PDA

View Full Version : AminCP: Restrict other administrator's access to certain files


rake
17 Nov 2002, 18:16
If you have members that you would like to give cp access to, but don't trust them with your templates, or vbhacker et cetera, this is the thing for you. You can restrict access to certain files, based on userid. They will still see the options in the menu, but will not be able to access them.

if((strchr($PHP_SELF,"admin/template.php") || strchr($PHP_SELF,"admin/style.php") || strchr($PHP_SELF,"admin/replacement.php") || strchr($PHP_SELF,"admin/backup.php") || strchr($PHP_SELF,"admin/misc.php") || strchr($PHP_SELF,"admin/vbhacker.php") || strchr($PHP_SELF,"admin/query.php") || strchr($PHP_SELF,"admin/pm.php")) && $bbuserinfo[userid]!="1") {
show_nopermission();
}

Add the code above at the end of your sessions.php file, just above the ?> line. Modify the code in any way you wish. It's just a quick & dirty way of removing certain administrator priviledges. Be careful! sessions.php is used for ALL vbulletin files.

Remi
17 Nov 2002, 19:36
Hi

Can I use something like this to include all files:

PHP_SELF,"admin/*.php

Thanks

rake
17 Nov 2002, 19:46
excluding all files wouldn't make sense. You would totally lock him out.

N!ck
17 Nov 2002, 20:11
this has already been done by hellsatan

suffeks
26 Nov 2002, 18:33
this hack was exactly what i was looking for, i didnt need that complex super mod hack, anyway, is it possible to make this more specific? i'm a newb at this, this is what i mean:

strchr($PHP_SELF,"admin/user.php?action=modify&s=$session")

i probably have it wrong because it doesnt work, but i'd like to break it down further as so.

help?!

thanks