Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
K
kohinos
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
9
Issues
9
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
cooperatic-mlc
kohinos
Commits
5df85678
Commit
5df85678
authored
Nov 04, 2020
by
Damien Moulard
Browse files
Options
Browse Files
Download
Plain Diff
Merge branch 'dev' of gl.cooperatic.fr:cooperatic/kohinos into dev
parents
e31477ea
e0839f9a
Show whitespace changes
Inline
Side-by-side
Showing
4 changed files
with
40 additions
and
3 deletions
+40
-3
security.yaml
config/packages/security.yaml
+5
-2
.htaccess
public/.htaccess
+17
-0
.htaccess-for-dev
public/.htaccess-for-dev
+15
-0
ComptoirAdmin.php
src/Admin/ComptoirAdmin.php
+3
-1
No files found.
config/packages/security.yaml
View file @
5df85678
...
...
@@ -109,14 +109,17 @@ security:
ROLE_API
:
ROLE_USER
ROLE_ADHERENT
:
ROLE_USER
ROLE_PRESTATAIRE
:
ROLE_USER
ROLE_ADMIN_SIEGE
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_ADMIN_SIEGE
:
[
ROLE_USER
,
ROLE_ADMIN
,
ROLE_ADMIN_COMPTOIR_READER
]
ROLE_REDACTEUR
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_TRESORIER
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_TRESORIER
:
[
ROLE_USER
,
ROLE_ADMIN
,
ROLE_ADMIN_COMPTOIR_READER
]
ROLE_CONTROLEUR
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_GESTION_GROUPE
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_COMPTOIR
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_CONTACT
:
[
ROLE_USER
,
ROLE_ADMIN
]
ROLE_ADMIN
:
[
ROLE_USER
,
ROLE_SONATA_ADMIN
]
ROLE_ADMIN_COMPTOIR_READER
:
-
ROLE_ADMIN_COMPTOIR_GERER_LIST
-
ROLE_ADMIN_COMPTOIR_GERER_VIEW
ROLE_SUPER_ADMIN
:
[
ROLE_ADMIN
,
ROLE_ALLOWED_TO_SWITCH
,
ROLE_API
]
# Easy way to control access for large sections of your site
...
...
public/.htaccess
View file @
5df85678
<
IfModule
mod_rewrite.c
>
Options
-MultiViews
RewriteEngine
On
# Https redirection
RewriteEngine
on
RewriteCond
%{HTTPS} !=on
RewriteRule
.* https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
# Https redirection for OVH
RewriteEngine
on
RewriteCond
%{SERVER_PORT} 80
RewriteRule
.* https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
# Https redirection for Gandi
RewriteEngine
on
RewriteCond
%{REQUEST_SCHEME} =http
RewriteRule
.* https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
RewriteCond
%{REQUEST_FILENAME} !-f
RewriteRule
^(.*)$ index.php [QSA,L]
</
IfModule
>
...
...
public/.htaccess-for-dev
0 → 100644
View file @
5df85678
<IfModule mod_rewrite.c>
Options -MultiViews
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^(.*)$ index.php [QSA,L]
</IfModule>
<IfModule !mod_rewrite.c>
<IfModule mod_alias.c>
RedirectMatch 302 ^/$ /index.php/
</IfModule>
</IfModule>
SetOutputFilter DEFLATE
AddOutputFilterByType DEFLATE "application/atom+xml" "application/javascript" "application/json" "application/ld+json" "application/manifest+json" "application/rdf+xml" "application/rss+xml" "application/schema+json" "application/vnd.geo+json" "application/vnd.ms-fontobject" "application/x-font-ttf" "application/x-javascript" "application/x-web-app-manifest+json" "application/xhtml+xml" "application/xml" "font/eot" "font/opentype" "image/bmp" "image/svg+xml" "image/vnd.microsoft.icon" "image/x-icon" "text/cache-manifest" "text/css" "text/html" "text/javascript" "text/plain" "text/vcard" "text/vnd.rim.location.xloc" "text/vtt" "text/x-component" "text/x-cross-domain-policy" "text/xml"
src/Admin/ComptoirAdmin.php
View file @
5df85678
...
...
@@ -53,7 +53,9 @@ class ComptoirAdmin extends AbstractAdmin
$query
=
parent
::
createQuery
(
$context
);
$user
=
$this
->
security
->
getUser
();
if
(
empty
(
$this
->
getRequest
()
->
getSession
()
->
get
(
'_groupegere'
)))
{
if
(
$user
->
isGranted
(
'ROLE_GESTION_GROUPE'
)
||
$user
->
isGranted
(
'ROLE_CONTACT'
)
||
$user
->
isGranted
(
'ROLE_TRESORIER'
))
{
// TODO: Pourquoi empêcher toutes les "requêtes comptoir" pour ces rôles ?
//if ($user->isGranted('ROLE_GESTION_GROUPE') || $user->isGranted('ROLE_CONTACT') || $user->isGranted('ROLE_TRESORIER')) {
if
(
$user
->
isGranted
(
'ROLE_GESTION_GROUPE'
)
||
$user
->
isGranted
(
'ROLE_CONTACT'
))
{
$query
->
andWhere
(
'false = true'
);
}
}
else
{
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment