rename "secureAtLevel" variable since it does not define a level at all

author: Christian Weiske <cweiske@cweiske.de> 2012-09-18 23:28:11 +0200
committer: Christian Weiske <cweiske@cweiske.de> 2012-09-18 23:28:11 +0200
commit: 6eef15cdc3bef5971d8ffe95bcbcaff368c87e69 (patch)
tree: d42ffe8c61445601413418aa1996e0faa2ddcc51 /www/www-security.php
parent: b81d2ab65f8fafce3b818eeb96c1cdcecd3e675f (diff)
download: phorkie-6eef15cdc3bef5971d8ffe95bcbcaff368c87e69.tar.gz
phorkie-6eef15cdc3bef5971d8ffe95bcbcaff368c87e69.zip
1 files changed, 10 insertions, 14 deletions
diff --git a/www/www-security.php b/www/www-security.php
index ccbdb97..5051b0f 100644
--- a/www/www-security.php
+++ b/www/www-security.php
@@ -26,23 +26,19 @@ if (!isset($_SESSION['identity'])) {
     $logged_in = true;
 }
 
-if ($secureAtLevel >= $GLOBALS['phorkie']['auth']['securityLevel']) {
-    if ($logged_in) {
-        return;
-    }
-} else {
+if ($logged_in) {
+    //you may do everything if you're logged in
     return;
 }
 
-// p / G / log_in = disp
-// 0 / 1 / true   = return
-// 0 / 1 / false  = block
-// 0 / 2 / true   = return
-// 0 / 2 / false  = return
-// 1 / 1 / true   = return
-// 1 / 1 / false  = block
-// 1 / 2 / true   = return
-// 1 / 2 / false  = block
+if (!isset($reqWritePermissions)) {
+    $reqWritePermissions = true;
+}
+if ($GLOBALS['phorkie']['auth']['securityLevel'] == 1
+    && !$reqWritePermissions
+) {
+    return;
+}
 
 $_SESSION['REQUEST_URI'] = $_SERVER['REQUEST_URI'];
 require 'forbidden.php';
author	Christian Weiske <cweiske@cweiske.de>	2012-09-18 23:28:11 +0200
committer	Christian Weiske <cweiske@cweiske.de>	2012-09-18 23:28:11 +0200
commit	6eef15cdc3bef5971d8ffe95bcbcaff368c87e69 (patch)
tree	d42ffe8c61445601413418aa1996e0faa2ddcc51 /www/www-security.php
parent	b81d2ab65f8fafce3b818eeb96c1cdcecd3e675f (diff)
download	phorkie-6eef15cdc3bef5971d8ffe95bcbcaff368c87e69.tar.gz phorkie-6eef15cdc3bef5971d8ffe95bcbcaff368c87e69.zip