misuzu/src/Users/role.php

<?php
define('MSZ_ROLE_MAIN', 1);

function user_role_add(int $userId, int $roleId): bool
{
    $addRole = db_prepare('
        INSERT INTO `msz_user_roles`
            (`user_id`, `role_id`)
        VALUES
            (:user_id, :role_id)
    ');
    $addRole->bindValue('user_id', $userId);
    $addRole->bindValue('role_id', $roleId);
    return $addRole->execute();
}

function user_role_remove(int $userId, int $roleId): bool
{
    $removeRole = db_prepare('
        DELETE FROM `msz_user_roles`
        WHERE `user_id` = :user_id
        AND `role_id` = :role_id
    ');
    $removeRole->bindValue('user_id', $userId);
    $removeRole->bindValue('role_id', $roleId);
    return $removeRole->execute();
}

function user_role_can_leave(int $roleId): bool
{
    $canLeaveRole = db_prepare('
        SELECT `role_can_leave` != 0
        FROM `msz_roles`
        WHERE `role_id` = :role_id
    ');
    $canLeaveRole->bindValue('role_id', $roleId);
    return $canLeaveRole->execute() ? (bool)$canLeaveRole->fetchColumn() : false;
}

function user_role_has(int $userId, int $roleId): bool
{
    $hasRole = db_prepare('
        SELECT COUNT(`role_id`) > 0
        FROM `msz_user_roles`
        WHERE `user_id` = :user_id
        AND `role_id` = :role_id
    ');
    $hasRole->bindValue('user_id', $userId);
    $hasRole->bindValue('role_id', $roleId);
    return $hasRole->execute() ? (bool)$hasRole->fetchColumn() : false;
}

function user_role_set_display(int $userId, int $roleId): bool
{
    if (!user_role_has($userId, $roleId)) {
        return false;
    }

    $setDisplay = db_prepare('
        UPDATE `msz_users`
        SET `display_role` = :role_id
        WHERE `user_id` = :user_id
    ');
    $setDisplay->bindValue('user_id', $userId);
    $setDisplay->bindValue('role_id', $roleId);

    return $setDisplay->execute();
}

function user_role_get_display(int $userId): int
{
    if ($userId < 1) {
        return MSZ_ROLE_MAIN;
    }

    $fetchRole = db_prepare('
        SELECT `display_role`
        FROM `msz_users`
        WHERE `user_id` = :user_id
    ');
    $fetchRole->bindValue('user_id', $userId);
    return $fetchRole->execute() ? (int)$fetchRole->fetchColumn() : MSZ_ROLE_MAIN;
}

function user_role_all_user(int $userId): array
{
    $getUserRoles = db_prepare('
        SELECT
            r.`role_id`, r.`role_name`, r.`role_description`,
            r.`role_colour`, r.`role_can_leave`, r.`role_created`
        FROM `msz_user_roles` AS ur
        LEFT JOIN `msz_roles` AS r
        ON r.`role_id` = ur.`role_id`
        WHERE ur.`user_id` = :user_id
        ORDER BY r.`role_hierarchy` DESC
    ');
    $getUserRoles->bindValue('user_id', $userId);
    return db_fetch_all($getUserRoles);
}

function user_role_all(bool $withHidden = false)
{
    return db_query(sprintf(
        '
            SELECT
                r.`role_id`, r.`role_name`, r.`role_description`,
                r.`role_colour`, r.`role_can_leave`, r.`role_created`,
                (
                    SELECT COUNT(`user_id`)
                    FROM `msz_user_roles`
                    WHERE `role_id` = r.`role_id`
                ) AS `role_user_count`
            FROM `msz_roles` AS r
            %s
            ORDER BY `role_id`
        ',
        $withHidden ? '' : 'WHERE `role_hidden` = 0'
    ))->fetchAll(PDO::FETCH_ASSOC);
}

