мелкое с работы

metadata/dbms/records.php

@@ -306,44 +306,49 @@
 		if ($currNode!=null)
 		{
 			//Вернём значение прав доступа для запрошенного объекта
-			$allow=true;
-			/*$allow=false;
-			//$res = $db->query('select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Insert_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');');
-			$res = $db->query('select "getAccess"('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Insert_'.$name.'\') as allow;');
+			//$allow=true;
+			$allow=false;
+			//$sql_query='select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Insert_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');'
+			$sql_query='select main.p_getaccess('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Insert_'.$name.'\') as allow;';
+			
+			$res = $db->query($sql_query);
 			while ($row = $res->fetch(PDO::FETCH_ASSOC))// $row - ассоциативный массив значений, ключи - названия столбцов
 			{
 				$allow=$allow || ($row['allow'] == 't');
-			}*/
+			}
 			$xmlAttr = $objXMLDocument->createAttribute("ins"); //insert
 			$xmlAttr->nodeValue = $allow ? "1" : "0";
 			$currNode->setAttributeNode($xmlAttr);
 
-			/*$allow=false;
-			//$res = $db->query('select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Update_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');');
-			$res = $db->query('select "getAccess"('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Update_'.$name.'\') as allow;');
+			$allow=false;
+			//$sql_query='select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Update_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');';
+			$sql_query='select main.p_getaccess('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Update_'.$name.'\') as allow;';
+			$res = $db->query($sql_query);
 			while ($row = $res->fetch(PDO::FETCH_ASSOC))// $row - ассоциативный массив значений, ключи - названия столбцов
 			{
 				$allow=$allow || ($row['allow'] == 't');
-			}*/
+			}
 			$xmlAttr = $objXMLDocument->createAttribute("upd"); //insert
 			$xmlAttr->nodeValue = $allow ? "1" : "0";
 			$currNode->setAttributeNode($xmlAttr);
 
-			/*$allow=false;
-			//$res = $db->query('select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Delete_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');');
-			$res = $db->query('select "getAccess"('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Delete_'.$name.'\') as allow;');
+			$allow=false;
+			//$sql_query='select a.*,at.name from "_Access" a, "_Actions" at where a.del=false and at.id=a.action_id and at.name=\'Delete_'.$name.'\' and a.group_id in (select group_id from "_UsersGroups" where user_id='.$_SESSION['USER_ID'].');';
+			$sql_query='select main.p_getaccess('.getSQLValue(gettype($_SESSION['USER_ID']),$_SESSION['USER_ID']).',\'Delete_'.$name.'\') as allow;';
+			$res = $db->query($sql_query);
 			while ($row = $res->fetch(PDO::FETCH_ASSOC))// $row - ассоциативный массив значений, ключи - названия столбцов
 			{
 				$allow=$allow || ($row['allow'] == 't');
-			}*/
+			}
 			$xmlAttr = $objXMLDocument->createAttribute("del"); //delete
 			$xmlAttr->nodeValue = $allow ? "1" : "0";
 			$currNode->setAttributeNode($xmlAttr);
 
+			$allow=true;
 			$xmlAttr = $objXMLDocument->createAttribute("sel"); //select
 			$xmlAttr->nodeValue = $allow ? "1" : "0";
 			$currNode->setAttributeNode($xmlAttr);
-			
+
 			//Удаляем все запросы из узла
 			for($i=0;$i<5;$i++)
 			{	$nsql=findFirstNode($currNode, "sql-query");