Mowie/admin/permissions.php

<?php
require_once '../inc/autoload_adm.php';
printHeader($lang->get('admins_permissions'));

if (hasPerm('edit_permissions'))
{
	$db->setCol('system_roles');
	if (isset($_POST['smbt']))
	{
		//Perms finden und in en Array tun
		$permArr = [];
		foreach ($_POST as $perm => $val)
		{
			if ($perm != 'smbt' && $val == 'true')
			{
				$perm_full = $perm;
				$perm = explode('_', $perm);
				$permArr[$perm[0]][$perm[1]][] = str_replace($perm[0].'_'.$perm[1].'_', '', $perm_full);
			}
		}

		//print_r($permArr);
		foreach ($permArr as $lvl => $perms)
		{
			$db->data['permissions'] = json_encode($perms);
			if ($db->update(['id' => $lvl]))
			{
				echo msg('success', $lang->get('admins_perms_set_success').' {back}');
			}
			else
			{
				echo msg('fail', $lang->get('admins_perms_set_fail').' {back}');
			}
		}
	} else
	{
		echo '<div class="main"><form action="'.$_SERVER['REQUEST_URI'].'" method="post">';
		//Admin Groups
		$db->get();
		$role_names = [];
		$role_perms = [];
		$roles_descr = '';
		foreach ($db->data as $role_name)
		{
			$role_names[$role_name['id']] = $role_name['name'];
			$roles_descr .= '<th class="permdesc">' . $role_name['name'] . '</th>';

			//Already set permissions
			$role_perms[$role_name['id']] = [];
			$perms = [];
			if ($role_name['permissions'] != '') $perms = json_decode($role_name['permissions'], true);
			//print_r($perms);

			foreach ($perms as $apps => $perm)
			{
				foreach ($perm as $item)
				{
					$role_perms[$role_name['id']][] = $apps . '.' . $item;
				}
			}
		}

		//print_r($role_perms);

		//Get All
		$permsTotal = [];
		$permsTotal['System'] = json_decode(file_get_contents('permissions.json'), true);
		$permsTotal['System'] = $permsTotal['System']['permissions'];
		$moduluri = '../apps/';
		if ($handle = opendir($moduluri))
		{
			while (false !== ($mod = readdir($handle)))
			{
				if ($mod != "." && $mod != ".." && is_dir($moduluri . $mod))
				{
					if (file_exists($moduluri . '/' . $mod . '/permissions.json'))
					{
						require $moduluri . '/' . $mod . '/config.php';
						$permsTotal[$_CONF['mod_name']] = json_decode(file_get_contents($moduluri . '/' . $mod . '/permissions.json'), true);
						$permsTotal[$_CONF['mod_name']] = $permsTotal[$_CONF['mod_name']]['permissions'];
					}
				}
			}
			closedir($handle);
		}

		//print_r($permsTotal);


		foreach ($permsTotal as $title => $perms)
		{
			echo '<table class="permissions"><tr><th>' . $title . '</th>' . $roles_descr . '</tr>';

			foreach ($perms as $perm)
			{
				$critical = '';
				if ($perm['critical'] == true) $critical = '<span class="critical fa fa-warning" title="'.$lang->get('admins_perms_critical').'"></span>';

				echo '<tr title="' . $perm['description'] . '"><td>' . $critical . $perm['name'] . '</td>';
				foreach ($role_names as $lvl => $name)
				{
					$disable = '';
					if ($lvl == 1) $disable = ' disabled="disabled"';

					$checked = '';
					if ($lvl == 1) $checked = ' checked="checked"';
					if (in_array($title . '.' . $perm['key'], $role_perms[$lvl])) $checked = ' checked="checked"';

					$id = $lvl . '.' . $title . '.' . $perm['key'];
					echo '<td class="permdesc"><input type="checkbox" name="' . $id . '" id="' . $id . '" ' . $disable . $checked . ' value="true"/><label for="' . $id . '"><i></i></label></td>';
					//title="'.print_r($role_perms[$lvl], true).$title . '.' . $perm['key'].'"
				}

				echo '</tr>';
			}

			echo '</table>';

		}

		echo '<input type="submit" name="smbt" value="'.$lang->get('admins_perms_save').'"/> </form></div>';
	}
} else
{
	echo msg('info', $lang->get('missing_permission'));
}
require_once '../inc/footer.php';