work

includes/include.checkperms.php

@@ -1,4 +1,5 @@
 <?php
+
 /**
  * Project: 
  * Contenido Content Management System
@@ -29,61 +30,58 @@
  * }}
  * 
  */
-
-if(!defined('CON_FRAMEWORK')) {
-	die('Illegal call');
+if (!defined('CON_FRAMEWORK')) {
+    die('Illegal call');
 }
 
-function cCatPerm($widcat, $db = null)
-{
-	global $cfg, $sess, $auth, $group_id, $_arrCatIDs_cCP;
+function cCatPerm($widcat, $db = null) {
+    global $cfg, $sess, $auth, $group_id, $_arrCatIDs_cCP;
 
-	if (strpos($auth->auth['perm'], 'admin') !== FALSE) {
-		return true;
-	}
-	
-	if (is_null($db) || !is_object($db)) {
-		$db = new DB_ConLite;
-	}
+    if (strpos($auth->auth['perm'], 'admin') !== FALSE) {
+        return true;
+    }
 
-	$group_ids = getGroupIDs($db);
-	$group_ids[] = Contenido_Security::escapeDB($auth->auth['uid'], $db);
+    if (is_null($db) || !is_object($db)) {
+        $db = new DB_ConLite;
+    }
 
-	if (!is_array($_arrCatIDs_cCP)) {
-		$_arrCatIDs_cCP = array();
+    $group_ids = getGroupIDs($db);
+    $group_ids[] = Contenido_Security::escapeDB($auth->auth['uid'], $db);
 
-		$sql_inc = " user_id='";
-		$sql_inc .= implode("' OR user_id='", $group_ids) . "' ";
-		$sql = "SELECT idcat FROM ".$cfg['tab']['rights']."
+    if (!is_array($_arrCatIDs_cCP)) {
+        $_arrCatIDs_cCP = array();
+
+        $sql_inc = " user_id='";
+        $sql_inc .= implode("' OR user_id='", $group_ids) . "' ";
+        $sql = "SELECT idcat FROM " . $cfg['tab']['rights'] . "
 				WHERE idarea=6 AND idaction=359 AND ($sql_inc)";
 
-		$db->query($sql);
-		
-		while ($db->next_record()) {
-			$_arrCatIDs_cCP[$db->f('idcat')] = ''; 
-		}
-	}
-	
-	return array_key_exists($widcat, $_arrCatIDs_cCP);
+        $db->query($sql);
+
+        while ($db->next_record()) {
+            $_arrCatIDs_cCP[$db->f('idcat')] = '';
+        }
+    }
+
+    return array_key_exists($widcat, $_arrCatIDs_cCP);
 }
 
-function getGroupIDs(&$db)
-{
-	global $cfg, $sess, $auth, $group_id, $_arrGroupIDs_gGI;
+function getGroupIDs(&$db) {
+    global $cfg, $sess, $auth, $group_id, $_arrGroupIDs_gGI;
 
-	if (is_array($_arrGroupIDs_gGI)) {
-		return $_arrGroupIDs_gGI;
-	}
-	
-	$sql = "SELECT group_id FROM ".$cfg["tab"]["groupmembers"]." WHERE user_id='".Contenido_Security::escapeDB($auth->auth["uid"], $db)."'";
-	$db->query($sql);
+    if (is_array($_arrGroupIDs_gGI)) {
+        return $_arrGroupIDs_gGI;
+    }
 
-	$_arrGroupIDs_gGI = array();
+    $sql = "SELECT group_id FROM " . $cfg["tab"]["groupmembers"] . " WHERE user_id='" . Contenido_Security::escapeDB($auth->auth["uid"], $db) . "'";
+    $db->query($sql);
 
-	while ($db->next_record())
-		$_arrGroupIDs_gGI[] = $db->f('group_id');
+    $_arrGroupIDs_gGI = array();
 
-	return $_arrGroupIDs_gGI;
+    while ($db->next_record())
+        $_arrGroupIDs_gGI[] = $db->f('group_id');
+
+    return $_arrGroupIDs_gGI;
 }
 
 ?>