edm/application/module/ctrl/AdminAction.class.php

<?php/* * Base class of admin pages *  * */require_once( ONU_ROOT . 'application/module/ctrl/Action.class.php');require_once ( ONU_ROOT . 'application/lib/data/adminAction.php');class AdminAction extends Action{		public function __construct(){		parent::__construct();//		$this->checkAdministratorRight();//		$this->getUserAllPermission();//		$this->assign('uname',$_SESSION['mds_user']);	}	public  function  getUserAllPermission(){					$user       = $_SESSION['mds_user'];		$my_role    = $_SESSION['user_infos']['role'];				$admin      = new AdvertAdminAction();				$user_info  = $admin->selectUserByName($user);				$permission = $user_info['permission'];				$_SESSION['mds_permission'] = $permission;				$this->assign('permission',$permission);		$this->assign('my_role',$my_role);			}		protected function checkAdministratorRight($rightCode=null){				if(empty($_SESSION['mds_user'])){			header("Location:/?a=index&m=admin_login");			exit();		}				if(empty($rightCode)){			if(!isset($_SESSION["mds_user"])){				$this->display("index/admin_login.html");				exit();			}		}		else{			$userRight = $_SESSION['mds_permission'];						if($_SESSION['mds_user']!='admin'){								if(strpos($userRight , $rightCode) === false){					echo "You do not have permission to access this page";					exit();				}							}								}			}	//class end}