# HG changeset patch # User HIROSE Yuuji # Date 1560472031 -32400 # Node ID 67ecd5901590224149af464c014a9ec21182e6a7 # Parent c81511a6b7e04e9ec2bed26bf0eb214598c70f18 Inhibit non-group admin from cloning group diff -r c81511a6b7e0 -r 67ecd5901590 s4-funcs.sh --- a/s4-funcs.sh Fri Jun 14 09:01:51 2019 +0900 +++ b/s4-funcs.sh Fri Jun 14 09:27:11 2019 +0900 @@ -417,6 +417,12 @@ err isgrpowner: $sql test -n "`query $sql`" ) +isgrpownerbygid() ( + # $1=user, $2=group-rowid + sql="select user from grp_adm where gname=(select gname from grp where rowid=$2) and user='$1';" + err isgrpownerbygid: $sql + test -n "`query $sql`" +) getgroupadminmails() { # $1=group for i in $(getgroupadmins $1); do @@ -1551,6 +1557,10 @@ echo "無効なグループIDです($1)" | html p return fi + if ! isgrpownerbygid "$user" "$rid"; then + echo "グループ管理者のみがクローン可能です" | html p + return + fi i=0 while true; do copy="-copy$i"