1: | <?php
|
2: | namespace Opencart\Admin\Model\User;
|
3: | |
4: | |
5: | |
6: | |
7: |
|
8: | class UserGroup extends \Opencart\System\Engine\Model {
|
9: | |
10: | |
11: | |
12: | |
13: | |
14: | |
15: |
|
16: | public function addUserGroup(array $data): int {
|
17: | $this->db->query("INSERT INTO `" . DB_PREFIX . "user_group` SET `name` = '" . $this->db->escape((string)$data['name']) . "', `permission` = '" . (isset($data['permission']) ? $this->db->escape(json_encode($data['permission'])) : '') . "'");
|
18: |
|
19: | return $this->db->getLastId();
|
20: | }
|
21: |
|
22: | |
23: | |
24: | |
25: | |
26: | |
27: | |
28: | |
29: |
|
30: | public function editUserGroup(int $user_group_id, array $data): void {
|
31: | $this->db->query("UPDATE `" . DB_PREFIX . "user_group` SET `name` = '" . $this->db->escape((string)$data['name']) . "', `permission` = '" . (isset($data['permission']) ? $this->db->escape(json_encode($data['permission'])) : '') . "' WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
32: | }
|
33: |
|
34: | |
35: | |
36: | |
37: | |
38: | |
39: | |
40: |
|
41: | public function deleteUserGroup(int $user_group_id): void {
|
42: | $this->db->query("DELETE FROM `" . DB_PREFIX . "user_group` WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
43: | }
|
44: |
|
45: | |
46: | |
47: | |
48: | |
49: | |
50: | |
51: |
|
52: | public function getUserGroup(int $user_group_id): array {
|
53: | $query = $this->db->query("SELECT DISTINCT * FROM `" . DB_PREFIX . "user_group` WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
54: |
|
55: | return [
|
56: | 'name' => $query->row['name'],
|
57: | 'permission' => json_decode($query->row['permission'], true)
|
58: | ];
|
59: | }
|
60: |
|
61: | |
62: | |
63: | |
64: | |
65: | |
66: | |
67: |
|
68: | public function getUserGroups(array $data = []): array {
|
69: | $sql = "SELECT * FROM `" . DB_PREFIX . "user_group` ORDER BY `name`";
|
70: |
|
71: | if (isset($data['order']) && ($data['order'] == 'DESC')) {
|
72: | $sql .= " DESC";
|
73: | } else {
|
74: | $sql .= " ASC";
|
75: | }
|
76: |
|
77: | if (isset($data['start']) || isset($data['limit'])) {
|
78: | if ($data['start'] < 0) {
|
79: | $data['start'] = 0;
|
80: | }
|
81: |
|
82: | if ($data['limit'] < 1) {
|
83: | $data['limit'] = 20;
|
84: | }
|
85: |
|
86: | $sql .= " LIMIT " . (int)$data['start'] . "," . (int)$data['limit'];
|
87: | }
|
88: |
|
89: | $query = $this->db->query($sql);
|
90: |
|
91: | return $query->rows;
|
92: | }
|
93: |
|
94: | |
95: | |
96: | |
97: | |
98: |
|
99: | public function getTotalUserGroups(): int {
|
100: | $query = $this->db->query("SELECT COUNT(*) AS `total` FROM `" . DB_PREFIX . "user_group`");
|
101: |
|
102: | return (int)$query->row['total'];
|
103: | }
|
104: |
|
105: | |
106: | |
107: | |
108: | |
109: | |
110: | |
111: | |
112: | |
113: |
|
114: | public function addPermission(int $user_group_id, string $type, string $route): void {
|
115: | $user_group_query = $this->db->query("SELECT DISTINCT * FROM `" . DB_PREFIX . "user_group` WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
116: |
|
117: | if ($user_group_query->num_rows) {
|
118: | $data = json_decode($user_group_query->row['permission'], true);
|
119: |
|
120: | $data[$type][] = $route;
|
121: |
|
122: | $this->db->query("UPDATE `" . DB_PREFIX . "user_group` SET `permission` = '" . $this->db->escape(json_encode($data)) . "' WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
123: | }
|
124: | }
|
125: |
|
126: | |
127: | |
128: | |
129: | |
130: | |
131: | |
132: | |
133: | |
134: |
|
135: | public function removePermission(int $user_group_id, string $type, string $route): void {
|
136: | $user_group_query = $this->db->query("SELECT DISTINCT * FROM `" . DB_PREFIX . "user_group` WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
137: |
|
138: | if ($user_group_query->num_rows) {
|
139: | $data = json_decode($user_group_query->row['permission'], true);
|
140: |
|
141: | if (isset($data[$type])) {
|
142: | $data[$type] = array_diff($data[$type], [$route]);
|
143: | }
|
144: |
|
145: | $this->db->query("UPDATE `" . DB_PREFIX . "user_group` SET `permission` = '" . $this->db->escape(json_encode($data)) . "' WHERE `user_group_id` = '" . (int)$user_group_id . "'");
|
146: | }
|
147: | }
|
148: | }
|
149: | |