[pLog-svn] r6887 - plog/branches/lifetype-1.2/class/action/admin
jondaley at devel.lifetype.net
jondaley at devel.lifetype.net
Wed May 13 08:13:48 EDT 2009
Author: jondaley
Date: 2009-05-13 08:13:48 -0400 (Wed, 13 May 2009)
New Revision: 6887
Modified:
plog/branches/lifetype-1.2/class/action/admin/adminaction.class.php
Log:
run security pipeline on admin side too - so then hostblock can be used to block spammers from posting spam on their blogs too!
Modified: plog/branches/lifetype-1.2/class/action/admin/adminaction.class.php
===================================================================
--- plog/branches/lifetype-1.2/class/action/admin/adminaction.class.php 2009-05-13 12:06:51 UTC (rev 6886)
+++ plog/branches/lifetype-1.2/class/action/admin/adminaction.class.php 2009-05-13 12:13:48 UTC (rev 6887)
@@ -10,6 +10,7 @@
lt_include( PLOG_CLASS_PATH."class/view/admin/admindefaultview.class.php" );
lt_include( PLOG_CLASS_PATH."class/data/textfilter.class.php" );
lt_include( PLOG_CLASS_PATH."class/dao/users.class.php" );
+ lt_include( PLOG_CLASS_PATH."class/security/pipeline.class.php" );
/**
* @see AdminAction::requirePermission()
@@ -107,6 +108,36 @@
$this->_userBlogs[] = $this->_blogInfo;
}
}
+
+ //
+ // security stuff
+ //
+ if(!empty($this->_blogInfo)){
+ $pipeline = new Pipeline($request, $this->_blogInfo);
+ $result = $pipeline->process();
+ //
+ // if the pipeline blocked the request, then we have
+ // to let the user know
+ if(!$result->isValid()){
+ if(!$result->hasView()){
+ // use the default view
+ lt_include(PLOG_CLASS_PATH."class/view/admin/adminerrorview.class.php");
+ $message = $this->_locale->tr('error_you_have_been_blocked').'<br/><br/>';
+ $message .= $result->getErrorMessage();
+ $this->_view = new AdminErrorView($this->_blogInfo);
+ $this->_view->setMessage($message);
+ }
+ else{
+ // if the filter that forced the processing to stop provided
+ // its own view, then use it
+ $this->_view = $result->getView();
+ }
+ $this->setCommonData();
+ $this->_view->render();
+
+ die();
+ }
+ }
}
/**
More information about the pLog-svn
mailing list