Restrict backend to super users and frontend to registered users as d…

…iscussed in #11 (#13)

administrator/components/com_privacy/config.xml

@@ -1,17 +1,3 @@
 <?xml version="1.0" encoding="utf-8"?>
 <config>
-	<fieldset
-		name="permissions"
-		label="JCONFIG_PERMISSIONS_LABEL"
-		description="JCONFIG_PERMISSIONS_DESC"
-		>
-		<field
-			name="rules"
-			type="rules"
-			label="JCONFIG_PERMISSIONS_LABEL"
-			filter="rules"
-			validate="rules"
-			component="com_privacy"
-			section="component" />
-	</fieldset>
 </config>

administrator/components/com_privacy/privacy.php

@@ -9,7 +9,8 @@
 
 defined('_JEXEC') or die;
 
-if (!JFactory::getUser()->authorise('core.manage', 'com_privacy'))
+// Only super user can access here
+if (!JFactory::getUser()->authorise('core.admin'))
 {
 	throw new JAccessExceptionNotallowed(JText::_('JERROR_ALERTNOAUTHOR'), 403);
 }

administrator/components/com_privacy/privacy.xml

@@ -11,7 +11,6 @@
 	<description>COM_PRIVACY_XML_DESCRIPTION</description>
 	<administration>
 		<files folder="admin">
-			<filename>access.xml</filename>
 			<filename>config.xml</filename>
 			<filename>controller.php</filename>
 			<filename>privacy.php</filename>

components/com_privacy/privacy.php

@@ -9,6 +9,12 @@
 
 defined('_JEXEC') or die;
 
+// Only authenticated user have access
+if (JFactory::getUser()->guest)
+{
+	throw new JAccessExceptionNotallowed(JText::_('JERROR_ALERTNOAUTHOR'), 403);
+}
+
 $controller = JControllerLegacy::getInstance('Privacy');
 $controller->execute(JFactory::getApplication()->input->get('task'));
 $controller->redirect();