. "JOIN sys_group_mask ON sys_mask.id = sys_group_mask.mask "
. "WHERE sys_group_mask.gid = %d AND fname = '%s'",
$_SESSION['sys']['group'], pg_escape_string($name));
- error_log($sql);
$sth = pg_query($sql);
/* ajax calls */
if (substr($_SERVER["SCRIPT_FILENAME"],-9) == '/ajax.php' &&
!empty($_POST['source'])) {
- if (check_permissions(substr($_POST['source'],5)))
+ if (check_permissions($_POST['source']))
return true;
else
format_ajax(array('error' => 'No permission to access data'));
return mask($_GET['mask']);
}
- $masks = array('sys_user','sys_group','sys_mask',
- 'anbaugeraete','arbeitsarten','personal','materialien','gebiet','geraete',
- 'kostenstellen','materialverbrauch','einsatz');
- $ret = '';
- foreach ($masks as $m)
- $ret .= sprintf('<a href="index.php?mask=%s">%s</a><br>', $m, $m);
+ $ret = '<div style="height: 600px; font-size: large; font-weight: bold;">Willkommen in der Kostenrechnung der Friesoyther Wasseracht!</div>';
return $ret;
}