mirror of
https://github.com/phpbb/phpbb.git
synced 2025-07-24 02:48:56 +00:00
[feature/request-class] Convert any direct access to $_* to use $request
PHPBB3-9716
This commit is contained in:
Igor Wiedler
parent
15883dfac2
commit
fccd7f0ab5
28 changed files with 131 additions and 99 deletions
|
|
@ -163,6 +163,7 @@ function adm_page_footer($copyright_html = true)
|
|||
{
|
||||
global $db, $config, $template, $user, $auth, $cache;
|
||||
global $starttime, $phpbb_root_path, $phpbb_admin_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
// Output page creation time
|
||||
if (defined('DEBUG'))
|
||||
|
|
@ -170,7 +171,7 @@ function adm_page_footer($copyright_html = true)
|
|||
$mtime = explode(' ', microtime());
|
||||
$totaltime = $mtime[0] + $mtime[1] - $starttime;
|
||||
|
||||
if (!empty($_REQUEST['explain']) && $auth->acl_get('a_') && defined('DEBUG_EXTRA') && method_exists($db, 'sql_report'))
|
||||
if ($request->variable('explain', false) && $auth->acl_get('a_') && defined('DEBUG_EXTRA') && method_exists($db, 'sql_report'))
|
||||
{
|
||||
$db->sql_report('display');
|
||||
}
|
||||
|
|
|
|||
|
|
@ -1235,6 +1235,7 @@ class acp_attachments
|
|||
function perform_site_list()
|
||||
{
|
||||
global $db, $user;
|
||||
global $request;
|
||||
|
||||
if (isset($_REQUEST['securesubmit']))
|
||||
{
|
||||
|
|
@ -1243,7 +1244,7 @@ class acp_attachments
|
|||
$ip_list = array_unique(explode("\n", $ips));
|
||||
$ip_list_log = implode(', ', $ip_list);
|
||||
|
||||
$ip_exclude = (!empty($_POST['ipexclude'])) ? 1 : 0;
|
||||
$ip_exclude = (int) $request->variable('ipexclude', false, false, phpbb_request_interface::POST);
|
||||
|
||||
$iplist = array();
|
||||
$hostlist = array();
|
||||
|
|
|
|||
|
|
@ -28,6 +28,7 @@ class acp_icons
|
|||
{
|
||||
global $db, $user, $auth, $template, $cache;
|
||||
global $config, $phpbb_root_path, $phpbb_admin_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
$user->add_lang('acp/posting');
|
||||
|
||||
|
|
@ -338,7 +339,7 @@ class acp_icons
|
|||
$image_display_on_posting = (isset($_POST['display_on_posting'])) ? request_var('display_on_posting', array('' => 0)) : array();
|
||||
|
||||
// Ok, add the relevant bits if we are adding new codes to existing emoticons...
|
||||
if (!empty($_POST['add_additional_code']))
|
||||
if ($request->variable('add_additional_code', false, false, phpbb_request_interface::POST))
|
||||
{
|
||||
$add_image = request_var('add_image', '');
|
||||
$add_code = utf8_normalize_nfc(request_var('add_code', '', true));
|
||||
|
|
@ -354,7 +355,7 @@ class acp_icons
|
|||
$image_width[$add_image] = request_var('add_width', 0);
|
||||
$image_height[$add_image] = request_var('add_height', 0);
|
||||
|
||||
if (!empty($_POST['add_display_on_posting']))
|
||||
if ($request->variable('add_display_on_posting', false, false, phpbb_request_interface::POST))
|
||||
{
|
||||
$image_display_on_posting[$add_image] = 1;
|
||||
}
|
||||
|
|
|
|||
|
|
@ -34,6 +34,7 @@ class acp_language
|
|||
global $config, $db, $user, $auth, $template, $cache;
|
||||
global $phpbb_root_path, $phpbb_admin_path, $phpEx, $table_prefix;
|
||||
global $safe_mode, $file_uploads;
|
||||
global $request;
|
||||
|
||||
include_once($phpbb_root_path . 'includes/functions_user.' . $phpEx);
|
||||
|
||||
|
|
@ -58,7 +59,7 @@ class acp_language
|
|||
if (isset($_POST['missing_file']))
|
||||
{
|
||||
$missing_file = request_var('missing_file', array('' => 0));
|
||||
list($_REQUEST['language_file'], ) = array_keys($missing_file);
|
||||
$request->overwrite('language_file', array_shift(array_keys($missing_file)));
|
||||
}
|
||||
|
||||
$selected_lang_file = request_var('language_file', '|common.' . $phpEx);
|
||||
|
|
@ -68,6 +69,23 @@ class acp_language
