Move reports perms to new role system

CHANGELOG.md

@@ -4,7 +4,7 @@ This file documents all notable changes made to ITFlow.
 
 ## [25.02]
 ### Fixed
-- Fix report permissions for un-billed tickets
+- Changed several reports over to the new permissions/roles system
 - Fixed empty task box showing for resolved/closed tickets
 
 ### Added / Changed

includes/reports_side_nav.php

@@ -15,11 +15,8 @@
 
             <ul class="nav nav-pills nav-sidebar flex-column mt-2" data-widget="treeview" data-accordion="false">
 
-                <?php  if ($config_module_enable_accounting == 1) { ?>
                 <li class="nav-header">FINANCIAL</li>
-
-                    <?php if (lookupUserPermission("module_financial") >= 1) { ?>
-
+                <?php if ($config_module_enable_accounting == 1 && lookupUserPermission("module_financial") >= 1) { ?>
                     <li class="nav-item">
                         <a href="report_income_summary.php" class="nav-link <?php if (basename($_SERVER["PHP_SELF"]) == "report_income_summary.php") { echo "active"; } ?>">
                             <i class="far fa-circle nav-icon"></i>
@@ -74,22 +71,18 @@
                             <p>Profit & Loss</p>
                         </a>
                     </li>
-
-                    <?php } ?>
-
-                    <?php if (lookupUserPermission("module_sales") >= 1) { ?>
                     <li class="nav-item">
                         <a href="report_tickets_unbilled.php" class="nav-link <?php if (basename($_SERVER["PHP_SELF"]) == "report_tickets_unbilled.php") { echo "active"; } ?>">
                             <i class="nav-icon fas fa-life-ring"></i>
                             <p>Unbilled Tickets</p>
                         </a>
                     </li>
-                    <?php } ?>
+
                 <?php } // End financial reports IF statement ?>
 
 
                 <li class="nav-header">TECHNICAL</li>
-                <?php  if ($config_module_enable_ticketing) { ?>
+                <?php  if ($config_module_enable_ticketing && lookupUserPermission("module_support") >= 1) { ?>
                     <li class="nav-item">
                         <a href="report_ticket_summary.php" class="nav-link <?php if (basename($_SERVER["PHP_SELF"]) == "report_ticket_summary.php") { echo "active"; } ?>">
                             <i class="nav-icon fas fa-life-ring"></i>
@@ -115,6 +108,7 @@
 
                 <li class="nav-header">OVERVIEWS</li>
 
+                <?php  if (lookupUserPermission("module_support") >= 1) { ?>
                     <li class="nav-item">
                         <a href="report_assets.php" class="nav-link <?php if (basename($_SERVER["PHP_SELF"]) == "report_assets.php") { echo "active"; } ?>">
                             <i class="nav-icon fas fa-desktop"></i>
@@ -127,6 +121,7 @@
                             <p>All Domains</p>
                         </a>
                     </li>
+                <?php } ?>
 
             </ul>
 

report_budget.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     $year = intval($_GET['year']);

report_clients_with_balance.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 ?>
 

report_expense_by_vendor.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     if ($_GET['year'] === 'all') {

report_expense_summary.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     $year = intval($_GET['year']);

report_income_by_client.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     if ($_GET['year'] === 'all') {

report_income_summary.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     $year = intval($_GET['year']);
@@ -147,8 +147,7 @@ $sql_categories = mysqli_query($mysqli, "SELECT * FROM categories WHERE category
     </div>
 </div>
 
-<?php require_once "includes/footer.php";
- ?>
+<?php require_once "includes/footer.php"; ?>
 
 <script>
     // Set new default font family and font color to mimic Bootstrap's default styling

report_profit_loss.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateAccountantRole();
+enforceUserPermission('module_financial');
 
 if (isset($_GET['year'])) {
     $year = intval($_GET['year']);

report_ticket_by_client.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateTechRole();
+enforceUserPermission('module_support');
 
 function secondsToTime($inputSeconds) {
     $inputSeconds = floor($inputSeconds);

report_ticket_summary.php

@@ -2,7 +2,7 @@
 
 require_once "includes/inc_all_reports.php";
 
-validateTechRole();
+enforceUserPermission('module_support');
 
 if (isset($_GET['year'])) {
     $year = intval($_GET['year']);