r54429 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r54428‎ \| r54429 \| r54430 >
Date:	04:42, 5 August 2009
Author:	mrzman
Status:	resolved (Comments)
Tags:
Comment:	(bug 17864 + bug 19519) - Do input normalization on the username before doing existence/permission checks
Modified paths:	/trunk/phase3/RELEASE-NOTES (modified) (history) /trunk/phase3/includes/specials/SpecialUserrights.php (modified) (history)

Diff [purge]

Index: trunk/phase3/includes/specials/SpecialUserrights.php
—	—	@@ -54,6 +54,7 @@
55	55	} else {
56	56	$this->mTarget = $wgRequest->getVal( 'user' );
57	57	}
	58	+ $this->mTarget = User::getCanonicalName( $this->mTarget );
58	59
59	60	/*
60	61	* If the user is blocked and they only have "partial" access
Index: trunk/phase3/RELEASE-NOTES
—	—	@@ -390,6 +390,7 @@
391	391	and issue with Opera (bug 18497) where fullscreen mode is assumed to be
392	392	projection mode and the style sheet for screen media is no longer used.
393	393	* (bug 16084) Default memory limit has be increased to 50M, see $wgMemoryLimit
	394	+* (bug 17864/19519) Added proper input normalization in Special:UserRights
394	395
395	396	== API changes in 1.16 ==
396	397

Follow-up revisions

Revision	Commit summary	Author	Date
r57064	Fix regression from r54429 "(bug 17864 + bug 19519) - Do input normalization ...	brion	17:27, 29 September 2009

Comments

#Comment by Brion VIBBER (talk | contribs) 17:18, 29 September 2009

Causes regression in access to remote users where dbname includes an underscore

#Comment by Brion VIBBER (talk | contribs) 17:27, 29 September 2009

Fixed in r57064

Status & tagging log

17:27, 29 September 2009 Brion VIBBER (talk | contribs) changed the status of r54429 [removed: fixme added: resolved]
17:18, 29 September 2009 Brion VIBBER (talk | contribs) changed the status of r54429 [removed: ok added: fixme]
05:55, 19 August 2009 Brion VIBBER (talk | contribs) changed the status of r54429 [removed: new added: ok]