Remove undeclared modules instead of throwing an error in remote API client add function.

Author: tbrehm

interface/lib/classes/remoting_lib.inc.php

@@ -296,14 +296,17 @@ function ispconfig_sysuser_add($params, $insert_id){
 		if(!isset($params['modules'])) {
 			$modules = $conf['interface_modules_enabled'];
 		} else {
-			// Check if modules are allowed
-			$allowed_modules = explode(',', $conf['interface_modules_enabled']);
 			$modules = $params['modules'];
-			foreach(explode(',', $modules) as $module) {
+
+			// Check if modules are allowed and remove unknown modules
+			$allowed_modules = explode(',', $conf['interface_modules_enabled']);
+			$modules_array = explode(',', $modules);
+			foreach($modules_array as $key => $module) {
 				if(!in_array($module, $allowed_modules)) {
-					throw new SoapFault('Invalid modules', 'Module '.$module.' is not allowed.');
+					unset($modules_array[$key]);
 				}
 			}
+			$modules = implode(',', $modules_array);
 		}
 		if(isset($params['limit_client']) && $params['limit_client'] > 0) {
 			$modules .= ',client';
@@ -332,13 +335,23 @@ function ispconfig_sysuser_add($params, $insert_id){
 	}
 
 	function ispconfig_sysuser_update($params, $client_id){
-		global $app;
+		global $app, $conf;
 		$username = $params["username"];
 		$clear_password = $params["password"];
 		$language = $params['language'];
 		$modules = $params['modules'];
 		$client_id = $app->functions->intval($client_id);
 
+		// Check if modules are allowed and remove unknown modules
+		$allowed_modules = explode(',', $conf['interface_modules_enabled']);
+		$modules_array = explode(',', $modules);
+		foreach($modules_array as $key => $module) {
+			if(!in_array($module, $allowed_modules)) {
+				unset($modules_array[$key]);
+			}
+		}
+		$modules = implode(',', $modules_array);
+
 		if(!isset($params['_ispconfig_pw_crypted']) || $params['_ispconfig_pw_crypted'] != 1) $password = $app->auth->crypt_password(stripslashes($clear_password));
 		else $password = $clear_password;
 		$params = array($username);