From 227206218c209016a4f25779bf936b2e2b0418d2 Mon Sep 17 00:00:00 2001
From: zero <skklove@gmail.com>
Date: Mon, 9 Jul 2007 06:08:16 +0000
Subject: [PATCH] =?UTF-8?q?=EA=B2=8C=EC=8B=9C=ED=8C=90/=EB=B8=94=EB=A1=9C?=
 =?UTF-8?q?=EA=B7=B8=20=EB=AA=A8=EB=93=88=EC=97=90=EC=84=9C=20=EA=B8=80/?=
 =?UTF-8?q?=EB=8C=93=EA=B8=80=20=EC=9E=91=EC=84=B1=20=EB=B6=80=EB=B6=84?=
 =?UTF-8?q?=EC=97=90=EC=84=9C=20=EA=B6=8C=ED=95=9C=EC=B2=B4=ED=81=AC=20?=
 =?UTF-8?q?=EB=88=84=EB=9D=BD=EB=90=9C=20=EA=B2=83=20=EB=B3=B4=EC=B6=A9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

git-svn-id: http://xe-core.googlecode.com/svn/trunk@1877 201d5d3c-b55e-5fd7-737f-ddc643e51545
---
 modules/blog/blog.controller.php   | 6 ++++++
 modules/board/board.controller.php | 6 ++++++
 2 files changed, 12 insertions(+)

diff --git a/modules/blog/blog.controller.php b/modules/blog/blog.controller.php
index ed4de7930..6678d83dd 100644
--- a/modules/blog/blog.controller.php
+++ b/modules/blog/blog.controller.php
@@ -17,6 +17,9 @@
          * @brief 문서 입력
          **/
         function procBlogInsertDocument() {
+            // 권한 체크
+            if(!$this->grant->write_document) return new Object(-1, 'msg_not_permitted');
+
             // 글작성시 필요한 변수를 세팅
             $obj = Context::getRequestVars();
             $obj->module_srl = $this->module_srl;
@@ -89,6 +92,9 @@
          * @brief 코멘트 추가
          **/
         function procBlogInsertComment() {
+            // 권한 체크
+            if(!$this->grant->write_comment) return new Object(-1, 'msg_not_permitted');
+
             // 댓글 입력에 필요한 데이터 추출
             $obj = Context::gets('document_srl','comment_srl','parent_srl','content','password','nick_name','nick_name','member_srl','email_address','homepage');
             $obj->module_srl = $this->module_srl;
diff --git a/modules/board/board.controller.php b/modules/board/board.controller.php
index 7b9ecaffc..be4a9eed9 100644
--- a/modules/board/board.controller.php
+++ b/modules/board/board.controller.php
@@ -17,6 +17,9 @@
          * @brief 문서 입력
          **/
         function procBoardInsertDocument() {
+            // 권한 체크
+            if(!$this->grant->write_document) return new Object(-1, 'msg_not_permitted');
+
             // 글작성시 필요한 변수를 세팅
             $obj = Context::getRequestVars();
             $obj->module_srl = $this->module_srl;
@@ -100,6 +103,9 @@
          * @brief 코멘트 추가
          **/
         function procBoardInsertComment() {
+            // 권한 체크
+            if(!$this->grant->write_comment) return new Object(-1, 'msg_not_permitted');
+
             // 댓글 입력에 필요한 데이터 추출
             $obj = Context::gets('document_srl','comment_srl','parent_srl','content','password','nick_name','nick_name','member_srl','email_address','homepage');
             $obj->module_srl = $this->module_srl;