RE: [cobalt-users] Re: MAJOR UNSOLVED BUG IN THE GUI(WEBPANEL) COBALT-550

["Manny Tau" <mtau@xxxxxxx>]

I believe that you can only view the users, but can't change anything...am I
right?

Manny

-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Tolentino, Elmer
Sent: Friday, June 13, 2003 8:35 AM
To: cobalt-users@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-users] Re: MAJOR UNSOLVED BUG IN THE GUI(WEBPANEL)
COBALT-550




> -----Original Message-----
> From: Oliver Wendt [mailto:hawkeye@xxxxxxxxxxxx]
> Sent: Friday, June 13, 2003 7:19 AM
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: [cobalt-users] Re: MAJOR UNSOLVED BUG IN THE GUI(WEBPANEL)
> COBALT-550
>
>
> hi there,
>
> we just implemented a small check in ServerScriptHelper.php -
> just like this:
>
> $serverScriptHelper = new ServerScriptHelper();
> $cceClient = $serverScriptHelper->getCceClient();
> $user = $cceClient->getObject("User", array("name"=>$loginName));
> $groupnr = $user["site"];
> if ($loginName != "admin") { // admin may do whatever he's up to
>     if (isset($group)) { // checking url-parameters
>         if ($group != $groupnr) { // evil guys change those values
>         header("Location: http://www.somewhere.org";);
>         exit;
>         }
>     }
> }
>
> just give it a try ... it seems to work flawlessly.
>

Works great.  Nice Mod.

> enjoy the weekend,
>
> ollie
>
>
>
>
>
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>

_____________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users