WebSVN – DevTools – Diff – /ManagerSuite/Access_Manager/trunk/class/classAccessControl.asp

 <%
 '=============================================================
 '//
-'//						Access Control
+'//                  Access Control
+'//     This class is agnostic of the appliaction and could be common
+'//     to all Manager Suite tools
 '//
-'// version: 		0.10
-'//	last modified: 	14-Jul-2004 15:48 by Sasha Vukovic
 '=============================================================
 %>
+<SCRIPT LANGUAGE="VBScript" RUNAT=SERVER SRC="../common/DictDump.vbs"></SCRIPT>
 <%
 '--------------- Global Constants ----------------
-Const enumSESSION_TIMEOUT = 60
+Const enumSESSION_TIMEOUT = 600      ' Minutes
+Const enumSESSION_LAST_REQUEST = "AM_SESSION_LAST_REQUEST"
 Const enumLOGIN_TOKEN_SESSION = "AM_LOGIN_TOKEN"
 Const enumUSER_ID_SESSION = "AM_USER_ID"
 Const enumUSER_DETAILS_SESSION = "AM_USER_DETAILS"
 Const enumUSER_APPLICATIONS_SESSION = "AM_USER_APPLICATIONS"
+Const enumUSER_STATIC_PERMISSIONS = "AM_USER_STATIC_PERMISSIONS"
+Const enumUSER_DATA_PERMISSIONS = "AM_USER_DATA_PERMISSIONS"
+Const enumUSER_TEMP_VARIABLE = "AM_USER_TEMP_VARIABLE"
 Const enumACCESS_MANAGER_EVENT_LOGON_SUCCESS  = 1
-Const enumACCESS_MANAGER_EVENT_LOGON_FAIL  	  = -1
+Const enumACCESS_MANAGER_EVENT_LOGON_FAIL     = -1
-Const enumACCESS_MANAGER_EVENT_LOGOFF 		  = 0
+Const enumACCESS_MANAGER_EVENT_LOGOFF         = 0
 Const enumACCESS_MANAGER_EVENT_SESSION_EXPIRE = 2
 '-------------------------------------------------
 Class AccessControl
+   Private moOraSession
+   Private moOraDatabase
-	Private mobjStaticControl
+   Private mobjStaticControl
-	Private mobjRowPermissions
+   Private mobjRowPermissions
-	Private mobjTablePermissions
+   Private mobjTablePermissions
-	Private sSEPARATOR
+   Private sSEPARATOR
+   Private mbIsApplicationRunning
+   Public  bDebug
+   Public Property Let objOraDatabase ( ByRef oOraDatabase )
+      Set moOraDatabase = oOraDatabase
+   End Property
+   Public Property Let objOraSession ( ByRef oOraSession )
+      Set moOraSession = oOraSession
+   End Property
-	Public Property Get UserLogedIn ()
+   Public Property Get UserLogedIn ()
-		UserLogedIn = FALSE
+      UserLogedIn = FALSE
-		' Check for Session Token
+      ' Check for Session Token
-		If (Session(enumLOGIN_TOKEN_SESSION) <> "") AND NOT IsNull(Session(enumLOGIN_TOKEN_SESSION)) Then
+      If (Session(enumLOGIN_TOKEN_SESSION) <> "") AND NOT IsNull(Session(enumLOGIN_TOKEN_SESSION)) Then
-			UserLogedIn = TRUE
+         UserLogedIn = TRUE
-		End If
+      End If
-	End Property
+   End Property
-	Public Property Get UserId ()
+   Public Property Get UserId ()
-		UserId = Session(enumUSER_ID_SESSION)
+      UserId = Session(enumUSER_ID_SESSION)
-	End Property
+   End Property
-	Public Property Get UserName ()
+   Public Property Get UserName ()
-		UserName = Extract( "user_name", Session(enumUSER_DETAILS_SESSION) )
+      UserName = Extract( "user_name", Session(enumUSER_DETAILS_SESSION) )
-	End Property
+   End Property
-	Public Property Get FullName ()
+   Public Property Get FullName ()
-		FullName = Extract( "full_name", Session(enumUSER_DETAILS_SESSION) )
+      FullName = Extract( "full_name", Session(enumUSER_DETAILS_SESSION) )
-	End Property
+   End Property
-	Public Property Get UserEmail ()
+   Public Property Get UserEmail ()
-		UserEmail = Extract( "user_email", Session(enumUSER_DETAILS_SESSION) )
+      UserEmail = Extract( "user_email", Session(enumUSER_DETAILS_SESSION) )
-	End Property
+   End Property
-	Public Property Get LastVisit ()
+   Public Property Get LastVisit ()
-		LastVisit = Extract( "last_visit", Session(enumUSER_DETAILS_SESSION) )
+      LastVisit = Extract( "last_visit", Session(enumUSER_DETAILS_SESSION) )
-	End Property
+   End Property
    Public Property Get Domain ()
       Domain = Extract( "domain", Session(enumUSER_DETAILS_SESSION) )
    End Property
+   Public Property Get IsApplicationRunning()
+      If IsNull(mbIsApplicationRunning) Then
+         Call GetApplicationRunningLevel ()
+      End If
+      IsApplicationRunning = mbIsApplicationRunning
+   End Property
    Public Property Get isDevSystem()
       isDevSystem = InStr(OraDatabase.DatabaseName,"RELMANU1") > 0
    End Property
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Public Function UserApplication ( nAppId )
+   Public Function UserApplication ( nAppId )
-		UserApplication = FALSE
+      UserApplication = FALSE
-		If InStr( sSEPARATOR & Session(enumUSER_APPLICATIONS_SESSION) & sSEPARATOR,  sSEPARATOR & nAppId & sSEPARATOR)  Then
+      If InStr( sSEPARATOR & Session(enumUSER_APPLICATIONS_SESSION) & sSEPARATOR,  sSEPARATOR & nAppId & sSEPARATOR)  Then
-			UserApplication = TRUE
+         UserApplication = TRUE
-		End If
+      End If
-	End Function
+   End Function
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Public Function BeginRegion ( sControlObjName )
+   Public Sub dumpAll()
-		Response.write "<table width='100%'  border='0' cellspacing='0' cellpadding='1'>"
+    Response.Write "<br>Pretty Dictionary mobjStaticControl<pre>"
-		Response.write "  <tr>"
+    Response.Write DICToutput(mobjStaticControl)
-		Response.write "    <td bgcolor='#FF0000'>&nbsp;<a href='#' class='body_linkw'><b>"& sControlObjName &"</b></a>&nbsp;</td>"
+    Response.Write "</pre><br>Pretty Dictionary mobjRowPermissions<pre>"
-		Response.write "  </tr>"
+    Response.Write DICToutput(mobjRowPermissions)
-		Response.write "  <tr>"
+    Response.Write "</pre><br>Pretty Dictionary mobjTablePermissions<pre>"
-		Response.write "    <td bgcolor='#FF0000'>"
