Portions created by the Initial Developer are Copyright (C) 2008-2012 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ include "root.php"; require_once "resources/require.php"; require_once "resources/check_auth.php"; if (permission_exists('group_members_view') || if_group("superadmin")) { //access allowed } else { echo "access denied"; return; } //requires a superadmin to view members of the superadmin group if (!if_group("superadmin") && $_GET["group_name"] == "superadmin") { echo "access denied"; return; } //add multi-lingual support $language = new text; $text = $language->get(); //get the group uuid, lookup domain uuid (if any) and name $group_uuid = check_str($_REQUEST['group_uuid']); $sql = "select domain_uuid, group_name from v_groups "; $sql .= "where group_uuid = '".$group_uuid."' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); foreach ($result as &$row) { $domain_uuid = $row["domain_uuid"]; $group_name = $row["group_name"]; break; //limit to 1 row } unset ($prep_statement); //define the if group members function function is_group_member($group_uuid, $user_uuid) { global $db, $domain_uuid; $sql = "select * from v_group_users "; $sql .= "where user_uuid = '".$user_uuid."' "; $sql .= "and group_uuid = '".$group_uuid."' "; $sql .= "and domain_uuid = '".(($domain_uuid != '') ? $domain_uuid : $_SESSION['domain_uuid'])."' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); if (count($prep_statement->fetchAll(PDO::FETCH_NAMED)) == 0) { return true; } else { return false; } unset ($sql, $prep_statement); } //$exampledatareturned = example("apples", 1); //get the the users array if (permission_exists('group_member_add')) { $sql = "select * from v_users where "; if ($domain_uuid != '') { $sql .= "domain_uuid = '".$domain_uuid."' "; } else { $sql .= "domain_uuid = '".$_SESSION['domain_uuid']."' "; } $sql .= "order by username "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $users = $prep_statement->fetchAll(PDO::FETCH_NAMED); } //get the groups users $sql = "select u.user_uuid, u.username, gu.group_user_uuid, gu.domain_uuid, gu.group_uuid "; $sql .= "from v_group_users as gu, v_users as u, v_domains as d "; $sql .= "where gu.user_uuid = u.user_uuid "; $sql .= "and gu.domain_uuid = d.domain_uuid "; if ($domain_uuid != '') { $sql .= "and gu.domain_uuid = '".$domain_uuid."' "; } if (!permission_exists('user_all')) { $sql .= "and u.domain_uuid = '".$_SESSION['domain_uuid']."' "; } $sql .= "and gu.group_uuid = '".$group_uuid."' "; $sql .= "order by d.domain_name asc, u.username asc "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); //include the header require_once "resources/header.php"; $document['title'] = $text['title-group_members']; //show the content $c = 0; $row_style["0"] = "row_style0"; $row_style["1"] = "row_style1"; echo "\n"; echo " \n"; echo " \n"; echo " "; if (permission_exists('group_member_add')) { echo " \n"; } echo " \n"; echo "

\n"; echo " ".$text['header-group_members'].$group_name."\n"; echo "

\n"; echo " "; echo "

\n"; echo " "; echo " \n"; echo " \n"; foreach($users as $field) { if (is_group_member($group_uuid, $field['user_uuid'])) { echo " ".$field['username']."\n"; } } unset($sql, $users); echo " "; echo " "; echo " "; echo " "; echo " "; echo " "; echo "

\n"; echo "
"; $echo = "\n"; $echo .= "\n"; if (permission_exists('user_all')) { $echo .= "\n"; } $echo .= " \n"; $echo .= " \n"; $echo .= "\n"; $count = 0; foreach ($result as &$row) { $group_user_uuid = $row["group_user_uuid"]; $username = $row["username"]; $user_uuid = $row["user_uuid"]; $domain_uuid = $row["domain_uuid"]; $group_uuid = $row["group_uuid"]; $echo .= ""; if (permission_exists('user_all')) { $echo .= "\n"; } $echo .= "\n"; $echo .= "\n"; $echo .= "\n"; $c = ($c) ? 0 : 1; $group_users[] = $row["user_uuid"]; $count++; } $echo .= "

".$text['label-domain']."	".$text['label-username']."
".$_SESSION['domains'][$domain_uuid]['domain_name']."	".$username."	"; if (permission_exists('group_member_delete')) { $echo .= "".$v_link_label_delete.""; } $echo .= "

\n"; $echo .= "

"; echo $echo; //include the footer require_once "resources/footer.php"; ?>