]> wagnertech.de Git - timetracker.git/blobdiff - role_add.php
projects / timetracker.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Started to replace canManageTeam calls with right checks.
[timetracker.git] / role_add.php
diff --git a/role_add.php b/role_add.php
index 71220089e8978bd8de3254a51cd9bec8299f705d..7a01cfcd1a6155c3c702a26b3f07aac246f4021e 100644 (file)
--- a/role_add.php
+++ b/role_add.php
@@ -32,7 +32,7 @@ import('ttTeamHelper');
 import('ttRoleHelper');
 
 // Access check.
-if (!ttAccessCheck(right_manage_team)) {
+if (!ttAccessAllowed('manage_roles')) {
   header('Location: access_denied.php');
   exit();
 }
@@ -61,12 +61,13 @@ if ($request->isPost()) {
   if ($err->no()) {
     $existing_role = ttRoleHelper::getRoleByRank($cl_rank);
     if (!$existing_role) {
-        // Update role information.
+        // Insert a role with default user rights.
         if (ttRoleHelper::insert(array(
           'team_id' => $user->team_id,
           'name' => $cl_name,
           'rank' => $cl_rank,
           'description' => $cl_description,
+          'rights' => 'track_own_time,track_own_expenses,view_own_reports,view_own_charts,manage_own_settings,view_users', // Default user rights.
           'status' => ACTIVE))) {
           header('Location: roles.php');
           exit();
Unnamed repository; edit this file 'description' to name the repository.