From d2b79c33e2651085be07c25dca44c7c7bc2c4be2 Mon Sep 17 00:00:00 2001
From: Nick Barry <nbarry@unl.edu>
Date: Mon, 2 Jun 2014 14:55:30 -0500
Subject: [PATCH] Added admin check and admin phpinfo view

---
 .../bulletin/controllers/AdminController.php  | 21 +++++++++++++++++++
 .../views/scripts/admin/app-php-info.phtml    |  1 +
 2 files changed, 22 insertions(+)
 create mode 100644 application/modules/bulletin/views/scripts/admin/app-php-info.phtml

diff --git a/application/modules/bulletin/controllers/AdminController.php b/application/modules/bulletin/controllers/AdminController.php
index 1bd93892..2fc54347 100644
--- a/application/modules/bulletin/controllers/AdminController.php
+++ b/application/modules/bulletin/controllers/AdminController.php
@@ -2,6 +2,15 @@
 
 class Bulletin_AdminController extends Creq_Controller_Action
 {
+    public function preDispatch()
+    {
+        $user = Auth_UserModel::findCurrentUser();
+        $roles = Auth_GroupModel::findByUser($user);
+        if (!in_array(1, $roles->getId())) {
+            throw new Exception('You must be logged in to view this page.');
+        }
+    }
+
     public function changeMajorNameAction()
     {
         $this->view->messages = $this->_helper->getHelper('FlashMessenger')->getMessages();
@@ -483,6 +492,18 @@ class Bulletin_AdminController extends Creq_Controller_Action
         $this->redirect('/bulletin/admin/remove-major');
     }
 
+    public function appPhpInfoAction()
+    {
+        $user = Auth_UserModel::findCurrentUser();
+        $roles = Auth_GroupModel::findByUser($user);
+        if (!in_array(1, $roles->getId())) {
+            throw new Exception('You must be logged in to view this page.');
+        }
+
+        $this->_helper->layout->disableLayout();
+        $this->view->message = "";
+    }
+
     protected function getCurrentEditingYear()
     {
         $currentYear = Zend_Date::now()->get(Zend_Date::YEAR);
diff --git a/application/modules/bulletin/views/scripts/admin/app-php-info.phtml b/application/modules/bulletin/views/scripts/admin/app-php-info.phtml
new file mode 100644
index 00000000..ccddb960
--- /dev/null
+++ b/application/modules/bulletin/views/scripts/admin/app-php-info.phtml
@@ -0,0 +1 @@
+<?php echo phpinfo(); ?>
\ No newline at end of file
-- 
GitLab