function user_role_get(int $roleId): array
{
    $getRole = db_prepare('
        SELECT
            r.`role_id`, r.`role_name`, r.`role_description`,
            r.`role_colour`, r.`role_can_leave`, r.`role_created`,
            (
                SELECT COUNT(`user_id`)
                FROM `msz_user_roles`
                WHERE `role_id` = r.`role_id`
            ) AS `role_user_count`
        FROM `msz_roles` AS r
        WHERE `role_id` = :role_id
    ');
    $getRole->bindValue('role_id', $roleId);
    return db_fetch($getRole);
}

function user_role_check_authority(int $userId, int $roleId): bool
{
    $checkHierarchy = db_prepare('
        SELECT (
            SELECT MAX(r.`role_hierarchy`)
            FROM `msz_roles` AS r
            LEFT JOIN `msz_user_roles` AS ur
            ON ur.`role_id` = r.`role_id`
            WHERE ur.`user_id` = :user_id
        ) > (
            SELECT `role_hierarchy`
            FROM `msz_roles`
            WHERE `role_id` = :role_id
        )
    ');
    $checkHierarchy->bindValue('user_id', $userId);
    $checkHierarchy->bindValue('role_id', $roleId);
    return (bool)($checkHierarchy->execute() ? $checkHierarchy->fetchColumn() : false);
}
A bunch of housekeeping. 2018-05-27 02:20:35 +02:00			`<?php`
			`define('MSZ_ROLE_MAIN', 1);`

			`function user_role_add(int $userId, int $roleId): bool`
			`{`
Database stuff is now also procedural, would ya look at that. 2018-10-07 01:30:48 +02:00			`$addRole = db_prepare('`
A bunch of housekeeping. 2018-05-27 02:20:35 +02:00			INSERT INTO `msz_user_roles`
			(`user_id`, `role_id`)
			`VALUES`
			`(:user_id, :role_id)`
			`');`
			`$addRole->bindValue('user_id', $userId);`
			`$addRole->bindValue('role_id', $roleId);`
			`return $addRole->execute();`
			`}`
Add some basic user management logic. 2018-05-27 03:59:57 +02:00
			`function user_role_remove(int $userId, int $roleId): bool`
			`{`
Database stuff is now also procedural, would ya look at that. 2018-10-07 01:30:48 +02:00			`$removeRole = db_prepare('`
Add some basic user management logic. 2018-05-27 03:59:57 +02:00			DELETE FROM `msz_user_roles`
			WHERE `user_id` = :user_id
			AND `role_id` = :role_id
			`');`
			`$removeRole->bindValue('user_id', $userId);`
			`$removeRole->bindValue('role_id', $roleId);`
			`return $removeRole->execute();`
			`}`

Added personal role management. 2018-11-17 21:37:18 +01:00			`function user_role_can_leave(int $roleId): bool`
			`{`
			`$canLeaveRole = db_prepare('`
			SELECT `role_can_leave` != 0
			FROM `msz_roles`
			WHERE `role_id` = :role_id
			`');`
			`$canLeaveRole->bindValue('role_id', $roleId);`
			`return $canLeaveRole->execute() ? (bool)$canLeaveRole->fetchColumn() : false;`
			`}`

Add some basic user management logic. 2018-05-27 03:59:57 +02:00			`function user_role_has(int $userId, int $roleId): bool`
			`{`
Database stuff is now also procedural, would ya look at that. 2018-10-07 01:30:48 +02:00			`$hasRole = db_prepare('`
Add some basic user management logic. 2018-05-27 03:59:57 +02:00			SELECT COUNT(`role_id`) > 0
			FROM `msz_user_roles`
			WHERE `user_id` = :user_id
			AND `role_id` = :role_id
			`');`
			`$hasRole->bindValue('user_id', $userId);`
			`$hasRole->bindValue('role_id', $roleId);`
			`return $hasRole->execute() ? (bool)$hasRole->fetchColumn() : false;`
			`}`

			`function user_role_set_display(int $userId, int $roleId): bool`
			`{`
			`if (!user_role_has($userId, $roleId)) {`
			`return false;`
			`}`

