gnh1201/seeddms-code
1
0
Fork 0
mirror of https://git.code.sf.net/p/seeddms/code synced 2025-03-12 17:05:46 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

add acl check

Browse Source
This commit is contained in:
Uwe Steinmann 2016-03-15 06:22:48 +01:00
parent 3f6420a6d4
commit c5435e0a27
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
out/out.ObjectCheck.php
View File

@ -30,8 +30,8 @@ include("../inc/inc.Authentication.php");
$tmp = explode('.', basename($_SERVER['SCRIPT_FILENAME']));
$view = UI::factory($theme, $tmp[1], array('dms'=>$dms, 'user'=>$user));
if (!$user->isAdmin()) {
$accessop = new SeedDMS_AccessOperation($dms, $user, $settings);
if (!$accessop->check_view_access($view, $_GET) && !$user->isAdmin()) {
UI::exitError(getMLText("admin_tools"),getMLText("access_denied"));
}