summaryrefslogtreecommitdiff
path: root/httemplate/edit/cust_pay.cgi
diff options
context:
space:
mode:
Diffstat (limited to 'httemplate/edit/cust_pay.cgi')
-rwxr-xr-xhttemplate/edit/cust_pay.cgi10
1 files changed, 3 insertions, 7 deletions
diff --git a/httemplate/edit/cust_pay.cgi b/httemplate/edit/cust_pay.cgi
index 8e1c779..7c4e662 100755
--- a/httemplate/edit/cust_pay.cgi
+++ b/httemplate/edit/cust_pay.cgi
@@ -109,6 +109,9 @@ my $conf = new FS::Conf;
my $money_char = $conf->config('money_char') || '$';
my $date_format = $conf->config('date_format') || '%m/%d/%Y';
+die "access denied"
+ unless $FS::CurrentUser::CurrentUser->access_right('Post payment');
+
my($link, $linknum, $paid, $payby, $payinfo, $_date);
if ( $cgi->param('error') ) {
$link = $cgi->param('link');
@@ -135,13 +138,6 @@ if ( $cgi->param('error') ) {
die "illegal query ". $cgi->keywords;
}
-my @rights = ('Post payment');
-push @rights, 'Post check payment' if $payby eq 'BILL';
-push @rights, 'Post cash payment' if $payby eq 'CASH';
-
-die "access denied"
- unless $FS::CurrentUser::CurrentUser->access_right(\@rights);
-
my $paybatch = "webui-$_date-$$-". rand() * 2**32;
my $title = 'Post '. FS::payby->payname($payby). ' payment';
generated by cgit v1.1 at 2024-06-20 02:44:51 +0000