add back access checks

Author: Pearl1594

server/src/main/java/com/cloud/storage/snapshot/SnapshotManagerImpl.java

@@ -1399,6 +1399,13 @@ public Pair<List<? extends SnapshotPolicy>, Integer> listSnapshotPolicies(ListSn
         Boolean isRecursive = null;
         ListProjectResourcesCriteria listProjectResourcesCriteria = null;
 
+        if (volumeId != null) {
+            VolumeVO volume = _volsDao.findById(volumeId);
+            if (volume != null) {
+                _accountMgr.checkAccess(CallContext.current().getCallingAccount(), null, true, volume);
+            }
+        }
+
         if (!isRootAdmin) {
             Ternary<Long, Boolean, ListProjectResourcesCriteria> domainIdRecursiveListProject =
                     new Ternary<>(cmd.getDomainId(), cmd.isRecursive(), null);

server/src/main/java/org/apache/cloudstack/backup/BackupManagerImpl.java

@@ -648,6 +648,12 @@ public List<BackupSchedule> listBackupSchedules(ListBackupScheduleCmd cmd) {
         Boolean isRecursive = null;
         Project.ListProjectResourcesCriteria listProjectResourcesCriteria = null;
 
+        if (vmId != null) {
+            final VMInstanceVO vm = findVmById(vmId);
+            validateBackupForZone(vm.getDataCenterId());
+            accountManager.checkAccess(CallContext.current().getCallingAccount(), null, true, vm);
+        }
+
         if (!isRootAdmin) {
             Ternary<Long, Boolean, Project.ListProjectResourcesCriteria> domainIdRecursiveListProject =
                     new Ternary<>(cmd.getDomainId(), cmd.isRecursive(), null);