forked from ZwiiCMS-Team/ZwiiCMS
parent
d7ca5f13fc
commit
c20d5e99d2
@ -2762,7 +2762,7 @@ class layout extends common {
|
|||||||
$rightItems = '';
|
$rightItems = '';
|
||||||
// if($this->getUser('group') >= self::GROUP_MODERATOR) {
|
// if($this->getUser('group') >= self::GROUP_MODERATOR) {
|
||||||
if($this->getUser('group') >= self::GROUP_EDITOR) {
|
if($this->getUser('group') >= self::GROUP_EDITOR) {
|
||||||
$rightItems .= '<li><a href="' . helper::baseUrl(false) . 'core/vendor/filemanager/dialog.php?type=0&akey=' . md5_file(self::DATA_DIR.'core.json') .'&ext='.password_hash($this->getUser('group'),PASSWORD_BCRYPT).'" data-tippy-content="Gérer les fichiers" data-lity>' . template::ico('folder') . '</a></li>';
|
$rightItems .= '<li><a href="' . helper::baseUrl(false) . 'core/vendor/filemanager/dialog.php?type=0&akey=' . md5_file(self::DATA_DIR.'core.json') .'" data-tippy-content="Gérer les fichiers" data-lity>' . template::ico('folder') . '</a></li>';
|
||||||
}
|
}
|
||||||
if($this->getUser('group') >= self::GROUP_ADMIN) {
|
if($this->getUser('group') >= self::GROUP_ADMIN) {
|
||||||
$rightItems .= '<li><a href="' . helper::baseUrl() . 'user" data-tippy-content="Configurer les utilisateurs">' . template::ico('users') . '</a></li>';
|
$rightItems .= '<li><a href="' . helper::baseUrl() . 'user" data-tippy-content="Configurer les utilisateurs">' . template::ico('users') . '</a></li>';
|
||||||
|
29
core/vendor/filemanager/config/config.php
vendored
29
core/vendor/filemanager/config/config.php
vendored
@ -13,11 +13,14 @@ ob_start('mb_output_handler');
|
|||||||
date_default_timezone_set('Europe/Paris');
|
date_default_timezone_set('Europe/Paris');
|
||||||
setlocale(LC_CTYPE, 'fr_FR'); //correct transliteration
|
setlocale(LC_CTYPE, 'fr_FR'); //correct transliteration
|
||||||
|
|
||||||
// Validation des actions (delete, rename) par lecture du groupe de l'utilisateur transmis par l'URL
|
// Validation des actions (delete, rename) par lecture du groupe de l'utilisateur via cookie et user.json
|
||||||
$access = false;
|
if( is_file('../../../site/data/user.json')){
|
||||||
if ( password_verify('4',$_GET['ext'])
|
$json = file_get_contents('../../../site/data/user.json');
|
||||||
OR password_verify('3',$_GET['ext']) ) {
|
$user = json_decode($json, true);
|
||||||
$access = true;
|
$val = $user['user'][$_COOKIE["ZWII_USER_ID"]]['group'] >= 3 ? true : false;
|
||||||
|
}
|
||||||
|
else{
|
||||||
|
$val = false;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
@ -344,18 +347,18 @@ $config = array(
|
|||||||
//*************************
|
//*************************
|
||||||
//Permissions configuration
|
//Permissions configuration
|
||||||
//******************
|
//******************
|
||||||
'delete_files' => $access,
|
'delete_files' => $val,
|
||||||
'create_folders' => true,
|
'create_folders' => true,
|
||||||
'delete_folders' => $access,
|
'delete_folders' => $val,
|
||||||
'upload_files' => true,
|
'upload_files' => true,
|
||||||
'rename_files' => $access,
|
'rename_files' => $val,
|
||||||
'rename_folders' => $access,
|
'rename_folders' => $val,
|
||||||
'duplicate_files' => true,
|
'duplicate_files' => true,
|
||||||
'extract_files' => true,
|
'extract_files' => true,
|
||||||
'copy_cut_files' => $access, // for copy/cut files
|
'copy_cut_files' => $val, // for copy/cut files
|
||||||
'copy_cut_dirs' => $access, // for copy/cut directories
|
'copy_cut_dirs' => $val, // for copy/cut directories
|
||||||
'chmod_files' => $access, // change file permissions
|
'chmod_files' => $val, // change file permissions
|
||||||
'chmod_dirs' => $access, // change folder permissions
|
'chmod_dirs' => $val, // change folder permissions
|
||||||
'preview_text_files' => true, // eg.: txt, log etc.
|
'preview_text_files' => true, // eg.: txt, log etc.
|
||||||
'edit_text_files' => true, // eg.: txt, log etc.
|
'edit_text_files' => true, // eg.: txt, log etc.
|
||||||
'create_text_files' => true, // only create files with exts. defined in $config['editable_text_file_exts']
|
'create_text_files' => true, // only create files with exts. defined in $config['editable_text_file_exts']
|
||||||
|
Loading…
Reference in New Issue
Block a user