aGroupRights_8prg_source.html

<?php
/**
 *  @package GroupHub
 *  @author MGHandy
 *
 *  @uses This script will allow for the printing of the javascript/html components needed
 *  to open and use the group rights window.
 *
 *  @uses Change profile: this script facilitates the need to change which profile a group belongs to. Upon changin a profile the group rights will be completely reset the groups rights to default. the admin will be warned if and users have different user rights from the new profile.
 *
 *  @uses View profile rights: a popup can be shown fr the admin to view the profiles current rights.
 *
 *  @uses Update group rights: set options, quantities and amounts for any features available to the group.
 */
require_once("$admLibrary/aGroupSupport.i");

try {
  $admVars = array();
  $admOk = array(
    "operation" => array("filter" => FILTER_SANITIZE_STRING),
    "payload" => array("filter" => FILTER_SANITIZE_STRING),
    "gList" => array("filter" => FILTER_SANITIZE_STRING),
    "gProfile" => array('filter' => FILTER_SANITIZE_STRING)
  );
  HCU_ImportVars($admVars, "GROUP_RIGHTS", $admOk);

  $rOperation = isset($admVars["GROUP_RIGHTS"]["operation"]) ? $admVars["GROUP_RIGHTS"]["operation"] : null;
  $rPayload = isset($admVars["GROUP_RIGHTS"]["payload"]) ? $admVars["GROUP_RIGHTS"]["payload"] : null;
  $rList = isset($admVars["GROUP_RIGHTS"]["gList"]) ? $admVars["GROUP_RIGHTS"]["gList"] : null;
  $rProfile = isset($admVars["GROUP_RIGHTS"]["gProfile"]) ? $admVars["GROUP_RIGHTS"]["gProfile"] : null;

  $rGroup = $rPayload ?
    GroupDecrypt($SYSENV, $Cu, $rPayload) :
    null;

  $rContext = $rPayload ?
    GroupContext($SYSENV, $Cu, $rGroup['group']) :
    GroupContext($SYSENV, $Cu);

  $aryResult = array();
  $aryReply = array();

  switch ($rOperation) {
    case "":
      PrintCardContent();
      break;
    case "readGroupRights":
      header('Content-type: application/json');

      $gRights = ReadGroupRights($SYSENV, $dbh, $rContext);
      $gProfiles = ReadProfiles($SYSENV, $dbh, $rContext);
      $aryResult['data']['gRights'] = $gRights['rights'];
      $aryResult['data']['gProfiles'] = $gProfiles['profiles'];
      GroupReply($aryResult, $aryReply, $rOperation);
      break;
    case "readProfileRights":
      header('Content-type: application/json');

      $pRights = ReadProfileRights($SYSENV, $dbh, $rContext);
      $aryResult['data']['pRights'] = $pRights['rights'];
      GroupReply($aryResult, $aryReply, $rOperation);
      break;
    case "updateGroupRights":
      header('Content-type: application/json');

      $gValidate = ValidateGroupRights($SYSENV, $rContext, $rList);
      $gCreate = CreateGroupRights($SYSENV, $dbh, $rContext, $gValidate['create']);
      $gUpdate = UpdateGroupRights($SYSENV, $dbh, $rContext, $gValidate['update']);
      $gDelete = DeleteGroupRights($SYSENV, $dbh, $rContext, $gValidate['delete']);
      $aryResult['info'] = "Features have been updated successfully.";
      $aryResult['data']['create'] = isset($gCreate['rights']) ? $gCreate['rights'] : $gCreate;
      $aryResult['data']['update'] = isset($gUpdate['rights']) ? $gUpdate['rights'] : $gUpdate;
      $aryResult['data']['delete'] = isset($gDelete['rights']) ? $gDelete['rights'] : $gDelete;
      GroupReply($aryResult, $aryReply, $rOperation);
      break;
    case "updateGroupProfile":
      header('Content-type: application/json');

      $gProfile = UpdateGroupProfile($SYSENV, $dbh, $rContext, $rProfile);
      // update group
      $rGroup['group']['p_id'] = $gProfile['profile']['id'];
      $rGroup['group']['g_profile'] = $gProfile['profile']['name'];

      // update context
      // read group rights for new profile
      $rContext = GroupContext($SYSENV, $Cu, $rGroup['group']);
      $gRights = ReadGroupRights($SYSENV, $dbh, $rContext);

      $aryResult['data']['rights'] = $gRights['rights'];
      $aryResult['data']['group'] = $rGroup;
      $aryResult['data']['encrypt'] = GroupEncrypt($SYSENV, $Cu, $rGroup);
      $aryResult['info'] = $gProfile['message'];
      GroupReply($aryResult, $aryReply, $rOperation);
      break;
  }

} catch (Exception $e) {
  $aryReply['errors'][] = $e->getMessage();
  $aryResult['data'] = array();
  $aryResult['info'] = array();

  GroupReply($aryResult, $aryReply, $rOperation);
}


/**
 *  ValidateGroupRights:
 *  @uses this function validates the incoing update information.
 *  @param $pEnv array : environment variable for debugging
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pList json : list of all group features being updated, this will result in one array for creating features, one for updating features, and one for deleting features. Each array will be sent to it's corresponding update function.
 *
 *  @return $vList array : associative array of the features to be created, updated or deleted
 */
function ValidateGroupRights($pEnv, $pContext, $pList) {
  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];

  $hList = html_entity_decode($pList);
  $jList = json_decode($hList, true);

  $vListCreate = array();
  $vListUpdate = array();
  $vListDelete = array();
  $vList = array();

  // SET UP ARRAY FOR CREATE
  foreach ($jList['create'] as $row => $value) {
    $vListCreate[] = array(
      "_action" => "create",
      "group_id" => intval($gId),
      "feature_code" => prep_save($value['fCode'], 10),
      "amount_per_transaction" => $value['gApt'] == null ? "NULL" : floatval($value['gApt']),
      "amount_per_day" => $value['gApd'] == null ? "NULL" : floatval($value['gApd']),
      "amount_per_month" => $value['gApm'] == null ? "NULL" : floatval($value['gApm']),
      "amount_per_account_per_day" => $value['gApa'] == null ? "NULL" : floatval($value['gApa']),
      "count_per_day" => $value['gCpd'] == null ? "NULL" : intval($value['gCpd']),
      "count_per_month" => $value['gCpm'] == null ? "NULL" : intval($value['gCpm']),
      "count_per_account_per_day" => $value['gCpa'] == null ? "NULL" : intval($value['gCpa']),
      "confirm_required" => boolval($value['gCfm']) == 1 ? "TRUE" : "FALSE"
    );
  }

  // SET UP ARRAY FOR UPDATE
  foreach ($jList['update'] as $row => $value) {
    $vListUpdate[] = array(
      "_action" => "update",
      "group_id" => intval($gId),
      "feature_code" => prep_save($value['fCode'], 10),
      "amount_per_transaction" => $value['gApt'] == null ? "NULL" : floatval($value['gApt']),
      "amount_per_day" => $value['gApd'] == null ? "NULL" : floatval($value['gApd']),
      "amount_per_month" => $value['gApm'] == null ? "NULL" : floatval($value['gApm']),
      "amount_per_account_per_day" => $value['gApa'] == null ? "NULL" : floatval($value['gApa']),
      "count_per_day" => $value['gCpd'] == null ? "NULL" : intval($value['gCpd']),
      "count_per_month" => $value['gCpm'] == null ? "NULL" : intval($value['gCpm']),
      "count_per_account_per_day" => $value['gCpa'] == null ? "NULL" : intval($value['gCpa']),
      "confirm_required" => boolval($value['gCfm']) == 1 ? "TRUE" : "FALSE"
    );
  }

