flashii/misuzu
flashii/misuzu
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Actually check permissions.

Browse source
This commit is contained in:
flash 2018-09-17 10:10:32 +02:00
parent 1dbaffeb28
commit bd578c7601
1 changed files with 14 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
public/settings.php
View file

@ -112,6 +112,11 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
break; break;
case 'upload': case 'upload':
if (!$perms['edit_avatar']) {
$settingsErrors[] = "You aren't allow to change your avatar.";
break;
}
if (empty($_FILES['avatar']) if (empty($_FILES['avatar'])
|| !is_array($_FILES['avatar']) || !is_array($_FILES['avatar'])
|| empty($_FILES['avatar']['name']['file'])) { || empty($_FILES['avatar']['name']['file'])) {
@ -123,7 +128,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$avatarErrorStrings['upload'][$_FILES['avatar']['error']['file']] $avatarErrorStrings['upload'][$_FILES['avatar']['error']['file']]
?? $avatarErrorStrings['upload']['default'], ?? $avatarErrorStrings['upload']['default'],
$_FILES['avatar']['error']['file'], $_FILES['avatar']['error']['file'],
byte_symbol($avatarProps['max_filesize'], true), byte_symbol($avatarProps['max_size'], true),
$avatarProps['max_width'], $avatarProps['max_width'],
$avatarProps['max_height'] $avatarProps['max_height']
); );
@ -141,7 +146,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$avatarErrorStrings['set'][$setAvatar] $avatarErrorStrings['set'][$setAvatar]
?? $avatarErrorStrings['set']['default'], ?? $avatarErrorStrings['set']['default'],
$setAvatar, $setAvatar,
byte_symbol($avatarProps['max_filesize'], true), byte_symbol($avatarProps['max_size'], true),
$avatarProps['max_width'], $avatarProps['max_width'],
$avatarProps['max_height'] $avatarProps['max_height']
); );
@ -157,6 +162,11 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
break; break;
case 'upload': case 'upload':
if (!$perms['edit_background']) {
$settingsErrors[] = "You aren't allow to change your background.";
break;
}
if (empty($_FILES['background']) if (empty($_FILES['background'])
|| !is_array($_FILES['background']) || !is_array($_FILES['background'])
|| empty($_FILES['background']['name']['file'])) { || empty($_FILES['background']['name']['file'])) {
@ -168,7 +178,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$avatarErrorStrings['upload'][$_FILES['background']['error']['file']] $avatarErrorStrings['upload'][$_FILES['background']['error']['file']]
?? $avatarErrorStrings['upload']['default'], ?? $avatarErrorStrings['upload']['default'],
$_FILES['background']['error']['file'], $_FILES['background']['error']['file'],
byte_symbol($backgroundProps['max_filesize'], true), byte_symbol($backgroundProps['max_size'], true),
$backgroundProps['max_width'], $backgroundProps['max_width'],
$backgroundProps['max_height'] $backgroundProps['max_height']
); );
@ -186,7 +196,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$avatarErrorStrings['set'][$setBackground] $avatarErrorStrings['set'][$setBackground]
?? $avatarErrorStrings['set']['default'], ?? $avatarErrorStrings['set']['default'],
$setBackground, $setBackground,
byte_symbol($backgroundProps['max_filesize'], true), byte_symbol($backgroundProps['max_size'], true),
$backgroundProps['max_width'], $backgroundProps['max_width'],
$backgroundProps['max_height'] $backgroundProps['max_height']
); );