sc_reset_apl_status(); sc_reset_global([usr_login], [usr_email]); if (empty($_SERVER['REMOTE_USER'])) { sc_redir("sec_Login"); } else { $user = $_SERVER['REMOTE_USER']; $user = substr($user,strpos( $user , '\\', 0) +1 ); $sql = "SELECT priv_admin, active, name, email FROM dbo.sec_users WHERE login = '$user'"; sc_lookup(rs, $sql); if(count({rs}) == 0) { sc_redir("sec_Login"); } else if({rs[0][1]} == 'Y') { $usr_login = $user; $usr_priv_admin = ({rs[0][0]} == 'Y') ? TRUE : FALSE; $usr_name = {rs[0][2]}; $usr_email = {rs[0][3]}; sc_set_global($usr_login); sc_set_global($usr_priv_admin); sc_set_global($usr_name); sc_set_global($usr_email); } else { sc_error_message({lang_error_not_active}); sc_error_exit(); } $sql = "SELECT app_name, priv_access, priv_insert, priv_delete, priv_update, priv_export, priv_print FROM dbo.sec_groups_apps WHERE group_id IN (SELECT group_id FROM dbo.sec_users_groups WHERE login = '". $user ."')"; sc_select(rs, $sql); if ({rs} == false) { sc_redir("sec_Login"); } else { while (!$rs->EOF) { if( $rs->fields[1] == 'Y') { sc_apl_status($rs->fields[0], 'on'); } else { sc_apl_status($rs->fields[0], 'off'); } sc_apl_conf($rs->fields[0], 'insert', has_priv($rs->fields[2])); sc_apl_conf($rs->fields[0], 'delete', has_priv($rs->fields[3])); sc_apl_conf($rs->fields[0], 'update', has_priv($rs->fields[4])); //export $export_permission = 'btn_display_'. has_priv($rs->fields[5]); sc_apl_conf($rs->fields[0], $export_permission, 'xls'); sc_apl_conf($rs->fields[0], $export_permission, 'word'); sc_apl_conf($rs->fields[0], $export_permission, 'pdf'); sc_apl_conf($rs->fields[0], $export_permission, 'xml'); sc_apl_conf($rs->fields[0], $export_permission, 'csv'); sc_apl_conf($rs->fields[0], $export_permission, 'rtf'); //export $export_permission = 'btn_display_'. has_priv($rs->fields[6]); sc_apl_conf($rs->fields[0], $export_permission, 'print'); $rs->MoveNext(); } $rs->Close(); sc_log_add('login', {lang_login_ok}); sc_redir('Startmenu'); } }