Issues in mygroupperm.php - New Issues - Inspection of "updates" - mambax7/smartfaq - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 2744eb...81ba93 )

by Michael

created 2018-04-01 09:45 UTC

admin/mygroupperm.php (1 issue)

Labels

Bug 1

Severity

Major 1

<?php

/**
 * Module: SmartFAQ
 * Author: The SmartFactory <www.smartfactory.ca>
 * Licence: GNU
 * @param       $db
 * @param       $gperm_modid
 * @param  null $gperm_name
 * @param  null $gperm_itemid
 * @return bool
 */

// defined('XOOPS_ROOT_PATH') || die('Restricted access');

function myDeleteByModule(\XoopsDatabase $db, $gperm_modid, $gperm_name = null, $gperm_itemid = null)
{
    $criteria = new \CriteriaCompo(new \Criteria('gperm_modid', (int)$gperm_modid));
    if (null !== $gperm_name) {
        $criteria->add(new \Criteria('gperm_name', $gperm_name));
        if (null !== $gperm_itemid) {
            $criteria->add(new \Criteria('gperm_itemid', (int)$gperm_itemid));
        }
    }
    $sql = 'DELETE FROM ' . $db->prefix('group_permission') . ' ' . $criteria->renderWhere();
    if (!$result = $db->query($sql)) {
        return false;
    }

    return true;
}

// require_once __DIR__ . '/../../../include/cp_header.php'; GIJ
$modid = \Xmf\Request::getInt('modid', 1, 'POST');
filter:
    dependency_paths: ["lib/*"]
// we dont want system module permissions to be changed here ( 1 -> 0 GIJ)
if ($modid <= 0 || !is_object($xoopsUser) || !$xoopsUser->isAdmin($modid)) {
    redirect_header(XOOPS_URL . '/user.php', 1, _NOPERM);
}
/** @var XoopsModuleHandler $moduleHandler */
$moduleHandler = xoops_getHandler('module');
$module        = $moduleHandler->get($modid);
if (!is_object($module) || !$module->getVar('isactive')) {
    redirect_header(XOOPS_URL . '/admin.php', 1, _MODULENOEXIST);
}
$memberHandler = xoops_getHandler('member');
$group_list    =& $memberHandler->getGroupList();
if (is_array($_POST['perms']) && !empty($_POST['perms'])) {
    $gpermHandler = xoops_getHandler('groupperm');
    foreach ($_POST['perms'] as $perm_name => $perm_data) {
        foreach ($perm_data['itemname'] as $item_id => $item_name) {
            // checking code
            // echo "<pre>" ;
            // var_dump( $_POST['perms'] ) ;
            // exit ;
            if (false !== myDeleteByModule($gpermHandler->db, $modid, $perm_name, $item_id)) {
                if (empty($perm_data['groups'])) {
                    continue;
                }
                foreach ($perm_data['groups'] as $group_id => $item_ids) {
                    //              foreach ($item_ids as $item_id => $selected) {
                    $selected = isset($item_ids[$item_id]) ? $item_ids[$item_id] : 0;
                    if (1 == $selected) {
                        // make sure that all parent ids are selected as well
                        if ('' != $perm_data['parents'][$item_id]) {
                            $parent_ids = explode(':', $perm_data['parents'][$item_id]);
                            foreach ($parent_ids as $pid) {
                                if (0 != $pid && !in_array($pid, array_keys($item_ids))) {
                                    // one of the parent items were not selected, so skip this item
                                    $msg[] = sprintf(_MD_AM_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>') . ' (' . _MD_AM_PERMADDNGP . ')';
                                    continue 2;
                                }
                            }
                        }
                        $gperm = $gpermHandler->create();
                        $gperm->setVar('gperm_groupid', $group_id);
                        $gperm->setVar('gperm_name', $perm_name);
                        $gperm->setVar('gperm_modid', $modid);
                        $gperm->setVar('gperm_itemid', $item_id);
                        if (!$gpermHandler->insert($gperm)) {
                            $msg[] = sprintf(_MD_AM_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
                        } else {
                            $msg[] = sprintf(_MD_AM_PERMADDOK, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
                        }
                        unset($gperm);
                    }
                }
            } else {
                $msg[] = sprintf(_MD_AM_PERMRESETNG, $module->getVar('name'));
            }
        }
    }
}
/*
$backlink = XOOPS_URL.'/admin.php';
if ($module->getVar('hasadmin')) {
    $adminindex = $module->getInfo('adminindex');
    if ($adminindex) {
        $backlink = XOOPS_URL.'/modules/'.$module->getVar('dirname').'/'.$adminindex;
    }
}

$msg[] = '<br><br><a href="'.$backlink.'">'._BACK.'</a>';
xoops_cp_header();
xoops_result($msg);
xoops_cp_footer();  GIJ */


