[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpcompta-dev] r4349 - in phpcompta/trunk: html include
|
From: |
phpcompta-dev |
|
Subject: |
[Phpcompta-dev] r4349 - in phpcompta/trunk: html include |
|
Date: |
Mon, 14 Nov 2011 14:57:46 +0100 (CET) |
Author: danydb
Date: 2011-11-14 14:57:44 +0100 (Mon, 14 Nov 2011)
New Revision: 4349
Modified:
phpcompta/trunk/html/ajax_card.php
phpcompta/trunk/html/ajax_misc.php
phpcompta/trunk/include/ac_common.php
phpcompta/trunk/include/company.inc.php
Log:
Update security, add PARSTR
New function xml_error (for ajax_misc.php)
Modified: phpcompta/trunk/html/ajax_card.php
===================================================================
--- phpcompta/trunk/html/ajax_card.php 2011-11-14 10:37:46 UTC (rev 4348)
+++ phpcompta/trunk/html/ajax_card.php 2011-11-14 13:57:44 UTC (rev 4349)
@@ -96,6 +96,7 @@
/* Remove a attribut */
/* ------------------------------------------------------------ */
case 'rmfa':
+ if ($user->check_action(FICCAT)==0)exit();
ob_start();
if( ! isset($_GET['ad_id']) || isNumber($_GET['ad_id']) ==0)
throw new Exception ( "Parametre ad_id est invalide",11);
Modified: phpcompta/trunk/html/ajax_misc.php
===================================================================
--- phpcompta/trunk/html/ajax_misc.php 2011-11-14 10:37:46 UTC (rev 4348)
+++ phpcompta/trunk/html/ajax_misc.php 2011-11-14 13:57:44 UTC (rev 4349)
@@ -71,7 +71,7 @@
break;
case "rm_stock":
require_once('constant.security.php');
- if ($user->check_action(GESTOCK) == 0)
+ if ($user->check_action(STOWRITE) == 0)
{
exit();
}
@@ -263,6 +263,7 @@
case 'dl':
require_once('class_lettering.php');
$exercice = $user->get_exercice();
+ if ($user->check_module("LETTERCARD") == 0 &&
$user->check_module("LETTERACC") == 0) exit();
$periode = new Periode($cn);
list($first_per, $last_per) = $periode->get_limit($exercice);
Modified: phpcompta/trunk/include/ac_common.php
===================================================================
--- phpcompta/trunk/include/ac_common.php 2011-11-14 10:37:46 UTC (rev
4348)
+++ phpcompta/trunk/include/ac_common.php 2011-11-14 13:57:44 UTC (rev
4349)
@@ -940,4 +940,17 @@
}
return $array;
}
+function ajax_xml_error($p_code,$p_string)
+{
+ $html = escape_xml($p_string);
+ header('Content-type: text/xml; charset=UTF-8');
+ echo <<<EOF
+<?xml version="1.0" encoding="UTF-8"?>
+<data>
+<code>$p_code</code>
+<value>$html</value>
+</data>
+EOF;
+}
+
?>
Modified: phpcompta/trunk/include/company.inc.php
===================================================================
--- phpcompta/trunk/include/company.inc.php 2011-11-14 10:37:46 UTC (rev
4348)
+++ phpcompta/trunk/include/company.inc.php 2011-11-14 13:57:44 UTC (rev
4349)
@@ -18,7 +18,7 @@
$m->MY_CHECK_PERIODE=$p_check_periode;
$m->MY_DATE_SUGGEST=$p_date_suggest;
$m->MY_ANALYTIC=$p_compta;
- $m->MY_STRICT=$p_strict;
+ if ( $g_user->check_action(PARSTR)!=0) $m->MY_STRICT=$p_strict;
$m->MY_TVA_USE=$p_tva_use;
$m->MY_PJ_SUGGEST=$p_pj;
$m->MY_ALPHANUM=$p_alphanum;
@@ -94,6 +94,7 @@
$all->value='';
echo "<tr>".td(_("Numéro de
Tva"),'style="text-align:right"').$all->input("p_tva",$my->MY_TVA)."</tr>";
echo "<tr>".td(_("Utilisation de la compta.
analytique"),'style="text-align:right"').$compta->input("p_compta",$array)."</tr>";
+ if ( $g_user->check_action(PARSTR)==0) $strict->setReadonly(true);
echo "<tr>".td(_("Utilisation du mode strict
"),'style="text-align:right"').$strict->input("p_strict",$strict_array)."</tr>";
echo "<tr>".td(_("Assujetti à la
tva"),'style="text-align:right"').$tva_use->input("p_tva_use",$strict_array)."</tr>";
echo "<tr>".td(_("Suggérer le numéro de pièce
justificative"),'style="text-align:right"').$pj_suggest->input("p_pj",$strict_array)."</tr>";
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Phpcompta-dev] r4349 - in phpcompta/trunk: html include,
phpcompta-dev <=