From 31bdba62f0545c01c36e77f54285e5f49c6a4859 Mon Sep 17 00:00:00 2001 From: fomichev Date: Fri, 8 Nov 2024 13:35:57 +0300 Subject: [PATCH] =?utf8?q?=D0=98=D1=81=D0=BF=D1=80=D0=B0=D0=B2=D0=BB=D0=B5?= =?utf8?q?=D0=BD=D0=B8=D0=B5=20=D0=BE=D1=88=D0=B8=D0=B1=D0=BA=D0=B8=20?= =?utf8?q?=D0=BB=D0=BE=D0=B3=D0=B8=D0=BA=D0=B8?= MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit --- erp24/controllers/crud/EmployeePaymentController.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/erp24/controllers/crud/EmployeePaymentController.php b/erp24/controllers/crud/EmployeePaymentController.php index 7876fd71..475217c6 100755 --- a/erp24/controllers/crud/EmployeePaymentController.php +++ b/erp24/controllers/crud/EmployeePaymentController.php @@ -31,8 +31,8 @@ class EmployeePaymentController extends Controller 'rules' => [ [ 'allow' => true, - 'actions' => ['view', 'index', 'update', 'delete'], - 'roles' => ['menu/crud/employee-payment/','employee-paymentEdit'], + 'actions' => ['create', 'view', 'index', 'update', 'delete'], + 'roles' => ['menu/crud/employee-payment/', 'employee-paymentEdit'], ], ], 'denyCallback' => function ($rule, $action) { @@ -156,7 +156,7 @@ class EmployeePaymentController extends Controller $admin = Yii::$app->user->identity; // Проверка на group_id и дату записи - if (!in_array($admin->group_id , [81, 20]) || !$admin->hasPermission('employee-paymentEdit') && date('Y-m') !== date('Y-m', strtotime($model->date))) { + if ((!in_array($admin->group_id , [81, 20]) || !$admin->hasPermission('employee-paymentEdit')) && date('Y-m') !== date('Y-m', strtotime($model->date))) { throw new \yii\web\ForbiddenHttpException('Редактирование разрешено только для записей текущего месяца.'); } -- 2.39.5