only allow this for manager

git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@22459 20353a03-c40f-0410-a6d1-a30d3c3de9de

only allow this for manager
git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@22459 20353a03-c40f-0410-a6d1-a30d3c3de9de
0051958d · Jérome Perrin · 64141666 · 0051958d
Commit 0051958d authored Jul 11, 2008 by Jérome Perrin
Show whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

product/ERP5/Extensions/Grep.py product/ERP5/Extensions/Grep.py +5 -0

No files found.
--- a/product/ERP5/Extensions/Grep.py
+++ b/product/ERP5/Extensions/Grep.py
 import re
 import cgi
 from Acquisition import aq_base
+from AccessControl import Unauthorized
+from Products.CMFCore.utils import _checkPermission
+from Products.ERP5Type import Permissions

 try:
  from Products import ExternalEditor
@@ -32,6 +35,8 @@ def traverse(ob, r, result, command_line_arguments):
        break

 def grep(self, pattern, A=0, B=0, r=1, i=0):
+  if not _checkPermission(Permissions.ManagePortal, self):
+    raise Unauthorized(self)
  command_line_arguments = {} # emulate grep command line args
  command_line_arguments['A'] = int(A)
  command_line_arguments['B'] = int(B)