]> git.datanom.net - qtadmin.git/blobdiff - show_headers.php
projects / qtadmin.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
add more debug info
[qtadmin.git] / show_headers.php
diff --git a/show_headers.php b/show_headers.php
index e1bef17dec4c0f9bb2b3e6bb5c02b59dd807878d..34ca0657dfdc4858d0d7e4d065333ad4bad23f98 100644 (file)
--- a/show_headers.php
+++ b/show_headers.php
@@ -5,16 +5,21 @@
     require_once $CFG->root . 'lib/db_factory.php';
     require_once $CFG->root . 'lib/utils.inc.php';
 
-    $util = Utils::getInstance();
+    $util = new Utils;
     $loggedIn = $util->isLoggedIn();
     if ($loggedIn && isset($_GET['id'])) {
+        $id = $_GET['id'];
+        $mail = unserialize($_SESSION['mailInfo'][$id]);
+
+        if (! is_object($mail) || false == $util->authorized($mail->recipient)) {
+            header('Location: qtadmin.php');
+            exit;
+        }
+
         $util->setHeading('Full Headers Report');
         echo $util->getHeader();
         echo $util->getHeading();
 
-        $id = $_GET['id'];
-        $mail = unserialize($_SESSION['mailInfo'][$id]);
-
         $row = $DB->getMail($id);
         $string = $row->mail_text;
         $sa_tests = null;
@@ -51,7 +56,7 @@
         echo $output;
         echo $util->getFooter();
     } else if ($loggedIn) {
-        header('Location: index.php');
+        header('Location: qtadmin.php');
     } else {
         header('Location: auth.php');
     }
An Amavisd qurantine administration interface
This page took 0.030324 seconds and 5 git commands to generate.