+    Response.Write DICToutput(mobjTablePermissions)
-		Response.write "		<table width='100%'  border='0' cellspacing='0' cellpadding='0'>"
+    Response.Write "</pre><br>End"
-		Response.write "  			<tr><td bgcolor='#FFFFFF'>"
+   End Sub
-	End Function
-	'-----------------------------------------------------------------------------------------------------------------
+   Private Sub RR(txt)
-	Public Function EndRegion ( sControlObjName )
+      If  bDebug Then
-		Response.write " 	</td></tr></table>"
+        Response.Write "<br>" & txt
-		Response.write " </td></tr>"
+      End If
-		Response.write "</table>"
+   End Sub
-	End Function
+   '-----------------------------------------------------------------------------------------------------------------
-	'-----------------------------------------------------------------------------------------------------------------
+   Public Function BeginRegion ( sControlObjName )
-	Private Function Extract( sField, sString )
+      Response.write "<table width='100%'  border='0' cellspacing='0' cellpadding='1'>"
-		Dim tempArr, tempSTR
+      Response.write "  <tr>"
+      Response.write "    <td bgcolor='#FF0000'>&nbsp;<a href='#' class='body_linkw'><b>"& sControlObjName &"</b></a>&nbsp;</td>"
-		tempArr = Split( sString, sSEPARATOR )
+      Response.write "  </tr>"
-		tempSTR = Join( Filter( tempArr, sField &"=" ) )	' Append "=" to field name to get e.g. "user_name="
+      Response.write "  <tr>"
+      Response.write "    <td bgcolor='#FF0000'>"
-		Extract = Right( tempSTR, Len(tempSTR) - Len( sField &"=" ))	' Strip the filed name from value
+      Response.write "      <table width='100%'  border='0' cellspacing='0' cellpadding='0'>"
+      Response.write "           <tr><td bgcolor='#FFFFFF'>"
-	End Function
+   End Function
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Private Function GetDataPermission ( sTableName, nRowId, nPermissionType )
+   Public Function EndRegion ( sControlObjName )
-		Dim cPermissionValue
+      Response.write "    </td></tr></table>"
+      Response.write " </td></tr>"
-		'--- Get Row Permission ---
+      Response.write "</table>"
-		cPermissionValue = mobjRowPermissions.Item ( Cstr( sTableName &"_"& nRowId &"_"& nPermissionType ) )
+   End Function
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Function Extract( sField, sString )
-		'Response.write " VALUE="& cPermissionValue &" for "& sTableName &" "& nRowId &" "& nPermissionType &", "
+      Dim tempArr, tempSTR
+      tempArr = Split( sString, sSEPARATOR )
-		If IsNull( cPermissionValue )  OR  ( cPermissionValue = "" ) Then
+      tempSTR = Join( Filter( tempArr, sField &"=" ) )   ' Append "=" to field name to get e.g. "user_name="
+      If tempSTR <> "" Then
-			'--- Get Default Table Permission ---
+        Extract = Right( tempSTR, Len(tempSTR) - Len( sField &"=" ))   ' Strip the fieled name from value
-			cPermissionValue = mobjTablePermissions.Item ( Cstr( sTableName &"_"& nPermissionType ) )
+      Else
+        Extract = ""
-			'--- Raise Exception if Table Default is not found ---
+      End If
-			If IsNull( cPermissionValue )  OR  ( cPermissionValue = "" ) Then
-				Err.Raise 8, "Default Table Permission is Not Found.", "sTableName="& sTableName &", nPermissionType="& nPermissionType
+   End Function
-				Exit Function
+   '-----------------------------------------------------------------------------------------------------------------
-			End If
+   Private Function GetDataPermission ( sTableName, nRowId, nPermissionType, sControlObjName )
+      Dim cPermissionValue
+      Dim key : key = Cstr( sTableName &"_"& nRowId &"_"& sControlObjName &"_"& nPermissionType )
-			'Response.write " VALUE="& cPermissionValue &" for "& sTableName &" "& nRowId &" "& nPermissionType &", "
+      '--- Get Row Permission ---
-		End If
+      cPermissionValue = ""
+      If mobjRowPermissions.Exists( key ) Then
+        cPermissionValue = mobjRowPermissions.Item ( key )
-		'--- Return TRUE / FALSE ---
+      End If
-		GetDataPermission = FALSE
-		If cPermissionValue = enumDB_YES Then
+      If IsNull( cPermissionValue )  OR  ( cPermissionValue = "" ) Then
-			GetDataPermission = TRUE
+         '--- Get Default Table Permission ---
-		End If
+          Dim pkey : pkey = Cstr( sTableName &"_"& sControlObjName &"_"& nPermissionType )
+          cPermissionValue = ""
-	End Function
+          If mobjTablePermissions.Exists( pkey ) Then
-	'-----------------------------------------------------------------------------------------------------------------
+            cPermissionValue = mobjTablePermissions.Item ( pkey )
-	Public Function IsDataVisible ( sTableName, nRowId )
+          End If
-		IsDataVisible = GetDataPermission ( sTableName, nRowId, enumDB_PERMISSION_TYPE_VISIBLE )
+      End If
-	End Function
+      '--- Return TRUE / FALSE ---
-	'-----------------------------------------------------------------------------------------------------------------
+      GetDataPermission = FALSE
-	Public Function IsDataActive ( sTableName, nRowId, sControlObjName )
+      If cPermissionValue = enumDB_YES Then
-		IsDataActive = FALSE
+         GetDataPermission = TRUE
+      End If
-		If IsActive ( sControlObjName ) Then
-			IsDataActive = GetDataPermission ( sTableName, nRowId, enumDB_PERMISSION_TYPE_ACTIVE )
+   End Function
-		End If
+   '-----------------------------------------------------------------------------------------------------------------
+   Public Function IsDataVisible ( sTableName, nRowId, sControlObjName )
-	End Function
+      IsDataVisible = FALSE
