2008-09-10 05:42:44 +02:00
|
|
|
<?php
|
2011-06-01 12:13:39 +02:00
|
|
|
if(!isset($_SESSION['UID']))
|
|
|
|
$_SESSION['UID'] = -1;
|
|
|
|
|
|
|
|
// CVS import Data
|
|
|
|
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE UID=" . $_SESSION['UID'];
|
|
|
|
$Erg_CVS = mysql_query($SQL_CVS, $con);
|
|
|
|
$_SESSION['CVS'] = mysql_fetch_array($Erg_CVS);
|
|
|
|
|
|
|
|
// Group import Data, if nesseary
|
|
|
|
if(isset($_SESSION['CVS']["GroupID"])) {
|
|
|
|
$SQL_GRP = "SELECT * FROM `UserCVS` WHERE UID=" . $_SESSION['CVS'][ "GroupID" ];
|
|
|
|
$Erg_GRP = mysql_query($SQL_GRP, $con);
|
|
|
|
$_SESSION['CVS_Group'] = mysql_fetch_array($Erg_GRP);
|
|
|
|
|
|
|
|
foreach($_SESSION['CVS'] as $k => $v) {
|
|
|
|
if($v == "G")
|
|
|
|
$_SESSION['CVS'][$k] = $_SESSION['CVS_Group'][$k];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// pagename ermitteln
|
2011-06-01 19:42:57 +02:00
|
|
|
$Page["Name"] = basename($_SERVER['PHP_SELF']);
|
|
|
|
// $Page["Name"] = str_replace($ENGEL_ROOT, '', $_SERVER['PHP_SELF']);
|
2011-06-01 12:13:39 +02:00
|
|
|
|
|
|
|
//recht fuer diese seite auslesen
|
|
|
|
if(isset($_SESSION['CVS'][$Page["Name"]]))
|
|
|
|
$Page["CVS"] = $_SESSION['CVS'][$Page["Name"]];
|
|
|
|
else {
|
2011-06-01 14:30:29 +02:00
|
|
|
echo "SYSTEM ERROR: no right for " . $Page["Name"] . " exists.";
|
2011-06-01 12:13:39 +02:00
|
|
|
die;
|
|
|
|
}
|
|
|
|
|
|
|
|
if($debug) {
|
|
|
|
echo "<pre>\$_SESSION:\n";
|
|
|
|
print_r($_SESSION);
|
|
|
|
echo "</pre>";
|
|
|
|
|
|
|
|
if( strlen($Page["CVS"]) == 0 )
|
|
|
|
echo "<h1><u> CVS ERROR, on page '". $Page["Name"]. "'</u></h1>";
|
|
|
|
else
|
|
|
|
echo "CVS: ". $Page["Name"]. " => '". $Page["CVS"]. "'<br />";
|
|
|
|
}
|
|
|
|
|
|
|
|
function funktion_isLinkAllowed($PageName) {
|
|
|
|
global $_SESSION;
|
|
|
|
|
|
|
|
// separate page parameter
|
|
|
|
$ParameterPos = strpos($PageName, ".php?");
|
|
|
|
|
|
|
|
if($ParameterPos === false)
|
|
|
|
$pName = $PageName;
|
|
|
|
else
|
|
|
|
$pName = substr($PageName, 0, $ParameterPos + 4);
|
|
|
|
|
|
|
|
// check rights
|
|
|
|
if((isset( $_SESSION['CVS'][ $pName ]) === true) && $_SESSION['CVS'][ $pName ] == "Y")
|
|
|
|
return true;
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
function funktion_isLinkAllowed_addLink_OrLinkText( $PageName, $LinkText) {
|
|
|
|
global $url, $ENGEL_ROOT;
|
|
|
|
|
|
|
|
if(funktion_isLinkAllowed( $PageName) === true)
|
|
|
|
return "<a href=\"" . $url. $ENGEL_ROOT . $PageName . "\">" . $LinkText . "</a>";
|
|
|
|
|
|
|
|
return $LinkText;
|
|
|
|
}
|
|
|
|
|
|
|
|
function funktion_isLinkAllowed_addLink_OrEmpty( $PageName, $LinkText) {
|
|
|
|
global $url, $ENGEL_ROOT;
|
|
|
|
|
|
|
|
if(funktion_isLinkAllowed( $PageName) === true)
|
|
|
|
return "<a href=\"" . $url . $ENGEL_ROOT . $PageName . "\">" . $LinkText . "</a>";
|
|
|
|
|
|
|
|
return "";
|
|
|
|
}
|
2008-09-10 05:42:44 +02:00
|
|
|
?>
|