public function isAuthorizedPersonForLoan(){ $id = $_GET['id']; $rtn = $this->isSUorAdmin(); if(!$rtn){ $model=Loan::model()->findByPk($id); if($model!==null){ $rtn = (!Yii::app()->user->isGuest && Yii::app()->user->person->id === $model->person_id); }else{ $rtn = false; } } return $rtn; }
/** * Returns the data model based on the primary key given in the GET variable. * If the data model is not found, an HTTP exception will be raised. * @param integer the ID of the model to be loaded */ public function loadModel($id) { $model = Loan::model()->findByPk($id); if ($model === null) { throw new CHttpException(404, 'The requested page does not exist.'); } return $model; }