[geeklog-cvs] geeklog: Added a check if the advanced editor is enabled for the...
geeklog-cvs at lists.geeklog.net
geeklog-cvs at lists.geeklog.net
Tue Mar 30 08:51:13 EDT 2010
changeset 7863:09177f0dcdcd
url: http://project.geeklog.net/cgi-bin/hgwebdir.cgi/geeklog/rev/09177f0dcdcd
user: Dirk Haun <dirk at haun-online.de>
date: Tue Mar 30 14:49:50 2010 +0200
description:
Added a check if the advanced editor is enabled for the current user
diffstat:
public_html/fckeditor/editor/filemanager/connectors/php/config.php | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diffs (12 lines):
diff -r 47ac8fa20740 -r 09177f0dcdcd public_html/fckeditor/editor/filemanager/connectors/php/config.php
--- a/public_html/fckeditor/editor/filemanager/connectors/php/config.php Mon Mar 29 19:51:11 2010 -0400
+++ b/public_html/fckeditor/editor/filemanager/connectors/php/config.php Tue Mar 30 14:49:50 2010 +0200
@@ -33,7 +33,7 @@
// WARNING: don't just set "$Config['Enabled'] = true ;", you must be sure that only
// authenticated users can access this file or use some kind of session checking.
$Config['Enabled'] = false;
-if (($_CONF['advanced_editor'] == 1) && !COM_isAnonUser()) {
+if (($_CONF['advanced_editor'] && $_USER['advanced_editor']) && !COM_isAnonUser()) {
// provisional permission check - we really need a .upload permission
$rights = implode(',', $_RIGHTS);
if (strpos($rights, '.edit') !== false) {
More information about the geeklog-cvs
mailing list