Fix: front/ check (#467)

Rom1-B · web-flow · commit a00140bc1d8f · 2025-05-05T11:13:07.000+02:00
* Fix: front/ check

* stan
diff --git a/front/export.csv.php b/front/export.csv.php
@@ -30,4 +30,6 @@
 
 require '../../../inc/includes.php';
 
+Session::checkRight(PluginDatainjectionClientInjection::$rightname, READ);
+
 PluginDatainjectionClientInjection::exportErrorsInCSV();
diff --git a/front/export.pdf.php b/front/export.pdf.php
@@ -30,4 +30,6 @@
 
 require '../../../inc/includes.php';
 
+Session::checkRight(PluginDatainjectionClientInjection::$rightname, READ);
+
 PluginDatainjectionModel::exportAsPDF($_GET['models_id']);
diff --git a/front/info.form.php b/front/info.form.php
@@ -29,6 +29,7 @@
  */
 
 require '../../../inc/includes.php';
+Session::checkLoginUser();
 
 /* Update mappings */
 if (isset($_POST["update"])) {
diff --git a/front/mapping.form.php b/front/mapping.form.php
@@ -30,6 +30,8 @@
 
 require '../../../inc/includes.php';
 
+Session::checkRight('plugin_datainjection_model', UPDATE);
+
 /* Update mappings */
 if (isset($_POST["update"])) {
     $at_least_one_mandatory = false;
diff --git a/front/model.form.php b/front/model.form.php
@@ -29,6 +29,7 @@
  */
 
 require '../../../inc/includes.php';
+Session::checkLoginUser();
 
 if (!isset($_GET["id"])) {
     $_GET["id"] = "";
diff --git a/front/model.php b/front/model.php
@@ -29,6 +29,7 @@
  */
 
 require '../../../inc/includes.php';
+Session::checkLoginUser();
 
 Html::header(
     PluginDatainjectionModel::getTypeName(),
