X-Git-Url: http://git.freeside.biz/gitweb/?a=blobdiff_plain;f=httemplate%2Fedit%2Fcust_pay.cgi;h=638679a46302765bc29dff277efcd4af55a38b5a;hb=e39f81dae87d882c0ea4f6f1918fa9cae6d2fc61;hp=7c4e6620ea64f2747018f89d94228d363f9305a7;hpb=5250c44bd7f282c7d782bf0e8349af12376929df;p=freeside.git
diff --git a/httemplate/edit/cust_pay.cgi b/httemplate/edit/cust_pay.cgi
index 7c4e6620e..638679a46 100755
--- a/httemplate/edit/cust_pay.cgi
+++ b/httemplate/edit/cust_pay.cgi
@@ -43,7 +43,7 @@ Payment
Amount |
<% $money_char %> |
- by <% FS::payby->payname($payby) %> |
+ by <% FS::payby->payname($payby) %> |
<% include('/elements/tr-select-discount_term.html',
@@ -109,9 +109,6 @@ my $conf = new FS::Conf;
my $money_char = $conf->config('money_char') || '$';
my $date_format = $conf->config('date_format') || '%m/%d/%Y';
-die "access denied"
- unless $FS::CurrentUser::CurrentUser->access_right('Post payment');
-
my($link, $linknum, $paid, $payby, $payinfo, $_date);
if ( $cgi->param('error') ) {
$link = $cgi->param('link');
@@ -138,6 +135,13 @@ if ( $cgi->param('error') ) {
die "illegal query ". $cgi->keywords;
}
+my @rights = ('Post payment');
+push @rights, 'Post check payment' if $payby eq 'BILL';
+push @rights, 'Post cash payment' if $payby eq 'CASH';
+
+die "access denied"
+ unless $FS::CurrentUser::CurrentUser->access_right(\@rights);
+
my $paybatch = "webui-$_date-$$-". rand() * 2**32;
my $title = 'Post '. FS::payby->payname($payby). ' payment';