_data,override_punch_mode,swap_roles,approve_timesheets'; + $rights_comanager = $rights_supervisor.',manage_users,manage_projects,manage_tasks,manage_custom_fields,manage_clients,manage_invoices'; + $rights_manager = $rights_comanager.'manage_features,manage_basic_settings,manage_advanced_settings,manage_roles,export_data,manage_subgroups'; + // Active roles. $name = $mdb2->quote($i18n->getKey('role.user.label')); $description = $mdb2->quote($i18n->getKey('role.user.description')); - $rights = $mdb2->quote('data_entry,view_own_data,manage_own_settings,view_users'); + $rights = $mdb2->quote($rights_user); $sql = "insert into tt_roles (team_id, name, description, rank, rights, status) values($user->team_id, $name, $description, 4, $rights, 1)"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) @@ -116,7 +156,7 @@ class ttRoleHelper { $name = $mdb2->quote($i18n->getKey('role.client.label')); $description = $mdb2->quote($i18n->getKey('role.client.description')); - $rights = $mdb2->quote('data_entry,view_own_data,manage_own_settings,view_users'); // TODO: adjust rights. + $rights = $mdb2->quote($rights_client); $sql = "insert into tt_roles (team_id, name, description, rank, rights, status) values($user->team_id, $name, $description, 16, $rights, 1)"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) @@ -124,7 +164,7 @@ class ttRoleHelper { $name = $mdb2->quote($i18n->getKey('role.comanager.label')); $description = $mdb2->quote($i18n->getKey('role.comanager.description')); - $rights = $mdb2->quote('data_entry,view_own_data,manage_own_settings,view_users'); // TODO: adjust rights. + $rights = $mdb2->quote($rights_comanager); $sql = "insert into tt_roles (team_id, name, description, rank, rights, status) values($user->team_id, $name, $description, 68, $rights, 1)"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) @@ -132,7 +172,7 @@ class ttRoleHelper { $name = $mdb2->quote($i18n->getKey('role.manager.label')); $description = $mdb2->quote($i18n->getKey('role.manager.description')); - $rights = $mdb2->quote('data_entry,view_own_data,manage_own_settings,view_users'); // TODO: adjust rights. + $rights = $mdb2->quote($rights_manager); $sql = "insert into tt_roles (team_id, name, description, rank, rights, status) values($user->team_id, $name, $description, 324, $rights, 1)"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) @@ -141,7 +181,7 @@ class ttRoleHelper { // Inactive roles. $name = $mdb2->quote($i18n->getKey('role.supervisor.label')); $description = $mdb2->quote($i18n->getKey('role.supervisor.description')); - $rights = $mdb2->quote('data_entry,view_own_data,manage_own_settings,view_users'); // TODO: adjust rights. + $rights = $mdb2->quote($rights_supervisor); $sql = "insert into tt_roles (team_id, name, description, rank, rights, status) values($user->team_id, $name, $description, 12, $rights, 0)"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error'))