0byt3m1n1

Path: /data/applications/aps.bak/osticket/1.6.r0-1/standard/htdocs/include/ [ Home ]
File: class.group.php
<?php
/*********************************************************************
    class.group.php

    Groups

    Peter Rotich <peter@osticket.com>
    Copyright (c)  2006-2010 osTicket
    http://www.osticket.com

    Released under the GNU General Public License WITHOUT ANY WARRANTY.
    See LICENSE.TXT for details.

    vim: expandtab sw=4 ts=4 sts=4:
    $Id: $
**********************************************************************/

class Group {

    function update($id,$vars,&$errors) {
        if($id && Group::save($id,$vars,$errors)){
            return true;
        }
        return false;
    }

    function create($vars,&$errors) { 
        return Group::save(0,$vars,$errors);
    }

    function save($id,$vars,&$errors) {

        if($id && !$vars['group_id'])
            $errors['err']='Missing or invalid group ID';
            
        if(!$vars['group_name']) {
            $errors['group_name']='Group name required';
        }elseif(strlen($vars['group_name'])<5) {
            $errors['group_name']='Group name must be at least 5 chars.';
        }else {
            $sql='SELECT group_id FROM '.GROUP_TABLE.' WHERE group_name='.db_input($vars['group_name']);
            if($id)
                $sql.=' AND group_id!='.db_input($id);

            if(db_num_rows(db_query($sql)))
                $errors['group_name']='Group name already exists';
        }
        
        if(!$errors){
        
            $sql=' SET updated=NOW(), group_name='.db_input(Format::striptags($vars['group_name'])).
                 ', group_enabled='.db_input($vars['group_enabled']).
                 ', dept_access='.db_input($vars['depts']?implode(',',$vars['depts']):'').
                 ', can_create_tickets='.db_input($vars['can_create_tickets']).
                 ', can_delete_tickets='.db_input($vars['can_delete_tickets']).
                 ', can_edit_tickets='.db_input($vars['can_edit_tickets']).
                 ', can_transfer_tickets='.db_input($vars['can_transfer_tickets']).
                 ', can_close_tickets='.db_input($vars['can_close_tickets']).
                 ', can_ban_emails='.db_input($vars['can_ban_emails']).
                 ', can_manage_kb='.db_input($vars['can_manage_kb']);
            //echo $sql;
            if($id) {
                $res=db_query('UPDATE '.GROUP_TABLE.' '.$sql.' WHERE group_id='.db_input($id));
                if(!$res || !db_affected_rows())
                    $errors['err']='Internal error occured';
            }else{
                $res=db_query('INSERT INTO '.GROUP_TABLE.' '.$sql.',created=NOW()');
                if($res && ($gID=db_insert_id()))
                    return $gID;
                
                $errors['err']='Unable to create the group. Internal error';
            }
        }

        return $errors?false:true;
    }
}
?>