diff --git a/app/access_controls/access_controls.php b/app/access_controls/access_controls.php index 2b960c1f9..a45db3c14 100644 --- a/app/access_controls/access_controls.php +++ b/app/access_controls/access_controls.php @@ -59,41 +59,23 @@ //process the http post data by action if (!empty($action) && !empty($access_controls) && count($access_controls) > 0) { - - //validate the token - $token = new token; - if (!$token->validate($_SERVER['PHP_SELF'])) { - message::add($text['message-invalid_token'],'negative'); - header('Location: access_controls.php'); - exit; - } - - //prepare the array - $x = 0; - foreach ($access_controls as $row) { - $array[$x]['checked'] = $row['checked'] ?? null; - $array[$x]['uuid'] = $row['access_control_uuid']; - $x++; - } - - //send the array to the database class switch ($action) { case 'copy': if (permission_exists('access_control_add')) { $obj = new access_controls; - $obj->copy($array); + $obj->copy($access_controls); } break; case 'toggle': if (permission_exists('access_control_edit')) { $obj = new access_controls; - $obj->toggle($array); + $obj->toggle($access_controls); } break; case 'delete': if (permission_exists('access_control_delete')) { $obj = new access_controls; - $obj->delete($array); + $obj->delete($access_controls); } break; } @@ -218,7 +200,7 @@ if (permission_exists('access_control_add') || permission_exists('access_control_edit') || permission_exists('access_control_delete')) { echo " \n"; echo " \n"; - echo " \n"; + echo " \n"; echo " \n"; } echo " \n";