[Vtigercrm-commits] [vtiger-commits] r5197 - /vtigercrm/trunk/include/utils/UserInfoUtil.php
vtigercrm-commits at vtiger.fosslabs.com
vtigercrm-commits at vtiger.fosslabs.com
Thu Apr 20 13:43:28 EDT 2006
Author: don
Date: Thu Apr 20 11:43:21 2006
New Revision: 5197
Log:
Security check added for Settings module in isPermitted()
Modified:
vtigercrm/trunk/include/utils/UserInfoUtil.php
Modified: vtigercrm/trunk/include/utils/UserInfoUtil.php
==============================================================================
--- vtigercrm/trunk/include/utils/UserInfoUtil.php (original)
+++ vtigercrm/trunk/include/utils/UserInfoUtil.php Thu Apr 20 11:43:21 2006
@@ -1196,13 +1196,28 @@
require('user_privileges/user_privileges_'.$current_user->id.'.php');
require('user_privileges/sharing_privileges_'.$current_user->id.'.php');
$permission = "no";
- if($module == 'Users' || $module == 'Home' || $module == 'Administration' || $module == 'uploads' || $module == 'Settings' || $module == 'Calendar')
+ if($module == 'Users' || $module == 'Home' || $module == 'Administration' || $module == 'uploads' || $module == 'Calendar')
{
//These modules dont have security right now
$permission = "yes";
return $permission;
}
+
+ //Checking the Access for the Settings Module
+ if($module == 'Settings')
+ {
+ if(! $is_admin)
+ {
+ $permission = "no";
+ }
+ else
+ {
+ $permission = "yes";
+ }
+ return $permission;
+ }
+
//Checking whether the user is admin
if($is_admin)
{
More information about the vtigercrm-commits
mailing list