From 093e50187accdd7c42d96ea66961193172fbb9f7 Mon Sep 17 00:00:00 2001
From: Caribana <lars.kermode@caribana.ch>
Date: Mon, 9 Apr 2018 21:06:45 +0200
Subject: [PATCH] =?UTF-8?q?Ajout=20possibilit=C3=A9=20de=20bloquer=20globa?=
 =?UTF-8?q?lement=20les=20=C3=A9ditions?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 tokensignin.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/tokensignin.php b/tokensignin.php
index 928807ea..acc3af2e 100644
--- a/tokensignin.php
+++ b/tokensignin.php
@@ -14,6 +14,8 @@ syslog(LOG_INFO, "Logout ".$_SESSION['uid']." / ". $_SESSION['name']. " from : {
 $_SESSION['uid']='';
 $_SESSION['admin']='';
 $_SESSION['name']='';
+$_SESSION['allowedit'] = '';
+
 closelog();
 die();
 
@@ -21,7 +23,7 @@ die();
 $id_token = $_POST['idtoken'];
 
 $admins = array('106388451999977183087' => 'Y', // Jess  
-		'113391142723644034553x' => 'Y' // Lars
+		'113391142723644034553' => 'Y' // Lars
 
 );
 $client = new Google_Client(['client_id' => '538635499162-g21v86gk87qm863u03er6vnm3q15bl82.apps.googleusercontent.com']);
@@ -30,6 +32,7 @@ if ($payload) {
   $userid = $payload['sub'];
   // If request specified a G Suite domain:
   $domain = $payload['hd'];
+
   if($domain=='caribana.ch') {
     // Associate user info to session si we can use it later
     $_SESSION['uid'] = $userid;
@@ -38,6 +41,8 @@ if ($payload) {
     $_SESSION['name'] = $payload['name'];
     // Is this user admin 
     $_SESSION['admin'] = '';
+    // Set to 1 to allow noramle users to add new entries en edit existing
+    $_SESSION['allowedit'] = 1;
     if( array_key_exists($userid, $admins)) {
   	$_SESSION['admin'] = 1;
     }