makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-28 14:18:52 +00:00
Code Issues Projects Releases Packages Wiki Activity

[ticket/13160] Allow override f_read and forum password

Browse source 
Adds a couple of variables to the event that allows  extension authors to
bypass the f_read and forum password checks as if the user had those permissions
whether or not he actually has them.

PHPBB3-13160
This commit is contained in:
brunoais 2014-12-13 18:48:53 +00:00
parent a0287a62c1
commit a5a6855a0d
1 changed files with 8 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
phpBB/viewtopic.php
View file

@ -336,6 +336,8 @@ if (($topic_data['topic_type'] == POST_STICKY || $topic_data['topic_type'] == PO
// Setup look and feel // Setup look and feel
$user->setup('viewtopic', $topic_data['forum_style']); $user->setup('viewtopic', $topic_data['forum_style']);
$overrides_f_read = false;
$overrides_forum_password = false;
/** /**
* Event to apply extra permissions and to override original phpBB's f_read permission and forum password check * Event to apply extra permissions and to override original phpBB's f_read permission and forum password check
* on viewtopic access * on viewtopic access
@ -346,6 +348,8 @@ $user->setup('viewtopic', $topic_data['forum_style']);
* @var int post_id The id of the post the user tries to start viewing at. It may be 0 for none given. * @var int post_id The id of the post the user tries to start viewing at. It may be 0 for none given.
* @var string topic_data All the information from the topic and forum tables for this topic * @var string topic_data All the information from the topic and forum tables for this topic
* It includes posts information if post_id is not 0 * It includes posts information if post_id is not 0
* @var array overrides_f_read Set true to remove f_read check afterwards
* @var array overrides_forum_password Set true to remove forum_password check afterwards
* *
* @since 3.1.3-RC1 * @since 3.1.3-RC1
*/ */
@ -354,11 +358,13 @@ $vars = array(
'topic_id', 'topic_id',
'post_id', 'post_id',
'topic_data', 'topic_data',
'overrides_f_read',
'overrides_forum_password',
); );
extract($phpbb_dispatcher->trigger_event('core.viewtopic_before_f_read_check', compact($vars))); extract($phpbb_dispatcher->trigger_event('core.viewtopic_before_f_read_check', compact($vars)));
// Start auth check // Start auth check
if (!$auth->acl_get('f_read', $forum_id)) if (!$overrides_f_read && !$auth->acl_get('f_read', $forum_id))
{ {
if ($user->data['user_id'] != ANONYMOUS) if ($user->data['user_id'] != ANONYMOUS)
{ {
@ -370,7 +376,7 @@ if (!$auth->acl_get('f_read', $forum_id))
// Forum is passworded ... check whether access has been granted to this // Forum is passworded ... check whether access has been granted to this
// user this session, if not show login box // user this session, if not show login box
if ($topic_data['forum_password']) if (!$overrides_forum_password && $topic_data['forum_password'])
{ {
login_forum_box($topic_data); login_forum_box($topic_data);
} }