membership = new Application_Model_Membership(); $membershipMapper->find($_SESSION['membershipID'],$this->membership); } public function indexAction() { // TODO: ACL: is he athorized to see this ? // Get the Clients which booted with a bootiso of this group $result = $this->_request->getParam('result'); switch($result){ case "forbidden": echo "
Not allowed to delete this
"; break; case "ok": echo "
Delete sucessful
"; break; case "error": echo "
There was an error deleting
"; break; } $clientMapper = new Application_Model_ClientMapper(); $clientsInGroup = $clientMapper->findBy('groupID',$this->membership->getGroupID()); # print_a($clientsInGroup); $this->view->clients = $clientsInGroup; } public function addclientAction() { // action body } public function removeclientAction() { $clientID = $this->_request->getParam('clientID'); // TODO: ACL: is he authorized to delete clients? $clientMapper = new Application_Model_ClientMapper(); if(is_numeric($clientID)){ $client = new Application_Model_Client(); $clientMapper->find($clientID,$client); // TODO: ACL: Is He authorized to delete if($client->getGroupID() == $this->membership->getGroupID()){ $clientMapper = new Application_Model_ClientMapper(); $clientMapper->delete($client); $this->_redirect('/user/client/index/result/ok'); } else{ $this->_redirect('/user/client/index/result/forbidden'); } } $this->_redirect('/user/client/index/result/error'); // action body } public function editclientAction() { // action body } }