  // SET UP ARRAY FOR DELETE
  foreach ($jList['delete'] as $row => $value) {
    $vListDelete[] = array(
      "_action" => "delete",
      "group_id" => intval($gId),
      "feature_code" => prep_save($value['fCode'], 10)
    );
  }

  $vList['create'] = $vListCreate;
  $vList['update'] = $vListUpdate;
  $vList['delete'] = $vListDelete;

  return $vList;
}

/**
 *  CreatreGroupRights
 *  @uses this function is used to create features rights that don't yet exist for a group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pList array : list of feature to be added to the group rights table
 *
 *  @return $sqlReturn array : array of successfully created data/success messages
 */
function CreateGroupRights($pEnv, $pDbh, $pContext, $pList) {
  if (count($pList) == 0) { return array(); }

  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];
  $cuTable = $pContext['cu_table'];
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();
  $sqlCreate = "";
  $sqlColumns = "
    group_id,
    feature_code,
    amount_per_transaction,
    amount_per_account_per_day,
    amount_per_day,
    amount_per_month,
    count_per_account_per_day,
    count_per_day,
    count_per_month,
    confirm_required";

  foreach ($pList as $key => $value) {
    $sqlValues = "";
    $sqlValues .= $value['group_id'] . ",";
    $sqlValues .= "'" . $value['feature_code'] . "',";
    $sqlValues .= $value['amount_per_transaction'] . ",";
    $sqlValues .= $value['amount_per_account_per_day'] . ",";
    $sqlValues .= $value['amount_per_day'] . ",";
    $sqlValues .= $value['amount_per_month'] . ",";
    $sqlValues .= $value['count_per_account_per_day'] . ",";
    $sqlValues .= $value['count_per_day'] . ",";
    $sqlValues .= $value['count_per_month'] . ",";
    $sqlValues .= $value['confirm_required'];

    $sqlCreate .= "INSERT INTO {$cuTable}grouprights
      ($sqlColumns) VALUES ($sqlValues);";

    $sqlReturn['rights'][] = $value['feature_code'];
  }

  $sqlCreateRs = db_query($sqlCreate, $pDbh);
  if (!$sqlCreateRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to create group rights");
  }

  return $sqlReturn;
}

/**
 *  UpdateGroupRights
 *  @uses this function is used to update features rights that currently exist for a group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pList array : list of feature to be updated in the group rights table
 *
 *  @return $sqlReturn array : array of successfully updated data/success messages
 */
function UpdateGroupRights($pEnv, $pDbh, $pContext, $pList) {
  if (count($pList) == 0) { return array(); }

  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];
  $cuTable = $pContext['cu_table'];
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();
  $sqlUpdate = "";
  $sqlColumns = "
    amount_per_transaction,
    amount_per_account_per_day,
    amount_per_day,
    amount_per_month,
    count_per_account_per_day,
    count_per_day,
    count_per_month,
    confirm_required";

  foreach ($pList as $key => $value) {
    $sqlValues = "
      {$value['amount_per_transaction']},
      {$value['amount_per_account_per_day']},
      {$value['amount_per_day']},
      {$value['amount_per_month']},
      {$value['count_per_account_per_day']},
      {$value['count_per_day']},
      {$value['count_per_month']},
      {$value['confirm_required']}";

    $sqlUpdate .= "UPDATE {$cuTable}grouprights
      SET ($sqlColumns) = ($sqlValues)
      WHERE group_id = $gId
        AND feature_code = '{$value['feature_code']}';";

    $sqlReturn['rights'][] = $value['feature_code'];
  }

  $sqlUpdateRs = db_query($sqlUpdate, $pDbh);
  if (!$sqlUpdateRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to update group rights");
  }

  return $sqlReturn;
}

/**
 *  DeleteGroupRights
 *  @uses this function is used to delete feature rights that currenty exist for a group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pList array : list of feature to be added to the group rights table
 *
 *  @return $sqlReturn array : array of successfully created data/success messages
 */
function DeleteGroupRights($pEnv, $pDbh, $pContext, $pList) {
  if (count($pList) == 0) { return array(); }

  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];
  $cuTable = $pContext['cu_table'];
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();
  $sqlDelete = "";

  foreach ($pList as $key => $value) {

    $sqlDelete .= "DELETE FROM {$cuTable}grouprights
      WHERE group_id = $gId
        AND feature_code = '{$value['feature_code']}';";

    $sqlReturn['rights'][] = $value['feature_code'];
  }

  $sqlDeleteRs =  db_query($sqlDelete, $pDbh);
  if(!$sqlDeleteRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to delete group rights");
  }

  return $sqlReturn;
}

/**
 *  ReadGroupRights
 *  @uses this function is used to read features rights that currently exist for a group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pList array : list of feature to be added to the group rights table
 *
 *  @return $sqlReturn array : array of successfully read data
 */
function ReadGroupRights($pEnv, $pDbh, $pContext) {
  $maxAmount = FEATURE_LIMIT_MAX_AMOUNT;
  $maxCount = FEATURE_LIMIT_MAX_COUNT;

  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];
  $cuTable = $pContext['cu_table'];
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();
  $sqlColumns = "
    f.feature_code AS f_code,
    f.description AS f_desc,
    f.limit_type AS f_type,
    p.profile_code AS p_code,
    gr.feature_code AS g_dft,
    gr.amount_per_transaction AS g_apt,
    gr.amount_per_day AS g_apd,
    gr.amount_per_month AS g_apm,
    gr.amount_per_account_per_day AS g_apa,
    gr.count_per_day AS g_cpd,
    gr.count_per_month AS g_cpm,
    gr.count_per_account_per_day AS g_cpa,
    gr.confirm_required AS g_cfm,
    pr.confirm_required AS p_cfm,
    COALESCE(pr.amount_per_transaction, $maxAmount) AS m_apt,
    COALESCE(pr.amount_per_day, $maxAmount) AS m_apd,
    COALESCE(pr.amount_per_month, $maxAmount) AS m_apm,
    COALESCE(pr.amount_per_account_per_day, $maxAmount) AS m_apa,
    COALESCE(pr.count_per_day, $maxCount) AS m_cpd,
    COALESCE(pr.count_per_month, $maxCount) AS m_cpm,
    COALESCE(pr.count_per_account_per_day, $maxCount) AS m_cpa";
  $sqlSelect = "SELECT $sqlColumns
    FROM {$cuTable}group g
    INNER JOIN cu_profile p ON g.profile_id = p.profile_id
    INNER JOIN cu_profilerights pr ON g.profile_id = pr.profile_id
    INNER JOIN cu_feature f ON pr.feature_code = f.feature_code
    LEFT JOIN {$cuTable}grouprights gr ON g.group_id = gr.group_id
      AND gr.feature_code = f.feature_code
    WHERE g.group_id = $gId
      AND f.enabled = 'TRUE'
    ORDER BY f.description ASC";
  $sqlSelectRs = db_query($sqlSelect, $pDbh);
  if (!$sqlSelectRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to read group rights");
  }

