Chapril/xmpp.chapril.org-ejabberd
25
1
Fork 0
mirror of https://github.com/processone/ejabberd.git synced 2024-12-22 17:28:25 +01:00
Code Releases Activity

WebAdmin: Remove webadmin_view for now, as commands allow more fine-grained permissions

Browse Source
This commit is contained in:
Badlop 2024-06-12 23:38:58 +02:00
parent 3bda858225
commit a16e5a7055
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/ejabberd_web_admin.erl
View File

@ -73,13 +73,13 @@ get_acl_rule([<<"vhosts">>], _) ->
%% The pages of a vhost are only accessible if the user is admin of that vhost: %% The pages of a vhost are only accessible if the user is admin of that vhost:
get_acl_rule([<<"server">>, VHost | _RPath], Method) get_acl_rule([<<"server">>, VHost | _RPath], Method)
when Method =:= 'GET' orelse Method =:= 'HEAD' -> when Method =:= 'GET' orelse Method =:= 'HEAD' ->
{VHost, [configure, webadmin_view]}; {VHost, [configure]};
get_acl_rule([<<"server">>, VHost | _RPath], 'POST') -> get_acl_rule([<<"server">>, VHost | _RPath], 'POST') ->
{VHost, [configure]}; {VHost, [configure]};
%% Default rule: only global admins can access any other random page %% Default rule: only global admins can access any other random page
get_acl_rule(_RPath, Method) get_acl_rule(_RPath, Method)
when Method =:= 'GET' orelse Method =:= 'HEAD' -> when Method =:= 'GET' orelse Method =:= 'HEAD' ->
{global, [configure, webadmin_view]}; {global, [configure]};
get_acl_rule(_RPath, 'POST') -> get_acl_rule(_RPath, 'POST') ->
{global, [configure]}. {global, [configure]}.
@ -581,7 +581,7 @@ list_vhosts_allowed(JID) ->
Hosts = ejabberd_option:hosts(), Hosts = ejabberd_option:hosts(),
lists:filter(fun (Host) -> lists:filter(fun (Host) ->
any_rules_allowed(Host, any_rules_allowed(Host,
[configure, webadmin_view], [configure],
JID) JID)
end, end,
Hosts). Hosts).