From e395c957f308e9a65c28154f5c78b2919a530d63 Mon Sep 17 00:00:00 2001
From: Julio Montoya <gugli100@gmail.com>
Date: Wed, 22 Jun 2011 14:23:16 +0200
Subject: [PATCH] If session is not available due date limits we drop the user

---
 main/session/index.php | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/main/session/index.php b/main/session/index.php
index 61c5421177..0ab7cbf420 100644
--- a/main/session/index.php
+++ b/main/session/index.php
@@ -27,16 +27,17 @@ api_block_anonymous_users(); // Only users who are logged in can proceed.
 
 $this_section = SECTION_COURSES;
 $htmlHeadXtra[] = api_get_jquery_ui_js(true);
-//$interbreadcrumb[] = array ('url' => '#', 'name' => get_lang('Course'));
 
 Display::display_header(get_lang('Session'));
 
-$session_id = intval($_GET['session_id']);
-$course_id  = intval($_GET['course_id']);
-if (empty($session_id)) {
+if (empty($_GET['session_id'])) {
 	api_not_allowed();
 }
 
+$session_id = intval($_GET['session_id']);
+$course_id  = intval($_GET['course_id']);
+$_SESSION['id_session'] = $session_id;
+
 $session_info   = SessionManager::fetch($session_id);
 $session_list   = SessionManager::get_sessions_by_coach(api_get_user_id());
 $course_list    = SessionManager::get_course_list_by_session_id($session_id);
@@ -119,14 +120,16 @@ if (!empty($new_session_list)) {
 }
 //echo '<pre>';print_r($final_array);
 //If the requested session does not exist in my list we stop the script
-if (!api_is_platform_admin()) {    
+if (!api_is_platform_admin()) {        
     if (!in_array($session_id, $my_session_list)) {
         api_not_allowed();
     }
 }
+//If session is not active we stop de script
+if (!api_is_allowed_to_session_edit()) {
+    api_not_allowed();
+}
 
-//require_once api_get_path(LIBRARY_PATH).'pear/HTML/Table.php';
-//$html = '';
 //Final data to be show
 $my_real_array = $new_exercises = array();
 $now = time();