|
|||
$this->language_directory = basename($this->language_directory);
|
||||
$this->language_file = basename($this->language_file);
|
||||
|
||||
// detect language file type
|
||||
if ($this->language_directory == 'email')
|
||||
{
|
||||
$language_file_type = 'email';
|
||||
$request_default = '';
|
||||
}
|
||||
else if (strpos($this->language_file, 'help_') === 0)
|
||||
{
|
||||
$language_file_type = 'help';
|
||||
$request_default = array(0 => array(0 => ''));
|
||||
}
|
||||
else
|
||||
{
|
||||
$language_file_type = 'normal';
|
||||
$request_default = array('' => '');
|
||||
}
|
||||
|
||||
$user->add_lang('acp/language');
|
||||
$this->tpl_name = 'acp_language';
|
||||
$this->page_title = 'ACP_LANGUAGE_PACKS';
|
||||
|
|
@ -119,7 +137,7 @@ class acp_language
|
|||
'DATA' => $data,
|
||||
'NAME' => $user->lang[strtoupper($method . '_' . $data)],
|
||||
'EXPLAIN' => $user->lang[strtoupper($method . '_' . $data) . '_EXPLAIN'],
|
||||
'DEFAULT' => (!empty($_REQUEST[$data])) ? request_var($data, '') : $default
|
||||
'DEFAULT' => $request->variable($data, (string) $default),
|
||||
));
|
||||
}
|
||||
|
||||
|
|
@ -130,7 +148,7 @@ class acp_language
|
|||
'method' => $method)
|
||||
);
|
||||
|
||||
$hidden_data .= build_hidden_fields(array('entry' => $_POST['entry']), true, STRIP);
|
||||
$hidden_data .= build_hidden_fields(array('entry' => $request->variable('entry', $request_default, true, phpbb_request_interface::POST)));
|
||||
|
||||
$template->assign_vars(array(
|
||||
'S_UPLOAD' => true,
|
||||
|
|
@ -187,12 +205,9 @@ class acp_language
|
|||
trigger_error($user->lang['FORM_INVALID']. adm_back_link($this->u_action), E_USER_WARNING);
|
||||
}
|
||||
|
||||
if (!$lang_id || empty($_POST['entry']))
|
||||
{
|
||||
trigger_error($user->lang['NO_LANG_ID'] . adm_back_link($this->u_action), E_USER_WARNING);
|
||||
}
|
||||
$entry_value = $request->variable('entry', $request_default, true, phpbb_request_interface::POST);
|
||||
|
||||
if ($this->language_directory != 'email' && !is_array($_POST['entry']))
|
||||
if (!$lang_id || !$entry_value)
|
||||
{
|
||||
trigger_error($user->lang['NO_LANG_ID'] . adm_back_link($this->u_action), E_USER_WARNING);
|
||||
}
|
||||
|
|
@ -291,10 +306,10 @@ class acp_language
|
|||
trigger_error(sprintf($user->lang['UNABLE_TO_WRITE_FILE'], $filename) . adm_back_link($this->u_action . '&id=' . $lang_id . '&action=details&language_file=' . urlencode($selected_lang_file)), E_USER_WARNING);
|
||||
}
|
||||
|
||||
if ($this->language_directory == 'email')
|
||||
if ($language_file_type == 'email')
|
||||
{
|
||||
// Email Template
|
||||
$entry = $this->prepare_lang_entry($_POST['entry'], false);
|
||||
$entry = $this->prepare_lang_entry(htmlspecialchars_decode($entry_value), false);
|
||||
fwrite($fp, $entry);
|
||||
}
|
||||
else
|
||||
|
|
@ -302,13 +317,13 @@ class acp_language
|
|||
$name = (($this->language_directory) ? $this->language_directory . '_' : '') . $this->language_file;
|
||||
$header = str_replace(array('{FILENAME}', '{LANG_NAME}', '{CHANGED}', '{AUTHOR}'), array($name, $row['lang_english_name'], date('Y-m-d', time()), $row['lang_author']), $this->language_file_header);
|
||||
|
||||
if (strpos($this->language_file, 'help_') === 0)
|
||||
if ($language_file_type == 'help')
|
||||
{
|
||||
// Help File
|
||||
$header .= '$help = array(' . "\n";
|
||||
fwrite($fp, $header);
|
||||
|
||||
foreach ($_POST['entry'] as $key => $value)
|
||||
foreach ($entry_value as $key => $value)
|
||||
{
|
||||
if (!is_array($value))
|
||||
{
|
||||
|
|
@ -319,7 +334,7 @@ class acp_language
|
|||
|
||||
foreach ($value as $_key => $_value)
|
||||
{
|
||||
$entry .= "\t\t" . (int) $_key . "\t=> '" . $this->prepare_lang_entry($_value) . "',\n";
