Home Explore Help
Sign In
iProspective
/
dolibarr
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

FIX deletion on draft is allowed if we are allwoed to create

Laurent Destailleur 6 years ago
parent
0266db7aa8
commit
8fbf5b1f33
3 changed files with 9 additions and 7 deletions
Split View Show Diff Stats
  1. 2 1
      htdocs/compta/facture/card.php
  2. 2 1
      htdocs/fourn/facture/card.php
  3. 5 5
      htdocs/modulebuilder/template/myobject_card.php

+ 2 - 1
htdocs/compta/facture/card.php
View File 

@@ -115,7 +115,8 @@ $permissiontoedit = $user->rights->facture->creer; // Used by the include of act
 
 // Security check
 
 $fieldid = (! empty($ref) ? 'facnumber' : 'rowid');
 
 if ($user->societe_id) $socid = $user->societe_id;
 
-$result = restrictedArea($user, 'facture', $id, '', '', 'fk_soc', $fieldid, null, (($object->statut == Facture::STATUS_DRAFT) ? 1 : 0));
 
+$isdraft = (($object->statut == Facture::STATUS_DRAFT) ? 1 : 0);
 
+$result = restrictedArea($user, 'facture', $id, '', '', 'fk_soc', $fieldid, null, $isdraft);
 
 
 
 /*

+ 2 - 1
htdocs/fourn/facture/card.php
View File 

@@ -93,7 +93,8 @@ if ($id > 0 || ! empty($ref))
 
 // Security check
 
 $socid='';
 
 if (! empty($user->societe_id)) $socid=$user->societe_id;
 
-$result = restrictedArea($user, 'fournisseur', $id, 'facture_fourn', 'facture', 'fk_soc', 'rowid', null, (($object->statut == FactureFournisseur::STATUS_DRAFT) ? 1 : 0));
 
+$isdraft = (($object->statut == FactureFournisseur::STATUS_DRAFT) ? 1 : 0);
 
+$result = restrictedArea($user, 'fournisseur', $id, 'facture_fourn', 'facture', 'fk_soc', 'rowid', null, $isdraft);
 
 
 $permissionnote=$user->rights->fournisseur->facture->creer;	// Used by the include of actions_setnotes.inc.php
 
 $permissiondellink=$user->rights->fournisseur->facture->creer;	// Used by the include of actions_dellink.inc.php

+ 5 - 5
htdocs/modulebuilder/template/myobject_card.php
View File 

@@ -93,14 +93,14 @@ foreach($object->fields as $key => $val)
 
 
 if (empty($action) && empty($id) && empty($ref)) $action='view';
 
 
-// Security check - Protection if external user
 
-//if ($user->societe_id > 0) access_forbidden();
 
-//if ($user->societe_id > 0) $socid = $user->societe_id;
 
-//$result = restrictedArea($user, 'mymodule', $id);
 
-
 
 // Load object
 
 include DOL_DOCUMENT_ROOT.'/core/actions_fetchobject.inc.php';  // Must be include, not include_once  // Must be include, not include_once. Include fetch and fetch_thirdparty but not fetch_optionals
 
 
+// Security check - Protection if external user
 
+//if ($user->societe_id > 0) access_forbidden();
 
+//if ($user->societe_id > 0) $socid = $user->societe_id;
 
+//$isdraft = (($object->statut == MyObject::STATUS_DRAFT) ? 1 : 0);
 
+//$result = restrictedArea($user, 'mymodule', $id, '', '', 'fk_soc', 'rowid', null, $isdraft);
 
 
 
 /*