[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Fmsystem-commits] [14866] Admin: not allowed to elevate privileges when
From: |
Sigurd Nes |
Subject: |
[Fmsystem-commits] [14866] Admin: not allowed to elevate privileges when not admin |
Date: |
Sat, 26 Mar 2016 16:00:21 +0000 |
Revision: 14866
http://svn.sv.gnu.org/viewvc/?view=rev&root=fmsystem&revision=14866
Author: sigurdne
Date: 2016-03-26 16:00:21 +0000 (Sat, 26 Mar 2016)
Log Message:
-----------
Admin: not allowed to elevate privileges when not admin
Modified Paths:
--------------
trunk/admin/inc/class.uiaccounts.inc.php
Modified: trunk/admin/inc/class.uiaccounts.inc.php
===================================================================
--- trunk/admin/inc/class.uiaccounts.inc.php 2016-03-25 13:44:38 UTC (rev
14865)
+++ trunk/admin/inc/class.uiaccounts.inc.php 2016-03-26 16:00:21 UTC (rev
14866)
@@ -1076,9 +1076,13 @@
$all_groups = $account->get_list('groups');
-
if(!$GLOBALS['phpgw']->acl->check('run',
phpgwapi_acl::READ, 'admin'))
{
+ $test_admins =
$GLOBALS['phpgw']->acl->get_ids_for_location('run', phpgwapi_acl::READ,
'admin');
+ foreach ($test_admins as $test_admin)
+ {
+ unset($all_groups[$test_admin]); // not
allowed to elevate privileges
+ }
$available_apps =
$GLOBALS['phpgw_info']['apps'];
$valid_groups = array();
foreach($available_apps as $_app => $dummy)
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Fmsystem-commits] [14866] Admin: not allowed to elevate privileges when not admin,
Sigurd Nes <=