Merge branch 'FREESIDE_3_BRANCH' of git.freeside.biz:/home/git/freeside into FREESIDE_3_BRANCH

author: Ivan Kohler <ivan@freeside.biz> 2018-09-25 19:17:21 -0700
committer: Ivan Kohler <ivan@freeside.biz> 2018-09-25 19:17:21 -0700
commit: 97656ea6ea7a9138036ba1499a05d64a1f8850c6 (patch)
tree: acc870e858d45b93883dd211877a5335010ab2f2 /ng_selfservice/elements/header.php
parent: 8c914e2614a40b95291df00d0b8dbd5766f611b5 (diff)
parent: b932d7d067c6f3d917f9da3efe6b9ab7fd23ab8e (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/ng_selfservice/elements/header.php b/ng_selfservice/elements/header.php
index 633996515..3ef5c6e12 100644
--- a/ng_selfservice/elements/header.php
+++ b/ng_selfservice/elements/header.php
@@ -1,3 +1,21 @@
+<?
+
+require_once('session.php');
+
+$page = basename($_SERVER['SCRIPT_FILENAME']);
+
+$access = $freeside->check_access( array(
+  'session_id' => $_COOKIE['session_id'],
+  'page'       => $page,
+) );
+
+if ($access['error']) {
+  header('Location:no_access.php?error='. urlencode($access['error']));
+  die();
+}
+
+?>
+
 <!DOCTYPE html>
 <HTML>
   <HEAD>
author	Ivan Kohler <ivan@freeside.biz>	2018-09-25 19:17:21 -0700
committer	Ivan Kohler <ivan@freeside.biz>	2018-09-25 19:17:21 -0700
commit	97656ea6ea7a9138036ba1499a05d64a1f8850c6 (patch)
tree	acc870e858d45b93883dd211877a5335010ab2f2 /ng_selfservice/elements/header.php
parent	8c914e2614a40b95291df00d0b8dbd5766f611b5 (diff)
parent	b932d7d067c6f3d917f9da3efe6b9ab7fd23ab8e (diff)