2009-07-01 14:55:52 +00:00
|
|
|
<?php
|
|
|
|
|
2010-02-10 17:27:03 +00:00
|
|
|
//Définition du tableau des permissions
|
2009-07-02 15:50:12 +00:00
|
|
|
|
2009-07-01 14:55:52 +00:00
|
|
|
$definePerms = array(
|
2010-01-14 10:22:49 +00:00
|
|
|
'KBIS' => array( 'init' => '', 'txt' => 'Extrait RCS'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'ACTES' => array( 'init' => '', 'txt' => 'Pièces officielles'),
|
2010-04-09 09:12:16 +00:00
|
|
|
'IDPROCOL' => array( 'init' => '', 'txt' => 'Fiche procédure collective'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'PRIVILEGES' => array( 'init' => '', 'txt' => 'Privilèges'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'IPARI' => array( 'init' => '', 'txt' => 'Investigation par l\'image IparI©'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'MARQUES' => array( 'init' => '', 'txt' => 'Marques déposées'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'INDISCORE' => array( 'init' => '', 'txt' => 'indiScore©'),
|
|
|
|
'INDISCORE2' => array( 'init' => '', 'txt' => 'Rapport synthetique'),
|
|
|
|
'INDISCORE3' => array( 'init' => '', 'txt' => 'Rapport complet'),
|
2010-12-17 14:41:18 +00:00
|
|
|
'INDISCOREP' => array( 'init' => '', 'txt' => 'indiScore+'),
|
|
|
|
'INDISCORE2P' => array( 'init' => '', 'txt' => 'Rapport synthetique+'),
|
|
|
|
'INDISCORE3P' => array( 'init' => '', 'txt' => 'Rapport complet+'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'SCORECSF' => array( 'init' => '', 'txt' => 'Score CSF'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'EVENINSEE' => array( 'init' => '', 'txt' => 'Évènements INSEE'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'AVISINSEE' => array( 'init' => '', 'txt' => 'Avis de situation INSEE'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'SURVANNONCE' => array( 'init' => '', 'txt' => 'Surveillance des annonces légales'),
|
|
|
|
'SURVINSEE' => array( 'init' => '', 'txt' => 'Surveillance des événements INSEE'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'SURVBILAN' => array( 'init' => '', 'txt' => 'Surveillance des bilans'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'SURVSCORE' => array( 'init' => '', 'txt' => 'Surveillance des événements sur le score'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'SURVACTES' => array( 'init' => '', 'txt' => 'Surveillance des actes'),
|
|
|
|
'SURVDIRIGEANTS'=> array( 'init' => '', 'txt' => 'Surveillance des dirigeants'),
|
2010-04-02 16:00:57 +00:00
|
|
|
'SURVPRIV' => array( 'init' => '', 'txt' => 'Surveillance des privilèges'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'SURVLISTE' => array( 'init' => '', 'txt' => 'Liste des surveillances'),
|
2010-03-03 16:56:17 +00:00
|
|
|
'PORTEFEUILLE' => array( 'init' => '', 'txt' => 'Portefeuille'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'INVESTIG' => array( 'init' => '', 'txt' => 'Investigation'),
|
2010-02-10 17:27:03 +00:00
|
|
|
'ENQUETEC' => array( 'init' => '', 'txt' => 'Enquête commerciale'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'INTERNATIONAL' => array( 'init' => '', 'txt' => 'Recherche Internationale'),
|
2010-03-03 16:56:17 +00:00
|
|
|
'BDF' => array( 'init' => '', 'txt' => 'Banque de France'),
|
2011-05-23 13:37:09 +00:00
|
|
|
'UPLOADBILAN' => array( 'init' => '', 'txt' => 'Saisie de bilan'),
