From 61be5385cedbe0d53884b091e5254f4501abce25 Mon Sep 17 00:00:00 2001
From: Regis Houssin <regis@dolibarr.fr>
Date: Fri, 26 Jan 2007 15:57:52 +0000
Subject: [PATCH] Fix: ajout du control sur la restriction des commerciaux

---
 htdocs/comm/propal.php | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/htdocs/comm/propal.php b/htdocs/comm/propal.php
index 9beba69f995..78819d11a97 100644
--- a/htdocs/comm/propal.php
+++ b/htdocs/comm/propal.php
@@ -69,10 +69,24 @@ if ($_GET['propalid'] > 0)
   $propal = new Propal($db);
   $result=$propal->fetch($_GET['propalid']);
   if (! $result > 0)
-    {
+  {
       dolibarr_print_error($db,$propal->error);
       exit;
+  }
+  
+  // Protection restriction commercial
+  if (!$user->rights->commercial->client->voir)
+  {
+    $sql = "SELECT sc.fk_soc";
+    $sql .= " FROM ".MAIN_DB_PREFIX."societe_commerciaux as sc";
+    $sql .= " WHERE sc.fk_soc = ".$propal->socid." AND sc.fk_user = ".$user->id;
+    if ( $db->query($sql) )
+    {
+      if ( $db->num_rows() == 0) accessforbidden();
     }
+  }
+  //fin de Protection restriction commercial
+  
   if ($user->societe_id > 0 && $propal->socid <> $user->societe_id)
     accessforbidden();
 }