diff --git a/inc_all_client.php b/inc_all_client.php index 0ed1b186..3ecda6fc 100644 --- a/inc_all_client.php +++ b/inc_all_client.php @@ -11,7 +11,14 @@ if (isset($_GET['client_id'])) { // Check to see if the logged in user has permission to access this client (Admins have access to all no matter what perms are set) if(!in_array($client_id, $client_access_array) AND !empty($client_access_string) AND $session_user_role < 3) { - echo "You don't have permission to access this client"; + // Logging + mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Client', log_action = 'Access', log_description = '$session_name was denyed permission from accessing client', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $client_id"); + + $_SESSION['alert_type'] = "error"; + $_SESSION['alert_message'] = "Access Denied - You do not have permission to access that client!"; + + echo ""; + exit(); }