-	'-----------------------------------------------------------------------------------------------------------------
+      If IsVisible ( sControlObjName ) OR GetDataPermission ( sTableName, nRowId, enumDB_PERMISSION_TYPE_VISIBLE, sControlObjName ) Then
-	Public Function IsActive ( sControlObjName )
+          IsDataVisible = TRUE
-		If mobjStaticControl.Item (Cstr( sControlObjName &"_"&  enumDB_PERMISSION_TYPE_ACTIVE )) = enumDB_YES Then
+      End If
-			IsActive = TRUE
+   End Function
-		Else
+   '-----------------------------------------------------------------------------------------------------------------
-			IsActive = FALSE
+   Public Function IsDataActive ( sTableName, nRowId, sControlObjName )
-		End If
+      IsDataActive = FALSE
-	End Function
+      If IsActive ( sControlObjName ) OR GetDataPermission ( sTableName, nRowId, enumDB_PERMISSION_TYPE_ACTIVE, sControlObjName ) Then
-	'-----------------------------------------------------------------------------------------------------------------
+          IsDataActive = TRUE
-	Public Function IsVisible ( sControlObjName )
+      End If
-		If mobjStaticControl.Item (Cstr( sControlObjName &"_"& enumDB_PERMISSION_TYPE_VISIBLE )) = enumDB_YES Then
+   End Function
-			IsVisible = TRUE
+   '-----------------------------------------------------------------------------------------------------------------
-		Else
+   Public Function IsActive ( sControlObjName )
-			IsVisible = FALSE
+      Dim key : key = Cstr( sControlObjName &"_"&  enumDB_PERMISSION_TYPE_ACTIVE )
-		End If
+      IsActive = FALSE
-	End Function
+      If mobjStaticControl.Exists(key) Then
-	'-----------------------------------------------------------------------------------------------------------------
+          If ( mobjStaticControl.Item (key) = enumDB_YES )   OR   ( IsNull(sControlObjName) )Then
-	Public Sub LoadDataPermissions ( aRows )
+             IsActive = TRUE
-		Dim numOfRows, rowNum
+          End If
-		Dim InxTableName, InxRefColumnVal, InxPermissionType, InxPermission
+      End If
-		InxTableName		= 0
+   End Function
-		InxRefColumnVal		= 1
+   '-----------------------------------------------------------------------------------------------------------------
-		InxPermissionType	= 2
+   Public Function IsVisible ( sControlObjName )
-		InxPermission		= 3
+      Dim key : key = Cstr( sControlObjName &"_"& enumDB_PERMISSION_TYPE_VISIBLE )
+         IsVisible = FALSE
-		numOfRows = UBound( aRows, 2 )
+      If mobjStaticControl.Exists(key) Then
+          If mobjStaticControl.Item (key) = enumDB_YES Then
-		For rowNum = 0 To numOfRows
+             IsVisible = TRUE
+        End If
+      End If
-			If aRows( InxRefColumnVal, rowNum ) = 0 Then
+   End Function
-				'--- Set Table Default Permission (i.e. "0" wildcard for "all records") ---
+   '-----------------------------------------------------------------------------------------------------------------
-				mobjTablePermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) = aRows( InxPermission, rowNum )
+   ' This function is used for HTML conponents that support attribute "disabled". i.e. Button, dropdown, etc.
+   Public Function IsComponentDisabled ( sControlObjName )
-			Else
+      If IsVisible ( sControlObjName ) Then
-				'--- Set Row Permission ---
+         IsComponentDisabled = ""
-				mobjRowPermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxRefColumnVal, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) = aRows( InxPermission, rowNum )
+      Else
+         IsComponentDisabled = " disabled "
-			End If
+      End If
+   End Function
+   '-----------------------------------------------------------------------------------------------------------------
-		Next
+   Public Sub LoadDataPermissions ( aRows )
+      Dim numOfRows, rowNum
-		'Response.write "mobjRowPermissions.Keys="& Join ( mobjRowPermissions.Keys, ", ") &"<br>"
+      Dim InxTableName, InxRefColumnVal, InxPermissionType, InxPermission, InxControl
-		'Response.write "mobjRowPermissions.Items="& Join ( mobjRowPermissions.Items, ", ") &"<br>"
+      Dim TableName, RefColumnVal, PermissionType, Permission, Control
-		'Response.write "mobjTablePermissions.Keys="& Join ( mobjTablePermissions.Keys, ", ") &"<br>"
+      Dim key
-		'Response.write "mobjTablePermissions.Items="& Join ( mobjTablePermissions.Items, ", ") &"<br>"
-	End Sub
+      InxTableName      = 0
-	'-----------------------------------------------------------------------------------------------------------------
+      InxRefColumnVal   = 1
-	Public Sub LoadDataPermissionVariations ( aRows )
+      InxPermissionType = 2
-		Dim numOfRows, rowNum
+      InxPermission     = 3
-		Dim InxTableName, InxRefColumnVal, InxPermissionType, InxPermission
+      InxControl        = 4
-		InxTableName		= 0
+      ' Nothing to do ifthere is no data
-		InxRefColumnVal		= 1
+      If IsNull(aRows) OR IsEmpty(aRows) Then
-		InxPermissionType	= 2
+          Exit Sub
-		InxPermission		= 3
+      End If
-		numOfRows = UBound( aRows, 2 )
+      numOfRows = UBound( aRows, 2 )
-		For rowNum = 0 To numOfRows
+      For rowNum = 0 To numOfRows
-			If mobjRowPermissions.Exists ( aRows( InxTableName, rowNum ) &"_"& enumDB_ALL_DATA &"_"& aRows( InxPermissionType, rowNum ) )Then
-				mobjRowPermissions.Remove ( aRows( InxTableName, rowNum ) &"_"& enumDB_ALL_DATA &"_"& aRows( InxPermissionType, rowNum ) )
+          TableName         =  aRows( InxTableName, rowNum )
-			End If
+          RefColumnVal      =  aRows( InxRefColumnVal, rowNum )
+          PermissionType    =  aRows( InxPermissionType, rowNum )
