+2005-07-12 Marcus Mueller <znek@mulle-kybernetik.com>
+
+ * SOGoUserFolder.m: forbid access (403) to SOGoGroupFolders if access
+ is not from the Intranet (v0.9.49)
+
2005-07-12 Helge Hess <helge.hess@opengroupware.org>
* AgenorUserDefaults.m: added automagic profile row creation (v0.9.48)
// $Id$
#include "SOGoUserFolder.h"
+#include "WOContext+Agenor.h"
#include "common.h"
@implementation SOGoUserFolder
if ([_key isEqualToString:@"Contacts"])
return [self privateContacts:_key inContext:_ctx];
- if ([_key isEqualToString:@"Groups"])
+ if ([_key isEqualToString:@"Groups"]) {
+ /* Agenor requirement, return 403 to stop acquisition */
+ if (![_ctx isAccessFromIntranet]) {
+ return [NSException exceptionWithHTTPStatus:403 /* Forbidden */];
+ }
return [self groupsFolder:_key inContext:_ctx];
+ }
if ([_key isEqualToString:@"Mail"])
return [self mailAccountsFolder:_key inContext:_ctx];
projects / scalable-opengroupware.org / commitdiff