public function isAuthorizedPersonForLoan(){
$id = $_GET['id'];
$rtn = $this->isSUorAdmin();
if(!$rtn){
$model=Loan::model()->findByPk($id);
if($model!==null){
$rtn = (!Yii::app()->user->isGuest && Yii::app()->user->person->id === $model->person_id);
}else{
$rtn = false;
}
}
return $rtn;
}
/**
* Returns the data model based on the primary key given in the GET variable.
* If the data model is not found, an HTTP exception will be raised.
* @param integer the ID of the model to be loaded
*/
public function loadModel($id)
{
$model = Loan::model()->findByPk($id);
if ($model === null) {
throw new CHttpException(404, 'The requested page does not exist.');
}
return $model;
}