|
2010-01-14 10:22:49 +00:00
|
|
|
'MONPROFIL' => array( 'init' => '', 'txt' => 'Mon profil'),
|
2010-05-03 13:48:25 +00:00
|
|
|
'EDITION' => array( 'init' => '', 'txt' => 'Mode Edition'),
|
2010-01-14 10:22:49 +00:00
|
|
|
);
|
2009-07-01 14:55:52 +00:00
|
|
|
|
2009-07-02 15:50:12 +00:00
|
|
|
/*
|
2010-02-10 17:27:03 +00:00
|
|
|
* Attribut si l'utilisateur possède le droit d'accèder au service
|
2009-07-02 15:50:12 +00:00
|
|
|
* @param string $name
|
|
|
|
* Nom du droit
|
|
|
|
* @param array $userInfo
|
2010-02-10 17:27:03 +00:00
|
|
|
* Tableau d'informations de l'utilisateur, facultatif, si pas défini alors on regarde dans la session
|
2009-07-02 15:50:12 +00:00
|
|
|
* @return boolean
|
|
|
|
*/
|
2010-01-04 08:29:20 +00:00
|
|
|
function hasPerm($perm, $userInfos = '')
|
|
|
|
{
|
2009-07-09 15:07:38 +00:00
|
|
|
$return = TRUE;
|
2010-03-29 12:14:10 +00:00
|
|
|
if( $userInfos == '' && isset($_SESSION['tabInfo']['droits']) ){
|
|
|
|
$userInfos = $_SESSION['tabInfo'];
|
|
|
|
}elseif( $userInfos == '' && !isset($_SESSION['tabInfo']['droits']) ||
|
|
|
|
!isset($userInfos['droits']) ){
|
|
|
|
$userInfos = array( 'droits' => '' );
|
|
|
|
}
|
|
|
|
if ( !preg_match('/\b'.$perm.'\b/i', $userInfos['droits'])){
|
|
|
|
$return = FALSE;
|
|
|
|
}
|
2009-07-01 14:55:52 +00:00
|
|
|
//Surcharger les droits
|
2010-01-28 09:32:35 +00:00
|
|
|
if ( !overridePerm($perm) ){ $return = FALSE; }
|
2009-07-01 14:55:52 +00:00
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
2009-07-09 15:07:38 +00:00
|
|
|
/*
|
2010-02-10 17:27:03 +00:00
|
|
|
* Vérifie les permissions sur chaque page
|
2009-07-09 15:07:38 +00:00
|
|
|
* @param string $page
|
|
|
|
* Nom de la page
|
|
|
|
* @param string $perm
|
|
|
|
* Nom du droit
|
|
|
|
* @return boolean
|
|
|
|
*/
|
2010-01-04 08:29:20 +00:00
|
|
|
function checkPerm($page, $perm = '')
|
|
|
|
{
|
2009-07-09 15:07:38 +00:00
|
|
|
$return = TRUE;
|
|
|
|
if($page != 'recherche') $return = hasPerm($perm);
|
|
|
|
$return = $return && overridePermPage($page);
|
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2009-07-01 14:55:52 +00:00
|
|
|
/*
|
|
|
|
* Retourne le code HTML pour le formulaire de modification du compte
|
|
|
|
* @param string $name
|
|
|
|
* Nom du droits
|
|
|
|
* @param array $perms
|
|
|
|
* Tableau d'informations du droits
|
|
|
|
* @return string
|
|
|
|
*/
|
2010-03-26 16:28:37 +00:00
|
|
|
function formElementPerm($userInfos){
|
2009-09-18 17:09:22 +00:00
|
|
|
global $definePerms, $firephp;
|
2009-07-09 13:46:43 +00:00
|
|
|
$return = '';
|
2010-03-26 16:28:37 +00:00
|
|
|
FB::log($userInfos, 'userInfos');
|
|
|
|
$listeDroits = array_key_exists('droitsClients',$userInfos) ?
|
2010-03-29 12:14:10 +00:00
|
|
|
explode(' ', $userInfos['droitsClients']) : array();
|
2010-03-26 16:28:37 +00:00
|
|
|
foreach($definePerms as $perm => $infos){
|
2010-05-19 15:10:32 +00:00
|
|
|
if ( overridePerm($perm) && in_array(strtolower($perm), $listeDroits) )
|
|
|
|
{
|
2010-03-29 12:14:10 +00:00
|
|
|
hasPerm($perm, $userInfos) ?
|
2010-03-26 16:28:37 +00:00
|
|
|
$checked = 'checked' : $checked = $infos['init'];
|
|
|
|
|
|
|
|
($_SESSION['tabInfo']['profil']=='Administrateur' ||
|
|
|
|
$_SESSION['tabInfo']['profil']=='SuperAdministrateur') ?
