nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2025-12-30 00:53:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update check permisisons

Browse Source
This commit is contained in:
markjcrane
2025-11-02 00:22:57 -06:00
parent 422fee7f23
commit b0eabca1f6
243 changed files with 299 additions and 1008 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
app/destinations/destination_edit.php
View File

@@ -29,10 +29,7 @@
require_once "resources/check_auth.php";
//check permissions
if (permission_exists('destination_add') || permission_exists('destination_edit')) {
//access granted
}
else {
if (!permission_exists('destination_add') || !permission_exists('destination_edit')) {
echo "access denied";
exit;
}
@@ -577,8 +574,8 @@
if (isset($action_array[0]) && !empty($action_array[0])) {
if ($destination->valid($action_array[0].':'.$action_array[1])) {
//set variables from the action array
$action_app = $action_array[0];
$action_data = $action_array[1];
$action_app = $action_array[0] ?? '';
$action_data = $action_array[1] ?? '';
//allow specific api commands
$allowed_commands = array();
@@ -589,7 +586,7 @@
}
$action_data = xml::sanitize($action_data);
foreach ($allowed_commands as $allowed_command) {
$action_data = str_replace('#{'.$allowed_command, '${'.$allowed_command, $action_data);
$action_data = str_replace('#{'.$allowed_command, '${'.$allowed_command, $action_data ?? '');
}
//add the action to the dialplan xml