function process($parameters) { $fakturoid = new FakturoidWrapper(); if (!$fakturoid->checkLogin()) { $this->redirect('error'); } $fakturoidInvoiceId = null; if (isset($parameters[0])) { $fakturoidInvoiceId = $parameters[0]; } else { $this->redirect('error'); } $userOfInvoice = $fakturoid->getUserIdFromInvoiceId($fakturoidInvoiceId); //if not admin of the right place then throw error if ($userOfInvoice != $_SESSION['id_user'] && !$fakturoid->checkIfIsAdminOfUser($_SESSION['id_user'], $userOfInvoice)) { $this->redirect('error'); } $pdf = $fakturoid->getInvoiceAsPdf($fakturoidInvoiceId); $this->displayPdf($pdf); }