![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/html/getFAIscript.php b/html/getFAIscript.php
index ddd120fc48b1afbaa292de513b6612c804063213..8be8f02fbfe137541c1c11c86a6062e6bf4a9408 100644 (file)
--- a/html/getFAIscript.php
+++ b/html/getFAIscript.php
/* Basic setup, remove eventually registered sessions */
@require_once ("../include/php_setup.inc");
@require_once ("functions.inc");
-error_reporting (E_ALL);
+error_reporting (E_ALL | E_STRICT);
session_start ();
/* Logged in? Simple security check */
if (!isset($_SESSION['ui'])){
- gosa_log ("Error: getFAIScript.php called without session");
+ new log("security","fai","",array(),"Error: getFAIScript.php called without session") ;
header ("Location: index.php");
exit;
}
$config= $_SESSION['config'];
/* Check ACL's */
-$acl= get_permissions ($config->current['BASE'], $ui->subtreeACL);
-$acl= get_module_permission($acl, "all", $config->current['BASE']);
-if (chkacl($acl, "all") != ""){
+#FIXME Use more specific acl categories instead of all/all
+$ui = get_userinfo();
+$acl = $ui->get_permissions(base64_decode($_GET['id']),"all/all");
+if(!preg_match("/r/",$acl)){
header ("Location: index.php");
exit;
}