TheCoreDev/sterivein
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add accessDenied method

Browse Source
This commit is contained in:
Manuel Raynaud
2013-09-12 16:50:13 +02:00
parent 2bf6ee51e1
commit 0ca5af597a
2 changed files with 13 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
core/lib/Thelia/Controller/BaseController.php
View File

@@ -265,6 +265,11 @@ class BaseController extends ContainerAware
return $this->container->getParameter('kernel.debug'); return $this->container->getParameter('kernel.debug');
} }
protected function accessDenied()
{
throw new AccessDeniedHttpException();
}
/** /**
* check if the current http request is a XmlHttpRequest. * check if the current http request is a XmlHttpRequest.
* *
@@ -273,7 +278,7 @@ class BaseController extends ContainerAware
protected function checkXmlHttpRequest() protected function checkXmlHttpRequest()
{ {
if(false === $this->getRequest()->isXmlHttpRequest() && false === $this->isDebug()) { if(false === $this->getRequest()->isXmlHttpRequest() && false === $this->isDebug()) {
throw new AccessDeniedHttpException(); $this->accessDenied();
} }
} }
} }

8
core/lib/Thelia/Controller/Front/AddressController.php
View File

@@ -46,7 +46,13 @@ class AddressController extends BaseFrontController
*/ */
public function generateModalAction($address_id) public function generateModalAction($address_id)
{ {
if ($this->getSecurityContext()->hasCustomerUser() === false) {
$this->accessDenied();
}
$this->checkXmlHttpRequest(); $this->checkXmlHttpRequest();
} }
/** /**
* Create controller. * Create controller.
@@ -57,7 +63,7 @@ class AddressController extends BaseFrontController
public function createAction() public function createAction()
{ {
if ($this->getSecurityContext()->hasCustomerUser() === false) { if ($this->getSecurityContext()->hasCustomerUser() === false) {
$this->redirect(URL::getInstance()->getIndexPage()); $this->accessDenied()
} }
$addressCreate = new AddressCreateForm($this->getRequest()); $addressCreate = new AddressCreateForm($this->getRequest());