Michael Joseph, Jam Warehouse (Pty) Ltd, South Africa * @package dms */ // main library routines and defaults require_once("./config/dmsDefaults.php"); require_once("$default->owl_fs_root/lib/owl.lib.php"); require_once("$default->owl_fs_root/config/html.php"); require_once("$default->owl_fs_root/lib/control.inc"); require_once("$default->owl_fs_root/lib/Session.inc"); require_once("$default->owl_fs_root/lib/SiteMap.inc"); // ------------------------------- // page start // ------------------------------- // check the session checkSession(); // loop through array of post params and build query string, omitting action $queryParams = ""; foreach ($_POST as $key => $value) { //echo "key=$key; value=$value
"; if ($key != "action") { if (strlen($queryParams) > 0) { $queryParams = "?$key=$value"; } else { $queryParams = $queryParams . "&$key=$value"; } } } // reset authorisation flag before checking access $_SESSION["authorised"] = false; // check whether this group has access to the requested page $page = $default->siteMap->getPage($action, $_SESSION["groupID"]); if (!$page) { // this group doesn't have permission to access the page // or there is no page mapping for the requested action // FIXME: redirect to no permission page print "you do not have access to view this page! please go away, and come back when you do.
"; echo generateLink("LOGOUT") . "logout"; exit; } else { // set authorised flag and redirect $_SESSION["authorised"] = true; // if we have additional params to add do it if (strlen($queryParams) > 0) { $page = $page . "&$queryParams"; } redirect($page); } ?>