From fa064962a9c77949150899f7d9b93a7ca37db1ae Mon Sep 17 00:00:00 2001 From: johnnyq Date: Fri, 10 May 2024 13:16:42 -0400 Subject: [PATCH] Update logic denyed access to log it and redirect back with a toast indicating no access to client --- inc_all_client.php | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/inc_all_client.php b/inc_all_client.php index 0ed1b186..3ecda6fc 100644 --- a/inc_all_client.php +++ b/inc_all_client.php @@ -11,7 +11,14 @@ if (isset($_GET['client_id'])) { // Check to see if the logged in user has permission to access this client (Admins have access to all no matter what perms are set) if(!in_array($client_id, $client_access_array) AND !empty($client_access_string) AND $session_user_role < 3) { - echo "You don't have permission to access this client"; + // Logging + mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Client', log_action = 'Access', log_description = '$session_name was denyed permission from accessing client', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $client_id"); + + $_SESSION['alert_type'] = "error"; + $_SESSION['alert_message'] = "Access Denied - You do not have permission to access that client!"; + + echo ""; + exit(); }