| Server IP : 119.59.102.212 / Your IP : 3.133.157.170 Web Server : Apache/2 System : Linux narin 2.6.32-042stab142.1 #1 SMP Tue Jan 28 23:44:17 MSK 2020 x86_64 User : yangkam ( 1022) PHP Version : 5.6.40 Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/yangkam/domains/yangkam.go.th/public_html/coremain/module/user/ |
Upload File : |
<?php
// Status Package Module
$status_module=select_query("status_module","cms_status_module","id","9");
if($status_module[0]!=1) {
//fieldset_no_module();
}
// permssion
if($_SESSION[admin_web]!="admin" and !id_top_permission("health_system_admin")){
permission_fail();
}
import_request_variables('pG', 'p_');
if($p_id_user!="") { $id_user=trim($p_id_user); }
if($p_access!="") { $access=trim($p_access); }
if($p_hide!="") { $access=trim($p_hide); }
if($p_get_type!="") { $get_type=trim($p_get_type); }
if($get_type=="") $get_type=1;
$navig['manage_user']="จัดการระบบสมาชิก";
$navig['manage_user_permision']="จัดการสิทธิ์การเข้าถึง";
navigator($navig);
echo "<br>";
bar_header("จัดการสิทธิ์การเข้าถึง");
fieldset_top("จัดการสิทธิ์การเข้าถึง");
// CHECK ว่าเป็นผู้ดูแลระบบหรือว่าสมาชิกทั่วไป
$sql_="SELECT levels FROM cms_main_user WHERE id_user='$id_user'";
$re_=mysql_query($sql_);
$data_=mysql_fetch_array($re_);
if($data_[0]=="admin"){
echo "<font color='000000'><center><b>ไม่สามารถจัดการสิทธิ์ของ USER นี้ได้<br><br>เนื่องจากเป็นสิทธิ์ของผู้ดูแลระบบสูงสุด</b></font><br><br>";
fieldset_down();
include("coremain/footer.php");
exit;
}
// Bar_Header
//get array of permission from database
$array_permission = select_query_data("module_access","cms_main_user","id_user",$id_user);
if($array_permission!="")
$array_permission = explode(",",$array_permission);
else
$array_permission = array();
// open-closed module access
if($access!=""){
if($_GET[status]==1)
{ // prevent duplicate data
if(!in_array($access,$array_permission))
{
array_push($array_permission,$access);
}
}
else if($_GET[status]==0)
{
if(is_numeric($access)){
unset($array_permission[$access]);
}
else
{
$key_to_del = array_keys($array_permission,$access);
//print_r ($key_to_del);
$key_to_del[0];
unset($array_permission[$key_to_del[0]]);
}
}
$str_input = implode(",",$array_permission);
$sql = "UPDATE cms_main_user SET module_access='$str_input' WHERE id_user = $id_user";
query("UPDATE cms_main_user SET module_access='$str_input' WHERE id_user = $id_user");
}
// Menu
echo "<center><b>";
// ################## MIS #############
echo "<table width='100%' border='0' align='center' cellpadding='1' cellspacing='1' bgcolor='$_SESSION[tb_bgcolor]'>";
echo "<tr height='20' bgcolor='$_SESSION[tb_head_bgcolor]'>";
echo "<td align='center' width='10%'>";
echo "<b>ลำดับ</b>";
echo "</td>";
echo "<td align='center'>";
echo "<b>ชื่อโมดูล</b>";
echo "</td>";
echo "<td align='center'>";
echo "<b>สิทธิ์</b>";
echo "</td>";
echo "</tr>";
// check if admin health or biggest admin
$check_admin = explode (",",$_SESSION[module_access]);
if(in_array("health_system_admin",$check_admin) or $_SESSION[admin_web]=="admin")
{
// ##################### admin health_system_admin
echo" <tr height='20' bgcolor='dddddd'>";
echo "<td colspan=3> <b>สิทธิผู้ดูแลระบบ </b></td>";
echo "</tr>";
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> 1 </td>";
echo "<td> ผู้ดูแลระบบ </td>";
echo "<td align='center'>";
if(in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=health_system_admin&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=health_system_admin&status=1");
echo "</td>";
echo "</tr>";
//#########################################################
echo" <tr height='20' bgcolor='dddddd'>";
echo "<td> </td><td colspan=2> <b>ระบบการขอใบอนุญาตต่าง ๆ </b></td>";
echo "</tr>";
// ################## Module ##################
// #########################Step1
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> ตรวจสอบเอกสาร </td>";
echo "<td align='center'>";
if(in_array("step1",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step1&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step1&status=1");
echo "</td>";
echo "</tr>";
// ###################### Step2
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> ออกใบนัดตรวจ </td>";
echo "<td align='center'>";
if(in_array("step2",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step2&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step2&status=1");
echo "</td>";
echo "</tr>";
// ###################### Step3
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> จัดเก็บเอกสาร </td>";
echo "<td align='center'>";
if(in_array("step3",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step3&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step3&status=1");
echo "</td>";
echo "</tr>";
// ###################### Step4
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> ออกค่าธรรมเนียม </td>";
echo "<td align='center'>";
if(in_array("step4",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step4&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step4&status=1");
echo "</td>";
echo "</tr>";
// ###################### Step5
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> ออกใบอนุญาต </td>";
echo "<td align='center'>";
if(in_array("step5",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step5&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step5&status=1");
echo "</td>";
echo "</tr>";
//#####################################################
echo" <tr height='20' bgcolor='dddddd'>";
echo "<td> </td><td colspan=2> <b> รายงาน </b></td>";
echo "</tr>";
// ################## Module ##################
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> รายงานสถานะการขออนุญาต </td>";
echo "<td align='center'>";
if(in_array("step6",$array_permission ) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step6&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step6&status=1");
echo "</td>";
echo "</tr>";
echo" <tr height='20' bgcolor='eeeeee'>";
echo "<td align='center'> </td>";
echo "<td> ดูรายงานแสดงสถานะรายได้ </td>";
echo "<td align='center'>";
if(in_array("step7",$array_permission) or in_array("health_system_admin",$array_permission)){
$access = array_keys($array_permission,$menu_list["id_top"]);
box_hide("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step7&status=0");
}else
box_show("index.php?get_type=2&mod=health_manage_permission&path=user&id_user=$id_user&access=step7&status=1");
echo "</td>";
echo "</tr>";
}
echo "</table>";
fieldset_down();
?>