fix SysLog.delete(), SysLog.listing() and SysLog.listingCount() when called as admin/reseller withouth customers_see_all permission
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
This commit is contained in:
Michael Kaufmann
@@ -55,7 +55,7 @@ class SysLog extends \Froxlor\Api\ApiCommand implements \Froxlor\Api\ResourceEnt
|
|||||||
if (count($customer_names) > 0) {
|
if (count($customer_names) > 0) {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
SELECT * FROM `" . TABLE_PANEL_LOG . "`
|
SELECT * FROM `" . TABLE_PANEL_LOG . "`
|
||||||
WHERE `user` = :loginname OR `user` IN (" . implode(', ', $customer_names) . ")" . $this->getSearchWhere($query_fields, true) . $this->getOrderBy() . $this->getLimit());
|
WHERE `user` = :loginname OR `user` IN ('" . implode("', '", $customer_names) . "')" . $this->getSearchWhere($query_fields, true) . $this->getOrderBy() . $this->getLimit());
|
||||||
} else {
|
} else {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
SELECT * FROM `" . TABLE_PANEL_LOG . "`
|
SELECT * FROM `" . TABLE_PANEL_LOG . "`
|
||||||
@@ -105,7 +105,7 @@ class SysLog extends \Froxlor\Api\ApiCommand implements \Froxlor\Api\ResourceEnt
|
|||||||
if (count($customer_names) > 0) {
|
if (count($customer_names) > 0) {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
SELECT COUNT(*) as num_logs FROM `" . TABLE_PANEL_LOG . "`
|
SELECT COUNT(*) as num_logs FROM `" . TABLE_PANEL_LOG . "`
|
||||||
WHERE `user` = :loginname OR `user` IN (" . implode(', ', $customer_names) . ")
|
WHERE `user` = :loginname OR `user` IN ('" . implode("', '", $customer_names) . "')
|
||||||
");
|
");
|
||||||
} else {
|
} else {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
@@ -190,13 +190,12 @@ class SysLog extends \Froxlor\Api\ApiCommand implements \Froxlor\Api\ResourceEnt
|
|||||||
}
|
}
|
||||||
if (count($customer_names) > 0) {
|
if (count($customer_names) > 0) {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
DELETE FROM `" . TABLE_PANEL_LOG . "` WHERE `date` < :trunc AND `user` = :loginname OR `user` IN (" . implode(', ', $customer_names) . ")
|
DELETE FROM `" . TABLE_PANEL_LOG . "` WHERE `date` < :trunc AND `user` = :loginname OR `user` IN ('" . implode("', '", $customer_names) . "')
|
||||||
");
|
");
|
||||||
} else {
|
} else {
|
||||||
$result_stmt = Database::prepare("
|
$result_stmt = Database::prepare("
|
||||||
SELECT COUNT(*) as num_logs FROM `" . TABLE_PANEL_LOG . "`
|
DELETE FROM `" . TABLE_PANEL_LOG . "` WHERE `date` < :trunc AND `user` = :loginname
|
||||||
DELETE FROM `" . TABLE_PANEL_LOG . "` WHERE `date` < :trunc AND `user` = :loginname
|
");
|
||||||
");
|
|
||||||
}
|
}
|
||||||
$params = [
|
$params = [
|
||||||
'loginname' => $this->getUserDetail('loginname')
|
'loginname' => $this->getUserDetail('loginname')
|
||||||
|
|||||||
Reference in New Issue
Block a user