-			mobjRowPermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxRefColumnVal, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) = CStr( aRows( InxPermission, rowNum ) )
+          Permission        =  aRows( InxPermission, rowNum )
+          Control           =  aRows( InxControl, rowNum )
-			If aRows( InxPermission, rowNum ) = enumDB_NO Then
-				mobjTablePermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) =  enumDB_YES
+         If RefColumnVal = 0 Then
-			Else
+            '--- Set Table Default Permission (i.e. "0" wildcard for "all records") ---
-				mobjTablePermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) =  enumDB_NO
+            key = TableName  & "_" & Control & "_" & PermissionType
+            '
-			End If
+            ' Data appears to be wrong and useless
+            ' Don't populate this table
+            'mobjTablePermissions.Item ( key ) = Permission
-		Next
-		'Response.write "mobjRowPermissions.Keys="& Join ( mobjRowPermissions.Keys, ", ")
+         Else
-	End Sub
+            '--- Set Row Permission ---
-	'-----------------------------------------------------------------------------------------------------------------
+            key = TableName  & "_" & RefColumnVal & "_" & Control & "_" & PermissionType
-	Public Sub LoadStaticPermissions ( aRows )
+            mobjRowPermissions.Item ( key ) = Permission
-		Dim numOfRows, rowNum
-		Dim InxObjName, InxPermissionType, InxPermission
+         End If
-		InxObjName 			= 0
-		InxPermissionType	= 1
+      Next
-		InxPermission		= 2
+    'Response.Write "</pre><br>Pretty Dictionary mobjRowPermissions<pre>"
-		numOfRows = UBound( aRows, 2 )
+    'Response.Write DICToutput(mobjRowPermissions)
+    'Response.Write "</pre><br>Pretty Dictionary mobjTablePermissions<pre>"
-		For rowNum = 0 To numOfRows
+    'Response.Write DICToutput(mobjTablePermissions)
+    'Response.write "</pre>"
-			mobjStaticControl.Add ( aRows( InxObjName, rowNum ) &"_"&  aRows( InxPermissionType, rowNum ) ), CStr( aRows( InxPermission, rowNum ) )
+   End Sub
-			'Response.write " "& aRows( InxObjName, rowNum ) &"_"&  aRows( InxPermissionType, rowNum ) &"="& CStr( aRows( InxPermission, rowNum ) )
+   '-----------------------------------------------------------------------------------------------------------------
+   Public Sub LoadDataPermissionVariations ( aRows )
-		Next
+      Dim numOfRows, rowNum
+      Dim InxTableName, InxRefColumnVal, InxPermissionType, InxPermission
-	End Sub
+      InxTableName      = 0
-	'-----------------------------------------------------------------------------------------------------------------
+      InxRefColumnVal      = 1
-	Private Function AutoLogonUser ( sUserId )
+      InxPermissionType   = 2
-		Dim rsQry, query, is_Online
+      InxPermission      = 3
-		AutoLogonUser = FALSE
+      numOfRows = UBound( aRows, 2 )
-		'--- Get if user is loged on from DB ---
+      For rowNum = 0 To numOfRows
-		OraDatabase.Parameters.Add "USER_ID",  sUserId, ORAPARM_INPUT, ORATYPE_NUMBER
+         If mobjRowPermissions.Exists ( aRows( InxTableName, rowNum ) &"_"& enumDB_ALL_DATA &"_"& aRows( InxPermissionType, rowNum ) )Then
+            mobjRowPermissions.Remove ( aRows( InxTableName, rowNum ) &"_"& enumDB_ALL_DATA &"_"& aRows( InxPermissionType, rowNum ) )
-		query = "SELECT usr.IS_ONLINE  FROM USERS usr  WHERE usr.USER_ID = :USER_ID"
+         End If
-		Set rsQry = OraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+         mobjRowPermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxRefColumnVal, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) = CStr( aRows( InxPermission, rowNum ) )
-		If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
-			is_Online = rsQry("is_online")
+         If aRows( InxPermission, rowNum ) = enumDB_NO Then
-		End If
+            mobjTablePermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) =  enumDB_YES
+         Else
-		OraDatabase.Parameters.Remove "USER_ID"
+            mobjTablePermissions.Item ( aRows( InxTableName, rowNum ) &"_"& aRows( InxPermissionType, rowNum ) ) =  enumDB_NO
-		rsQry.Close
-		Set rsQry = Nothing
+         End If
-		'--- Check if User is still Loged on ---
+      Next
-		If is_Online = "Y" Then
+      'Response.write "mobjRowPermissions.Keys="& Join ( mobjRowPermissions.Keys, ", ")
-			Call SessionsAndCookieSetup ( sUserId )
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
-		End If
+   Public Sub LoadStaticPermissions ( aRows )
+      Dim numOfRows, rowNum
+      Dim InxObjName, InxPermissionType, InxPermission
-	End Function
+      Dim dKey, dValue
-	'-----------------------------------------------------------------------------------------------------------------
-	Public Sub LogonUser ( sUserName, sUserPassword, ByRef oDBsession )
+      InxObjName          = 0
-		Dim rsQry, query, sMessage
+      InxPermissionType   = 1
-		sMessage = NULL
+      InxPermission       = 2
-		OraDatabase.Parameters.Add "USER_NAME",   	sUserName, 		ORAPARM_INPUT, ORATYPE_VARCHAR2
+      numOfRows = UBound( aRows, 2 )
-		query = "SELECT usr.*  FROM USERS usr  WHERE usr.USER_NAME = :USER_NAME"
+      For rowNum = 0 To numOfRows
-		Set rsQry = OraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+        dKey = aRows( InxObjName, rowNum ) &"_"&  aRows( InxPermissionType, rowNum )
+        dValue = CStr( aRows( InxPermission, rowNum ) )
+        mobjStaticControl.Add ( dKey ), dValue
-		'--- Try Authenticating ---
+      Next
-		If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
-			' User Found !
