Only show interfaces that the user has access to edit on the firewall rules edit page.

author: Scott Ullrich <sullrich@pfsense.org> 2007-12-03 02:15:19 +0000
committer: Scott Ullrich <sullrich@pfsense.org> 2007-12-03 02:15:19 +0000
commit: b67429270b6619e88242bc82bd424332f453c684 (patch)
tree: ad50cc0ce373196f8e21be8cd56428a189ba5e50 /etc
parent: d81c2ad144ad3665df8c7986f3919133f447456c (diff)
download: pfsense-b67429270b6619e88242bc82bd424332f453c684.zip
pfsense-b67429270b6619e88242bc82bd424332f453c684.tar.gz
1 files changed, 19 insertions, 0 deletions
diff --git a/etc/inc/pfsense-utils.inc b/etc/inc/pfsense-utils.inc
index 7a684e6..8dbd305 100644
--- a/etc/inc/pfsense-utils.inc
+++ b/etc/inc/pfsense-utils.inc
@@ -33,6 +33,25 @@
  *
  */
 
+/****f* pfsense-utils/have_ruleint_access
+ * NAME
+ *   have_ruleint_access
+ * INPUTS
+ *	 none
+ * RESULT
+ *   returns true if user has access to edit a specific firewall interface
+ ******/
+function have_ruleint_access($if) {
+	global $config, $g, $HTTP_SERVER_VARS;
+	$allowed = $g['privs'];
+	if (isSystemAdmin($HTTP_SERVER_VARS['AUTH_USER'])) 
+		return true;
+	$security_url = "firewall_rules.php?if=". strtolower($if);
+	if(in_array($security_url, $allowed)) 
+		return true;
+	return false;
+}
+
 /****f* pfsense-utils/does_url_exist
  * NAME
  *   does_url_exist
author	Scott Ullrich <sullrich@pfsense.org>	2007-12-03 02:15:19 +0000
committer	Scott Ullrich <sullrich@pfsense.org>	2007-12-03 02:15:19 +0000
commit	b67429270b6619e88242bc82bd424332f453c684 (patch)
tree	ad50cc0ce373196f8e21be8cd56428a189ba5e50 /etc
parent	d81c2ad144ad3665df8c7986f3919133f447456c (diff)
download	pfsense-b67429270b6619e88242bc82bd424332f453c684.zip pfsense-b67429270b6619e88242bc82bd424332f453c684.tar.gz