  $sqlReturn['rights'] = db_fetch_all($sqlSelectRs);
  return $sqlReturn;
}

/**
 *  UpdateGroupProfile
 *  @uses this function is used to change the profile associated with a group. This function will delete all feature rights for the group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *  @param $pProfile string : new profile name to associate with group
 *
 *  @return $sqlReturn array : array of successfully updated group encryption
 */
function UpdateGroupProfile($pEnv, $pDbh, $pContext, $pProfile) {
  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];
  $cuTable = $pContext['cu_table'];
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();

  $pDesc = prep_save($pProfile, 255);
  $sqlSelect = "SELECT profile_id AS p_id
    FROM cu_profile
    WHERE description = '$pDesc'
      AND cu = '$cuCode'";

  $sqlSelectRs = db_query($sqlSelect, $pDbh);
  $sqlSelectRow = db_fetch_assoc($sqlSelectRs);
  $pId = intval($sqlSelectRow['p_id']);

  // UPDATE GROUP PROFILE ID
  $sqlUpdate = "UPDATE {$cuTable}group
    SET profile_id = $pId
    WHERE group_id = $gId";
  $sqlUpdateRs = db_query($sqlUpdate, $pDbh);
  if (!$sqlUpdateRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to update group profile.");
  }

  // DELETE GROUP RIGHTS FOR GROUP ID
  $sqlDelete = "DELETE FROM {$cuTable}grouprights
    WHERE group_id = $gId";
  $sqlDeleteRs = db_query($sqlDelete, $pDbh);
  if (!$sqlDeleteRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to update group rights.");
  }

  // DELETE USER RIGHTS NOT IN NEW PROFILE
  $sqlDelete = "DELETE FROM {$cuTable}userrights ur
    USING {$cuTable}user u
    WHERE ur.user_id = u.user_id
      AND u.group_id = $gId
      AND ur.feature_code NOT IN
      (SELECT pr.feature_code FROM cu_profilerights pr WHERE pr.profile_id = $pId)";
  $sqlDeleteRs = db_query($sqlDelete, $pDbh);
  $sqlDeleteRs = db_query($sqlDelete, $pDbh);
  if (!$sqlDeleteRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to update user rights rights.");
  }

  // SELECT USER RIGHTS WITH DIFFERENCES TO NEW PROFILE
  $sqlColumns = "
    f.feature_code AS f_code,
    f.description AS f_desc,
    u.user_name AS u_user";
  $sqlDiff = "
    ur.amount_per_transaction != pr.amount_per_transaction
    OR ur.amount_per_account_per_day != pr.amount_per_account_per_day
    OR ur.amount_per_day != pr.amount_per_day
    OR ur.amount_per_month != pr.amount_per_month
    OR ur.count_per_account_per_day != pr.count_per_account_per_day
    OR ur.count_per_day != pr.count_per_day
    OR ur.count_per_month != pr.count_per_month
    OR ur.confirm_required != pr.confirm_required";
  $sqlSelect = "SELECT $sqlColumns
    FROM {$cuTable}userrights ur
    INNER JOIN {$cuTable}user u ON u.user_id = ur.user_id
    INNER JOIN cu_feature f ON f.feature_code = ur.feature_code
    FULL OUTER JOIN cu_profilerights pr ON pr.feature_code = ur.feature_code
    WHERE pr.profile_id = $pId
      AND u.group_id = $gId
      AND ($sqlDiff)";
  $sqlSelectRs = db_query($sqlSelect, $pDbh);
  if (!$sqlSelectRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to read user rights.");
  }

  $sqlReturn['message'] = "Group Profile has been updated successfully.";
  $sqlReturn['profile'] = array("name"=>$pDesc, "id"=>$pId);
  if (db_num_rows($sqlSelectRs) > 0) {
    $sqlReturn['message'] .= "<br>&emsp;&emsp;The following users may have feature limits that differ from the new profile.";

    while ($row = db_fetch_assoc($sqlSelectRs)) {
      $sqlReturn['message'] .= "<br>&emsp;&emsp;&mdash; User: " . $row['u_user'] . ", Feature: " . $row['f_desc'];
    }
  }

  return $sqlReturn;
}

/**
 *  ReadProfiles
 *  @uses this function is used to read all available profiles for the CU
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *
 *  @return $sqlReturn array : array of successfully read profiles
 */
function ReadProfiles($pEnv, $pDbh, $pContext) {
  $cuCode = $pContext['cu_code'];

  $sqlReturn = array();
  $sqlColumn = "
    profile_code AS p_code,
    description AS p_desc";

  $sqlSelect = "SELECT $sqlColumn
    FROM cu_profile
    WHERE cu = '$cuCode'
    ORDER BY description ASC";

  $sqlSelectRs = db_query($sqlSelect, $pDbh);
  if (!$sqlSelectRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to read profiles.");
  }

  $sqlReturn['profiles'] = db_fetch_all($sqlSelectRs);
  return $sqlReturn;
}

/**
 *  ReadProfileRights
 *  @uses this function is used to read all feature rights of the profile associated with the group.
 *
 *  @param $pEnv array : environment variable for debugging
 *  @param $pDbh object : databse object, used for queries
 *  @param $pContext array : context variable holding decrypted data for update functions
 *
 *  @return $sqlReturn array : array of successfully read profile rights
 */
function ReadProfileRights($pEnv, $pDbh, $pContext) {
  $gId = $pContext['g_id'];
  $pId = $pContext['p_id'];

  $sqlReturn = array();
  $sqlColumns = "
    f.feature_code AS f_code,
    f.description AS f_desc,
    f.limit_type AS f_type,
    pr.amount_per_transaction AS p_apt,
    pr.amount_per_day AS p_apd,
    pr.amount_per_month AS p_apm,
    pr.amount_per_account_per_day AS p_apa,
    pr.count_per_day AS p_cpd,
    pr.count_per_month AS p_cpm,
    pr.count_per_account_per_day AS p_cpa,
    pr.confirm_required AS p_cfm";
  $sqlSelect = "SELECT $sqlColumns
    FROM cu_profilerights pr
    INNER JOIN cu_feature f ON pr.feature_code = f.feature_code
    WHERE profile_id = $pId
      AND f.enabled = 'TRUE'
    ORDER BY description ASC";
  $sqlSelectRs = db_query($sqlSelect, $pDbh);
  if (!$sqlSelectRs) {
    $pEnv['logger']->error(db_last_error());
    throw new Exception("Failed to read profile rights.");
  }

  $sqlReturn['rights'] = db_fetch_all($sqlSelectRs);
  return $sqlReturn;
}
?>


<?php
/**
 *  PrintCardContent
 *  @uses this function is used to print all javascript and html necessary for
 *  display and use of the group rights feature.
 */
function PrintCardContent() {
?>

<div id="grRights">
  <div id="status"></div>
  <div class="well well-sm col-sm-12">
    <div class="row">
      <div class="col-sm-12">
        <input id="grInpProfiles" style="min-width: 200px; max-width: 350px;">
        <span class="hidden-xs">&emsp;</span>
        <br class="hidden-sm hidden-md hidden-lg">
        <a href="#" id="lnkProfiles">View Profile Rights</a>
      </div>
    </div>
    &nbsp;
    <div class="row">
      <div class="col-sm-12">
        <div class="row">
          <div class="radio-spacer">
            <input type="radio" name="column" value="o" checked="true">
            <label for="co">Options</label>
          </div>
          <div class="radio-spacer">
            <input type="radio" name="column" value="q">
            <label for="cq">Quantity</label>
          </div>
          <div class="radio-spacer">
            <input type="radio" name="column" value="d">
            <label for="cd">Amount</label>
          </div>
          <div class="radio-spacer">
            <input type="radio" name="column" value="a">
            <label for="ca">All</label>
          </div>
        </div>
      </div>
    </div>
  </div>

