, Jam Warehouse (Pty) Ltd, South Africa * @package control */ // main library routines and defaults require_once("./config/dmsDefaults.php"); require_once("$default->owl_fs_root/lib/session/SiteMap.inc"); // ------------------------------- // page start // ------------------------------- // check the session, but don't redirect if the check fails if (checkSessionAndRedirect(false)) { // session check succeeds, so default action should be the dashboard if no action was specified if (!isset($action)) { $action = "dashboard"; } } else { // session check fails, so default action should be the login form if no action was specified if (!isset($action)) { $action = "loginForm"; } } // (if there is no userID on the session and the action that we're looking up // from the sitemap requires group access ie. !Anonymous then redirect to no // permission page) // reset authorisation flag before checking access $_SESSION["pageAccess"] = NULL; // check whether the users group has access to the requested page $page = $default->siteMap->getPage($action, $_SESSION["userID"]); $default->log->debug("retrieved page=$page from SiteMap"); if (!$page) { // this user doesn't have permission to access the page // or there is no page mapping for the requested action // FIXME: redirect to no permission page print "you do not have access to view this page! please go away, and come back when you do.
"; echo generateLink("logout") . "logout"; exit; } else { // set authorised flag and redirect $_SESSION["pageAccess"][$page] = true; $default->log->debug("control.php: just set SESSION[\"pageAccess\"][$page]=" . $_SESSION["pageAccess"][$page]); redirect($page); } ?>