maketank/Froxlor
2
0
Fork 0
Code Pull Requests Releases Activity

dont show page content for resellers withouth required permissions to actually do something

Browse Source 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
This commit is contained in:
Michael Kaufmann
2022-12-31 00:42:58 +01:00
parent d643e8c673
commit 0527f22dc9
4 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
admin_cronjobs.php
View File

@@ -36,7 +36,7 @@ use Froxlor\UI\Response;
$id = (int)Request::any('id');
if ($page == 'cronjobs' || $page == 'overview') {
if (($page == 'cronjobs' || $page == 'overview') && $userinfo['change_serversettings'] == '1') {
if ($action == '') {
$log->logAction(FroxlorLogger::ADM_ACTION, LOG_NOTICE, 'viewed admin_cronjobs');

2
admin_ipsandports.php
View File

@@ -38,7 +38,7 @@ use Froxlor\UI\Response;
$id = (int)Request::any('id');
if ($page == 'ipsandports' || $page == 'overview') {
if (($page == 'ipsandports' || $page == 'overview') && $userinfo['change_serversettings'] == '1') {
if ($action == '') {
$log->logAction(FroxlorLogger::ADM_ACTION, LOG_NOTICE, "viewed admin_ipsandports");

2
admin_mysqlserver.php
View File

@@ -38,7 +38,7 @@ use Froxlor\UI\Response;
$id = (int)Request::any('id');
if ($page == 'mysqlserver' || $page == 'overview') {
if (($page == 'mysqlserver' || $page == 'overview') && $userinfo['change_serversettings'] == '1') {
if ($action == '') {
$log->logAction(FroxlorLogger::ADM_ACTION, LOG_NOTICE, "viewed admin_mysqlserver");

2
lib/Froxlor/Api/Commands/IpsAndPorts.php
View File

@@ -391,7 +391,7 @@ class IpsAndPorts extends ApiCommand implements ResourceEntity
*/
public function update()
{
if ($this->isAdmin() && ($this->getUserDetail('change_serversettings') || !empty($this->getUserDetail('ip')))) {
if ($this->isAdmin() && $this->getUserDetail('change_serversettings')) {
$id = $this->getParam('id');
$result = $this->apiCall('IpsAndPorts.get', [