+      'Response.Write "<br>Pretty Dictionary LoadStaticPermissions mobjStaticControl<pre>"
+      'Response.Write DICToutput(mobjStaticControl)
-			If rsQry("is_disabled") = enumDB_YES  Then
+      'Response.Write "</pre>"
-				' User Disabled !
-				sMessage = "Account <b>"& sUserName &"</b> is Disabled!"
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
-				'-- Login Trail --
+   Private Function AutoLogonUser ( sUserId )
-				Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+      Dim rsQry, query, is_Online
+      AutoLogonUser = FALSE
-				'-- Raise Exception --
-				Err.Raise 8, sMessage, ""
+      '-- Kill Any pervious User Permissions stored in session --
+      Session.Contents.Remove(enumUSER_STATIC_PERMISSIONS)
-			Else
+      Session.Contents.Remove(enumUSER_DATA_PERMISSIONS)
-				' Proceed with authentication
+      '--- Get if user is logged on from DB ---
-				If Authenticated( sUserName, sUserPassword, rsQry("user_password"), rsQry("domain") ) Then
+      moOraDatabase.Parameters.Add "USER_ID",  sUserId, ORAPARM_INPUT, ORATYPE_NUMBER
-					' Login OK.
-					Call SessionsAndCookieSetup ( rsQry("user_id") )
+      query = "SELECT usr.IS_ONLINE  FROM USERS usr  WHERE usr.USER_ID = :USER_ID"
+      Set rsQry = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
-					' Tag user login
-					Call TagLogon ( rsQry )
+      If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
+         is_Online = rsQry("is_online")
-				End If
+      End If
+      moOraDatabase.Parameters.Remove "USER_ID"
-			End If
+      rsQry.Close
+      Set rsQry = Nothing
-		Else
-			' User Not Found !
-			sMessage = "Account <b>"& sUserName &"</b> Not Found!"
+      '--- Check if User is still Loged on ---
+      If is_Online = "Y" Then
-			'-- Login Trail --
+         Call SessionsAndCookieSetup ( sUserId )
-			Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+      End If
-			'-- Raise Exception --
-			Err.Raise 8, sMessage, "Make sure your Username is correct <br>OR <br>Please go back and register if you are new user. "
+   End Function
-		End If
+   '-----------------------------------------------------------------------------------------------------------------
-		'--------------------------
+   Public Sub LogonUser ( sUserName, sUserPassword )
+      Dim rsQry, query, sMessage
+      sMessage = NULL
-		OraDatabase.Parameters.Remove "USER_NAME"
+      '-- Kill Any pervious User Permissions stored in session --
-		rsQry.Close()
+      Session.Contents.Remove(enumUSER_STATIC_PERMISSIONS)
-		Set rsQry = Nothing
+      Session.Contents.Remove(enumUSER_DATA_PERMISSIONS)
-	End Sub
-	'-----------------------------------------------------------------------------------------------------------------
+      moOraDatabase.Parameters.Add "USER_NAME",      sUserName,       ORAPARM_INPUT, ORATYPE_VARCHAR2
-	Public Sub LogoffUser ()
-		'-- Login Trail --
+      query = "SELECT usr.*  FROM USERS usr  WHERE usr.USER_NAME = :USER_NAME"
-		Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGOFF, UserName, NULL )
+      Set rsQry = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
-		'-- Kill User Session --
+      moOraDatabase.Parameters.Remove "USER_NAME"
-		Session.Abandon
+      '--- Try Authenticating ---
-	End Sub
+      If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
-	'-----------------------------------------------------------------------------------------------------------------
+         ' User Found !
-	Private Sub SessionsAndCookieSetup ( nUserId )
-		' Store User details in session
+         If rsQry("is_disabled") = enumDB_YES  Then
-		Call SetUserEnvironment ( nUserId )
+            ' User Disabled !
+            sMessage = "Account <b>"& sUserName &"</b> is Disabled!"
-		' Aquire Login Token for Single Application
-		Session(enumLOGIN_TOKEN_SESSION) = Session.SessionID
+            '-- Login Trail --
+            Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
-		Session.Timeout = enumSESSION_TIMEOUT
-	End Sub
+            '-- Raise Exception --
-	'-----------------------------------------------------------------------------------------------------------------
+            Err.Raise 8, sMessage, ""
-	Private Function Authenticated ( ByRef sUserName, ByRef sUserPassword, sDBUserPassword, sDBdomain )
-		Dim objLoginAuth, return, sMessage
+         Else
-		sMessage = NULL
+            ' Proceed with authentication
-		Authenticated = FALSE
+            If Authenticated( sUserName, sUserPassword, rsQry("user_password"), rsQry("domain") ) Then
+               ' Login OK.
+               Call SessionsAndCookieSetup ( rsQry("user_id") )
+               ' Tag user login
+               Call TagLogon ( rsQry )
+            End If
+         End If
+      Else
+         ' User Not Found !
+         sMessage = "Account <b>"& sUserName &"</b> Not Found!"
