Index: branches/acl/cgi-bin/main.cgi =================================================================== --- branches/acl/cgi-bin/main.cgi (revision 223) +++ branches/acl/cgi-bin/main.cgi (revision 225) @@ -550,10 +550,12 @@ print qq(
No allocations in ). qq($master.
\n). - qq(
\n). - qq(\n). - qq(\n). - qq(\n). - qq(\n). - qq(
\n); + ($IPDBacl{$authuser} =~ /d/ ? + qq(
\n). + qq(\n). + qq(\n). + qq(\n). + qq(\n). + qq(
\n) : + ''); } # end check for existence of routed blocks in master @@ -636,10 +638,12 @@ print qq(
No allocations in ). qq($master.
\n). - qq(
\n). - qq(\n). - qq(\n). - qq(\n). - qq(\n). - qq(
\n); + ($IPDBacl{$authuser} =~ /d/ ? + qq(
\n). + qq(\n). + qq(\n). + qq(\n). + qq(\n). + qq(
\n) : + ''); } @@ -718,5 +722,5 @@ my @row = ( qq($data[0]), $data[1],$data[2],$data[3], - ( ($data[2] eq 'n') ? + ( (($data[2] eq 'n') && ($IPDBacl{$authuser} =~ /d/)) ? ("Unassign this IP") : @@ -1100,10 +1104,4 @@ $data[2] =~ s/\s//; -##fixme LEGACY CODE - # Postfix "i" on pool IP types - if ($data[2] =~ /^[cdsmw]$/) { - $data[2] .= "i"; - } - open (HTML, "../editDisplay.html") or croak "Could not open editDisplay.html :$!"; @@ -1116,5 +1114,7 @@ # Needs thinking. Have to allow changes to city to correct errors, no? $html =~ s/\$\$BLOCK\$\$/$webvar{block}/g; - $html =~ s/\$\$CITY\$\$/$data[3]/g; + + if ($IPDBacl{$authuser} =~ /c/) { + $html =~ s/\$\$CUSTID\$\$//; # Screw it. Changing allocation types gets very ugly VERY quickly- especially @@ -1125,7 +1125,7 @@ ##fixme The check here should be built from the database - if ($data[2] =~ /^.[ne]$/) { - # Block that can be changed - my $blockoptions = "\n"; - $html =~ s/\$\$TYPESELECT\$\$/$blockoptions/g; + $html =~ s/\$\$TYPESELECT\$\$/$blockoptions/g; + } else { + $html =~ s/\$\$TYPESELECT\$\$/$disp_alloctypes{$data[2]}/g; + } + $html =~ s/\$\$CITY\$\$//g; + $html =~ s/\$\$CIRCID\$\$//g; + $html =~ s/\$\$DESC\$\$//g; + $html =~ s|\$\$NOTES\$\$||g; } else { - $html =~ s/\$\$TYPESELECT\$\$/$disp_alloctypes{$data[2]}/g; - } - - # These can be modified, although CustID changes may get ignored. - $html =~ s/\$\$CUSTID\$\$/$data[1]/g; - $html =~ s/\$\$TYPE\$\$/$data[2]/g; - $html =~ s/\$\$CIRCID\$\$/$data[4]/g; - $html =~ s/\$\$DESC\$\$/$data[5]/g; - $html =~ s/\$\$NOTES\$\$/$data[6]/g; + $html =~ s/\$\$CUSTID\$\$/$data[1]/g; + $html =~ s/\$\$TYPESELECT\$\$/$disp_alloctypes{$data[2]}/g; + $html =~ s/\$\$CITY\$\$/$data[3]/g; + $html =~ s/\$\$CIRCID\$\$/$data[4]/g; + $html =~ s/\$\$DESC\$\$/$data[5]/g; + $html =~ s/\$\$NOTES\$\$/$data[6]/g; + } + + # More ACL trickery - we can live with forms that don't submit, + # but we can't leave the extra table rows there, and we *really* + # can't leave the submit buttons there. + my $updok = ''; + my $i=2; + if ($IPDBacl{$authuser} =~ /c/) { + $updok = qq(
). + qq(). + "
\n"; + $i--; + } + $html =~ s/\$\$UPDOK\$\$/$updok/g; + + my $delok = ''; + if ($IPDBacl{$authuser} =~ /d/) { + $delok = qq(
+
+ + + + +
); + } + $html =~ s/\$\$DELOK\$\$/$delok/; print $html; @@ -1216,4 +1246,9 @@ # Delete an allocation. sub remove { + if ($IPDBacl{$authuser} !~ /d/) { + printError("You shouldn't have been able to get here. Access denied."); + return; + } + #show confirm screen. open HTML, "../confirmRemove.html" @@ -1305,4 +1340,8 @@ # Remove IPs from pool listing if necessary sub finalDelete { + if ($IPDBacl{$authuser} !~ /d/) { + printError("You shouldn't have been able to get here. Access denied."); + return; + } my ($code,$msg) = deleteBlock($ip_dbh, $webvar{block}, $webvar{alloctype});