|
||||
$entry .= "\t\t" . (int) $_key . "\t=> '" . $this->prepare_lang_entry(htmlspecialchars_decode($_value)) . "',\n";
|
||||
}
|
||||
|
||||
$entry .= "\t),\n";
|
||||
|
|
@ -329,15 +344,15 @@ class acp_language
|
|||
$footer = ");\n\n?>";
|
||||
fwrite($fp, $footer);
|
||||
}
|
||||
else
|
||||
else if ($language_file_type == 'normal')
|
||||
{
|
||||
// Language File
|
||||
$header .= $this->lang_header;
|
||||
fwrite($fp, $header);
|
||||
|
||||
foreach ($_POST['entry'] as $key => $value)
|
||||
foreach ($entry_value as $key => $value)
|
||||
{
|
||||
$entry = $this->format_lang_array($key, $value);
|
||||
$entry = $this->format_lang_array(htmlspecialchars_decode($key), htmlspecialchars_decode($value));
|
||||
fwrite($fp, $entry);
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -27,6 +27,7 @@ class acp_logs
|
|||
{
|
||||
global $db, $user, $auth, $template, $cache;
|
||||
global $config, $phpbb_root_path, $phpbb_admin_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
$user->add_lang('mcp');
|
||||
|
||||
|
|
@ -35,8 +36,8 @@ class acp_logs
|
|||
$forum_id = request_var('f', 0);
|
||||
$topic_id = request_var('t', 0);
|
||||
$start = request_var('start', 0);
|
||||
$deletemark = (!empty($_POST['delmarked'])) ? true : false;
|
||||
$deleteall = (!empty($_POST['delall'])) ? true : false;
|
||||
$deletemark = $request->variable('delmarked', false, false, phpbb_request_interface::POST);
|
||||
$deleteall = $request->variable('delall', false, false, phpbb_request_interface::POST);
|
||||
$marked = request_var('mark', array(0));
|
||||
|
||||
// Sort keys
|
||||
|
|
|
|||
|
|
@ -658,6 +658,7 @@ class acp_permissions
|
|||
function set_permissions($mode, $permission_type, &$auth_admin, &$user_id, &$group_id)
|
||||
{
|
||||
global $user, $auth;
|
||||
global $request;
|
||||
|
||||
$psubmit = request_var('psubmit', array(0 => array(0 => 0)));
|
||||
|
||||
|
|
@ -676,18 +677,17 @@ class acp_permissions
|
|||
list($ug_id, ) = each($psubmit);
|
||||
list($forum_id, ) = each($psubmit[$ug_id]);
|
||||
|
||||
if (empty($_POST['setting']) || empty($_POST['setting'][$ug_id]) || empty($_POST['setting'][$ug_id][$forum_id]) || !is_array($_POST['setting'][$ug_id][$forum_id]))
|
||||
$settings = $request->variable('setting', array(0 => array(0 => array('' => 0))), false, phpbb_request_interface::POST);
|
||||
if (empty($settings) || empty($settings[$ug_id]) || empty($settings[$ug_id][$forum_id]))
|
||||
{
|
||||
trigger_error('WRONG_PERMISSION_SETTING_FORMAT', E_USER_WARNING);
|
||||
}
|
||||
|
||||
// We obtain and check $_POST['setting'][$ug_id][$forum_id] directly and not using request_var() because request_var()
|
||||
// currently does not support the amount of dimensions required. ;)
|
||||
// $auth_settings = request_var('setting', array(0 => array(0 => array('' => 0))));
|
||||
$auth_settings = array_map('intval', $_POST['setting'][$ug_id][$forum_id]);
|
||||
$auth_settings = $settings[$ug_id][$forum_id];
|
||||
|
||||
// Do we have a role we want to set?
|
||||
$assigned_role = (isset($_POST['role'][$ug_id][$forum_id])) ? (int) $_POST['role'][$ug_id][$forum_id] : 0;
|
||||
$roles = $request->variable('role', array(0 => array(0 => 0)), false, phpbb_request_interface::POST);
|
||||
$assigned_role = (isset($roles[$ug_id][$forum_id])) ? (int) $roles[$ug_id][$forum_id] : 0;
|
||||
|
||||
// Do the admin want to set these permissions to other items too?
|
||||
$inherit = request_var('inherit', array(0 => array(0)));
|
||||
|
|
@ -747,6 +747,7 @@ class acp_permissions
|
|||
function set_all_permissions($mode, $permission_type, &$auth_admin, &$user_id, &$group_id)
|
||||
{
|
||||
global $user, $auth;
|
||||
global $request;
|
||||
|
||||
// User or group to be set?
|
||||
$ug_type = (sizeof($user_id)) ? 'user' : 'group';
|
||||
|
|
@ -757,8 +758,8 @@ class acp_permissions
|
|||
trigger_error($user->lang['NO_AUTH_OPERATION'] . adm_back_link($this->u_action), E_USER_WARNING);
|
||||
}
|
||||
|
||||
$auth_settings = (isset($_POST['setting'])) ? $_POST['setting'] : array();
|
||||
$auth_roles = (isset($_POST['role'])) ? $_POST['role'] : array();
|
||||
$auth_settings = $request->variable('setting', array(0 => array(0 => array('' => 0))), false, phpbb_request_interface::POST);
|
||||
$auth_roles = $request->variable('role', array(0 => array(0 => 0)), false, phpbb_request_interface::POST);
|
||||
$ug_ids = $forum_ids = array();
|
||||
|
||||
// We need to go through the auth settings
|
||||
|
|
|
|||
|
|
@ -30,6 +30,7 @@ class acp_profile
|
|||
{
|
||||
global $config, $db, $user, $auth, $template, $cache;
|
||||
global $phpbb_root_path, $phpbb_admin_path, $phpEx, $table_prefix;
|
||||
global $request;
|
||||
|
||||
include($phpbb_root_path . 'includes/functions_posting.' . $phpEx);
|
||||
include($phpbb_root_path . 'includes/functions_user.' . $phpEx);
|
||||
|
|
@ -487,7 +488,8 @@ class acp_profile
|
|||
$cp->vars['field_default_value_day'] = $now['mday'];
|
||||
$cp->vars['field_default_value_month'] = $now['mon'];
|
||||
$cp->vars['field_default_value_year'] = $now['year'];
|
||||
$var = $_POST['field_default_value'] = 'now';
|
||||
$var = 'now';
|
||||
$request->overwrite('field_default_value', $var, phpbb_request_interface::POST);
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
@ -496,7 +498,8 @@ class acp_profile
|
|||
$cp->vars['field_default_value_day'] = request_var('field_default_value_day', 0);
|
||||
$cp->vars['field_default_value_month'] = request_var('field_default_value_month', 0);
|
||||
$cp->vars['field_default_value_year'] = request_var('field_default_value_year', 0);
|
||||
$var = $_POST['field_default_value'] = sprintf('%2d-%2d-%4d', $cp->vars['field_default_value_day'], $cp->vars['field_default_value_month'], $cp->vars['field_default_value_year']);
|
||||
$var = sprintf('%2d-%2d-%4d', $cp->vars['field_default_value_day'], $cp->vars['field_default_value_month'], $cp->vars['field_default_value_year']);
|
||||
$request->overwrite('field_default_value', $var, phpbb_request_interface::POST);
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
@ -688,7 +691,7 @@ class acp_profile
|
|||
}
|
||||
else
|
||||
{
|
||||
$_new_key_ary[$key] = (is_array($_REQUEST[$key])) ? utf8_normalize_nfc(request_var($key, array(''), true)) : utf8_normalize_nfc(request_var($key, '', true));
|
||||
$_new_key_ary[$key] = ($request->is_array($key)) ? utf8_normalize_nfc(request_var($key, array(''), true)) : utf8_normalize_nfc(request_var($key, '', true));
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
@ -1623,4 +1626,4 @@ class acp_profile
|
|||
}
|
||||
}
|
||||
|
||||
?>
|
||||
?>
|
||||
|
|
@ -711,8 +711,9 @@ class dbal
|
|||
function sql_report($mode, $query = '')
|
||||
{
|
||||
global $cache, $starttime, $phpbb_root_path, $user;
|
||||
global $request;
|
||||
|
||||
if (empty($_REQUEST['explain']))
|
||||
if (!$request->variable('explain', false))
|
||||
{
|
||||
return false;
|
||||
}
|
||||
|
|
|
|||
|
|
@ -2793,6 +2793,7 @@ function confirm_box($check, $title = '', $hidden = '', $html_body = 'confirm_bo
|
|||
function login_box($redirect = '', $l_explain = '', $l_success = '', $admin = false, $s_display = true)
|
||||
{
|
||||
global $db, $user, $template, $auth, $phpEx, $phpbb_root_path, $config;
|
||||
global $request;
|
||||
|
||||
if (!class_exists('phpbb_captcha_factory', false))
|
||||
{
|
||||
|
|
@ -2843,8 +2844,8 @@ function login_box($redirect = '', $l_explain = '', $l_success = '', $admin = fa
|
|||
}
|
||||
|
||||
$username = request_var('username', '', true);
|
||||
$autologin = (!empty($_POST['autologin'])) ? true : false;
|
||||
$viewonline = (!empty($_POST['viewonline'])) ? 0 : 1;
|
||||
$autologin = $request->variable('autologin', false, false, phpbb_request_interface::POST);
|
||||
$viewonline = (int) $request->variable('viewonline', false, false, phpbb_request_interface::POST);
