show domain details to systemuser without customer permissions (06151d6)

@@ -46,8 +46,11 @@ $section = 'domains_domains';
 // Block zuständiger Useraccount
 
 $is_current_user = true;
+$is_current_customer = false;
+if (have_role(ROLE_CUSTOMER) && isset($_SESSION['customerinfo']['customerno']) && ($dom->kunde == $_SESSION['customerinfo']['customerno'])) {
+    $is_current_customer = true;
     $useraccounts = list_useraccounts();
-if (have_role(ROLE_CUSTOMER) && count($useraccounts) > 1) {
+    if (count($useraccounts) > 1) {
         if ($dom->useraccount != $_SESSION['userinfo']['uid']) {
             $is_current_user = false;
         }
@@ -68,6 +71,7 @@ if (have_role(ROLE_CUSTOMER) && count($useraccounts) > 1) {
         output('<h4>Zuständiges Benutzerkonto</h4>');
         output('<p>Diese Domain wird im Benutzerkonto mit der User-ID #'.$dom->useraccount.' verwendet.</p>');
     }
+}
 
 
 // Block Nutzung
@@ -140,7 +144,7 @@ if ($is_current_user) {
 
 // Block Domain-Inhaber
 
-if (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == 'terions' && ($dom->cancel_date === null || $dom->cancel_date > date('Y-m-d'))) {
+if ($is_current_customer && config('http.net-apikey') && $dom->provider == 'terions' && ($dom->cancel_date === null || $dom->cancel_date > date('Y-m-d'))) {
     use_module('contacts');
     require_once('contacts.php');
     require_once('domainapi.php');
@@ -211,7 +215,7 @@ if (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == '
 
 // Block Externe Domain umziehen
 
-if (have_role(ROLE_CUSTOMER) && config('http.net-apikey')) {
+if ($is_current_customer && config('http.net-apikey')) {
     if ($dom->status == 'prereg') {
         output('<h4>Domain-Registrierung abschließen</h4>
                 <p>'.internal_link('domainreg', 'Domain registrieren', "domain={$dom->fqdn}").'</p>');
@@ -227,10 +231,10 @@ if (have_role(ROLE_CUSTOMER) && config('http.net-apikey')) {
 // Block Domain löschen/kündigen
 
 $domain_in_use = mailman_subdomains($dom->id) || mail_in_use($dom->id) || web_in_use($dom->id) || $dom->jabber == 1;
-if (!$domain_in_use && ($dom->status == 'prereg' || $dom->status == 'pretransfer' || $dom->status == 'transferfailed' || $dom->status == 'external')) {
+if ($is_current_customer && !$domain_in_use && ($dom->status == 'prereg' || $dom->status == 'pretransfer' || $dom->status == 'transferfailed' || $dom->status == 'external')) {
     output('<h4>Domain wieder entfernen</h4>');
     output('<p class="delete">'.internal_link('save', 'Die Domain '.$dom->fqdn.' entfernen', 'action=delete&domain='.$dom->id).'</p>');
-} elseif (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == 'terions' && (!$dom->cancel_date || ($dom->cancel_date > date('Y-m-d')))) {
+} elseif ($is_current_customer && config('http.net-apikey') && $dom->provider == 'terions' && (!$dom->cancel_date || ($dom->cancel_date > date('Y-m-d')))) {
     require_once('domainapi.php');
     output('<h4>Domain kündigen</h4>');
     $info = api_download_domain($dom->id);

modules/domains/domains.php

Zeige Datei @ 06151d6

@@ -117,9 +117,7 @@ foreach ($user_domains as $domain) {
         $punycode = '';
     }
     $domainname = "{$domain->fqdn}{$punycode}";
-    if (have_role(ROLE_CUSTOMER) && $status != 'foreign') {
     $domainname = internal_link('detail', $domainname, 'id='.$domain->id);
-    }
     output("  <div class=\"domain-item {$status} {$locked}\"><p class=\"domainname\">{$domainname}</p><p class=\"regdate\">{$regdate}</p><p class=\"domain-usage\">Verwendung: {$features}{$mailserver_lock}</p></div>\n");
 }
 output('</div>');


