Fix: bad rights for user author

2010-02-03 22:21:46 +00:00 · 2010-02-03 22:21:46 +00:00 · 496f305a81
commit 496f305a81
parent 77d5efde98
4 changed files with 40 additions and 29 deletions
--- a/htdocs/projet/contact.php
+++ b/htdocs/projet/contact.php
@ -177,19 +177,23 @@ if ($id > 0 || ! empty($ref))

 		// To verify role of users
 		$userAccess = 0;
-		foreach(array('internal','external') as $source)
+		if (!empty($project->user_author_id) && $project->user_author_id == $user->id) $userAccess=1;
+		else
 		{
-			$userRole = $project->liste_contact(4,$source);
-			$num=sizeof($userRole);
-
-			$i = 0;
-			while ($i < $num)
+			foreach(array('internal','external') as $source)
 			{
-				if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+				$userRole = $project->liste_contact(4,$source);
+				$num=sizeof($userRole);
+				
+				$i = 0;
+				while ($i < $num)
 				{
-					$userAccess++;
+					if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+					{
+						$userAccess++;
+					}
+					$i++;
 				}
-				$i++;
 			}
 		}

--- a/htdocs/projet/fiche.php
+++ b/htdocs/projet/fiche.php
@ -323,8 +323,7 @@ else

 	// To verify role of users
 	$userAccess = 0;
-	var_dump($project);
-	if (empty($project->user_author_id)) $userAccess=1;
+	if (!empty($project->user_author_id) && $project->user_author_id == $user->id) $userAccess=1;
 	else
 	{
 		foreach(array('internal','external') as $source)
--- a/htdocs/projet/note.php
+++ b/htdocs/projet/note.php
@ -108,19 +108,23 @@ if ($id > 0 || ! empty($ref))

 		// To verify role of users
 		$userAccess = 0;
-		foreach(array('internal','external') as $source)
+		if (!empty($project->user_author_id) && $project->user_author_id == $user->id) $userAccess=1;
+		else
 		{
-			$userRole = $project->liste_contact(4,$source);
-			$num=sizeof($userRole);
-
-			$i = 0;
-			while ($i < $num)
+			foreach(array('internal','external') as $source)
 			{
-				if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+				$userRole = $project->liste_contact(4,$source);
+				$num=sizeof($userRole);
+				
+				$i = 0;
+				while ($i < $num)
 				{
-					$userAccess++;
+					if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+					{
+						$userAccess++;
+					}
+					$i++;
 				}
-				$i++;
 			}
 		}

--- a/htdocs/projet/tasks/fiche.php
+++ b/htdocs/projet/tasks/fiche.php
@ -120,19 +120,23 @@ if ($id > 0 || ! empty($ref))
 	
 	// To verify role of users
 	$userAccess = 0;
-	foreach(array('internal','external') as $source)
+	if (!empty($project->user_author_id) && $project->user_author_id == $user->id) $userAccess=1;
+	else
 	{
-		$userRole = $project->liste_contact(4,$source);
-		$num=sizeof($userRole);
-		
-		$i = 0;
-		while ($i < $num)
+		foreach(array('internal','external') as $source)
 		{
-			if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+			$userRole = $project->liste_contact(4,$source);
+			$num=sizeof($userRole);
+			
+			$i = 0;
+			while ($i < $num)
 			{
-				$userAccess++;
+				if ($userRole[$i]['code'] == 'PROJECTLEADER' && $user->id == $userRole[$i]['id'])
+				{
+					$userAccess++;
+				}
+				$i++;
 			}
-			$i++;
 		}
 	}
 }