4 require_once 'Pman/Roo.php';
8 * This extends the standard Roo API
10 * however it has to verify that we send data protected, as it's pretty open!!!
16 class MTrackWeb_Roo extends Pman_Roo
18 var $validTables = array(
19 'mtrack_ticket', /// all of these MUST have applyFilters, and check authenication..
20 'Mtrack_ticket', /// all of these MUST have applyFilters, and check authenication..
32 Pman::getAuth(); // load company!
33 $au = $this->getAuthUser();
34 $this->authUser = false;
36 $this->authUser = $au;
44 $this->jerr("Delete not permitted yet...");
45 // only post requests..???
46 // need perms sorting out first.
49 function checkPerm($obj, $lvl, $req=null)
51 if ($this->authUser) {
52 $res = parent::checkPerm($obj,$lvl,$req);
58 // not authenticated...
61 // these checks only apply to non-company users.
63 // normally allowed, but we have more restrictions...
64 switch($obj->tablename()) {
67 if (empty($req['etype'])) {
73 var_dump($req['etype']);
74 switch ($req['etype']) {
76 case 'classification':
83 // not a member of the company..
89 break; // should not get here...