1			<?php
2
3			/**
4			* Module: SmartFAQ
5			* Author: The SmartFactory <www.smartfactory.ca>
6			* Licence: GNU
7			* @param $db
8			* @param $gperm_modid
9			* @param null $gperm_name
10			* @param null $gperm_itemid
11			* @return bool
12			*/
13
14			// defined('XOOPS_ROOT_PATH') \|\| die('Restricted access');
15
16			function myDeleteByModule(\XoopsDatabase $db, $gperm_modid, $gperm_name = null, $gperm_itemid = null)
17			{
18			$criteria = new \CriteriaCompo(new \Criteria('gperm_modid', (int)$gperm_modid));
19			if (null !== $gperm_name) {
20			$criteria->add(new \Criteria('gperm_name', $gperm_name));
21			if (null !== $gperm_itemid) {
22			$criteria->add(new \Criteria('gperm_itemid', (int)$gperm_itemid));
23			}
24			}
25			$sql = 'DELETE FROM ' . $db->prefix('group_permission') . ' ' . $criteria->renderWhere();
26			if (!$result = $db->query($sql)) {
27			return false;
28			}
29
30			return true;
31			}
32
33			// require_once __DIR__ . '/../../../include/cp_header.php'; GIJ
34			$modid = \Xmf\Request::getInt('modid', 1, 'POST');
			0 ignored issues – show Bug introduced 2018-04-01 09:47 UTC by Report Bug Copy Issue Report Show Similar Issues like this The type `Xmf\Request` was not found. Maybe you did not declare it correctly or list all dependencies? The issue could also be caused by a filter entry in the build configuration. If the path has been excluded in your configuration, e.g. `excluded_paths: ["lib/"]`, you can move it to the dependency path list as follows: filter: dependency_paths: ["lib/"] For further information see https://scrutinizer-ci.com/docs/tools/php/php-scrutinizer/#list-dependency-paths Loading history...
35			// we dont want system module permissions to be changed here ( 1 -> 0 GIJ)
36			if ($modid <= 0 \|\| !is_object($xoopsUser) \|\| !$xoopsUser->isAdmin($modid)) {
37			redirect_header(XOOPS_URL . '/user.php', 1, _NOPERM);
38			}
39			/** @var XoopsModuleHandler $moduleHandler */
40			$moduleHandler = xoops_getHandler('module');
41			$module = $moduleHandler->get($modid);
42			if (!is_object($module) \|\| !$module->getVar('isactive')) {
43			redirect_header(XOOPS_URL . '/admin.php', 1, _MODULENOEXIST);
44			}
45			$memberHandler = xoops_getHandler('member');
46			$group_list =& $memberHandler->getGroupList();
47			if (is_array($_POST['perms']) && !empty($_POST['perms'])) {
48			$gpermHandler = xoops_getHandler('groupperm');
49			foreach ($_POST['perms'] as $perm_name => $perm_data) {
50			foreach ($perm_data['itemname'] as $item_id => $item_name) {
51			// checking code
52			// echo "<pre>" ;
53			// var_dump( $_POST['perms'] ) ;
54			// exit ;
55			if (false !== myDeleteByModule($gpermHandler->db, $modid, $perm_name, $item_id)) {
56			if (empty($perm_data['groups'])) {
57			continue;
58			}
59			foreach ($perm_data['groups'] as $group_id => $item_ids) {
60			// foreach ($item_ids as $item_id => $selected) {
61			$selected = isset($item_ids[$item_id]) ? $item_ids[$item_id] : 0;
62			if (1 == $selected) {
63			// make sure that all parent ids are selected as well
64			if ('' != $perm_data['parents'][$item_id]) {
65			$parent_ids = explode(':', $perm_data['parents'][$item_id]);
66			foreach ($parent_ids as $pid) {
67			if (0 != $pid && !in_array($pid, array_keys($item_ids))) {
68			// one of the parent items were not selected, so skip this item
69			$msg[] = sprintf(_MD_AM_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>') . ' (' . _MD_AM_PERMADDNGP . ')';
70			continue 2;
71			}
72			}
73			}
74			$gperm = $gpermHandler->create();
75			$gperm->setVar('gperm_groupid', $group_id);
76			$gperm->setVar('gperm_name', $perm_name);
77			$gperm->setVar('gperm_modid', $modid);
78			$gperm->setVar('gperm_itemid', $item_id);
79			if (!$gpermHandler->insert($gperm)) {
80			$msg[] = sprintf(_MD_AM_PERMADDNG, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
81			} else {
82			$msg[] = sprintf(_MD_AM_PERMADDOK, '<b>' . $perm_name . '</b>', '<b>' . $perm_data['itemname'][$item_id] . '</b>', '<b>' . $group_list[$group_id] . '</b>');
83			}
84			unset($gperm);
85			}
86			}
87			} else {
88			$msg[] = sprintf(_MD_AM_PERMRESETNG, $module->getVar('name'));
89			}
90			}
91			}
92			}
93			/*
94			$backlink = XOOPS_URL.'/admin.php';
95			if ($module->getVar('hasadmin')) {
96			$adminindex = $module->getInfo('adminindex');
97			if ($adminindex) {
98			$backlink = XOOPS_URL.'/modules/'.$module->getVar('dirname').'/'.$adminindex;
99			}
100			}
101
102			$msg[] = '<br><br><a href="'.$backlink.'">'._BACK.'</a>';
103			xoops_cp_header();
104			xoops_result($msg);
105			xoops_cp_footer(); GIJ */
106

mambax7 / smartfaq

Push — master ( 2744eb...81ba93 )

admin/mygroupperm.php (1 issue)

Labels

Severity

Introduced By

Duplication Side-by-Side

Filter issues like