|
||||
$admin = ($admin) ? 1 : 0;
|
||||
$viewonline = ($admin) ? $user->data['session_viewonline'] : $viewonline;
|
||||
|
||||
|
|
@ -4449,6 +4450,7 @@ function page_header($page_title = '', $display_online_list = true, $item_id = 0
|
|||
function page_footer($run_cron = true)
|
||||
{
|
||||
global $db, $config, $template, $user, $auth, $cache, $starttime, $phpbb_root_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
// Output page creation time
|
||||
if (defined('DEBUG'))
|
||||
|
|
@ -4456,7 +4458,7 @@ function page_footer($run_cron = true)
|
|||
$mtime = explode(' ', microtime());
|
||||
$totaltime = $mtime[0] + $mtime[1] - $starttime;
|
||||
|
||||
if (!empty($_REQUEST['explain']) && $auth->acl_get('a_') && defined('DEBUG_EXTRA') && method_exists($db, 'sql_report'))
|
||||
if ($request->variable('explain', false) && $auth->acl_get('a_') && defined('DEBUG_EXTRA') && method_exists($db, 'sql_report'))
|
||||
{
|
||||
$db->sql_report('display');
|
||||
}
|
||||
|
|
|
|||
|
|
@ -1062,6 +1062,7 @@ function display_user_activity(&$userdata)
|
|||
function watch_topic_forum($mode, &$s_watching, $user_id, $forum_id, $topic_id, $notify_status = 'unset', $start = 0)
|
||||
{
|
||||
global $template, $db, $user, $phpEx, $start, $phpbb_root_path;
|
||||
global $request;
|
||||
|
||||
$table_sql = ($mode == 'forum') ? FORUMS_WATCH_TABLE : TOPICS_WATCH_TABLE;
|
||||
$where_sql = ($mode == 'forum') ? 'forum_id' : 'topic_id';
|
||||
|
|
@ -1098,7 +1099,7 @@ function watch_topic_forum($mode, &$s_watching, $user_id, $forum_id, $topic_id,
|
|||
$message = $user->lang['ERR_UNWATCHING'] . '<br /><br />' . sprintf($user->lang['RETURN_' . strtoupper($mode)], '<a href="' . $redirect_url . '">', '</a>');
|
||||
trigger_error($message);
|
||||
}
|
||||
if ($_GET['unwatch'] == $mode)
|
||||
if ($request->variable('unwatch', '', false, phpbb_request_interface::GET) == $mode)
|
||||
{
|
||||
$is_watching = 0;
|
||||
|
||||
|
|
@ -1136,7 +1137,7 @@ function watch_topic_forum($mode, &$s_watching, $user_id, $forum_id, $topic_id,
|
|||
$token = request_var('hash', '');
|
||||
$redirect_url = append_sid("{$phpbb_root_path}view$mode.$phpEx", "$u_url=$match_id&start=$start");
|
||||
|
||||
if ($_GET['watch'] == $mode && check_link_hash($token, "{$mode}_$match_id"))
|
||||
if ($request->variable('watch', '', false, phpbb_request_interface::GET) == $mode && check_link_hash($token, "{$mode}_$match_id"))
|
||||
{
|
||||
$is_watching = true;
|
||||
|
||||
|
|
@ -1162,7 +1163,7 @@ function watch_topic_forum($mode, &$s_watching, $user_id, $forum_id, $topic_id,
|
|||
}
|
||||
else
|
||||
{
|
||||
if (isset($_GET['unwatch']) && $_GET['unwatch'] == $mode)
|
||||
if ($request->variable('unwatch', '', false, phpbb_request_interface::GET) == $mode)
|
||||
{
|
||||
login_box();
|
||||
}
|
||||
|
|
|
|||
|
|
@ -314,6 +314,7 @@ class p_master
|
|||
function module_auth($module_auth, $forum_id = false)
|
||||
{
|
||||
global $auth, $config;
|
||||
global $request;
|
||||
|
||||
$module_auth = trim($module_auth);
|
||||
|
||||
|
|
@ -361,7 +362,7 @@ class p_master
|
|||
$forum_id = ($forum_id === false) ? $this->acl_forum_id : $forum_id;
|
||||
|
||||
$is_auth = false;
|
||||
eval('$is_auth = (int) (' . preg_replace(array('#acl_([a-z0-9_]+)(,\$id)?#', '#\$id#', '#aclf_([a-z0-9_]+)#', '#cfg_([a-z0-9_]+)#', '#request_([a-zA-Z0-9_]+)#'), array('(int) $auth->acl_get(\'\\1\'\\2)', '(int) $forum_id', '(int) $auth->acl_getf_global(\'\\1\')', '(int) $config[\'\\1\']', '!empty($_REQUEST[\'\\1\'])'), $module_auth) . ');');
|
||||
eval('$is_auth = (int) (' . preg_replace(array('#acl_([a-z0-9_]+)(,\$id)?#', '#\$id#', '#aclf_([a-z0-9_]+)#', '#cfg_([a-z0-9_]+)#', '#request_([a-zA-Z0-9_]+)#'), array('(int) $auth->acl_get(\'\\1\'\\2)', '(int) $forum_id', '(int) $auth->acl_getf_global(\'\\1\')', '(int) $config[\'\\1\']', '$request->variable(\'\\1\', false)'), $module_auth) . ');');
|
||||
|
||||
return $is_auth;
|
||||
}
|
||||
|
|
|
|||
|
|
@ -610,6 +610,7 @@ class custom_profile
|
|||
function get_var($field_validation, &$profile_row, $default_value, $preview)
|
||||
{
|
||||
global $user;
|
||||
global $request;
|
||||
|
||||
$profile_row['field_ident'] = (isset($profile_row['var_name'])) ? $profile_row['var_name'] : 'pf_' . $profile_row['field_ident'];
|
||||
$user_ident = $profile_row['field_ident'];
|
||||
|
|
@ -622,7 +623,7 @@ class custom_profile
|
|||
{
|
||||
if (isset($_REQUEST[$profile_row['field_ident']]))
|
||||
{
|
||||
$value = ($_REQUEST[$profile_row['field_ident']] === '') ? NULL : request_var($profile_row['field_ident'], $default_value);
|
||||
$value = ($request->variable($profile_row['field_ident'], '') === '') ? NULL : $request->variable($profile_row['field_ident'], $default_value);
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
@ -894,6 +895,7 @@ class custom_profile
|
|||
{
|
||||
global $phpbb_root_path, $phpEx;
|
||||
global $config;
|
||||
global $request;
|
||||
|
||||
$var_name = 'pf_' . $profile_row['field_ident'];
|
||||
|
||||
|
|
@ -938,7 +940,7 @@ class custom_profile
|
|||
break;
|
||||
|
||||
case FIELD_INT:
|
||||
if (isset($_REQUEST[$var_name]) && $_REQUEST[$var_name] === '')
|
||||
if (isset($_REQUEST[$var_name]) && $request->variable($var_name, '') === '')
|
||||
{
|
||||
$var = NULL;
|
||||
}
|
||||
|
|
|
|||
|
|
@ -23,6 +23,7 @@ function mcp_forum_view($id, $mode, $action, $forum_info)
|
|||
{
|
||||
global $template, $db, $user, $auth, $cache, $module;
|
||||
global $phpEx, $phpbb_root_path, $config;
|
||||
global $request;
|
||||
|
||||
$user->add_lang(array('viewtopic', 'viewforum'));
|
||||
|
||||
|
|
@ -34,7 +35,10 @@ function mcp_forum_view($id, $mode, $action, $forum_info)
|
|||
if ($merge_select)
|
||||
{
|
||||
// Fixes a "bug" that makes forum_view use the same ordering as topic_view
|
||||
unset($_POST['sk'], $_POST['sd'], $_REQUEST['sk'], $_REQUEST['sd']);
|
||||
$request->overwrite('sk', null);
|
||||
$request->overwrite('sd', null);
|
||||
$request->overwrite('sk', null, phpbb_request_interface::POST);
|
||||
$request->overwrite('sd', null, phpbb_request_interface::POST);
|
||||
}
|
||||
|
||||
$forum_id = $forum_info['forum_id'];
|
||||
|
|
|
|||
|
|
@ -532,6 +532,7 @@ function mcp_move_topic($topic_ids)
|
|||
{
|
||||
global $auth, $user, $db, $template;
|
||||
global $phpEx, $phpbb_root_path;
|
||||
global $request;
|
||||
|
||||
// Here we limit the operation to one forum only
|
||||
$forum_id = check_ids($topic_ids, TOPICS_TABLE, 'topic_id', array('m_move'), true);
|
||||
|
|
@ -585,8 +586,8 @@ function mcp_move_topic($topic_ids)
|
|||
|
||||
if (!$to_forum_id || $additional_msg)
|
||||
{
|
||||
unset($_POST['confirm']);
|
||||
unset($_REQUEST['confirm_key']);
|
||||
$request->overwrite('confirm', null, phpbb_request_interface::POST);
|
||||
$request->overwrite('confirm_key', null);
|
||||
}
|
||||
|
||||
if (confirm_box(true))
|
||||
|
|
@ -1037,8 +1038,8 @@ function mcp_fork_topic($topic_ids)
|
|||
|
||||
if ($additional_msg)
|
||||
{
|
||||
unset($_POST['confirm']);
|
||||
unset($_REQUEST['confirm_key']);
|
||||
$request->overwrite('confirm', null, phpbb_request_interface::POST);
|
||||
$request->overwrite('confirm_key', null);
|
||||
}
|
||||
|
||||
if (confirm_box(true))
|
||||
|
|
|
|||
|
|
@ -744,6 +744,7 @@ function disapprove_post($post_id_list, $id, $mode)
|
|||
{
|
||||
global $db, $template, $user, $config;
|
||||
global $phpEx, $phpbb_root_path;
|
||||
global $request;
|
||||
|
||||
if (!check_ids($post_id_list, POSTS_TABLE, 'post_id', array('m_approve')))
|
||||
{
|
||||
|
|
@ -778,7 +779,7 @@ function disapprove_post($post_id_list, $id, $mode)
|
|||
if (!$row || (!$reason && strtolower($row['reason_title']) == 'other'))
|
||||
{
|
||||
$additional_msg = $user->lang['NO_REASON_DISAPPROVAL'];
|
||||
unset($_POST['confirm']);
|
||||
$request->overwrite('confirm', null, phpbb_request_interface::POST);
|
||||
}
|
||||
else
|
||||
{
|
||||
|
|
|
|||
|
|
@ -1532,9 +1532,10 @@ class parse_message extends bbcode_firstpass
|
|||
function get_submitted_attachment_data($check_user_id = false)
|
||||
{
|
||||
global $user, $db, $phpbb_root_path, $phpEx, $config;
|
||||
global $request;
|
||||
|
||||
$this->filename_data['filecomment'] = utf8_normalize_nfc(request_var('filecomment', '', true));
|
||||
$attachment_data = (isset($_POST['attachment_data'])) ? $_POST['attachment_data'] : array();
|
||||
$attachment_data = $request->variable('attachment_data', array(0 => array('' => '')), true, phpbb_request_interface::POST);
|
||||
$this->attachment_data = array();
|
||||
|
||||
$check_user_id = ($check_user_id === false) ? $user->data['user_id'] : $check_user_id;
|
||||
|
|
@ -1572,7 +1573,7 @@ class parse_message extends bbcode_firstpass
|
|||
{
|
||||
$pos = $not_orphan[$row['attach_id']];
|
||||
$this->attachment_data[$pos] = $row;
|
||||
set_var($this->attachment_data[$pos]['attach_comment'], $_POST['attachment_data'][$pos]['attach_comment'], 'string', true);
|
||||
$this->attachment_data[$pos]['attach_comment'] = $attachment_data[$pos]['attach_comment'];
|
||||
|
||||
unset($not_orphan[$row['attach_id']]);
|
||||
}
|
||||
|
|
@ -1598,7 +1599,7 @@ class parse_message extends bbcode_firstpass
|
|||
{
|
||||
$pos = $orphan[$row['attach_id']];
|
||||
$this->attachment_data[$pos] = $row;
|
||||
set_var($this->attachment_data[$pos]['attach_comment'], $_POST['attachment_data'][$pos]['attach_comment'], 'string', true);
|
||||
$this->attachment_data[$pos]['attach_comment'] = $attachment_data[$pos]['attach_comment'];
|
||||
|
||||
unset($orphan[$row['attach_id']]);
|
||||
}
|
||||
|
|
|
|||
|
|
@ -28,14 +28,15 @@ class ucp_groups
|
|||
{
|
||||
global $config, $phpbb_root_path, $phpEx;
|
||||
global $db, $user, $auth, $cache, $template;
|
||||
global $request;
|
||||
|
||||
$user->add_lang('groups');
|
||||
|
||||
$return_page = '<br /><br />' . sprintf($user->lang['RETURN_PAGE'], '<a href="' . $this->u_action . '">', '</a>');
|
||||
|
||||
$mark_ary = request_var('mark', array(0));
|
||||
$submit = (!empty($_POST['submit'])) ? true : false;
|
||||
$delete = (!empty($_POST['delete'])) ? true : false;
|
||||
$submit = $request->variable('submit', false, false, phpbb_request_interface::POST);
|
||||
$delete = $request->variable('delete', false, false, phpbb_request_interface::POST);
|
||||
$error = $data = array();
|
||||
|
||||
switch ($mode)
|
||||
|
|
|
|||
|
|
@ -34,6 +34,7 @@ class ucp_main
|
|||
function main($id, $mode)
|
||||
{
|
||||
global $config, $db, $user, $auth, $template, $phpbb_root_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
switch ($mode)
|
||||
{
|
||||
|
|
@ -435,7 +436,7 @@ class ucp_main
|
|||
|
||||
$edit = (isset($_REQUEST['edit'])) ? true : false;
|
||||
$submit = (isset($_POST['submit'])) ? true : false;
|
||||
$draft_id = ($edit) ? intval($_REQUEST['edit']) : 0;
|
||||
$draft_id = $request->variable('edit', 0);
|
||||
$delete = (isset($_POST['delete'])) ? true : false;
|
||||
|
||||
$s_hidden_fields = ($edit) ? '<input type="hidden" name="edit" value="' . $draft_id . '" />' : '';
|
||||
|
|
|
|||
|
|
@ -24,6 +24,7 @@ function compose_pm($id, $mode, $action)
|
|||
{
|
||||
global $template, $db, $auth, $user;
|
||||
global $phpbb_root_path, $phpEx, $config;
|
||||
global $request;
|
||||
|
||||
// Damn php and globals - i know, this is horrible
|
||||
// Needed for handle_message_list_actions()
|
||||
|
|
@ -49,13 +50,7 @@ function compose_pm($id, $mode, $action)
|
|||
// Reply to all triggered (quote/reply)
|
||||
$reply_to_all = request_var('reply_to_all', 0);
|
||||
|
||||
// Do NOT use request_var or specialchars here
|
||||
$address_list = isset($_REQUEST['address_list']) ? $_REQUEST['address_list'] : array();
|
||||
|
||||
if (!is_array($address_list))
|
||||
{
|
||||
$address_list = array();
|
||||
}
|
||||
$address_list = $request->variable('address_list', array('' => array(0 => '')));
|
||||
|
||||
$submit = (isset($_POST['post'])) ? true : false;
|
||||
$preview = (isset($_POST['preview'])) ? true : false;
|
||||
|
|
@ -1029,7 +1024,7 @@ function compose_pm($id, $mode, $action)
|
|||
|
||||
$s_hidden_fields = '<input type="hidden" name="lastclick" value="' . $current_time . '" />';
|
||||
$s_hidden_fields .= (isset($check_value)) ? '<input type="hidden" name="status_switch" value="' . $check_value . '" />' : '';
