fernando/luos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

BUG 12374 Un usuario NO Administrador pero con permisos de PM_USERS ... SOLVED

Browse Source 
- Un usuario NO Administrador pero con permisos de PM_USERS puede auto-configurarse como Administrador.
- Adjustment in validation of the user logged.
This commit is contained in:
Hector Cortez
2013-07-25 14:55:11 -04:00
parent 8caece651b
commit 7dad6b0d13
2 changed files with 13 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
workflow/engine/methods/users/usersAjax.php
View File

@@ -105,7 +105,7 @@ switch ($_POST['action']) {
require_once 'classes/model/Users.php'; require_once 'classes/model/Users.php';
$oUser = new Users(); $oUser = new Users();
$aUserLog = $oUser->loadDetailed($_SESSION['USER_LOGGED']); $aUserLog = $oUser->loadDetailed($_SESSION['USER_LOGGED']);
print (G::json_encode(array( print (G::json_encode(array(
'USR_UID' => $aUserLog['USR_UID'], 'USR_UID' => $aUserLog['USR_UID'],
'USR_USERNAME' => $aUserLog['USR_USERNAME'], 'USR_USERNAME' => $aUserLog['USR_USERNAME'],
'USR_ROLE' => $aUserLog['USR_ROLE'] 'USR_ROLE' => $aUserLog['USR_ROLE']
@@ -488,6 +488,12 @@ switch ($_POST['action']) {
} }
} }
require_once 'classes/model/Users.php';
$oUser = new Users();
$aUserLog = $oUser->loadDetailed($_SESSION['USER_LOGGED']);
$aFields['USER_LOGGED_NAME'] = $aUserLog['USR_USERNAME'];
$aFields['USER_LOGGED_ROLE'] = $aUserLog['USR_ROLE'];
$aFields['CASES_MENUSELECTED_NAME'] = $casesMenuSelected; $aFields['CASES_MENUSELECTED_NAME'] = $casesMenuSelected;
$result->success = true; $result->success = true;

10
workflow/engine/templates/users/users.js
View File

@@ -37,7 +37,7 @@ var userLogedName = '';
var userLogedRole = ''; var userLogedRole = '';
var userRoleLoad = ''; var userRoleLoad = '';
const PROCESSMAKER_ADMIN = 'PROCESSMAKER_ADMIN'; var PROCESSMAKER_ADMIN = 'PROCESSMAKER_ADMIN';
global.IC_UID = ''; global.IC_UID = '';
global.IS_UID = ''; global.IS_UID = '';
@@ -48,8 +48,6 @@ Ext.onReady(function () {
Ext.state.Manager.setProvider(new Ext.state.CookieProvider()); Ext.state.Manager.setProvider(new Ext.state.CookieProvider());
Ext.QuickTips.init(); Ext.QuickTips.init();
getUserLogedRoleRequest();
box = new Ext.BoxComponent({ box = new Ext.BoxComponent({
width : 100, width : 100,
height : 80, height : 80,
@@ -1199,6 +1197,8 @@ function saveUser()
//Load data //Load data
function loadData() function loadData()
{ {
getUserLogedRoleRequest();
comboCountry.store.load(); comboCountry.store.load();
@@ -1287,7 +1287,9 @@ function loadUserData()
// //
} }
userRoleLoad = data.user.USR_ROLE; userRoleLoad = data.user.USR_ROLE;
userLogedName = data.user.USER_LOGGED_NAME;
userLogedRole = data.user.USER_LOGGED_ROLE;
comboCountry.store.on("load", function(store) { comboCountry.store.on("load", function(store) {
comboCountry.setValue(data.user.USR_COUNTRY); comboCountry.setValue(data.user.USR_COUNTRY);