X-Git-Url: http://git.freeside.biz/gitweb/?a=blobdiff_plain;ds=sidebyside;f=httemplate%2Fedit%2Fcust_main_attach.cgi;h=dd460fa5e1ec396bad871e88f28c1187c9238e72;hb=ae898cc8e6de40fbecb30c973f91cd955434b159;hp=7c9e407d96e603c0a53fadd88493a3f2842504b9;hpb=165423e6ce43f8f87f329330bf92f422e718a768;p=freeside.git
diff --git a/httemplate/edit/cust_main_attach.cgi b/httemplate/edit/cust_main_attach.cgi
index 7c9e407d9..dd460fa5e 100755
--- a/httemplate/edit/cust_main_attach.cgi
+++ b/httemplate/edit/cust_main_attach.cgi
@@ -24,7 +24,7 @@ Filename
">
-% if(defined $attach) {
+% if(defined $attach and $curuser->access_right('Delete attachment')) {
% }
@@ -35,6 +35,7 @@ Filename
<%init>
+my $curuser = $FS::CurrentUser::CurrentUser;
my $attachnum = '';
my $attach;
if ( $cgi->param('error') ) {
@@ -52,7 +53,7 @@ my $custnum = $1;
my $action = $attachnum ? 'Edit' : 'Add';
die "access denied"
- unless $FS::CurrentUser::CurrentUser->access_right("$action customer note");
+ unless $curuser->access_right("$action customer note");
%init>