mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fixed SQL query to limit normal users view

Browse Source
This commit is contained in:
laf
2015-05-13 15:49:50 +01:00
parent 3e3ea20f76
commit 902e61d132
1 changed files with 6 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
html/includes/table/devices.inc.php
View File

@@ -3,15 +3,14 @@
$where = 1;
$param = array();
$sql = " FROM `devices`";
$sql = " FROM `devices`, `devices_perms` AS `DP`";
if (is_admin() === FALSE && is_read() === FALSE) {
$where .= " AND `devices`.`device_id`=`DP`.`device_id` AND `DP`.`user_id`=?";
$param[] = $_SESSION['user_id'];
}
if (!empty($_POST['location'])) {
if (is_admin() === FALSE && is_read() === FALSE) {
$sql .= " LEFT JOIN `devices_perms` AS `DP` ON `devices`.`device_id`=`DP`.`device_id` AND `DP`.`user_id`=?";
$param[] = $_SESSION['user_id'];
}
$sql .= " LEFT JOIN `devices_attribs` AS `DB` ON `DB`.`device_id`=`devices`.`device_id` AND `DB`.`attrib_type`='override_sysLocation_bool' AND `DB`.`attrib_value`='1' LEFT JOIN `devices_attribs` AS `DA` ON `devices`.`device_id`=`DA`.`device_id`";
}