[geeklog-cvs] Geeklog-1.x/public_html/admin block.php,1.118,1.119
Michael Jervis
mjervis at qs1489.pair.com
Thu Feb 21 14:52:54 EST 2008
Update of /cvsroot/geeklog/Geeklog-1.x/public_html/admin
In directory qs1489.pair.com:/tmp/cvs-serv78690/public_html/admin
Modified Files:
block.php
Log Message:
Security changes.
Index: block.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/public_html/admin/block.php,v
retrieving revision 1.118
retrieving revision 1.119
diff -C2 -d -r1.118 -r1.119
*** block.php 20 Feb 2008 20:07:58 -0000 1.118
--- block.php 21 Feb 2008 19:52:52 -0000 1.119
***************
*** 38,41 ****
--- 38,42 ----
require_once '../lib-common.php';
require_once 'auth.inc.php';
+ require_once $_CONF['path_system'] . 'lib-security.php';
// Uncomment the line below if you need to debug the HTTP variables being passed
***************
*** 367,370 ****
--- 368,372 ----
require_once( $_CONF['path_system'] . 'lib-admin.php' );
+ $token = SEC_createToken();
// writing the menu on top
***************
*** 416,420 ****
$retval .= ADMIN_list (
"blocks", "ADMIN_getListField_blocks", $header_arr, $text_arr,
! $query_arr, $defsort_arr, '', '', '', $form_arr
);
--- 418,422 ----
$retval .= ADMIN_list (
"blocks", "ADMIN_getListField_blocks", $header_arr, $text_arr,
! $query_arr, $defsort_arr, '', $token, '', $form_ar
);
***************
*** 438,442 ****
$retval .= ADMIN_list (
'blocks', 'ADMIN_getListField_blocks', $header_arr, $text_arr,
! $query_arr, $defsort_arr, '', '', '', $form_arr
);
--- 440,444 ----
$retval .= ADMIN_list (
'blocks', 'ADMIN_getListField_blocks', $header_arr, $text_arr,
! $query_arr, $defsort_arr, '', $token, '', $form_arr
);
***************
*** 822,826 ****
--- 824,830 ----
} else if ($mode == 'move') {
$display .= COM_siteHeader('menu', $LANG21[19]);
+ if(SEC_checkToken()) {
$display .= moveBlock();
+ }
$display .= listblocks();
$display .= COM_siteFooter();
More information about the geeklog-cvs
mailing list