Wavyzz/dolibarr
2
0
Fork 1
mirror of https://github.com/Dolibarr/dolibarr.git synced 2026-02-08 00:52:01 +01:00
Code Issues Packages Projects Releases Wiki Activity

add new rule

Browse Source
This commit is contained in:
Frédéric FRANCE
2020-05-21 01:41:27 +02:00
parent 416e6dd90d
commit ee6fadd0d5
565 changed files with 5190 additions and 8632 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
htdocs/user/class/api_users.class.php
View File

@@ -289,8 +289,7 @@ class Users extends DolibarrApi
{
return $this->get($id);
}
else
{
else {
throw new RestException(500, $this->useraccount->error);
}
}
@@ -364,8 +363,7 @@ class Users extends DolibarrApi
{
$entity = (!empty($entity) ? $entity : $conf->entity);
}
else
{
else {
// When using API, action is done on entity of logged user because a user of entity X with permission to create user should not be able to
// hack the security by giving himself permissions on another entity.
$entity = (DolibarrApiAccess::$user->entity > 0 ? DolibarrApiAccess::$user->entity : $conf->entity);