+         '-- Login Trail --
+         Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+         '-- Raise Exception --
+         Err.Raise 8, sMessage, "Make sure your Username is correct <br>OR <br>Please go back and register if you are new user. "
+      End If
+      '--------------------------
+      rsQry.Close()
+      Set rsQry = Nothing
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Public Function RequiresPasswordUpdate ( sUserName )
+      Dim rsQry, query, sMessage
+      sMessage = NULL
+      moOraDatabase.Parameters.Add "USER_NAME",      sUserName,       ORAPARM_INPUT, ORATYPE_VARCHAR2
+      query = "SELECT usr.*  FROM USERS usr  WHERE usr.USER_NAME = :USER_NAME"
+      Set rsQry = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+      '--- Try Authenticating ---
+      RequiresPasswordUpdate = FALSE
+      If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
+         If IsNull(rsQry("user_password")) AND IsNull(rsQry("domain")) Then
+            RequiresPasswordUpdate = TRUE
+         End If
+      End If
+      '--------------------------
+      moOraDatabase.Parameters.Remove "USER_NAME"
+      rsQry.Close()
+      Set rsQry = Nothing
+   End Function
+   '-----------------------------------------------------------------------------------------------------------------
+   Public Sub LogoffUser ()
+      '-- Login Trail --
+      Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGOFF, UserName, NULL )
+      '-- Kill User Session --
+      Session.Abandon
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Sub SessionsAndCookieSetup ( nUserId )
+      ' Store User details in session
+      Call SetUserEnvironment ( nUserId )
+      ' Aquire Login Token for Single Application
+      Session(enumLOGIN_TOKEN_SESSION) = Session.SessionID
+      Session.Timeout = enumSESSION_TIMEOUT
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Function Authenticated ( ByRef sUserName, ByRef sUserPassword, sDBUserPassword, sDBdomain )
+      Dim objLoginAuth, return, sMessage
+      sMessage = NULL
+      Authenticated = FALSE
       ' Hook for testing access control features
       ' Any login allowed to the Test Database
+      '
       If isDevSystem() Then
         '-- Login Trail --
         Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_SUCCESS, sUserName, NULL )
       ElseIf NOT IsNull(sDBdomain) Then
-			' DOMAIN auth.
+         ' DOMAIN auth.
-			Set objLoginAuth = Server.CreateObject("LoginAdmin.ImpersonateUser")
+         Set objLoginAuth = Server.CreateObject("LoginAdmin.ImpersonateUser")
-			return = -1
+         return = -1
-			return = objLoginAuth.AuthenticateUser ( sUserName, sUserPassword, sDBdomain )
+         return = objLoginAuth.AuthenticateUser ( sUserName, sUserPassword, sDBdomain )
-			' From MSDN System Error Codes
+         ' From MSDN System Error Codes
-			' 0 - The operation completed successfully.
+         ' 0 - The operation completed successfully.
-			' 1326 - Logon failure: unknown user name or bad password.
+         ' 1326 - Logon failure: unknown user name or bad password.
-			' 1385 - Logon failure: the user has not been granted the requested logon type at this computer.
+         ' 1385 - Logon failure: the user has not been granted the requested logon type at this computer.
-			' 1909 - The referenced account is currently locked out and may not be used to log on.
+         ' 1909 - The referenced account is currently locked out and may not be used to log on.
-			Select Case return
+         Select Case return
-				Case 0, 1385
+            Case 0, 1385
-					'Login ok
+               'Login ok
-					Authenticated = TRUE
+               Authenticated = TRUE
-					'-- Login Trail --
+               '-- Login Trail --
-					Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_SUCCESS, sUserName, NULL )
+               Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_SUCCESS, sUserName, NULL )
-				Case 1909
+            Case 1909
-					sMessage = "Account <b>"& sUserName &"</b> at "& sDBdomain &" domain is currently locked!"
+               sMessage = "Account <b>"& sUserName &"</b> at "& sDBdomain &" domain is currently locked!"
-					'-- Login Trail --
+               '-- Login Trail --
-					Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+               Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
-					'-- Raise Exception --
+               '-- Raise Exception --
-					Err.Raise 8, sMessage, ""
+               Err.Raise 8, sMessage, ""
-				Case Else
+            Case Else
-					sMessage = "Password is incorrect for <b>"& sUserName &"</b> at "& sDBdomain &" domain!"
+               sMessage = "Password is incorrect for <b>"& sUserName &"</b> at "& sDBdomain &" domain!"
-					'-- Login Trail --
+               '-- Login Trail --
-					Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+               Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
-					'-- Raise Exception --
+               '-- Raise Exception --
-					Err.Raise 8, sMessage, sDBdomain &" domain returns system error code "& return
+               Err.Raise 8, sMessage, sDBdomain &" domain returns system error code "& return
-			End Select
+         End Select
-			Set objLoginAuth = Nothing
+         Set objLoginAuth = Nothing
-		Else
+      Else
-			' LOCAL auth.
+         ' LOCAL auth.
-			If sUserPassword = sDBUserPassword Then
+         If IsLocaPasswordCorrect ( sUserName, sUserPassword ) Then
-				'Login ok
+            'Login ok
-				Authenticated = TRUE
+            Authenticated = TRUE
-				'-- Login Trail --
+            '-- Login Trail --
-				Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_SUCCESS, sUserName, NULL )
+            Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_SUCCESS, sUserName, NULL )
-			Else
+         Else
-				sMessage = "Password is incorrect for <b>"& sUserName &"</b>!"
+            sMessage = "Password is incorrect for <b>"& sUserName &"</b>!"
-				'-- Login Trail --
+            '-- Login Trail --
-				Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
+            Call LoginTrail ( enumACCESS_MANAGER_EVENT_LOGON_FAIL, sUserName, sMessage )
-				'-- Raise Exception --
+            '-- Raise Exception --
-				Err.Raise 8, sMessage, "Please try again and make sure you do not have Caps Lock on."
+            Err.Raise 8, sMessage, "Please try again and make sure you do not have Caps Lock on."