...	...	@@ -46,8 +46,11 @@ $section = 'domains_domains';
46	46	// Block zuständiger Useraccount
47	47
48	48	$is_current_user = true;
	49	+$is_current_customer = false;
	50	+if (have_role(ROLE_CUSTOMER) && isset($_SESSION['customerinfo']['customerno']) && ($dom->kunde == $_SESSION['customerinfo']['customerno'])) {
	51	+ $is_current_customer = true;
49	52	$useraccounts = list_useraccounts();
50		-if (have_role(ROLE_CUSTOMER) && count($useraccounts) > 1) {
	53	+ if (count($useraccounts) > 1) {
51	54	if ($dom->useraccount != $_SESSION['userinfo']['uid']) {
52	55	$is_current_user = false;
53	56	}
...	...	@@ -68,6 +71,7 @@ if (have_role(ROLE_CUSTOMER) && count($useraccounts) > 1) {
68	71	output('<h4>Zuständiges Benutzerkonto</h4>');
69	72	output('<p>Diese Domain wird im Benutzerkonto mit der User-ID #'.$dom->useraccount.' verwendet.</p>');
70	73	}
	74	+}
71	75
72	76
73	77	// Block Nutzung
...	...	@@ -140,7 +144,7 @@ if ($is_current_user) {
140	144
141	145	// Block Domain-Inhaber
142	146
143		-if (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == 'terions' && ($dom->cancel_date === null \|\| $dom->cancel_date > date('Y-m-d'))) {
	147	+if ($is_current_customer && config('http.net-apikey') && $dom->provider == 'terions' && ($dom->cancel_date === null \|\| $dom->cancel_date > date('Y-m-d'))) {
144	148	use_module('contacts');
145	149	require_once('contacts.php');
146	150	require_once('domainapi.php');
...	...	@@ -211,7 +215,7 @@ if (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == '
211	215
212	216	// Block Externe Domain umziehen
213	217
214		-if (have_role(ROLE_CUSTOMER) && config('http.net-apikey')) {
	218	+if ($is_current_customer && config('http.net-apikey')) {
215	219	if ($dom->status == 'prereg') {
216	220	output('<h4>Domain-Registrierung abschließen</h4>
217	221	<p>'.internal_link('domainreg', 'Domain registrieren', "domain={$dom->fqdn}").'</p>');
...	...	@@ -227,10 +231,10 @@ if (have_role(ROLE_CUSTOMER) && config('http.net-apikey')) {
227	231	// Block Domain löschen/kündigen
228	232
229	233	$domain_in_use = mailman_subdomains($dom->id) \|\| mail_in_use($dom->id) \|\| web_in_use($dom->id) \|\| $dom->jabber == 1;
230		-if (!$domain_in_use && ($dom->status == 'prereg' \|\| $dom->status == 'pretransfer' \|\| $dom->status == 'transferfailed' \|\| $dom->status == 'external')) {
	234	+if ($is_current_customer && !$domain_in_use && ($dom->status == 'prereg' \|\| $dom->status == 'pretransfer' \|\| $dom->status == 'transferfailed' \|\| $dom->status == 'external')) {
231	235	output('<h4>Domain wieder entfernen</h4>');
232	236	output('<p class="delete">'.internal_link('save', 'Die Domain '.$dom->fqdn.' entfernen', 'action=delete&domain='.$dom->id).'</p>');
233		-} elseif (have_role(ROLE_CUSTOMER) && config('http.net-apikey') && $dom->provider == 'terions' && (!$dom->cancel_date \|\| ($dom->cancel_date > date('Y-m-d')))) {
	237	+} elseif ($is_current_customer && config('http.net-apikey') && $dom->provider == 'terions' && (!$dom->cancel_date \|\| ($dom->cancel_date > date('Y-m-d')))) {
234	238	require_once('domainapi.php');
235	239	output('<h4>Domain kündigen</h4>');
236	240	$info = api_download_domain($dom->id);

...	...	@@ -117,9 +117,7 @@ foreach ($user_domains as $domain) {
117	117	$punycode = '';
118	118	}
119	119	$domainname = "{$domain->fqdn}{$punycode}";
120		- if (have_role(ROLE_CUSTOMER) && $status != 'foreign') {
121	120	$domainname = internal_link('detail', $domainname, 'id='.$domain->id);
122		- }
123	121	output(" <div class=\"domain-item {$status} {$locked}\"><p class=\"domainname\">{$domainname}</p><p class=\"regdate\">{$regdate}</p><p class=\"domain-usage\">Verwendung: {$features}{$mailserver_lock}</p></div>\n");
124	122	}
125	123	output('</div>');
126	124

webinterface.git