Bug 14251: Allow use of CSS in discharge letter

[koha-ffzg.git] / opac / opac-article-request-cancel.pl

diff --git a/opac/opac-article-request-cancel.pl b/opac/opac-article-request-cancel.pl
index baaa0ae..e926a5f 100755 (executable)
--- a/opac/opac-article-request-cancel.pl
+++ b/opac/opac-article-request-cancel.pl
@@ -22,26 +22,33 @@ use Modern::Perl;
 use CGI qw ( -utf8 );
 
 use C4::Output;
-use C4::Auth;
+use C4::Auth qw( get_template_and_user );
 use Koha::ArticleRequests;
 
-my $query = new CGI;
+my $query = CGI->new;
 
 my ( $template, $borrowernumber, $cookie ) = get_template_and_user(
     {
         template_name   => "opac-account.tt",
         query           => $query,
         type            => "opac",
-        authnotrequired => 0,
-        debug           => 1,
     }
 );
 
 my $id = $query->param('id');
 
-if ( $id && $borrowernumber ) {
+if ( $id ) {
     my $ar = Koha::ArticleRequests->find( $id );
-    $ar->cancel() if $ar;
+    if ( !$ar ) {
+        print $query->redirect("/cgi-bin/koha/errors/404.pl");
+        exit;
+    }
+    elsif ( $ar->borrowernumber != $borrowernumber ) {
+        print $query->redirect("/cgi-bin/koha/errors/403.pl");
+        exit;
+    }
+
+    $ar->cancel();
 }
 
 print $query->redirect("/cgi-bin/koha/opac-user.pl#opac-user-article-requests");