diff options
| author | Frederic Guillot <fred@kanboard.net> | 2015-12-06 17:39:21 -0500 |
|---|---|---|
| committer | Frederic Guillot <fred@kanboard.net> | 2015-12-06 17:39:21 -0500 |
| commit | f0651c48c14f44a21d01c2ee71ebdd0a5ffd81a6 (patch) | |
| tree | 51f1d6b6c2ad14f692e10e2d6bb44bf071a56301 /app/Template/tasklink | |
| parent | bd849ff655f9b31f90425c07e5773c7a4e956c34 (diff) | |
Restrict actions for project viewers
Diffstat (limited to 'app/Template/tasklink')
| -rw-r--r-- | app/Template/tasklink/show.php | 18 |
1 files changed, 9 insertions, 9 deletions
diff --git a/app/Template/tasklink/show.php b/app/Template/tasklink/show.php index b66ec087..fbb1f825 100644 --- a/app/Template/tasklink/show.php +++ b/app/Template/tasklink/show.php @@ -9,7 +9,7 @@ <th class="column-20"><?= t('Project') ?></th> <th><?= t('Column') ?></th> <th><?= t('Assignee') ?></th> - <?php if (! isset($not_editable)): ?> + <?php if ($editable): ?> <th><?= t('Action') ?></th> <?php endif ?> </tr> @@ -23,12 +23,12 @@ <?php endif ?> <td> - <?php if (! isset($not_editable)): ?> + <?php if ($is_public): ?> <?= $this->url->link( $this->e('#'.$link['task_id'].' '.$link['title']), 'task', - 'show', - array('task_id' => $link['task_id'], 'project_id' => $link['project_id']), + 'readonly', + array('task_id' => $link['task_id'], 'token' => $project['token']), false, $link['is_active'] ? '' : 'task-link-closed' ) ?> @@ -36,8 +36,8 @@ <?= $this->url->link( $this->e('#'.$link['task_id'].' '.$link['title']), 'task', - 'readonly', - array('task_id' => $link['task_id'], 'token' => $project['token']), + 'show', + array('task_id' => $link['task_id'], 'project_id' => $link['project_id']), false, $link['is_active'] ? '' : 'task-link-closed' ) ?> @@ -57,14 +57,14 @@ <td><?= $this->e($link['column_title']) ?></td> <td> <?php if (! empty($link['task_assignee_username'])): ?> - <?php if (! isset($not_editable)): ?> + <?php if ($editable): ?> <?= $this->url->link($this->e($link['task_assignee_name'] ?: $link['task_assignee_username']), 'user', 'show', array('user_id' => $link['task_assignee_id'])) ?> <?php else: ?> <?= $this->e($link['task_assignee_name'] ?: $link['task_assignee_username']) ?> <?php endif ?> <?php endif ?> </td> - <?php if (! isset($not_editable)): ?> + <?php if ($editable): ?> <td> <ul> <li><?= $this->url->link(t('Edit'), 'tasklink', 'edit', array('link_id' => $link['id'], 'task_id' => $task['id'], 'project_id' => $task['project_id'])) ?></li> @@ -77,7 +77,7 @@ <?php endforeach ?> </table> -<?php if (! isset($not_editable) && isset($link_label_list)): ?> +<?php if ($editable && isset($link_label_list)): ?> <form action="<?= $this->url->href('tasklink', 'save', array('task_id' => $task['id'], 'project_id' => $task['project_id'])) ?>" method="post" autocomplete="off"> <?= $this->form->csrf() ?> |