  <div>&nbsp;</div>

  <div class="">
    <div id="grRightsGrid"></div>
  </div>

  <div class="hcu-template">
    <div class="hcu-edit-buttons k-state-default">
      <span class="hcu-icon-delete">
        <!--<a href="##" id="lnkDelete">
          <i class="fa fa-trash fa-lg"></i>
        </a>-->
      </span>
      <a href="##" id="lnkCancel">
        Cancel &emsp;
      </a>
      <a href="##" id="btnUpdate" class="k-button k-primary">
        <i class="fa fa-check fa-lg"></i>
        Update
      </a>
    </div>
  </div>
</div>

<div id="grProfile" style="padding: 0;">
  <div id="grProfileGrid"></div>
</div>

<div id="grConfirm" class="row">
  <div class="col-sm-12">
    <p>You are about to change the profile for this group.</p>
    <p>This will remove any configured rights for the group and any user rights not in the new profile.</p>
    <p>Do you wish to continue?</p>
  </div>
</div>

<div id="grDiscard" class="row">
  <div class="col-sm-12">
    <p>You have made changes to the current group rights.</p>
    <p>Do you wish to discard these changes?</p>
  </div>
</div>

<script type="text/x-kendo-template" id="templateProfiles">
  <tr class="k-master-row">
    <td>#= fDesc #</td>
    <td>
      # if (fType == "B" || fType == "D") { #
        # if (pApt >= FEATURE_LIMIT_MAX_AMOUNT || pApt == null) { #
        Amount per transaction: No Limit, <br>
        # } else { #
        Amount per transaction: #= kendo.toString(pApt, "c2") #, <br>
        # } #

        # if (pApa >= FEATURE_LIMIT_MAX_AMOUNT || pApa == null) { #
        Amount per account per day: No Limit, <br>
        # } else { #
        Amount per account per day: #= kendo.toString(pApa, "c2") #, <br>
        # } #

        # if (pApd >= FEATURE_LIMIT_MAX_AMOUNT || pApd == null) { #
        Amount per day: No Limit, <br>
        # } else { #
        Amount per day: #= kendo.toString(pApd, "c2") #, <br>
        # } #

        # if (pApm >= FEATURE_LIMIT_MAX_AMOUNT || pApm == null) { #
        Amount per month: No Limit, <br>
        # } else { #
        Amount per month: #= kendo.toString(pApm, "c2") #, <br>
        # } #
      # } #

      # if (fType == "B" || fType == "Q") { #
        # if (pCpa >= FEATURE_LIMIT_MAX_COUNT || pCpa == null) { #
        Count per account per day: No Limit, <br>
        # } else { #
        Count per account per day: #= kendo.toString(pCpa, "n0") #, <br>
        # } #

        # if (pCpd >= FEATURE_LIMIT_MAX_COUNT || pCpd == null) { #
        Count per day: No Limit, <br>
        # } else { #
        Count per day: #= kendo.toString(pCpd, "n0") #, <br>
        # } #

        # if (pCpm >= FEATURE_LIMIT_MAX_COUNT || pCpm == null) { #
        Count per month: No Limit, <br>
        # } else { #
        Count per month: #= kendo.toString(pCpm, "n0") #, <br>
        # } #
      # } #

      # if (fType == "A") { #
        Access Allowed<br>
      # } #

      # if (fType == "B" || fType == "D") { #
        # if (pCfm) { #
          Confirmation Required: Yes
        # } else { #
          Confirmation Required: No
        # } #
      # } #
    </td>
  </tr>
</script>
<?php
/**
 *  @package GroupRights:
 *  @uses This object is used to display and interact with the group rights feature.
 *
 *  @var Init public:       public call to initialize data/view/action objects
 *  @var Data public:       public call to set/reset encrypted data
 *  @var Open public:       public call to open the group rights module/window
 *  @var Close public:      public call to close the group rights module/window
 *
 *  @var InitDataSources    private: initialize all needed data sources/objects
 *  @var InitDataViews      private: initialize all data views/html elements
 *  @var InitDataActions    private: initialize all user actions on html.
 *
 *  @var EventOpenDialog    private: open kendoDialog/kendoWindow objects
 *  @var EventClosedialog   private: close kendoDialog/kendoWindow objects
 *  @var EventPopDialog     private: remove the correct window from the window stack.
 *
 *  @var EventOpenRights    private: send request to read/open group rights info
 *  @var EventCancelRights  private: close group rights window, canceling changes
 *  @var EventUpdateRights  private: send crud request for group rights, profile update.
 *  @var Event*             private: the other event functions not listed above are custom
 *    calls for kendo bjects and other helper functions that are explained by the
 *    function name.
 *
 *  @var DataBuild*         private: these functions facilitate re-constructing data for
 *    proper use in the other js functions and html displays.
 *
 *  @var Action*            private: these functions are calls from kendoDialog actions
 *    uses explained by function name.
 *
 *  @var ClearGroupInfo     private: clear information displayed in the information bar.
 *  @var ShowGroupInfo      private: show any information return by the server.
 */
?>
<script type="text/javascript">
var FEATURE_LIMIT_MAX_AMOUNT = <?php echo FEATURE_LIMIT_MAX_AMOUNT; ?>;
var FEATURE_LIMIT_MAX_COUNT = <?php echo FEATURE_LIMIT_MAX_COUNT; ?>;

var GroupRights = function() {
  var grCardContainer = null;
  var grCardWindows = null;

  var grPayload = null;
  var grGroup = null;
  var grCall = null;
  var grAction = null;
  var grDataSource = null;

  var grRights = null;
  var grProfile = null;
  var grConfirm = null;
  var grDiscard = null;

  var grDropDown = null;
  var grDropDownData = null;
  var grGrid = null;
  var grGridData = null;
  var grProfileGrid = null;
  var grProfileGridData = null;

  var grProfileNext = null;
  var grProfilePrev = null;

  var grUpdate = null;
  var grCancel = null;
  var grProfileLink = null;

  var DirtyCheck = function() {
    var dirty = false;
    var data = grGrid.dataSource.data();
    for (var i = 0; i < data.length; i++) {
      var row = data[i];
      if (row.dirty) {
        dirty = true;
        break;
      }
    }

    return dirty;
  }

  var DataUpdateRights = function(data, action) {
    var dataE = grGrid.dataSource.data();

    // ITERATE UPDATED CODES
    for (var i = 0; i < data.length; i++) {

      // CHECK AGAINST DATASOURCES
      for (var j = 0; j < dataE.length; j++) {

        // UPDATE DEFAULT FLAG BASED ON ACTION
        if (dataE[j].fCode == data[i]) {
          dataE[j].gDft = action == "delete";