-			End If
+         End If
-		End If
+      End If
-	End Function
+   End Function
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Private Sub LoginTrail ( nEvent, sUserName, sMessage )
+   Private Function IsLocaPasswordCorrect ( sUserName, sPassword )
-		OraDatabase.Parameters.Add "EVENT_ENUM",   		nEvent, 		ORAPARM_INPUT, ORATYPE_NUMBER
+      moOraDatabase.Parameters.Add "USER_NAME",   sUserName,    ORAPARM_INPUT, ORATYPE_VARCHAR2
-		OraDatabase.Parameters.Add "LOGIN_USER_NAME",   sUserName, 		ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.Parameters.Add "PASSWORD",    sPassword,    ORAPARM_INPUT, ORATYPE_VARCHAR2
-		OraDatabase.Parameters.Add "CLIENT_IP",   		Request.ServerVariables("REMOTE_ADDR"), 		ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.Parameters.Add "RETURN_CODE", 0,            ORAPARM_OUTPUT, ORATYPE_NUMBER
-		OraDatabase.Parameters.Add "APPLICATION_ID",   	APPLICATION_ID, 		ORAPARM_INPUT, ORATYPE_NUMBER
-		OraDatabase.Parameters.Add "LOGIN_COMMENTS",   	sMessage, 		ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.ExecuteSQL _
+      "BEGIN   :RETURN_CODE := PK_SECURITY.IS_LOCAL_PASSWORD_CORRECT ( :USER_NAME, :PASSWORD );   END;"
-		OraSession.BeginTrans
+      If CInt(OraDatabase.Parameters("RETURN_CODE").Value) = 1 Then
+         IsLocaPasswordCorrect = TRUE
-		OraDatabase.ExecuteSQL _
+      Else
-		"BEGIN   pk_AMUtils.Log_Access ( :EVENT_ENUM, :LOGIN_USER_NAME, :CLIENT_IP, :APPLICATION_ID, :LOGIN_COMMENTS );   END;"
+         IsLocaPasswordCorrect = FALSE
+      End If
-		OraSession.CommitTrans
+      moOraDatabase.Parameters.Remove "USER_NAME"
+      moOraDatabase.Parameters.Remove "PASSWORD"
-		OraDatabase.Parameters.Remove "EVENT_ENUM"
+      moOraDatabase.Parameters.Remove "RETURN_CODE"
-		OraDatabase.Parameters.Remove "LOGIN_USER_NAME"
-		OraDatabase.Parameters.Remove "CLIENT_IP"
+   End Function
-		OraDatabase.Parameters.Remove "APPLICATION_ID"
+   '-----------------------------------------------------------------------------------------------------------------
-		OraDatabase.Parameters.Remove "LOGIN_COMMENTS"
+   Public Sub SetPassword ( sUserName, sPasswordA, sPasswordB )
+      If (sUserName = "")  OR  (sPasswordA = "")  OR  (sPasswordB = "") Then
+         Err.Raise 8, "Username and both Passwords are required !", ""
-	End Sub
+         Exit Sub
-	'-----------------------------------------------------------------------------------------------------------------
+      End If
-	Private Sub TagLogon ( oRsQry )
-		oRsQry.Edit()
+      moOraDatabase.Parameters.Add "USER_NAME",   sUserName,       ORAPARM_INPUT, ORATYPE_VARCHAR2
-		oRsQry("is_online").Value = "Y"
+      moOraDatabase.Parameters.Add "PASSWORDA",   sPasswordA,    ORAPARM_INPUT, ORATYPE_VARCHAR2
-		oRsQry("online_at").Value = Request.ServerVariables("REMOTE_ADDR")
+      moOraDatabase.Parameters.Add "PASSWORDB",   sPasswordB,    ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.Parameters.Add "RETURN_CODE",   0,       ORAPARM_OUTPUT, ORATYPE_NUMBER
-		oRsQry.Update()
-	End Sub
+      objEH.TryORA ( moOraSession )
-	'-----------------------------------------------------------------------------------------------------------------
+      On Error Resume Next
-	Private Sub SetUserEnvironment ( nUser_id )
-		Dim rsUser, query, tempSTR
+      moOraDatabase.ExecuteSQL _
+      "BEGIN   :RETURN_CODE := PK_SECURITY.SET_PASSWORD ( :USER_NAME, :PASSWORDA, :PASSWORDB );   END;"
-		OraDatabase.Parameters.Add "USER_ID", nUser_id, ORAPARM_INPUT, ORATYPE_NUMBER
+      objEH.CatchORA ( moOraSession )
+      If CInt(OraDatabase.Parameters("RETURN_CODE").Value) = -1 Then
-		'---- Get User Details ----
+         Err.Raise 8, "Passwords do not match !", "Make sure that you type correctly both passwords."
-		query = "SELECT usr.*  FROM USERS usr  WHERE usr.USER_ID = :USER_ID"
+      End If
-		Set rsUser = OraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
-		If (NOT rsUser.BOF) AND (NOT rsUser.EOF) Then
+      moOraDatabase.Parameters.Remove "USER_NAME"
-			Session(enumUSER_ID_SESSION) = rsUser("user_id")
+      moOraDatabase.Parameters.Remove "PASSWORDA"
+      moOraDatabase.Parameters.Remove "PASSWORDB"
-			Session(enumUSER_DETAILS_SESSION) = _
+      moOraDatabase.Parameters.Remove "RETURN_CODE"
-				"user_name="& rsUser("user_name") & sSEPARATOR &_
-				"full_name="& rsUser("full_name") & sSEPARATOR &_
+   End Sub
-				"user_email="& rsUser("user_email") & sSEPARATOR &_
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Sub LoginTrail ( nEvent, sUserName, sMessage )
+      moOraDatabase.Parameters.Add "EVENT_ENUM",         nEvent,       ORAPARM_INPUT, ORATYPE_NUMBER
+      moOraDatabase.Parameters.Add "LOGIN_USER_NAME",   sUserName,       ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.Parameters.Add "CLIENT_IP",         Request.ServerVariables("REMOTE_ADDR"),       ORAPARM_INPUT, ORATYPE_VARCHAR2
+      moOraDatabase.Parameters.Add "APPLICATION_ID",      APPLICATION_ID,       ORAPARM_INPUT, ORATYPE_NUMBER
+      moOraDatabase.Parameters.Add "LOGIN_COMMENTS",      sMessage,       ORAPARM_INPUT, ORATYPE_VARCHAR2
+      objEH.TryORA ( moOraSession )
+      On Error Resume Next
+      moOraDatabase.ExecuteSQL _
+      "BEGIN   pk_AMUtils.Log_Access ( :EVENT_ENUM, :LOGIN_USER_NAME, :CLIENT_IP, :APPLICATION_ID, :LOGIN_COMMENTS );   END;"
+      objEH.CatchORA ( moOraSession )
