import('ttProjectHelper');
import('ttTeamHelper');
-// Access check.
-if (!ttAccessAllowed('manage_projects') || (MODE_PROJECTS != $user->tracking_mode && MODE_PROJECTS_AND_TASKS != $user->tracking_mode)) {
+// Access checks.
+if (!ttAccessAllowed('manage_projects')) {
header('Location: access_denied.php');
exit();
}
-
+if (MODE_PROJECTS != $user->tracking_mode && MODE_PROJECTS_AND_TASKS != $user->tracking_mode) {
+ header('Location: feature_disabled.php');
+ exit();
+}
$cl_project_id = (int)$request->getParameter('id');
+$project = ttProjectHelper::get($cl_project_id);
+if (!$project) {
+ header('Location: access_denied.php');
+ exit();
+}
+// End of access checks.
$users = ttTeamHelper::getActiveUsers();
foreach ($users as $user_item)
$cl_users = $request->getParameter('users', array());
$cl_tasks = $request->getParameter('tasks', array());
} else {
- $project = ttProjectHelper::get($cl_project_id);
$cl_name = $project['name'];
$cl_description = $project['description'];
$cl_status = $project['status'];