diff options
| author | mark <mark> | 2009-12-14 01:41:11 +0000 |
|---|---|---|
| committer | mark <mark> | 2009-12-14 01:41:11 +0000 |
| commit | 1642d77450f5ecf931bfe94687386583ac3b367d (patch) | |
| tree | 694b69ec944b8eb7ead8f505499192fb261c37dc /httemplate/edit | |
| parent | 036dda4f6ffa045e4597ffb61d3e86763759d70e (diff) | |
Add access right to view attachments
Diffstat (limited to 'httemplate/edit')
| -rwxr-xr-x | httemplate/edit/cust_main_attach.cgi | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/httemplate/edit/cust_main_attach.cgi b/httemplate/edit/cust_main_attach.cgi index 5e9b16c99..a00731050 100755 --- a/httemplate/edit/cust_main_attach.cgi +++ b/httemplate/edit/cust_main_attach.cgi @@ -44,6 +44,7 @@ onclick="return(confirm('Delete this file?'));"> <%init> my $curuser = $FS::CurrentUser::CurrentUser; +die "access denied" if !$curuser->access_right('View attachments'); my $attachnum = ''; my $attach; if ( $cgi->param('error') ) { |