X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;ds=sidebyside;f=html%2FgetFAIscript.php;h=6c3cfeb37630b3db56c78f2e1164fa27206a6791;hb=59dde7f94e78c54fc96148db683800a8cb0a01ac;hp=e86bdcc78277a4f5bd777807aa3d7682eaf665a6;hpb=60c705a343bdadbee5bde6b5365c0c79f6bed4f3;p=gosa.git

diff --git a/html/getFAIscript.php b/html/getFAIscript.php
index e86bdcc78..6c3cfeb37 100644
--- a/html/getFAIscript.php
+++ b/html/getFAIscript.php
@@ -24,7 +24,7 @@ restore_error_handler();
   $ldap = $_SESSION['config']->get_ldap_link();
   $ldap->cd($_SESSION['config']->current['BASE']);
 
-  $sr= $ldap->cat($id);
+  $sr= $ldap->cat($id, array("FAItemplateFile", "FAIscript", "cn", "objectClass"));
   $ei= ldap_first_entry($ldap->cid, $sr);
   if(isset($_GET['is_template'])){
     $tmp = ldap_get_values_len($ldap->cid, $ei,"FAItemplateFile");
@@ -49,6 +49,7 @@ restore_error_handler();
     header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
     header("Cache-Control: no-cache");
     header("Pragma: no-cache");
+    header("Content-transfer-encoding: binary\n");
     header("Cache-Control: post-check=0, pre-check=0");
     header("Content-type: application/octet-stream");
     header("Content-Disposition: attachment; filename=".$name);
@@ -66,18 +67,19 @@ session_start ();
 
 /* Logged in? Simple security check */
 if (!isset($_SESSION['ui'])){
-  gosa_log ("Error: getFAIScript.php called without session");
-  header ("Location: ../index.php");
+  new log("security","fai","",array(),"Error: getFAIScript.php called without session") ;
+  header ("Location: index.php");
   exit;
 }
 $ui= $_SESSION["ui"];
 $config= $_SESSION['config'];
 
 /* Check ACL's */
-$acl= get_permissions ($config->current['BASE'], $ui->subtreeACL);
-$acl= get_module_permission($acl, "all", $config->current['BASE']);
-if (chkacl($acl, "all") != ""){
-  header ("Location: ../index.php");
+#FIXME Use more specific acl categories instead of all/all
+$ui = get_userinfo();
+$acl = $ui->get_permissions(base64_decode($_GET['id']),"all/all");
+if(!preg_match("/r/",$acl)){
+  header ("Location: index.php");
   exit;
 }
 $dir = search_config($config->data,"environment", "KIOSKPATH");