* security levels + login requirement:
*/
-if (!isset($GLOBALS['phorkie']['auth']['secure'])) {
+if (!isset($GLOBALS['phorkie']['auth']['securityLevel'])) {
//not set? highest level of security
- $GLOBALS['phorkie']['auth']['secure'] = 2;
+ $GLOBALS['phorkie']['auth']['securityLevel'] = 2;
}
-if ($GLOBALS['phorkie']['auth']['secure'] == 0) {
+if ($GLOBALS['phorkie']['auth']['securityLevel'] == 0) {
//everyone may do everything
return;
}
$logged_in = false;
if (!isset($_SESSION['identity'])) {
//not logged in
-} else if ($GLOBALS['phorkie']['auth']['userlist']) {
- if (in_array($_SESSION['identity'], $GLOBALS['phorkie']['users'])) {
+} else if ($GLOBALS['phorkie']['auth']['listedUsersOnly']) {
+ if (in_array($_SESSION['identity'], $GLOBALS['phorkie']['auth']['users'])) {
$logged_in = true;
}
} else {
}
if ($logged_in) {
- //logged in? all fine
+ //you may do everything if you're logged in
return;
-} else if ($GLOBALS['phorkie']['auth']['secure'] == 2) {
- //not logged in and security level 2 => error
- require 'forbidden.php';
-} else if (isset($pageRequiresLogin) && !$pageRequiresLogin) {
+}
+
+if (!isset($reqWritePermissions)) {
+ $reqWritePermissions = true;
+}
+if ($GLOBALS['phorkie']['auth']['securityLevel'] == 1
+ && !$reqWritePermissions
+) {
return;
}
+$_SESSION['REQUEST_URI'] = $_SERVER['REQUEST_URI'];
require 'forbidden.php';
-?>
\ No newline at end of file
+?>