aboutsummaryrefslogtreecommitdiffstats
path: root/admin
diff options
context:
space:
mode:
authorrvelices <rv-github@modusoptimus.com>2008-03-08 12:38:09 +0000
committerrvelices <rv-github@modusoptimus.com>2008-03-08 12:38:09 +0000
commitbf1f7c4aec50107efdc393a7cea2149a1a3854d7 (patch)
tree3bac58dcf5dcf2d7e414d185d1ad6622fddd34f5 /admin
parenta048738d8b9b6be6f16316b2a198386f92e1b600 (diff)
- security fix (profile)
- les langues a la hache - fix some copy/paste errors git-svn-id: http://piwigo.org/svn/trunk@2268 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
-rw-r--r--admin/group_perm.php13
1 files changed, 6 insertions, 7 deletions
diff --git a/admin/group_perm.php b/admin/group_perm.php
index 0ddc4114d..c73bfbdd6 100644
--- a/admin/group_perm.php
+++ b/admin/group_perm.php
@@ -47,8 +47,7 @@ if (isset($_GET['group_id']) and is_numeric($_GET['group_id']))
}
else
{
- echo l10n('group_id URL parameter is missing');
- exit();
+ die('group_id URL parameter is missing');
}
// +-----------------------------------------------------------------------+
@@ -93,19 +92,19 @@ SELECT id
// an error (in SQL statement), so we need to know which categories are
// accesible
$authorized_ids = array();
-
+
$query = '
SELECT cat_id
FROM '.GROUP_ACCESS_TABLE.'
WHERE group_id = '.$page['group'].'
;';
$result = pwg_query($query);
-
+
while ($row = mysql_fetch_array($result))
{
array_push($authorized_ids, $row['cat_id']);
}
-
+
$inserts = array();
$to_autorize_ids = array_diff($private_uppercats, $authorized_ids);
foreach ($to_autorize_ids as $to_autorize_id)
@@ -144,14 +143,14 @@ $template->assign_vars(
'L_CAT_OPTIONS_TRUE'=>l10n('authorized'),
'L_CAT_OPTIONS_FALSE'=>l10n('forbidden'),
'L_CAT_OPTIONS_INFO'=>l10n('permuser_info'),
-
+
'F_ACTION' =>
PHPWG_ROOT_PATH.
'admin.php?page=group_perm&amp;group_id='.
$page['group']
)
);
-
+
// only private categories are listed
$query_true = '
SELECT id,name,uppercats,global_rank