X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fadmin%2Fwhat-config_admins.php;h=78e1109e10cb2415fe4fff254118cf21eee09c1f;hp=a8957adaf9b81f14d0cd28b167da1b7556819031;hb=d8148e3f1f3a6762b2e786dbe99ada269dcf2ea0;hpb=c32dbd6c66aa13a81d8ec8840b1ed54c3f96d619 diff --git a/inc/modules/admin/what-config_admins.php b/inc/modules/admin/what-config_admins.php index a8957adaf9..78e1109e10 100644 --- a/inc/modules/admin/what-config_admins.php +++ b/inc/modules/admin/what-config_admins.php @@ -41,12 +41,12 @@ if ((!defined('__SECURITY')) || (!IS_ADMIN())) { ADD_DESCR("admin", __FILE__); $SEL = 0; -if (!empty($_POST['sel'])) $SEL = SELECTION_COUNT($_POST['sel']); +if (REQUEST_ISSET_POST(('sel'))) $SEL = SELECTION_COUNT(REQUEST_POST('sel')); -if ((isset($_POST['edit'])) && ($SEL > 0)) { +if ((REQUEST_ISSET_POST(('edit'))) && ($SEL > 0)) { // Edit ACLs $SW = 2; $OUT = ""; - foreach ($_POST['sel'] as $id => $sel) { + foreach (REQUEST_POST('sel') as $id => $sel) { // Load data for the ID $result = SQL_QUERY_ESC("SELECT admin_id, action_menu, what_menu, access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1", array(bigintval($id)), __FILE__, __LINE__); @@ -76,15 +76,21 @@ if ((isset($_POST['edit'])) && ($SEL > 0)) { // Load main template LOAD_TEMPLATE("admin_config_admins_edit"); -} elseif ((isset($_POST['change'])) && ($SEL > 0)) { +} elseif ((REQUEST_ISSET_POST(('change'))) && ($SEL > 0)) { // Change entries - foreach ($_POST['sel'] as $id => $sel) { + foreach (REQUEST_POST('sel') as $id => $sel) { // Secure ID $id = bigintval($id); // Update entries SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_admins_acls` SET admin_id=%s, action_menu='%s', what_menu='%s', access_mode='%s' WHERE id=%s LIMIT 1", - array($_POST['admin'][$id], $_POST['action_menu'][$id], $_POST['what_menu'][$id], $_POST['mode'][$id], $id),__FILE__, __LINE__); + array( + REQUEST_POST('admin', $id), + REQUEST_POST('action_menu', $id), + REQUEST_POST('what_menu', $id), + REQUEST_POST('mode', $id), + $id + ),__FILE__, __LINE__); } // Update cache when installed @@ -92,15 +98,15 @@ if ((isset($_POST['edit'])) && ($SEL > 0)) { if ($GLOBALS['cache_instance']->loadCacheFile("admins_acls")) $GLOBALS['cache_instance']->destroyCacheFile(); // Purge menu cache - CACHE_PURGE_ADMIN_MENU($_POST['admin'][$id]); + CACHE_PURGE_ADMIN_MENU(REQUEST_POST('admin', $id)); } // Entries changed LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_ADMINS_ENTRIES_CHANGED')); -} elseif ((isset($_POST['del'])) && ($SEL > 0)) { +} elseif ((REQUEST_ISSET_POST(('del'))) && ($SEL > 0)) { // Delete ACLs $SW = 2; $OUT = ""; - foreach ($_POST['sel'] as $id => $sel) { + foreach (REQUEST_POST('sel') as $id => $sel) { // Load data for the ID $result = SQL_QUERY_ESC("SELECT admin_id, action_menu, what_menu, access_mode FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1", array(bigintval($id)), __FILE__, __LINE__); @@ -135,9 +141,9 @@ if ((isset($_POST['edit'])) && ($SEL > 0)) { // Load main template LOAD_TEMPLATE("admin_config_admins_del"); -} elseif ((isset($_POST['remove'])) && ($SEL > 0)) { +} elseif ((REQUEST_ISSET_POST(('remove'))) && ($SEL > 0)) { // Remove entries - foreach ($_POST['sel'] as $id => $sel) { + foreach (REQUEST_POST('sel') as $id => $sel) { SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE id=%s LIMIT 1", array(bigintval($id)),__FILE__, __LINE__); } @@ -152,33 +158,33 @@ if ((isset($_POST['edit'])) && ($SEL > 0)) { // Entries deleted LOAD_TEMPLATE("admin_settings_saved", false, getMessage('ADMIN_ADMINS_ENTRIES_DELETED')); -} elseif (isset($_POST['add'])) { +} elseif (REQUEST_ISSET_POST(('add'))) { // Check if everything is fine... - $mode = GET_ADMIN_DEFAULT_ACL(bigintval($_POST['admin_id'])); + $mode = GET_ADMIN_DEFAULT_ACL(bigintval(REQUEST_POST('admin_id'))); // Default ACL is false $ACL = false; - if (!empty($_POST['what_menu'])) { + if (REQUEST_ISSET_POST(('what_menu'))) { // Check parent ACL - $ACL = ADMINS_CHECK_ACL(GET_ACTION("admin", $_POST['what_menu']), ""); + $ACL = ADMINS_CHECK_ACL(GET_ACTION("admin", REQUEST_POST('what_menu')), ""); } - if ($mode != $_POST['mode'] || ($ACL)) { + if ($mode != REQUEST_POST('mode') || ($ACL)) { // Mode is fine - $BOTH = ((!empty($_POST['action_menu'])) && (!empty($_POST['what_menu']))); - if (((!empty($_POST['action_menu'])) || (!empty($_POST['what_menu']))) && (!$BOTH)) { + $BOTH = ((REQUEST_ISSET_POST(('action_menu'))) && (REQUEST_ISSET_POST(('what_menu')))); + if (((REQUEST_ISSET_POST(('action_menu'))) || (REQUEST_ISSET_POST(('what_menu')))) && (!$BOTH)) { // Main or sub menu selected $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_admins_acls` WHERE admin_id=%s AND action_menu='%s' AND what_menu='%s' LIMIT 1", - array(bigintval($_POST['admin_id']), $_POST['action_menu'], $_POST['what_menu']), __FILE__, __LINE__); + array(bigintval(REQUEST_POST('admin_id')), REQUEST_POST('action_menu'), REQUEST_POST('what_menu')), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 0) { // Finally add the new ACL SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_admins_acls` (admin_id, action_menu, what_menu, access_mode) VALUES ('%s','%s','%s','%s')", array( - bigintval($_POST['admin_id']), - $_POST['action_menu'], - $_POST['what_menu'], - $_POST['mode'] + bigintval(REQUEST_POST('admin_id')), + REQUEST_POST('action_menu'), + REQUEST_POST('what_menu'), + REQUEST_POST('mode') ), __FILE__, __LINE__); $content = ADMIN_ADMINS_ACL_SAVED; @@ -187,7 +193,7 @@ VALUES ('%s','%s','%s','%s')", if ($GLOBALS['cache_instance']->loadCacheFile("admins_acls")) $GLOBALS['cache_instance']->destroyCacheFile(); // Purge cache - CACHE_PURGE_ADMIN_MENU($_POST['admin_id'], $_POST['action_menu'], $_POST['what_menu']); + CACHE_PURGE_ADMIN_MENU(REQUEST_POST('admin_id'), REQUEST_POST('action_menu'), REQUEST_POST('what_menu')); } // END - if } else { // ACL does already exist!