1 files changed, 14 insertions, 0 deletions

diff --git a/application/modules/user/controllers/PersonController.php b/application/modules/user/controllers/PersonController.php
index 3d231f4..62d3b6b 100644
--- a/application/modules/user/controllers/PersonController.php
+++ b/application/modules/user/controllers/PersonController.php
@@ -41,6 +41,10 @@ class user_PersonController extends Zend_Controller_Action
 
 	public function indexAction()
 	{
+
+		if(!Pbs_Acl::checkRight('psod')) {
+			$this->_redirect('/user');
+		}
 		$this->view->person = $this->person;
 		$this->view->groups = $this->groups;
 		$this->view->userIDsNamespace = Zend_Session::namespaceGet('userIDs');
@@ -48,6 +52,9 @@ class user_PersonController extends Zend_Controller_Action
 
 	public function editAction()
 	{
+		if(!Pbs_Acl::checkRight('peod')) {
+			$this->_redirect('/user');
+		}
 		$this->view->person = $this->person;
 		if (!isset($_POST["save"])){
 			$editForm = new user_Form_PersonEdit();
@@ -79,6 +86,9 @@ class user_PersonController extends Zend_Controller_Action
 
 	public function requestAction()
 	{
+		if(!Pbs_Acl::checkRight('grm')) {
+			$this->_redirect('/user');
+		}
 		$this->view->person = $this->person;
 		$allgroups = $this->groupMapper->fetchAll();
 		$groupRequests = $this->groupRequestMapper->findBy('personID', $this->person->getID());
@@ -141,6 +151,10 @@ class user_PersonController extends Zend_Controller_Action
 
 	public function leaveAction()
 	{
+		// Nicht klar welches Recht geprüft werden soll
+		/*if(!Pbs_Acl::checkRight('peod')) {
+		$this->_redirect('/user');
+		}*/
 		$this->_helper-> viewRenderer-> setNoRender();
 		$this->view->person = $this->person;
 		$membershipID = $this->_request->getParam('membershipID');