          // UPDATE DISABLED FLAG FOR DEFAULT CHECKBOX
          if (action == "delete") {
            $("#chk_" + data[i]).closest("td").addClass("vsgDisabled");
          } else {
            $("#chk_" + data[i]).closest("td").removeClass("vsgDisabled");
          }
        }
      }
    }
  }

  var DataBuildFeature = function(data) {
    var gFeature = {
      fCode: data.f_code.trim(),
      fDesc: data.f_desc.trim(),
      fType: data.f_type.trim(),
      pCode: data.p_code.trim(),
      pCfm: (data.p_cfm == "t") ? true : false,
      gCfm: (data.g_cfm == "t") ? true : false,
      gDft: (data.g_dft == null) ? true : false,
      gApt: data.g_apt == null ? null : parseFloat(data.g_apt),
      gApa: data.g_apa == null ? null : parseFloat(data.g_apa),
      gApd: data.g_apd == null ? null : parseFloat(data.g_apd),
      gApm: data.g_apm == null ? null : parseFloat(data.g_apm),
      gCpa: data.g_cpa == null ? null : parseInt(data.g_cpa),
      gCpd: data.g_cpd == null ? null : parseInt(data.g_cpd),
      gCpm: data.g_cpm == null ? null : parseInt(data.g_cpm),
      mApt: parseFloat(data.m_apt),
      mApa: parseFloat(data.m_apa),
      mApd: parseFloat(data.m_apd),
      mApm: parseFloat(data.m_apm),
      mCpa: parseInt(data.m_cpa),
      mCpd: parseInt(data.m_cpd),
      mCpm: parseInt(data.m_cpm)
    };

    // IF GREATER THAN MAX
    gFeature.gApt = (gFeature.gApt >= gFeature.mApt) ? null : gFeature.gApt;
    gFeature.gApa = (gFeature.gApa >= gFeature.mApa) ? null : gFeature.gApa;
    gFeature.gApd = (gFeature.gApd >= gFeature.mApd) ? null : gFeature.gApd;
    gFeature.gApm = (gFeature.gApm >= gFeature.mApm) ? null : gFeature.gApm;
    gFeature.gCpa = (gFeature.gCpa >= gFeature.mCpa) ? null : gFeature.gCpa;
    gFeature.gCpd = (gFeature.gCpd >= gFeature.mCpd) ? null : gFeature.gCpd;
    gFeature.gCpm = (gFeature.gCpm >= gFeature.mCpm) ? null : gFeature.gCpm;

    return gFeature;
  }

  var DataBuildRights = function(data) {
    grGridData = [];
    for (var i = 0; i < data.length; i++) {
      var gFeature = DataBuildFeature(data[i]);
      grGridData.push(gFeature);
    }

    grGrid.dataSource.data(grGridData);
    grDropDown.value(grGroup.g_profile);
  }

  var DataBuildProfiles = function(data) {
    grDropDownData = [];
    for (var i = 0; i < data.length; i++) {
      var gProfile = {
        pCode: data[i].p_code.trim(),
        pDesc: data[i].p_desc.trim()
      };

      grDropDownData.push(gProfile);
    }

    grDropDown.setDataSource(grDropDownData);
  }

  var DataBuildProfileRights = function(data) {
    grProfileGridData = [];
    for (var i = 0; i < data.length; i++) {
      var pFeature = {
        fCode: data[i].f_code.trim(),
        fDesc: data[i].f_desc.trim(),
        fType: data[i].f_type.trim(),
        pCfm: (data[i].p_cfm == "t") ? true : false,
        pApt: (data[i].p_apt == null) ? null : parseFloat(data[i].p_apt),
        pApd: (data[i].p_apd == null) ? null : parseFloat(data[i].p_apd),
        pApm: (data[i].p_apm == null) ? null : parseFloat(data[i].p_apm),
        pApa: (data[i].p_apa == null) ? null : parseFloat(data[i].p_apa),
        pCpd: (data[i].p_cpd == null) ? null : parseInt(data[i].p_cpd),
        pCpm: (data[i].p_cpm == null) ? null : parseInt(data[i].p_cpm),
        pCpa: (data[i].p_cpa == null) ? null : parseInt(data[i].p_cpa)
      };

      grProfileGridData.push(pFeature);
    }

    grProfileGrid.dataSource.data(grProfileGridData);
  }

  var EventOpenProfile = function(e) {
    var rightsRequest = {
      operation: "readProfileRights",
      payload: grPayload
    };

    grDataSource.transport.options.read.type = "POST";
    grDataSource.read(rightsRequest);
  }

  var EventSelectDropDown = function(e) {
    grProfilePrev = this.value();
  }

  var EventChangeDropDown = function (e) {
    grProfileNext = this.value();
    grConfirm.open();
  }

  var EventRadioChange = function(e) {
    var input = $(this);
    var inputValue = input.val();

    switch (inputValue) {
      case "a":
        grGrid.showColumn(2);
        grGrid.showColumn(3);
        grGrid.showColumn(4);
        break;
      case "o":
        grGrid.hideColumn(3);
        grGrid.hideColumn(4);
        grGrid.showColumn(2);
        break;
      case "q":
        grGrid.hideColumn(2);
        grGrid.hideColumn(4);
        grGrid.showColumn(3);
        break;
      case "d":
        grGrid.hideColumn(2);
        grGrid.hideColumn(3);
        grGrid.showColumn(4);
        break;
    }

    grRights.center();
    grRights.wrapper.css({top: 100});
  }

  var EventCheckboxChange = function(e) {
    var box = $(e);
    var boxId = box.attr("id");
    var boxValue = box.prop("checked");

    if (!boxValue) {
      $("input[id=chk_DEFAULT]").prop("checked", false);
    }

    if (boxId == "chk_DEFAULT") {
      $("input[id^=chk_]:not(:disabled)").each(function(e) {
        if (e > 0) {
          $(this).prop("checked", boxValue);
          $(this).trigger("change");
        }
      });
    } else {
      var row = $(box).closest("tr");
      var rowData = grGridData[row[0].rowIndex];
      var fields = $(row).find("td");

      // SET CORRECT TEXT AND CLASSES FOR DISABLING ROWS
      // SEE FUNCTION : EventShowTip to view what each class is for
      $(fields).each(function(e) {
        var field = $(this);
        var fieldName = field.attr("name");
        var fieldMax = fieldName.replace("g", "m");
        var fieldPro = fieldName.replace("g", "p");
        var fieldClass = null;

        var span = field.find("span");
        var spanClass = null;
        var spanText = null;

        if (e > 1) {

          // REMOVE CLASSES FROM TD AND SPAN
          $(field).removeClass();
          $(span).removeClass();

          if (e == 2) {
            // OPTION FIELDS
            fieldClass = rowData[fieldPro] || boxValue ? "vsgDisabled" : "";
            spanClass = rowData[fieldPro] ? "not-allowed" : (boxValue ? "set-default" : "");
            spanText = rowData[fieldPro] ? rowData[fieldPro] : rowData[fieldName];
            spanText = spanText ? "Yes" : "No";
          } else if (e >= 3 && e <= 5) {
            // QUATITY FIELDS
            fieldClass = rowData.fType == "D" || boxValue ? "vsgDisabled" : "";
            spanClass = rowData.fType == "D" ? "limit-not-configured" : (boxValue ? "set-default" : "");
            spanText = rowData.fType == "D" ? "" : (boxValue ? "Default" : rowData[fieldName]);
            spanText = spanText == null ? "Default" : spanText;
          } else if (e >= 6 && e <= 9) {
            // AMOUNT FIELDS
            fieldClass = rowData.fType == "Q" || boxValue ? "vsgDisabled" : "";
            spanClass = rowData.fType == "Q" ? "limit-not-configured" : (boxValue ? "set-default" : "");
            spanText = rowData.fType == "Q" ? "" : (boxValue ? "Default" : rowData[fieldName]);
            spanText = spanText == null ? "Default" : spanText;
          } else {
            // DO NOTHING
          }