+      moOraDatabase.Parameters.Remove "EVENT_ENUM"
+      moOraDatabase.Parameters.Remove "LOGIN_USER_NAME"
+      moOraDatabase.Parameters.Remove "CLIENT_IP"
+      moOraDatabase.Parameters.Remove "APPLICATION_ID"
+      moOraDatabase.Parameters.Remove "LOGIN_COMMENTS"
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Sub TagLogon ( oRsQry )
+      oRsQry.Edit()
+      oRsQry("is_online").Value = "Y"
+      oRsQry("online_at").Value = Request.ServerVariables("REMOTE_ADDR")
+      oRsQry.Update()
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Sub SetUserEnvironment ( nUser_id )
+      Dim rsUser, query, tempSTR
+      moOraDatabase.Parameters.Add "USER_ID", nUser_id, ORAPARM_INPUT, ORATYPE_NUMBER
+      '---- Get User Details ----
+      query = "SELECT usr.*  FROM USERS usr  WHERE usr.USER_ID = :USER_ID"
+      Set rsUser = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+      If (NOT rsUser.BOF) AND (NOT rsUser.EOF) Then
+         Session(enumUSER_ID_SESSION) = rsUser("user_id")
+         Session(enumUSER_DETAILS_SESSION) = _
+            "user_name="& rsUser("user_name") & sSEPARATOR &_
+            "full_name="& rsUser("full_name") & sSEPARATOR &_
+            "user_email="& rsUser("user_email") & sSEPARATOR &_
             "last_visit="& rsUser("last_visit") & sSEPARATOR &_
             "domain="& rsUser("domain")
-		End If
+      End If
-		'---- Get User Applications ----
+      '---- Get User Applications ----
-		query = "SELECT ua.APP_ID  FROM USER_APPLICATIONS ua  WHERE ua.USER_ID = :USER_ID"
+      query = "SELECT ua.APP_ID  FROM USER_APPLICATIONS ua  WHERE ua.USER_ID = :USER_ID"
-		Set rsUser = OraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+      Set rsUser = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
-		tempSTR = ""
+      tempSTR = ""
-		While (NOT rsUser.BOF) AND (NOT rsUser.EOF)
+      While (NOT rsUser.BOF) AND (NOT rsUser.EOF)
-			tempSTR = tempSTR & sSEPARATOR & rsUser("app_id")
+         tempSTR = tempSTR & sSEPARATOR & rsUser("app_id")
-			rsUser.MoveNext()
+         rsUser.MoveNext()
-		WEnd
+      WEnd
-		If tempSTR <> "" Then
+      If tempSTR <> "" Then
-			Session(enumUSER_APPLICATIONS_SESSION) = Right( tempSTR, Len(tempSTR) - Len(sSEPARATOR) )	'Remove first separator
+         Session(enumUSER_APPLICATIONS_SESSION) = Right( tempSTR, Len(tempSTR) - Len(sSEPARATOR) )   'Remove first separator
-		Else
+      Else
-			Session(enumUSER_APPLICATIONS_SESSION) = 0
+         Session(enumUSER_APPLICATIONS_SESSION) = 0
-		End If
+      End If
-		OraDatabase.Parameters.Remove "USER_ID"
+      moOraDatabase.Parameters.Remove "USER_ID"
-		rsUser.Close()
+      rsUser.Close()
-		Set rsUser = Nothing
+      Set rsUser = Nothing
+   End Sub
+   '-----------------------------------------------------------------------------------------------------------------
+   Private Sub GetApplicationRunningLevel ( )
+      Dim rsQry, query
+      '--- Get if user is loged on from DB ---
+      moOraDatabase.Parameters.Add "APP_ID",  APPLICATION_ID, ORAPARM_INPUT, ORATYPE_NUMBER
+      query = _
+      " SELECT app.APP_ID,"&_
+      "        app.APPLICATION_NAME,"&_
+      "        app.IS_RUNNING"&_
+      "   FROM APPLICATIONS app"&_
+      "  WHERE app.APP_ID = :APP_ID"
+      Set rsQry = moOraDatabase.DbCreateDynaset( query , ORADYN_DEFAULT )
+      If (NOT rsQry.BOF) AND (NOT rsQry.EOF) Then
+         mbIsApplicationRunning = FALSE
+         If rsQry("is_running") = enumDB_YES Then
+            mbIsApplicationRunning = TRUE
+         End If
+      End If
+      moOraDatabase.Parameters.Remove "APP_ID"
+      rsQry.Close
+      Set rsQry = Nothing
-	End Sub
+   End Sub
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Private Sub Class_Initialize()
+   Private Sub Class_Initialize()
-		'// Perform action on creation of object. e.g. Set myObj = New ThisClassName
+      '// Perform action on creation of object. e.g. Set myObj = New ThisClassName
-		Set mobjStaticControl = CreateObject("Scripting.Dictionary")
+      Set mobjStaticControl = CreateObject("Scripting.Dictionary")
-		Set mobjTablePermissions = CreateObject("Scripting.Dictionary")
+      Set mobjTablePermissions = CreateObject("Scripting.Dictionary")
-		Set mobjRowPermissions = CreateObject("Scripting.Dictionary")
+      Set mobjRowPermissions = CreateObject("Scripting.Dictionary")
+      mbIsApplicationRunning = NULL   ' The state of application
-		sSEPARATOR = "||"
+      sSEPARATOR = "||"
+      bDebug = false
-	End Sub
+   End Sub
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
-	Private Sub Class_Terminate()
+   Private Sub Class_Terminate()
-		'// Perform action on object disposal. e.g. Set myObj = Nothing
+      '// Perform action on object disposal. e.g. Set myObj = Nothing
-		Set mobjStaticControl = Nothing
+      Set mobjStaticControl = Nothing
-		Set mobjRowPermissions = Nothing
+      Set mobjRowPermissions = Nothing
-		Set mobjTablePermissions = Nothing
+      Set mobjTablePermissions = Nothing
-	End Sub
+   End Sub
-	'-----------------------------------------------------------------------------------------------------------------
+   '-----------------------------------------------------------------------------------------------------------------
 End Class
-%>
 %>

Subversion Repositories DevTools

(root)/ManagerSuite/Access_Manager/trunk/class/classAccessControl.asp @ 5299 – Rev 5153 → 5299