Database stuff is now also procedural, would ya look at that. 2018-10-07 01:30:48 +02:00			`$setDisplay = db_prepare('`
Add some basic user management logic. 2018-05-27 03:59:57 +02:00			UPDATE `msz_users`
			SET `display_role` = :role_id
			WHERE `user_id` = :user_id
			`');`
			`$setDisplay->bindValue('user_id', $userId);`
			`$setDisplay->bindValue('role_id', $roleId);`

			`return $setDisplay->execute();`
			`}`
Added personal role management. 2018-11-17 21:37:18 +01:00
			`function user_role_get_display(int $userId): int`
			`{`
			`if ($userId < 1) {`
			`return MSZ_ROLE_MAIN;`
			`}`

			`$fetchRole = db_prepare('`
			SELECT `display_role`
			FROM `msz_users`
			WHERE `user_id` = :user_id
			`');`
			`$fetchRole->bindValue('user_id', $userId);`
			`return $fetchRole->execute() ? (int)$fetchRole->fetchColumn() : MSZ_ROLE_MAIN;`
			`}`
Cleaned up random queries, closes #132. 2019-01-18 18:08:19 +01:00
			`function user_role_all_user(int $userId): array`
			`{`
			`$getUserRoles = db_prepare('`
			`SELECT`
			r.`role_id`, r.`role_name`, r.`role_description`,
			r.`role_colour`, r.`role_can_leave`, r.`role_created`
			FROM `msz_user_roles` AS ur
			LEFT JOIN `msz_roles` AS r
			ON r.`role_id` = ur.`role_id`
			WHERE ur.`user_id` = :user_id
			ORDER BY r.`role_hierarchy` DESC
			`');`
			`$getUserRoles->bindValue('user_id', $userId);`
			`return db_fetch_all($getUserRoles);`
			`}`

			`function user_role_all(bool $withHidden = false)`
			`{`
			`return db_query(sprintf(`
			`'`
			`SELECT`
			r.`role_id`, r.`role_name`, r.`role_description`,
			r.`role_colour`, r.`role_can_leave`, r.`role_created`,
			`(`
			SELECT COUNT(`user_id`)
			FROM `msz_user_roles`
			WHERE `role_id` = r.`role_id`
			) AS `role_user_count`
			FROM `msz_roles` AS r
			`%s`
			ORDER BY `role_id`
			`',`
			$withHidden ? '' : 'WHERE `role_hidden` = 0'
			`))->fetchAll(PDO::FETCH_ASSOC);`
			`}`

			`function user_role_get(int $roleId): array`
			`{`
			`$getRole = db_prepare('`
			`SELECT`
			r.`role_id`, r.`role_name`, r.`role_description`,
			r.`role_colour`, r.`role_can_leave`, r.`role_created`,
			`(`
			SELECT COUNT(`user_id`)
			FROM `msz_user_roles`
			WHERE `role_id` = r.`role_id`
			) AS `role_user_count`
			FROM `msz_roles` AS r
			WHERE `role_id` = :role_id
			`');`
			`$getRole->bindValue('role_id', $roleId);`
			`return db_fetch($getRole);`
			`}`
Added hierarchy checks in important places, mostly closes #94. 2019-01-22 16:18:01 +01:00
			`function user_role_check_authority(int $userId, int $roleId): bool`
			`{`
			`$checkHierarchy = db_prepare('`
			`SELECT (`
			SELECT MAX(r.`role_hierarchy`)
			FROM `msz_roles` AS r
			LEFT JOIN `msz_user_roles` AS ur
			ON ur.`role_id` = r.`role_id`
			WHERE ur.`user_id` = :user_id
			`) > (`
			SELECT `role_hierarchy`
			FROM `msz_roles`
			WHERE `role_id` = :role_id
			`)`
			`');`
			`$checkHierarchy->bindValue('user_id', $userId);`
			`$checkHierarchy->bindValue('role_id', $roleId);`
			`return (bool)($checkHierarchy->execute() ? $checkHierarchy->fetchColumn() : false);`
			`}`