From: hickert <hickert@594d385d-05f5-0310-b6e9-bd551577e9d8>
Date: Tue, 25 Jul 2006 05:40:54 +0000 (+0000)
Subject: Avoid selecting a base without permissions on it
X-Git-Url: https://git.tokkee.org/?a=commitdiff_plain;h=2f39e38cc7381bcbf7ef077a5222e48f8a2aa584;p=gosa.git

Avoid selecting a base without permissions on it


git-svn-id: https://oss.gonicus.de/repositories/gosa/trunk@4281 594d385d-05f5-0310-b6e9-bd551577e9d8
---

diff --git a/plugins/personal/generic/class_user.inc b/plugins/personal/generic/class_user.inc
index a5f18a3e5..198f7aba0 100644
--- a/plugins/personal/generic/class_user.inc
+++ b/plugins/personal/generic/class_user.inc
@@ -614,7 +614,27 @@ class user extends plugin
 
       /* Save base and pw_storage, since these are no LDAP attributes */
       if (isset($_POST['base'])){
-        foreach(array("base", "pw_storage") as $val){
+
+        $this->set_acl_base('dummy,'.$_POST['base']);
+        if($this->acl_is_moveable("base")){
+
+          foreach(array("base") as $val){
+            if(isset($_POST[$val])){
+              $data= validate($_POST[$val]);
+              if ($data != $this->$val){
+                $this->is_modified= TRUE;
+              }
+              $this->$val= $data;
+            }
+          }
+        }else{
+          print_red(sprintf(_("You are not allowed to move this object to '%s'."),LDAP::fix($_POST['base'])));
+        }
+      }
+
+      /* Get pw_storage mode */
+      if (isset($_POST['pw_storage'])){
+        foreach(array("pw_storage") as $val){
           if(isset($_POST[$val])){
             $data= validate($_POST[$val]);
             if ($data != $this->$val){
@@ -624,6 +644,7 @@ class user extends plugin
           }
         }
       }
+
       $this->set_acl_base('dummy,'.$this->base);
     }
   }