X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=html%2FgetFAIscript.php;h=45277a6fdcf544184923056b6fb79af62dddd2e0;hb=3a4267cf68ad2bab22b38af3536251e6d2e90ec2;hp=b22451a6798c965b3ed895b88a283276245d07e7;hpb=9661305ec872b58877cee3ac6b772134dcf7282c;p=gosa.git diff --git a/html/getFAIscript.php b/html/getFAIscript.php index b22451a67..45277a6fd 100644 --- a/html/getFAIscript.php +++ b/html/getFAIscript.php @@ -49,6 +49,7 @@ restore_error_handler(); header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT"); header("Cache-Control: no-cache"); header("Pragma: no-cache"); + header("Content-transfer-encoding: binary\n"); header("Cache-Control: post-check=0, pre-check=0"); header("Content-type: application/octet-stream"); header("Content-Disposition: attachment; filename=".$name); @@ -61,26 +62,27 @@ restore_error_handler(); /* Basic setup, remove eventually registered sessions */ @require_once ("../include/php_setup.inc"); @require_once ("functions.inc"); -error_reporting (E_ALL); +error_reporting (E_ALL | E_STRICT); session_start (); /* Logged in? Simple security check */ if (!isset($_SESSION['ui'])){ - gosa_log ("Error: getFAIScript.php called without session"); - header ("Location: ../index.php"); + new log("security","fai","",array(),"Error: getFAIScript.php called without session") ; + header ("Location: index.php"); exit; } $ui= $_SESSION["ui"]; $config= $_SESSION['config']; /* Check ACL's */ -$acl= get_permissions ($config->current['BASE'], $ui->subtreeACL); -$acl= get_module_permission($acl, "all", $config->current['BASE']); -if (chkacl($acl, "all") != ""){ - header ("Location: ../index.php"); +#FIXME Use more specific acl categories instead of all/all +$ui = get_userinfo(); +$acl = $ui->get_permissions(base64_decode($_GET['id']),"all/all"); +if(!preg_match("/r/",$acl)){ + header ("Location: index.php"); exit; } -$dir = search_config($config->data,"environment", "KIOSKPATH"); +$dir= $config->search('environment', 'kioskpath', array('main','tabs')); getFAIScript(base64_decode($_GET['id'])); // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: