r62484 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r62483‎ \| r62484 \| r62485 >
Date:	23:05, 14 February 2010
Author:	avar
Status:	deferred
Tags:
Comment:	Give users slighly less rope to hang themselves by enabling this extension only for users with 'eval' permission. Set something like: $wgGroupPermissions['sysop']['eval'] = true; In LocalSettings.php to enable it.
Modified paths:	/trunk/extensions/Eval/SpecialEval.class.php (modified) (history)

Diff [purge]

Index: trunk/extensions/Eval/SpecialEval.class.php
—	—	@@ -11,11 +11,16 @@
12	12	}
13	13
14	14	public function execute( $par ) {
15		~~- global $wgOut, $wgRequest, $wgUseTidy;~~
	15	+ global $wgUser, $wgOut, $wgRequest, $wgUseTidy;
16	16	wfLoadExtensionMessages( 'Eval' );
17	17
18	18	$this->setHeaders();
19	19
	20	+ if ( !$this->userCanExecute( $wgUser ) ) {
	21	+ $this->displayRestrictionError();
	22	+ return;
	23	+ }
	24	+
20	25	$code = isset( $par ) ? $par : $wgRequest->getText( 'code' );
21	26	$escape = $wgRequest->getBool( 'escape' );
22	27

21:13, 15 February 2010 😂 (talk | contribs) changed the status of r62484 [removed: new added: deferred]