lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

New:Constant MAIN_SHOW_SOCIETE2EXTERN to allow access to any thirdparty for external users

Browse Source
This commit is contained in:
abb 2021-02-12 23:53:05 +01:00
parent 50797bf892
commit d82c62c40d
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
htdocs/core/lib/security.lib.php
View File

@ -493,7 +493,7 @@ function checkUserAccessToObject($user, $featuresarray, $objectid = 0, $tableand
} elseif (in_array($feature, $checksoc)) // We check feature = checksoc
{
// If external user: Check permission for external users
if ($user->socid > 0)
if ($user->socid > 0 && empty($conf->global->MAIN_SHOW_SOCIETE2EXTERN))
{
if ($user->socid <> $objectid) return false;
} // If internal user: Check permission for internal users that are restricted on their objects

2
htdocs/societe/card.php
View File

@ -64,7 +64,7 @@ $backtopage = GETPOST('backtopage', 'alpha');
$confirm = GETPOST('confirm', 'alpha');
$socid = GETPOST('socid', 'int') ?GETPOST('socid', 'int') : GETPOST('id', 'int');
if ($user->socid) $socid = $user->socid;
if ($user->socid && empty($conf->global->MAIN_SHOW_SOCIETE2EXTERN)) $socid = $user->socid;
if (empty($socid) && $action == 'view') $action = 'create';
$object = new Societe($db);