          $(field).attr("class", fieldClass);
          $(span).attr("class", spanClass);
          $(span).text(spanText);
        }
      });
    }
  }

  var EventEditGridNumeric = function(container, options) {
    if (container.hasClass("vsgDisabled")) {
      grGrid.closeCell();
      return false;
    }

    var dataModelGrid = options.model;
    var dataModelIndex = $(container).closest("tr").index();
    var dataModelSource = grGridData[dataModelIndex];
    var dataKeySource = options.field;
    var dataKeyMax = dataKeySource.replace("g", "m");
    var dataDirty = dataModelGrid.dirty;

    var dataInput = $("<input name=\"" + dataKeySource + "\">");
    dataInput.appendTo(container)
    dataInput.kendoNumericTextBox({
      min: 0,
      max: dataModelGrid[dataKeyMax],
      step: dataModelGrid[dataKeyMax],
      value: dataModelGrid[dataKeySource],
      upArrowText: "Set To Default",
      downArrowText: "Set to 0",
      change: function(e) {
        var valueCurrent = this.value();
        var valueOriginal = dataModelSource[dataKeySource];
        var valueMax = dataModelSource[dataKeyMax];

        if (valueCurrent >= valueMax) { valueCurrent = null; }
        if (valueCurrent == valueOriginal) {
          if (!dataDirty) { dataModelGrid.dirty = true; }

          $(container).removeClass("k-dirty-cell");
          $(container).find(".k-dirty").remove();
        } else {
          $(container).addClass("k-dirty-cell");
          $(container).prepend("<span class='k-dirty'></span>");
        }

        dataModelGrid[dataKeySource] = valueCurrent;
        this.value(valueCurrent);
      }
    });
  }

  var EventEditGridBoolean = function(container, options) {
    if (container.hasClass("vsgDisabled")) {
      grGrid.closeCell();
      return false;
    }

    var dataModelGrid = options.model;
    var dataModelIndex = $(container).closest("tr").index();
    var dataModelSource = grGridData[dataModelIndex];
    var dataKeySource = options.field;
    var dataDirty = dataModelGrid.dirty;

    dataInput = $("<input type=\"checkbox\" name=\"" + dataKeySource + "\">");
    dataInput.change(function(e) {
      var valueCurrent = this.checked;
      var valueOriginal = dataModelSource[dataKeySource];

      if (valueCurrent == valueOriginal) {
        $(container).removeClass("k-dirty-cell");
        $(container).find(".k-dirty").remove();
      } else {
        if (!dataDirty) { dataModelGrid.dirty = true; }

        $(container).addClass("k-dirty-cell");
        $(container).prepend("<span class='k-dirty'></span>");
      }

      dataModelGrid[dataKeySource] = valueCurrent;
      this.checked = valueCurrent;
    });
    dataInput.appendTo(container);
  }

  var EventBindGrid = function(e) {
    $("#rightsGrid .k-grid-content").css("max-height", "275px");
    $("input[id^=chk_]").off();
    $("input[id^=chk_]").change(function(e) {
      EventCheckboxChange(e.target);
    });

    $("input[id=chk_DEFAULT]").prop("checked", false);

    // ITERATE ROWS AND FIELDS TO SET DISABLED CLASS
    // DISABLED WILL BE USED IN THE EDITOR FUNCTIONS TO PREVENT EDITING
    var table = this.tbody;
    var rows = $(table).find("tr");
    for (var i = 0; i < rows.length; i++) {
      var rowIndex = rows[i].rowIndex;
      var rowData = grGridData[i];
      var fields = $(rows[i]).find("td");

      if (rowData.gDft || rowData.fType == "A") {
        $(fields[1]).addClass("vsgDisabled");
      }

      if (rowData.pCfm || rowData.fType == "A" || rowData.fType == "Q") {
        $(fields[2]).addClass("vsgDisabled");
      }
      if (rowData.fType == "D" || rowData.fType == "A") {
        $(fields[3]).addClass("vsgDisabled");
        $(fields[4]).addClass("vsgDisabled");
        $(fields[5]).addClass("vsgDisabled");
      }
      if (rowData.fType == "Q" || rowData.fType == "A") {
        $(fields[6]).addClass("vsgDisabled");
        $(fields[7]).addClass("vsgDisabled");
        $(fields[8]).addClass("vsgDisabled");
        $(fields[9]).addClass("vsgDisabled");
      }
    }
  }

  var EventChangeGrid = function(e) {
    var cell = this.select();
    var cellIndex = cell.index();

    var dataIndex = cell.closest("tr")[0].rowIndex;
    var dataItem = grGridData[dataIndex];

    if (cellIndex == 1 && !dataItem.gDft) {
      var box = cell.find("input[id^=\"chk_\"]")[0];
      $(box).trigger("click");
    }

    $(cell).removeClass("k-state-selected");
  }

  var EventShowTip = function(e) {
    var target = $(e.target).find("span");
    var targetType = target.attr("class");
    var targetContent = "";
    switch (targetType) {
      case "not-allowed":
        targetContent = "This limit is set at the profile level.";
        break;
      case "limit-not-configured":
        targetContent = "This limit is not configured for this feature.";
        break;
      case "feature-not-configured":
        targetContent = "This feature does not have limits.";
        break;
      case "set-default":
        targetContent = "Set to default.";
        break;
      case "rdy-default":
        targetContent = "This feature is already set to the defaults.";
        break;
      default:
        targetContent = $(e.target).text().trim();
        break;
    }

    return targetContent;
  }

  var EventUpdateRights = function() {
    var dataA = "";
    var dataE = grGrid.dataSource.data();
    var dataO = grGridData;
    var dataU = {
      create: [],
      update: [],
      delete: []
    };

    for (var i = 0; i < dataE.length; i++) {
      var dataItemE = dataE[i];
      var dataItemO = dataO[i];

      var inputDefault = $("#chk_" + dataItemE.fCode);
      var inputChecked = $(inputDefault).prop("checked");

      if (inputChecked) {
        dataItemE.gApt = null;
        dataItemE.gApa = null;
        dataItemE.gApm = null;
        dataItemE.gApd = null;
        dataItemE.gCpa = null;
        dataItemE.gCpm = null;
        dataItemE.gCpd = null;
        dataItemE.gCfm = dataItemE.pCfm;
        dataItemE.dirty = true;
        dataU.delete.push(dataItemE);
        continue;
      }

      if (dataItemE.dirty) {

        if (dataItemE.gApt == dataItemO.gApt && dataItemE.gCpa == dataItemO.gCpa &&
          dataItemE.gApa == dataItemO.gApa && dataItemE.gCpd == dataItemO.gCpd &&
          dataItemE.gApd == dataItemO.gApd && dataItemE.gCpm == dataItemO.gCpm &&
          dataItemE.gApm == dataItemO.gApm && dataItemE.gCfm == dataItemO.gCfm) {

          dataItemE.dirty = false;
          continue;
        }

        if (dataItemE.gApt == null && dataItemE.gCpa == null &&
          dataItemE.gApa == null && dataItemE.gCpd == null &&
          dataItemE.gApd == null && dataItemE.gCpm == null &&
          dataItemE.gApm == null && dataItemE.gCfm == dataItemE.pCfm) {

          dataU.delete.push(dataItemE);
          continue;
        }

        if (dataItemE.gDft) {
          dataU.create.push(dataItemE);
        } else {
          dataU.update.push(dataItemE);
        }
      }
    }

    if (dataU.create.length == 0 && dataU.update.length == 0 && dataU.delete.length == 0) {
      return false;
    }

    var dataList = JSON.stringify(dataU);
    var rightsRequest = {
      operation: "updateGroupRights",
      payload: grPayload,
      gList: dataList
    };

    grDataSource.transport.options.read.type = "POST";
    grDataSource.read(rightsRequest);
  }

  var EventCancelRights = function() {
    grRights.close();
  }

  var EventOpenRights = function() {
    grDropDownData = [];
    grGridData = [];

