X-Git-Url: http://wagnertech.de/gitweb/gitweb.cgi/timetracker.git/blobdiff_plain/e5486346ac0574517a4fd118f03616ec455df9a9..c6aa77a9e6299cf3103f97274e573cc9938c1215:/timesheet_view.php

diff --git a/timesheet_view.php b/timesheet_view.php
index 70ab3357..e86b2df7 100644
--- a/timesheet_view.php
+++ b/timesheet_view.php
@@ -30,7 +30,7 @@ require_once('initialize.php');
 import('ttTimesheetHelper');
 
 // Access checks.
-if (!(ttAccessAllowed('view_own_timesheets') || ttAccessAllowed('view_timesheets') || ttAccessAllowed('view_all_timesheets') || ttAccessAllowed('view_client_timesheets'))) {
+if (!(ttAccessAllowed('view_own_timesheets') || ttAccessAllowed('view_timesheets') || ttAccessAllowed('view_all_timesheets'))) {
   header('Location: access_denied.php');
   exit();
 }
@@ -45,7 +45,7 @@ if (!$timesheet) {
   exit();
 }
 // TODO: add other checks here for timesheet being appropriate for user role.
-// TODO: if this is a timeheet submit, validate approver id, too.
+// TODO: if this is a timesheet submit, validate approver id, too.
 // End of access checks.
 
 if ($request->isPost()) {
@@ -60,7 +60,7 @@ $notClient = !$user->isClient();
 // Determine which controls to show and obtain date for them.
 $showSubmit = $notClient && !$timesheet['submit_status'];
 if ($showSubmit) $approvers = ttTimesheetHelper::getApprovers($timesheet['user_id']);
-$canApprove = $user->can('approve_timesheets') || $user_>can('approve_all_timesheets');
+$canApprove = $user->can('approve_timesheets') || $user->can('approve_all_timesheets');
 $showApprove = $notClient && $timesheet['submit_status'] && $timesheet['approval_status'] == null;
 
 // Add a form with controls.