MYSQL_RES *res;
MYSQL_ROW row;
check_mysql();
- //check acccess
+ if(!checkChannelAccess(user, chan, "channel_canadd", 1, 0)) {
+ reply(getTextBot(), user, "NS_ACCESS_DENIED");
+ return;
+ }
caccess = atoi(argv[1]);
if(caccess <= 0 || caccess > 500) {
reply(getTextBot(), user, "NS_INVALID_ACCESS", caccess);
return;
}
+ if(caccess >= getChannelAccess(user, chan, 1)) {
+ reply(getTextBot(), user, "NS_ACCESS_OUTRANKED");
+ return;
+ }
//check own access
if(argv[0][0] == '*') {
//we've got an auth
printf_mysql_query("INSERT INTO `users` (`user_user`) VALUES ('%s')", escape_string(auth));
userid = (int) mysql_insert_id(mysql_conn);
}
- printf_mysql_query("INSERT INTO `chanusers` (`chanuser_cid`, `chanuser_uid`, `chanuser_access`) VALUES ('%d', '%d', '%d')", chan->channel_id, userid, access);
- reply(textclient, user, "NS_ADDUSER_DONE", nick, chan->name, atoi(row[0]));
+ printf_mysql_query("INSERT INTO `chanusers` (`chanuser_cid`, `chanuser_uid`, `chanuser_access`) VALUES ('%d', '%d', '%d')", chan->channel_id, userid, caccess);
+ reply(textclient, user, "NS_ADDUSER_DONE", nick, chan->name, caccess);
}