|
|
|
|
$disabled = '' : $disabled = 'disabled' ;
|
|
|
|
|
|
|
|
$return.= '<input type="checkbox" name="frmOptions[droits][]" value="'.
|
|
|
|
strtolower($perm).'" '.$checked.' '.$disabled.' class="noborder"/>'.
|
|
|
|
$infos['txt'].'<br/>'."\n";
|
2009-07-01 14:55:52 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
2010-02-10 17:27:03 +00:00
|
|
|
* Vérifie le login de l'utilisateur pour le mode edition
|
2009-07-01 14:55:52 +00:00
|
|
|
* @param string $loginVu
|
|
|
|
* Login
|
|
|
|
* @return boolean
|
|
|
|
*/
|
2010-01-08 10:10:23 +00:00
|
|
|
function checkModeEdition($loginVu)
|
|
|
|
{
|
2009-07-01 14:55:52 +00:00
|
|
|
$isAuthorized = FALSE;
|
2010-05-03 13:48:25 +00:00
|
|
|
$authorizedUsers = array(
|
|
|
|
'ylenaour',
|
|
|
|
'jmartory',
|
|
|
|
'mheitz',
|
|
|
|
'mpurcarin',
|
|
|
|
'mcochet',
|
2010-06-03 09:34:23 +00:00
|
|
|
'jproust',
|
2010-05-03 13:48:25 +00:00
|
|
|
'mricois',
|
|
|
|
'fzicaro',
|
|
|
|
'sbeaugrand',
|
2010-05-04 09:57:39 +00:00
|
|
|
'tjactel',
|
|
|
|
'bpanaccione');
|
2009-07-01 14:55:52 +00:00
|
|
|
$isUserAuthorized = FALSE;
|
|
|
|
foreach($authorizedUsers as $login){
|
|
|
|
if($_SESSION['tabInfo']['login']==$login){
|
|
|
|
$isUserAuthorized = TRUE;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
2010-05-03 13:48:25 +00:00
|
|
|
if ($loginVu==$_SESSION['tabInfo']['login'] && $isUserAuthorized ||
|
|
|
|
($_SESSION['tabInfo']['idClient']==1 &&
|
|
|
|
($_SESSION['tabInfo']['profil']=='Administrateur' ||
|
|
|
|
$_SESSION['tabInfo']['profil']=='SuperAdministrateur') ) ){
|
2009-07-01 14:55:52 +00:00
|
|
|
$isAuthorized = TRUE;
|
|
|
|
}
|
|
|
|
return $isAuthorized;
|
|
|
|
}
|
|
|
|
|
2010-01-08 10:10:23 +00:00
|
|
|
function hasModeEdition()
|
|
|
|
{
|
2010-05-18 15:46:45 +00:00
|
|
|
if (isset($_SESSION['tabInfo']) == false) {
|
|
|
|
return false;
|
|
|
|
}
|
2010-05-03 13:48:25 +00:00
|
|
|
$userInfos = $_SESSION['tabInfo'];
|
|
|
|
$perm = 'EDITION';
|
|
|
|
if ($userInfos['mode_edition']==1 ||
|
|
|
|
preg_match('/\b'.$perm.'\b/i', $userInfos['droits'])){
|
|
|
|
return true;
|
|
|
|
} else {
|
|
|
|
return false;
|
|
|
|
}
|
2010-01-08 10:10:23 +00:00
|
|
|
}
|
|
|
|
|
2009-07-01 14:55:52 +00:00
|
|
|
/*
|
|
|
|
* Retourne le code HTML pour le formulaire de modification du compte
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
function formElementModeEdition(){
|
2010-05-03 13:48:25 +00:00
|
|
|
if ($_SESSION['tabInfo']['mode_edition']==1){
|
|
|
|
$strMode='checked';
|
|
|
|
} else {
|
|
|
|
$strMode='';
|
|
|
|
}
|
|
|
|
return '<input type="checkbox" name="frmOptions[mode_edition]" value="1" '.
|
|
|
|
$strMode.' class="noborder"/>Edition';
|
2009-07-01 14:55:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
?>
|