    $("input[value=o]").trigger("click");
    $("input[value=o]").trigger("change");

    var rightsRequest = {
      operation: "readGroupRights",
      payload: grPayload
    };

    grDataSource.transport.options.read.type = "POST";
    grDataSource.read(rightsRequest);
  }

  var EventOpenWindow = function(e) {
    var windowElement = this.element[0];
    var windowId = windowElement.id;

    switch (windowId) {
      case "profile":

        break;

    }

    grCardWindows.push(this);
  }

  var EventCloseWindow = function(e) {
    var windowElement = this.element[0];
    var windowId = windowElement.id;

    switch (grAction) {
      case "profileConfirm":
        EventPopWindow(windowId);
        var rightsRequest = {
          operation: "updateGroupProfile",
          payload: grPayload,
          gProfile: grProfileNext
        };

        // CANCEL ANY GRID CHANGES
        grGrid.cancelChanges();

        grDataSource.transport.options.read.type = "POST";
        grDataSource.read(rightsRequest);
        break;
      case "profileDeny":
        EventPopWindow(windowId);
        grDropDown.value(grProfilePrev);
        break;
      case "discardConfirm":
        EventPopWindow(windowId);
        grAction = null;
        grGrid.cancelChanges();
        grRights.close();
      default:
        if (windowId == "grConfirm") {
          EventPopWindow(windowId);
          grDropDown.value(grProfilePrev);
        } else if (windowId == "grRights") {
          if (DirtyCheck()) {
            e.preventDefault();
            grDiscard.open();
          } else {
            EventPopWindow(windowId);
            // reset validator to use hub script
            $.homecuValidator.setup({
              formStatusField: "formStatus",
              formValidate: "cardContainerDiv"
            });
          }
        } else {
          EventPopWindow(windowId);
        }
        break;
    }

    grAction = null;
  }

  var EventPopWindow = function(windowId) {
    var popIndex = -1;
    for (var i = 0; i < grCardWindows.length; i++) {
      var openWindow = grCardWindows[i].element[0];
      var openId = openWindow.id;

      if (openId == windowId) {
        popIndex = i;
        break;
      }
    }

    if (popIndex > -1) {
      grCardWindows.splice(popIndex, 1);
    }
  }

  var InitDataSources = function() {
    grGridData = [];
    grProfileGridData = [];
    grDropDownData = [];
    grDataSource = new kendo.data.DataSource({
      transport: {
        read: {
          url: "main.prg",
          dataType: "json",
          contentType: "application/x-www-form-urlencoded",
          type: "GET",
          data: {
            ft: "102103"
          },
          cache: false
        }
      },
      requestStart: function(request) {
        showWaitWindow();
      },
      requestEnd: function(response) {
        setTimeout(hideWaitWindow, 500);

        if (response.hasOwnProperty("response")) {
          if (response.response.hasOwnProperty("Results")) {
            var results = response.response.Results;

            if (results.hasOwnProperty("error")) {
              $.homecuValidator.homecuResetMessage = true;
              $.homecuValidator.displayMessage(results.error, $.homecuValidator.settings.statusError);
            } else if (results.hasOwnProperty("info")) {
              $.homecuValidator.homecuResetMessage = true;
              $.homecuValidator.displayMessage(results.info, $.homecuValidator.settings.statusSuccess);
            }
          } else {
            $.homecuValidator.displayMessage("Error Parsing Server", $.homecuValidator.settings.statusError);
          }
        } else {
          $.homecuValidator.displayMessage("Error Parsing Server", $.homecuValidator.settings.statusError);
        }
      },
      schema: {
        parse: function(response) {

          var results = null;
          var resultData = null;
          var resultOperation = null;

          if (response.hasOwnProperty("Results")) {
            results = response.Results;
            resultData = results.data;
            resultOperation = results.operation;
          }

          if (results.hasOwnProperty("errors")) {
            return [];
          }

          if (resultData == undefined || resultData == null) {
            return [];
          }


          setTimeout(function() {
            switch (resultOperation) {
              case "readGroupRights":
                DataBuildProfiles(resultData.gProfiles);
                DataBuildRights(resultData.gRights);
                grGroup.cardTitle= "Group Rights";
                var template= kendo.template($("#titleTemplate").html());
                grRights.title(template(grGroup)).center().open();
                break;
              case "readProfileRights":
                DataBuildProfileRights(resultData.pRights);
                grProfile.center();
                grProfile.open();
                break;
              case "updateGroupRights":
                DataUpdateRights(resultData.create, "create");
                DataUpdateRights(resultData.update, "update");
                DataUpdateRights(resultData.delete, "delete");
                grGrid.saveChanges();
                break;
              case "updateGroupProfile":
                grGroup = resultData.group.group;
                grPayload = resultData.encrypt;
                grCall("updateGroupInfo", resultData.group);
                grCall("updateGroupEncrypt", resultData.encrypt);
                DataBuildRights(resultData.rights);
                break;
            }
          }, 500);

          return [];
        }
      }
    });
  }

  var InitDataViews = function() {
    grRights = $("#grRights").kendoWindow({
      title: "Group Rights",
      minWidth: 300,
      maxWidth: "90%",
      maxHeight: 750,
      modal: true,
      visible: false,
      resizable: false,
      activate: EventOpenWindow,
      close: EventCloseWindow,
      open: function(e) { this.wrapper.css({ top: 100 }); },
    }).data("kendoWindow");

    grProfile = $("#grProfile").kendoWindow({
      title: "Profile Rights",
      minWidth: 300,
      maxWidth: 600,
      maxHeight: 500,
      modal: true,
      visible: false,
      resizable: false,
      activate: EventOpenWindow,
      close: EventCloseWindow,
      open: function(e) { this.wrapper.css({ top: 100 }); }
    }).data("kendoWindow");

    grConfirm = $("#grConfirm").kendoDialog({
      title: "Change Profile",
      minWidth: 300,
      maxWidth: 750,
      visible: false,
      resizable: false,
      show: EventOpenWindow,
      close: EventCloseWindow,
      actions: [
        { text: "No",
          action: function() { grAction = "profileDeny"; }
        },
        { text: "Yes", primary: true,
          action: function() { grAction = "profileConfirm"; }
        }
      ]
    }).data("kendoDialog");

    grDiscard = $("#grDiscard").kendoDialog({
      title: "Discard Changes",
      minWidth: 300,
      maxWidth: 750,
      visible: false,
      resizable: false,
      show: EventOpenWindow,
      close: EventCloseWindow,
      actions: [
        { text: "No",
          action: function() { grAction = "discardDeny"; }
        },
        { text: "Yes", primary: true,
          action: function() { grAction = "discardConfirm"; }
        }
      ]
    }).data("kendoDialog");

