Make sure the userID in the session gives us a valid user, and specify

the basic errorPage function. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@3690 c91229c3-7414-0410-bfa2-8a42b809f60b

Make sure the userID in the session gives us a valid user, and specify
the basic errorPage function. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@3690 c91229c3-7414-0410-bfa2-8a42b809f60b
nbm
1 parent 5de73ae1
Showing 1 changed file with 10 additions and 0 deletions
lib/dispatcher.inc.php
@@ -75,6 +75,11 @@ class KTStandardDispatcher extends KTDispatcher {
                 $this->permissionDenied();
                 exit(0);
             }
+            $this->oUser =& User::get($_SESSION['userID']);
+            if (PEAR::isError($this->oUser) || ($this->oUser === false)) {
+                $this->permissionDenied();
+                exit(0);
+            }
         }
  
         if ($bAdminRequired !== false) {
@@ -102,6 +107,11 @@ class KTStandardDispatcher extends KTDispatcher {
         $main->setCentralPayload($data);
         $main->render();
     }
+
+    function errorPage($errorMessage) {
+        $this->handleOutput($errorMessage);
+        exit(0);
+    }
 }
  
 class KTAdminDispatcher extends KTStandardDispatcher {