$self->_save();
- my $callback = $::form->escape($::form->{callback}, 1);
my $name = $::form->escape($self->{cv}->name, 1);
my $db = $self->is_vendor() ? 'vendor' : 'customer';
$db .'_id' => $self->{cv}->id,
$db => $name,
type => $::form->{type},
- callback => $callback,
+ callback => $::form->{callback},
);
print $::form->redirect_header($url);
my $name = 'shipto'. $_;
$name => $self->{shipto}->$name;
}
- qw(_id name department_1 department_2 street zipcode city country contact phone fax email)
+ qw(_id name department_1 department_2 street zipcode city gln country contact phone fax email)
)
};
}
}
+sub _check_customer_vendor_all_edit {
+ my ($self) = @_;
+
+ unless ($::auth->assert('customer_vendor_all_edit', 1)) {
+ die($::locale->text("You don't have the rights to edit this customer.") . "\n")
+ if $self->{cv}->is_customer and
+ SL::DB::Manager::Employee->current->id != $self->{cv}->salesman_id;
+ };
+};
+
sub _create_customer_vendor {
my ($self) = @_;