    grDropDown = $("#grInpProfiles").kendoDropDownList({
      dataTextField: "pDesc",
      dataValueField: "pDesc",
      dataSource: grDropDownData,
      select: EventSelectDropDown,
      change: EventChangeDropDown
    }).data("kendoDropDownList");

    grGrid = $("#grRightsGrid").kendoGrid({
      change: EventChangeGrid,
      dataBound: EventBindGrid,
      selectable: "cell",
      scrollable: true,
      editable: true,
      noRecords: {
        template: "There are no features assigned to this group"
      },
      dataSource: {
        data: grGridData,
        schema: {
          model: {
            id: "fCode",
            fields: {
              fDesc: { type: "string", editable: false },
              gCfm: { type: "boolean" },
              gCpd: { type: "number" },
              gCpm: { type: "number" },
              gCpa: { type: "number" },
              gApt: { type: "number" },
              gApd: { type: "number" },
              gApm: { type: "number" },
              gApa: { type: "number" },
            }
          }
        }
      },
      columns: [
        { title: "Feature",
          columns: [
            { field: "fDesc", title: " ",  width: "200px",
              attributes: { "name": "fDesc", "class": "showEllipsis" },
              template: "<span>#=fDesc#</span>" }
          ]
        },
        { title: "Set to Default",
          columns: [
            { width: "150px",
              attributes: { "name": "fCode" },
              template: "#if(gDft){#<span class=\"rdy-default\"></span>#}else{#<input type=\"checkbox\" style=\"margin-top: -2px;\" id=\"chk_#=fCode#\">#}#",
              headerTemplate: "<input type=\"checkbox\" style=\"margin-top: -2px;\" id=\"chk_DEFAULT\">" }
          ]
        },
        { title: "Options",
          columns: [
            { field: "gCfm", title: "Confirm Required", type: "boolean", width: "150px",  editor: EventEditGridBoolean, attributes: { "name": "gCfm"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"Q\"){# <span class=\"limit-not-configured\"></span> #} else if (pCfm){# <span class=\"not-allowed\">Yes</span> #}else if (gCfm){# <span>Yes</span> #}else{# <span>No</span> #}#" }

          ]
        },
        { title: "Count Per",
          columns: [
            { field: "gCpa", title: "Account/Day", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gCpa"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"D\"){# <span class=\"limit-not-configured\"></span>#}else if(gCpa == null || gCpa >= mCpa){# <span>Default</span> #}else{# <span>#=kendo.toString(gCpa, \"n0\")#</span> #}#" },
            { field: "gCpd", title: "Day", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gCpd"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"D\"){# <span class=\"limit-not-configured\"></span>#}else if(gCpd == null || gCpd >= mCpd){# <span>Default</span> #}else{# <span>#=kendo.toString(gCpd, \"n0\")#</span> #}#" },
            { field: "gCpm", title: "Month", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gCpm"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"D\"){# <span class=\"limit-not-configured\"></span>#}else if(gCpm == null || gCpm >= mCpm){# <span>Default</span> #}else{# <span>#=kendo.toString(gCpm, \"n0\")#</span> #}#" }
          ]
        },
        { title: "Amount Per",
          columns: [
            { field: "gApt", title: "Transaction", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gApt"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"Q\"){# <span class=\"limit-not-configured\"></span>#}else if(gApt == null || gApt >= mApt){# <span>Default</span> #}else{# <span>#=kendo.toString(gApt, \"c2\")#</span> #}#" },
            { field: "gApa", title: "Account/Day", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gApa"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"Q\"){# <span class=\"limit-not-configured\"></span>#}else if(gApa == null || gApa >= mApa){# <span>Default</span> #}else{# <span>#=kendo.toString(gApa, \"c2\")#</span> #}#" },
            { field: "gApd", title: "Day", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gApd"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"Q\"){# <span class=\"limit-not-configured\"></span>#}else if(gApd == null || gApd >= mApd){# <span>Default</span> #}else{# <span>#=kendo.toString(gApd, \"c2\")#</span> #}#" },
            { field: "gApm", title: "Month", type: "number", width: "150px", editor: EventEditGridNumeric, attributes: { "name": "gApm"},
              template: "#if(fType == \"A\"){# <span class=\"feature-not-configured\"></span> #}else if(fType == \"Q\"){# <span class=\"limit-not-configured\"></span>#}else if(gApm == null || gApm >= mApm){# <span>Default</span> #}else{# <span>#=kendo.toString(gApm, \"c2\")#</span> #}#" }
          ]
        }
      ]
    }).data("kendoGrid");

    grProfileGrid = $("#grProfileGrid").kendoGrid({
      scrollable: true,
      rowTemplate: kendo.template($("#templateProfiles").html()),
      dataBound: function(e) {
        $("#grProfileGrid").css("border", "none");
        $("#grProfileGrid .k-grid-content").css("max-height", "500px");
      },
      dataSource: {
        data: grProfileGridData
      },
      noRecords: {
        template: "There are no features for this profile"
      },
      columns: [
        { title: "Feature" },
        { title: "Limits", width: "325px" }
      ]
    }).data("kendoGrid");

    // USE THIS TO SELECT OVERFLOW IN JQUERY SELECTORS FOR TOOLTIP BELOW
    jQuery.extend(jQuery.expr[':'], {
      overflown: function (el) {
        return el.offsetHeight < el.scrollHeight || el.offsetWidth < el.scrollWidth;
      }
    });

    grGridTip = homecuTooltip.defaults;
    grGridTip.filter = ".showEllipsis:overflown, .vsgDisabled";
    grGridTip.content = EventShowTip
    $("#grRightsGrid").kendoTooltip(grGridTip);

    grProfileLink = $("#lnkProfiles");
    grCancel = $("#lnkCancel");
    grUpdate = $("#btnUpdate");
    grStatus = $("#grStatus");
    grStatus.hide();
  }

  var InitDataActions = function() {
    grProfileLink.on("click", EventOpenProfile);

    $("input[name=column]").on("change", EventRadioChange);
    $("input[value=o]").trigger("click");
    $("input[value=o]").trigger("change");

    $("label[for^=c]").on("click", function(e) {
      var column = $(this).attr("for");
      var value = column.substring(1, column.length);
      var input = $("input[value=" + value + "]");
      $(input).trigger("click");
    });

    grUpdate.on("click", EventUpdateRights);
    grCancel.on("click", EventCancelRights);
  }

  this.Open = function(windowStack) {
    // setup validator
    $.homecuValidator.setup({
      formStatusField: "status",
      formValidate: "grRights"
    });

    grCardWindows = windowStack;
    $("input[value=o]").trigger("click");
    $("input[value=o]").trigger("change");

    var rightsRequest = {
      operation: "readGroupRights",
      payload: grPayload
    };

    grDataSource.transport.options.read.type = "POST";
    grDataSource.read(rightsRequest);
  }

  this.Close = function() {
    grRights.destroy();
    grProfile.destroy();
    grConfirm.destroy();
    grDiscard.destroy();
  }

  this.Data = function(payload, group) {
    grPayload = payload;
    grGroup = group;
  }

  this.Init = function(hubCall, cardContainer) {
    grCall = hubCall;
    grCardContainer = cardContainer;

    InitDataSources();
    InitDataViews();
    InitDataActions();

    grCall("GroupRights", this);
  }
}
</script>
<?php } ?>