extern/egroupware
1
0
Fork 1
mirror of https://github.com/EGroupware/egroupware.git synced 2025-02-04 04:19:41 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix group directory creation, remove possible security problem

Browse Source
This commit is contained in:
Zone 2002-02-25 03:24:50 +00:00
parent 975adf9028
commit 5d507655b0
1 changed files with 2 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
filemanager/index.php
View File

@ -244,26 +244,6 @@ if (($path == $GLOBALS['homedir'])
$GLOBALS['phpgw']->vfs->override_acl = 0; $GLOBALS['phpgw']->vfs->override_acl = 0;
} }
elseif (preg_match ('|^'.$GLOBALS['fakebase'].'\/(.*)$|U', $path, $matches))
{
if (!$GLOBALS['phpgw']->vfs->file_exists (array ('string' => $path, 'relatives' => array (RELATIVE_NONE))))
{
$GLOBALS['phpgw']->vfs->override_acl = 1;
$GLOBALS['phpgw']->vfs->mkdir (array ('string' => $path, 'relatives' => array (RELATIVE_NONE)));
$GLOBALS['phpgw']->vfs->override_acl = 0;
$group_id = $GLOBALS['phpgw']->accounts->name2id ($matches[1]);
$GLOBALS['phpgw']->vfs->set_attributes (array (
'string' => $path,
'relatives' => array (RELATIVE_NONE),
'attributes' => array (
'owner_id' => $group_id,
'createdby_id' => $group_id
)
)
);
}
}
### ###
# Verify path is real # Verify path is real
@ -355,11 +335,13 @@ if ($path == $GLOBALS['fakebase'])
)) ))
) )
{ {
$GLOBALS['phpgw']->vfs->override_acl = 1;
$GLOBALS['phpgw']->vfs->mkdir (array ( $GLOBALS['phpgw']->vfs->mkdir (array (
'string' => $GLOBALS['fakebase'].'/'.$group_array['account_name'], 'string' => $GLOBALS['fakebase'].'/'.$group_array['account_name'],
'relatives' => array (RELATIVE_NONE) 'relatives' => array (RELATIVE_NONE)
) )
); );
$GLOBALS['phpgw']->vfs->override_acl = 0;
$GLOBALS['phpgw']->vfs->set_attributes (array ( $GLOBALS['phpgw']->vfs->set_attributes (array (
'string' => $GLOBALS['fakebase'].'/'.$group_array['account_name'], 'string' => $GLOBALS['fakebase'].'/'.$group_array['account_name'],