From 0467f982eddef0a83841da1702e3b8543ce55986 Mon Sep 17 00:00:00 2001 From: Michael Joseph Date: Mon, 13 Jan 2003 11:48:55 +0000 Subject: [PATCH] added session handling and authorisation check --- dashboard.php | 75 ++++++++++++++++++++++++++++++++++++++++----------------------------------- 1 file changed, 40 insertions(+), 35 deletions(-) diff --git a/dashboard.php b/dashboard.php index 40844fd..abd3f1b 100644 --- a/dashboard.php +++ b/dashboard.php @@ -31,43 +31,48 @@ require_once("$default->owl_fs_root/lib/visualpatterns/PatternTableSqlQuery.inc" // page start // ------------------------------- -checkSession(); +if (checkSession()) { -// check if this page is authorised, ie. has come from control.php -if ($_SESSION["authorised"]) { - // create a page - - // logo - $img = new PatternImage("$default->owl_root_url/locale/$default->owl_lang/graphics/$default->logo"); - - // build the top menu of links - $aTopMenuLinks = array(0=>generateControllerUrl("LOGOUT")); - $aTopMenuText = array(0=>"logout"); - $oPatternTableLinks = new PatternTableLinks($aTopMenuLinks, $aTopMenuText, 3, 1); - - // build the central dashboard - /* - $aCentralPageColumns = array(0=>"name",1=>"parent",2=>"security"); - $aColumnTypes = array(0=>1,1=>2,2=>1); - $oTableSqlQuery = & new PatternTableSqlQuery("Folders", $aCentralPageColumns, $aColumnTypes); - ($HTTP_GET_VARS["fStartIndex"]) ? $oTableSqlQuery->setStartIndex($HTTP_GET_VARS["fStartIndex"]) : $oTableSqlQuery->setStartIndex(0); - $oTableSqlQuery->setLinkType(1); - */ - - /* get a page */ - $tmp = new PatternMainPage(); - - /* put the page together */ - $tmp->setNorthWestPayload($img); - $tmp->setNorthPayload($oPatternTableLinks); - //$tmp->setCentralPayload($oTableSqlQuery); - $tmp->setFormAction("dashboard.php"); - $tmp->render(); - + // check if this page is authorised, ie. has come from control.php + if ($_SESSION["authorised"]) { + // create a page + + // logo + $img = new PatternImage("$default->owl_root_url/locale/$default->owl_lang/graphics/$default->logo"); + + // build the top menu of links + $aTopMenuLinks = array(0=>generateControllerUrl("logout"), 1=>generateControllerUrl("scratchPad")); + $aTopMenuText = array(0=>"logout", 1=>"scratchPad"); + $oPatternTableLinks = new PatternTableLinks($aTopMenuLinks, $aTopMenuText, 3, 1); + + // build the central dashboard + /* + $aCentralPageColumns = array(0=>"name",1=>"parent",2=>"security"); + $aColumnTypes = array(0=>1,1=>2,2=>1); + $oTableSqlQuery = & new PatternTableSqlQuery("Folders", $aCentralPageColumns, $aColumnTypes); + ($HTTP_GET_VARS["fStartIndex"]) ? $oTableSqlQuery->setStartIndex($HTTP_GET_VARS["fStartIndex"]) : $oTableSqlQuery->setStartIndex(0); + $oTableSqlQuery->setLinkType(1); + */ + + /* get a page */ + $tmp = new PatternMainPage(); + + /* put the page together */ + $tmp->setNorthWestPayload($img); + $tmp->setNorthPayload($oPatternTableLinks); + //$tmp->setCentralPayload($oTableSqlQuery); + $tmp->setFormAction("dashboard.php"); + $tmp->render(); + + } else { + // FIXME: redirect to no permission page + print "you do not have access to view this page! please go away, and come back when you do.
"; + echo generateLink("logout") . "logout"; + } } else { - // FIXME: redirect to no permission page - print "you do not have access to view this page! please go away, and come back when you do.
"; - echo generateLink("LOGOUT") . "logout"; + // no session, should have been redirected + echo "no session
"; + print_r($_SESSION); } ?> -- libgit2 0.21.4