From 072a71cf252c43fa9a6db1595cf92af3ac6f8cab Mon Sep 17 00:00:00 2001
From: Adam Chlipala <adamc@hcoop.net>
Date: Tue, 17 Feb 2009 16:46:03 +0000
Subject: [PATCH] ACL check on reusers requests

---
 src/main.sml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/src/main.sml b/src/main.sml
index ac9207d..f19dd8a 100644
--- a/src/main.sml
+++ b/src/main.sml
@@ -1604,8 +1604,13 @@ fun service () =
 				      (fn () => ())
 
 			       | MsgReUsers =>
-				 doIt (fn () => (usersChanged ();
-						 ("Users change callbacks run", NONE)))
+				 doIt (fn () => if Acl.query {user = user, class = "priv", value = "regen"}
+						   orelse Acl.query {user = user, class = "priv", value = "all"} then
+						    (usersChanged ();
+						     ("Users change callbacks run", NONE))
+						else
+						    ("Unauthorized user asked to reusers!",
+						     SOME "You aren't authorized to regenerate files."))
 				      (fn () => ())
 
 			       | _ =>
-- 
2.20.1