fixed bug reported by jsantand:

deleting of resources by non priveleged users
This commit is contained in:
Cornelius Weiß 2005-12-04 22:06:02 +00:00
parent 7581ae6b53
commit 46e955fd0c

View File

@ -240,6 +240,11 @@ class bo_resources
*/ */
function delete($res_id) function delete($res_id)
{ {
if(!$this->acl->is_permitted($this->so->get_value('cat_id',$res_id),EGW_ACL_DELETE))
{
return lang('You are not permitted to delete this reource!');
}
if ($this->so->delete(array('res_id'=>$res_id))) if ($this->so->delete(array('res_id'=>$res_id)))
{ {
$this->remove_picture($res_id); $this->remove_picture($res_id);