1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
|
<?php
class PermissionDbUpdate {
// insert new user_x_role to database. "ignore" to ignore duplicate entry try
public static function addRoleToUser($users, $roles) {
foreach($users AS $user) {
foreach ($roles AS $role) {
$query = "INSERT IGNORE INTO user_x_role (userid, roleid) VALUES (:user, :role)";
Database::exec($query, array("user" => $user, "role" => $role));
}
}
}
// remove user_x_role entry from database
public static function removeRoleFromUser($users, $roles) {
foreach($users AS $user) {
foreach ($roles AS $role) {
$query = "DELETE FROM user_x_role WHERE userid = :user AND roleid = :role";
Database::exec($query, array("user" => $user, "role" => $role));
}
}
}
// delete role, delete user_x_role relationships, delete role_x_location relationships, delete role_x_permission relationships
public static function deleteRole($id) {
$query = "DELETE FROM role WHERE id = :id";
Database::exec($query, array("id" => $id));
$query = "DELETE FROM user_x_role WHERE roleid = :id";
Database::exec($query, array("id" => $id));
$query = "DELETE FROM role_x_location WHERE roleid = :id";
Database::exec($query, array("id" => $id));
$query = "DELETE FROM role_x_permission WHERE roleid = :id";
Database::exec($query, array("id" => $id));
}
public static function saveRole($roleName, $locations, $permissions, $role = NULL) {
if ($role) {
Database::exec("UPDATE role SET name = :roleName WHERE id = :role",
array("roleName" => $roleName, "role" => $role));
Database::exec("DELETE FROM role_x_location WHERE roleid = :role", array("role" => $role));
Database::exec("DELETE FROM role_x_permission WHERE roleid = :role", array("role" => $role));
} else {
Database::exec("INSERT INTO role (name) VALUES (:roleName)", array("roleName" => $roleName));
$role = Database::lastInsertId();
}
foreach ($locations as $locID) {
Database::exec("INSERT INTO role_x_location (roleid, locid) VALUES (:role, :locid)",
array("role" => $role, "locid" => $locID));
}
foreach ($permissions as $permission) {
Database::exec("INSERT INTO role_x_permission (roleid, permissionid) VALUES (:role, :permission)",
array("role" => $role, "permission" => $permission));
}
}
}
|
