function isHierarch($node) {
global $db;
- $user_id=$_SESSION['user_id'];
+ if (IsSet($_SESSION['user_id'])) {
+ $user_id=$_SESSION['user_id'];
+ } else {
+ $user_id=0;
+ }
if (!$user_id) return false;
+
$node_vector=chunk_split($node['node_vector'],VECTOR_CHARS,';');
$hierarchy=explode(';',$node_vector);
foreach ($hierarchy as $hierarch) {
}
-function checkPermissions($node) {
+public static function checkPermissions($node) {
global $db;
-$user_id=$_SESSION['user_id'];
+if (IsSet($_SESSION['user_id'])) {
+ $user_id=$_SESSION['user_id'];
+} else {
+ $user_id=0;
+}
/*
thousand lights // OMGto Hierarchy!
elseif ($result->getString('node_permission')!='') {
array_pop($hierarchy_bounce);
$node['node_permission']=$result->getString('node_permission');
- $q="update node_access set node_permission='".$result->getString('node_permission')."' where node_id='".$node['node_id']."' and user_id='".$user_id"'";
+ $q="update node_access set node_permission='".$result->getString('node_permission')."' where node_id='".$node['node_id']."' and user_id='".$user_id."'";
$updated=$db->update($q);
if (!$updated && IsSet($_SESSION['user_id'])) {
- $q="insert into node_access set node_permission='".$result->getString('node_permission')."', node_id='".$node['node_id']."',user_id='".$_SESSION['user_id']."'";
+ $q="insert into node_access set node_permission='".$result->getString('node_permission')."', node_id='".$node['node_id']."',user_id='".$user_id."'";
$db->query($q);
}
break;
elseif ($result->getString('node_creator')==$user_id) {
array_pop($hierarchy_bounce);
$node['node_permission']='access';
- $q="update node_access set node_permission='access' where node_id='".$node['node_id']."' and user_id='".$_SESSION['user_id']."'";
+ $q="update node_access set node_permission='access' where node_id='".$node['node_id']."' and user_id='".$user_id."'";
$updated=$db->update($q);
if (!$updated && IsSet($_SESSION['user_id'])) {
- $q="insert into node_access set node_permission='access', node_id='".$node['node_id']."',user_id='".$_SESSION['user_id']."'";
+ $q="insert into node_access set node_permission='access', node_id='".$node['node_id']."',user_id='".$user_id."'";
$db->query($q);
}
break;
//setting permissions for not logged in users
-if ($_SESSION['user_id']==$node['node_creator']) {
- $permissions['r']=true;
- $permissions['w']=true;
+if ($user_id==$node['node_creator']) {
+ $permissions['r']=true;
+ $permissions['w']=true;
}
-elseif (!$_SESSION['user_id']) {
+elseif (!$user_id) {
if ($node['node_external_access']=='yes' AND ($node['node_system_access']=='public' OR $node['node_system_access']=='moderated' OR $node['node_system_access']=='cube')) {
$permissions['r']=true;
GIT.Harvie.CZ / mirrors / Kyberia-bloodline.git / blobdiff