home/autoph/public_html/connectv1/api/controllers/role.php000064400000010077150310461350017772 0ustar00 '' && $limit <> ''){ $offset_limit = " LIMIT $offset,$limit"; } $query="SELECT * FROM `employee_role` WHERE name LIKE '%$search%' AND status = 1 /*AND id <> 1*/ ORDER BY name ASC $offset_limit"; // echo $query; return $db -> return_result($query); } function read_role_by_id($role_id,$db){ $query="SELECT * FROM `employee_role_access` WHERE employee_role_id = '$role_id' AND status = 1"; // print_r( $db -> return_result($query)); return $db -> return_result($query); } function create_company_access_role($role_id,$data_to_insert,$db){ $query = "INSERT INTO `employee_role_access`(`employee_role_id`, `company_permissions`, `status`) VALUES ('$role_id','$data_to_insert','1')"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function update_company_access_role($role_id,$data_to_insert,$db){ $query = "UPDATE `employee_role_access` SET `company_permissions`='$data_to_insert',`timestamp`= NOW() WHERE employee_role_id = '$role_id'"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } //modify function update_dealer_access_role($role_id,$data_to_insert,$db){ // echo "UPDATE `employee_role_access` SET `dealer_permissions`='$data_to_insert',`timestamp`= NOW() WHERE employee_role_id = '$role_id'" $query = "UPDATE `employee_role_access` SET `dealer_permissions`='$data_to_insert',`timestamp`= NOW() WHERE employee_role_id = '$role_id'"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function create_access_role($role_id,$data_to_insert,$db){ $query = "INSERT INTO `employee_role_access`(`employee_role_id`, `action_permissions`, `status`) VALUES ('$role_id','$data_to_insert','1')"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function create_access_fields($role_id,$data_to_insert,$db){ $query = "INSERT INTO `employee_role_access`(`employee_role_id`, `fields_permissions`, `status`) VALUES ('$role_id','$data_to_insert','1')"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function delete_role($role_id,$db){ $query = "UPDATE `employee_role` SET `status`= '0' WHERE `id` = '$role_id' "; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function update_access_role($role_id,$data_to_insert,$db){ $query = "UPDATE `employee_role_access` SET `action_permissions`='$data_to_insert',`timestamp`= NOW() WHERE employee_role_id = '$role_id'"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function update_access_fields($role_id,$data_to_insert,$db){ $query = "UPDATE `employee_role_access` SET `fields_permissions`='$data_to_insert',`timestamp`= NOW() WHERE employee_role_id = '$role_id'"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function update_role_name($role_id,$name,$db){ $query = "UPDATE `employee_role` SET `name`='$name' WHERE id = '$role_id'"; $rows_affected = $db->sql_query_num_inserted($query); return $rows_affected; } function read_user_account_by_role_id($role_id,$db){ $query = "SELECT count(id) FROM `employee_account` WHERE `employee_role_id` = '$role_id' "; return $db->select($query); } function read_company_access_role_by_id($id,$db){ } } ?> home/autoph/public_html/connectv1/api/role/role.php000064400000016545150314533270016400 0ustar00 escape($_REQUEST['search']) : '' ; $offset = isset($_REQUEST['offset']) ? $db -> escape($_REQUEST['offset']) : '' ; $limit = isset($_REQUEST['limit']) ? $db -> escape($_REQUEST['limit']) : '' ; $role_list = $role->read_roles($search,$offset,$limit,$db); $json = array(); foreach($role_list as $role){ $json[] = ['role_id'=>$role['id'], 'role_name'=>$role['name']]; } echo json_encode($json); }else if($apiKey === '2041618739067217' ){ //Get Interest Content $company_access = isset($_REQUEST['company_access']) ? $_REQUEST['company_access'] : '[]' ; $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; $current_role_count = $role->read_role_by_id($role_id,$db); if(count($current_role_count) > 0){ $role_inserted_count = $role->update_company_access_role($role_id,$company_access,$db); }else{ $role_inserted_count = $role->create_company_access_role($role_id,$company_access,$db); } if(intval($role_inserted_count) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role Data Updated"; }else{ $return_arr["status"]=0; $return_arr["message"]="Role Data Not Updated"; } echo json_encode($return_arr); }else if($apiKey === '20416187390672170' ){ //Get Interest Content $dealer_access = isset($_REQUEST['dealer_access']) && !empty($_REQUEST['dealer_access']) ? $_REQUEST['dealer_access'] : '' ; $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; // echo $dealer_access;exit; $delear_ids = str_replace('"', '', $dealer_access); // echo $delear_ids;exit; $current_role_count = $role->read_role_by_id($role_id,$db); // var_dump(count($current_role_count)); if(count($current_role_count) > 0){ $role_inserted_count = $role->update_dealer_access_role($role_id,$delear_ids,$db); }else{ $role_inserted_count = $role->create_dealer_access_role($role_id,$delear_ids,$db); } if(intval($role_inserted_count) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role Data Updated"; }else{ $return_arr["status"]=0; $return_arr["message"]="Role Data Not Updated"; } echo json_encode($return_arr); }else if($apiKey === '9808804351241327' ){ //Get Interest Content $role_access = isset($_REQUEST['role_access']) ? $_REQUEST['role_access'] : '{}' ; $role_name = isset($_REQUEST['name']) ? $_REQUEST['name'] : '' ; $role_name = $db -> escape($role_name); $role_name = strtoupper($role_name); $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; $current_role_count = $role->read_role_by_id($role_id,$db); if(count($current_role_count) > 0){ $role_inserted_count = $role->update_access_role($role_id,$role_access,$db); }else{ $role_inserted_count = $role->create_access_role($role_id,$role_access,$db); } $role->update_role_name($role_id,$role_name,$db); if(intval($role_inserted_count) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role Data Updated"; }else{ $return_arr["status"]=0; $return_arr["message"]="Role Data Not Updated"; } echo json_encode($return_arr); }else if($apiKey === '2426987890983868' ){ //Get Interest Content $role_access = isset($_REQUEST['role_access']) ? $_REQUEST['role_access'] : '{}' ; $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; $current_role_count = $role->read_role_by_id($role_id,$db); if(count($current_role_count) > 0){ $role_inserted_count = $role->update_access_fields($role_id,$role_access,$db); }else{ $role_inserted_count = $role->create_access_fields($role_id,$role_access,$db); } if(intval($role_inserted_count) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role Data Updated"; }else{ $return_arr["status"]=0; $return_arr["message"]="Role Data Not Updated"; } echo json_encode($return_arr); }else if($apiKey === '5231783702538646' && $utility->isPostMethod($server_method)){ //Get Interest Content $role_access = isset($_REQUEST['role_access']) ? $_REQUEST['role_access'] : '{}' ; $role_name = isset($_REQUEST['name']) ? $_REQUEST['name'] : '' ; $role_name = $db -> escape($role_name); $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; $current_role_count = $role->read_role_by_id($role_id,$db); if(count($current_role_count) > 0){ $role_inserted_count = $role->update_access_role($role_id,$role_access,$db); }else{ $role_inserted_count = $role->create_access_role($role_id,$role_access,$db); } $role->update_role_name($role_id,$role_name,$db); if(intval($role_inserted_count) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role Data Updated"; }else{ $return_arr["status"]=0; $return_arr["message"]="Role Data Not Updated"; } echo json_encode($return_arr); }else if($apiKey === '4507690562484198' && $utility->isPostMethod($server_method)){ //Get Interest Content $role_id = isset($_REQUEST['role_id']) ? $_REQUEST['role_id'] : '-1' ; $current_user_using_role_count = $role->read_user_account_by_role_id($role_id,$db); if($current_user_using_role_count > 0){ // $role_inserted_count = $role->update_access_role($role_id,$role_access,$db); $return_arr["status"]=2; $return_arr["message"]="This role is currently in use."; echo json_encode($return_arr); return; } $affected_rows = $role->delete_role($role_id,$db); if(intval($affected_rows) > 0 ){ $return_arr["status"]=1; $return_arr["message"]="Role has been deleted successfully."; }else{ $return_arr["status"]=0; $return_arr["message"]="Role not deleted."; } echo json_encode($return_arr); }else{ $return_arr["message"]=" You are not allowed to do this action."; echo $return_arr["message"]; return; } }else{ $return_arr["message"]=" You are not allowed to do this action."; echo $return_arr["message"]; return; } home/autoph/public_html/connectv1/app/table/role.php000064400000007376150316252530016536 0ustar00 escape(trim($_GET['search'])); $offset = $db -> escape(trim($_GET['offset'])); if(isset($_GET['limit'])){ $limit = $db -> escape(trim($_GET['limit'])); $offset_limit = " LIMIT ". $offset.",".$limit; }else{ $offset_limit = ""; } $json_arr['rows'] = array(); $count = " count(id) "; $fields = " id,name "; $role_query = "SELECT %s FROM `employee_role` WHERE name like '%%%s%%' and status = 1 ORDER BY name ASC "; // echo sprintf($role_query,$fields,$search)." $offset_limit";return; $role_list_query = $db -> sql_query(sprintf($role_query,$fields,$search)." $offset_limit"); $role_list_query_count = $db -> select(sprintf($role_query,$count,$search)); $menu_arr = array(); $sub_menu_arr = array(); while($row = $role_list_query->fetch_assoc()) { $sidemenu = $db -> return_result("SELECT `id`,`name`, `link`, `icon` FROM `settings_side_menu` WHERE status=1 ORDER by `order_no` ASC"); foreach($sidemenu as $data){ $sub_number = $db -> select("SELECT count(*) FROM `settings_side_menu_sub` WHERE `side_menu_id` = '".$data['id']."' and status = 1"); $role_count = $db -> select("SELECT count(*) FROM `employee_access_side_menu` WHERE `employee_role_id` = '".$row['id']."' AND `side_menu_id` = '".$data['id']."'"); $menu_arr = array_merge( $menu_arr , array($data['id'].'-'.$data['name'] => '{"role_id": "'.$data['id'].'","role_name": "'.$data['name'].'","current_role": "'.$role_count.'","type": "1"}' )); if($sub_number > 0 ){ $sidemenusub = $db -> return_result("SELECT id,`name`, `link`, `icon`, `order_no` FROM `settings_side_menu_sub` WHERE `side_menu_id` = '".$data['id']."' and status = 1 ORDER BY `order_no` ASC"); foreach($sidemenusub as $data2){ $sub_role_count = $db -> select("SELECT count(*) FROM `employee_access_side_menu_sub` WHERE `employee_role_id` = '".$row['id']."' AND `side_menu_sub_id` = '".$data2['id']."'"); $sub_menu_arr = array_merge($sub_menu_arr, array($data2['id'].'-'.$data2['name']=> '{"role_id": "'.$data2['id'].'","role_name": "'.$data2['name'].'","current_role": "'.$sub_role_count.'","type": "2"}' ) ); } } } $final_row_array = array(); $final_row_array = array_merge(array('name'=>$row['name']),array('id'=>$row['id']),$menu_arr); $final_row_array = array_merge($final_row_array,$sub_menu_arr); if($row['id'] == "1" || $row['id'] == "2"){ $final_row_array = array_merge($final_row_array,array("action"=>$row['id'])); }else{ $final_row_array = array_merge($final_row_array,array("action"=>$row['id'])); } if($row['id'] == "1" || $row['id'] == "2"){ $final_row_array = array_merge($final_row_array,array("edit"=>$row['id'])); }else{ $final_row_array = array_merge($final_row_array,array("edit"=>$row['id'])); } // $json_arr['rows1'] = array('name'=>$row['name']); // $json_arr['rows1'] = array_merge($json_arr['rows1'],array('name1'=>$row['name'])); $json_arr['rows'] = array_merge($json_arr['rows'] , array( $final_row_array )); // $json_arr['rows'] = array_merge($json_arr['rows'] , array( // $menu_arr // )); // $json_arr['rows'] = array_merge($json_arr['rows'] , array( // $sub_menu_arr // )); } $json_arr['total'] = $role_list_query_count; //total number of result echo json_encode($json_arr); function isNotEmpty($data){ return preg_match('/\S/', $data); } ?>