summaryrefslogtreecommitdiffstats
path: root/application/modules/user/controllers/BootisoController.php
diff options
context:
space:
mode:
Diffstat (limited to 'application/modules/user/controllers/BootisoController.php')
-rw-r--r--application/modules/user/controllers/BootisoController.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/application/modules/user/controllers/BootisoController.php b/application/modules/user/controllers/BootisoController.php
index a8c7de7..ae34ca0 100644
--- a/application/modules/user/controllers/BootisoController.php
+++ b/application/modules/user/controllers/BootisoController.php
@@ -224,7 +224,7 @@ class user_BootisoController extends Zend_Controller_Action
public function editbootisoAction()
{
//ACL Darf er BootISOs editieren?
- if(!Pbs_Acl::checkRight('be'))
+ if(!Pbs_Acl::checkRight('be') && !Pbs_Acl::checkRight('bem'))
$this->_redirect('/user/bootiso/index/page/'.$this->page.'/modifyresult/forbidden');
$bootisoID = $this->_request->getParam('bootisoID');
@@ -276,7 +276,7 @@ class user_BootisoController extends Zend_Controller_Action
$bootiso->getPublic() != $bootisoold->getPublic() ||
$bootiso->getSerialnumber() != $bootisoold->getSerialnumber()){
//ACL Is he allowed to edit other than Metadata?
- if(Pbs_Acl::checkRight('bem'))
+ if(!Pbs_Acl::checkRight('be'))
$this->_redirect('/user/bootiso/index/page/'.$this->page.'/modifyresult/forbidden');
}
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2026-02-27 23:15:31 +0100