46 lines
1.9 KiB
PHP
46 lines
1.9 KiB
PHP
<% /*
|
|
$Revision: 1 $
|
|
$Modtime: 14-09-09 10:27 $
|
|
*/ %>
|
|
|
|
<%
|
|
// Is prs_key een geldige persoon en mag ik er op lezen/schrijven als ik level autlevel heb?
|
|
function canWritePerslid(prs_key, autlevel)
|
|
{
|
|
var sql = "select prs_perslid_key, prs_perslid_verwijder"
|
|
+ " from prs_perslid p"
|
|
+ " where prs_perslid_key = " + prs_key
|
|
if (autlevel == 0)
|
|
sql += " AND p.prs_afdeling_key IN "
|
|
+ " (SELECT a.prs_afdeling_key FROM prs_v_afdeling a "
|
|
+ " WHERE a.prs_bedrijf_key = " + user_comp + " )"
|
|
else if (autlevel > 0)
|
|
sql += " AND p.prs_afdeling_key IN "
|
|
+ " (SELECT prs_afdeling_key FROM prs_v_afdeling_familie a"
|
|
+ " WHERE a.prs_afdeling_elder_key IN"
|
|
+ " (SELECT aa.prs_afdeling_elder_key"
|
|
+ " FROM prs_v_afdeling_familie aa"
|
|
+ " WHERE aa.prs_afdeling_key="+user.prs_afdeling_key()
|
|
+ " AND aa.niveau = " + autlevel + "))"
|
|
var oRs = Oracle.Execute(sql);
|
|
var canWrite = (!oRs.eof && oRs("prs_perslid_verwijder").Value == null);
|
|
oRs.close();
|
|
|
|
return canWrite;
|
|
}
|
|
|
|
// IN: globals user_key, autfunction // autfunction MUST be set in the includer, and is something like 'WEB_MLDBOF'
|
|
// OUT: globals PRSreadlevel, PRSwritelevel, ALGreadlevel, ALGwritelevel, thisfunc_enabled, autfunctionkey
|
|
var authparams = user.checkAutorisation(autfunction, true);
|
|
if (authparams)
|
|
{
|
|
var PRSreadlevel = authparams.PRSreadlevel;
|
|
var PRSwritelevel = authparams.PRSwritelevel;
|
|
var ALGreadlevel = authparams.ALGreadlevel;
|
|
var ALGwritelevel = authparams.ALGwritelevel;
|
|
var thisfunc_enabled = true;
|
|
var autfunctionkey = authparams.autfunctionkey; // Kan heel handig zijn.
|
|
}
|
|
else
|
|
var thisfunc_enabled = false;
|
|
%> |