X-Git-Url: https://ruin.nu/git/?a=blobdiff_plain;f=lib%2FNDWeb.pm;h=7e3a63be16c58f128be2af85481358d3d32e29f1;hb=5ca7cefbaab2deaccacbfd69ce23065034c07732;hp=238e5f409e057a63575d2fb37a6b16521751fff8;hpb=02c7aaff53da28137793c89c32d9994b93db61fb;p=ndwebbie.git

diff --git a/lib/NDWeb.pm b/lib/NDWeb.pm
index 238e5f4..7e3a63b 100644
--- a/lib/NDWeb.pm
+++ b/lib/NDWeb.pm
@@ -31,6 +31,8 @@ __PACKAGE__->config->{'Plugin::Authentication'}{'use_session'} = 1;
 __PACKAGE__->config(session => {
 	storage => "/tmp/ndweb-$>/sesession",
 	directory_umask => 077,
+	expires => 300,
+	verify_address => 1,
 });
 __PACKAGE__->config( cache => {
 	backend => {
@@ -58,6 +60,7 @@ __PACKAGE__->setup(qw/
 	Authorization::Roles
 	Authorization::ACL
 	
+	Session::DynamicExpiry
 	Session
 	Session::Store::File
 	Session::State::Cookie
@@ -68,10 +71,25 @@ __PACKAGE__->setup(qw/
 
 
 __PACKAGE__->deny_access_unless('/users',[qw/admin_users/]);
+__PACKAGE__->deny_access_unless('/alliances',[qw/alliances/]);
 __PACKAGE__->deny_access_unless('/alliances/resources',[qw/alliances_resources/]);
 __PACKAGE__->deny_access_unless('/graphs/alliancevsintel',[qw/graphs_intel/]);
 __PACKAGE__->deny_access_unless('/graphs/avgalliancevsintel',[qw/graphs_intel/]);
 __PACKAGE__->deny_access_unless('/members',[qw/members/]);
+__PACKAGE__->deny_access_unless('/covop',[qw/covop/]);
+__PACKAGE__->deny_access_unless('/calls/list',[qw/calls_list/]);
+__PACKAGE__->deny_access_unless('/calls/postcallcomment',[qw/calls_edit/]);
+__PACKAGE__->deny_access_unless('/calls/postcallupdate',[qw/calls_edit/]);
+__PACKAGE__->deny_access_unless('/calls/postattackerupdate',[qw/calls_edit/]);
+__PACKAGE__->deny_access_unless('/calls/defleeches',[qw/calls_leeches/]);
+__PACKAGE__->deny_access_unless('/raids',[qw/raids_edit/]);
+__PACKAGE__->allow_access_if('/raids/index',1);
+__PACKAGE__->allow_access_if('/raids/view',1);
+__PACKAGE__->allow_access_if('/raids/findRaid',1);
+__PACKAGE__->allow_access_if('/raids/log',1);
+__PACKAGE__->deny_access_unless('/intel',[qw/intel/]);
+__PACKAGE__->deny_access_unless('/intel/members',[qw/intel_members/]);
+__PACKAGE__->deny_access_unless('/intel/member',[qw/intel_member/]);
 
 =head1 NAME