diff options
| author | hugetoad <hugetoad@97f52cf1-0a1b-0410-bd0e-c28be96e8082> | 2002-09-07 09:16:46 +0000 |
|---|---|---|
| committer | hugetoad <hugetoad@97f52cf1-0a1b-0410-bd0e-c28be96e8082> | 2002-09-07 09:16:46 +0000 |
| commit | 9db4b0aeb0582ea1afa3e54493268348963cbe0f (patch) | |
| tree | e43517c29d15694a81179018dcc069aa6ea9b80d /frontends/php/chart2.php | |
| parent | cf2952549223c779ec2fe14eddd6dc70bcae064c (diff) | |
| download | zabbix-9db4b0aeb0582ea1afa3e54493268348963cbe0f.tar.gz zabbix-9db4b0aeb0582ea1afa3e54493268348963cbe0f.tar.xz zabbix-9db4b0aeb0582ea1afa3e54493268348963cbe0f.zip | |
- fixed permission check for all *.php (Alexei)
git-svn-id: svn://svn.zabbix.com/trunk@483 97f52cf1-0a1b-0410-bd0e-c28be96e8082
Diffstat (limited to 'frontends/php/chart2.php')
| -rw-r--r-- | frontends/php/chart2.php | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/frontends/php/chart2.php b/frontends/php/chart2.php index 9dd01576..39ff5337 100644 --- a/frontends/php/chart2.php +++ b/frontends/php/chart2.php @@ -35,6 +35,8 @@ Header( "Content-type: image/png"); Header( "Expires: Mon, 17 Aug 1998 12:51:50 GMT"); + check_authorisation(); + $result2=DBselect("select gi.itemid,i.description,gi.color,h.host from graphs_items gi,items i,hosts h where gi.itemid=i.itemid and gi.graphid=".$HTTP_GET_VARS["graphid"]." and i.hostid=h.hostid order by gi.gitemid"); $shiftX=10; @@ -76,6 +78,16 @@ ImageFilledRectangle($im,0,0,$sizeX+$shiftX+61,$sizeY+$shiftYup+$shiftYdown+10+50,$white); ImageRectangle($im,0,0,$x-1,$y-1,$black); + if(!check_right("Graph","R",$HTTP_GET_VARS["graphid"])) + { +// show_table_header("<font color=\"AA0000\">No permissions !</font>"); +// show_footer(); + ImagePng($im); + ImageDestroy($im); + exit; + } + + for($i=0;$i<=$sizeY;$i+=$sizeY/5) { ImageDashedLine($im,$shiftX,$i+$shiftYup,$sizeX+$shiftX,$i+$shiftYup,$gray); |