|
||||
$s_hidden_fields .= ($draft_id || isset($_REQUEST['draft_loaded'])) ? '<input type="hidden" name="draft_loaded" value="' . ((isset($_REQUEST['draft_loaded'])) ? intval($_REQUEST['draft_loaded']) : $draft_id) . '" />' : '';
|
||||
$s_hidden_fields .= ($draft_id || isset($_REQUEST['draft_loaded'])) ? '<input type="hidden" name="draft_loaded" value="' . ((isset($_REQUEST['draft_loaded'])) ? $request->variable('draft_loaded', 0) : $draft_id) . '" />' : '';
|
||||
|
||||
$form_enctype = (@ini_get('file_uploads') == '0' || strtolower(@ini_get('file_uploads')) == 'off' || !$config['allow_pm_attach'] || !$auth->acl_get('u_pm_attach')) ? '' : ' enctype="multipart/form-data"';
|
||||
|
||||
|
|
@ -1105,11 +1100,12 @@ function compose_pm($id, $mode, $action)
|
|||
function handle_message_list_actions(&$address_list, &$error, $remove_u, $remove_g, $add_to, $add_bcc)
|
||||
{
|
||||
global $auth, $db, $user;
|
||||
global $request;
|
||||
|
||||
// Delete User [TO/BCC]
|
||||
if ($remove_u && !empty($_REQUEST['remove_u']) && is_array($_REQUEST['remove_u']))
|
||||
if ($remove_u && $request->variable('remove_u', array(0 => '')))
|
||||
{
|
||||
$remove_user_id = array_keys($_REQUEST['remove_u']);
|
||||
$remove_user_id = array_keys($request->variable('remove_u', array(0 => '')));
|
||||
|
||||
if (isset($remove_user_id[0]))
|
||||
{
|
||||
|
|
@ -1118,9 +1114,9 @@ function handle_message_list_actions(&$address_list, &$error, $remove_u, $remove
|
|||
}
|
||||
|
||||
// Delete Group [TO/BCC]
|
||||
if ($remove_g && !empty($_REQUEST['remove_g']) && is_array($_REQUEST['remove_g']))
|
||||
if ($remove_g && $request->variable('remove_g', array(0 => '')))
|
||||
{
|
||||
$remove_group_id = array_keys($_REQUEST['remove_g']);
|
||||
$remove_group_id = array_keys($request->variable('remove_g', array(0 => '')));
|
||||
|
||||
if (isset($remove_group_id[0]))
|
||||
{
|
||||
|
|
@ -1188,7 +1184,7 @@ function handle_message_list_actions(&$address_list, &$error, $remove_u, $remove
|
|||
}
|
||||
|
||||
// Add Friends if specified
|
||||
$friend_list = (isset($_REQUEST['add_' . $type]) && is_array($_REQUEST['add_' . $type])) ? array_map('intval', array_keys($_REQUEST['add_' . $type])) : array();
|
||||
$friend_list = array_keys($request->variable('add_' . $type, array(0)));
|
||||
$user_id_ary = array_merge($user_id_ary, $friend_list);
|
||||
|
||||
foreach ($user_id_ary as $user_id)
|
||||
|
|
|
|||
|
|
@ -245,7 +245,7 @@ function view_message($id, $mode, $folder_id, $msg_id, $folder, $message_row)
|
|||
}
|
||||
}
|
||||
|
||||
if (!isset($_REQUEST['view']) || $_REQUEST['view'] != 'print')
|
||||
if (!isset($_REQUEST['view']) || $request->variable('view', '') != 'print')
|
||||
{
|
||||
// Message History
|
||||
if (message_history($msg_id, $user->data['user_id'], $message_row, $folder))
|
||||
|
|
|
|||
|
|
@ -30,12 +30,13 @@ class ucp_profile
|
|||
function main($id, $mode)
|
||||
{
|
||||
global $config, $db, $user, $auth, $template, $phpbb_root_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
$user->add_lang('posting');
|
||||
|
||||
$preview = (!empty($_POST['preview'])) ? true : false;
|
||||
$submit = (!empty($_POST['submit'])) ? true : false;
|
||||
$delete = (!empty($_POST['delete'])) ? true : false;
|
||||
$preview = $request->variable('preview', false, false, phpbb_request_interface::POST);
|
||||
$submit = $request->variable('submit', false, false, phpbb_request_interface::POST);
|
||||
$delete = $request->variable('delete', false, false, phpbb_request_interface::POST);
|
||||
$error = $data = array();
|
||||
$s_hidden_fields = '';
|
||||
|
||||
|
|
|
|||
|
|
@ -28,6 +28,7 @@ class ucp_register
|
|||
function main($id, $mode)
|
||||
{
|
||||
global $config, $db, $user, $auth, $template, $phpbb_root_path, $phpEx;
|
||||
global $request;
|
||||
|
||||
//
|
||||
if ($config['require_activation'] == USER_ACTIVATION_DISABLE)
|
||||
|
|
@ -37,9 +38,9 @@ class ucp_register
|
|||
|
||||
include($phpbb_root_path . 'includes/functions_profile_fields.' . $phpEx);
|
||||
|
||||
$coppa = (isset($_REQUEST['coppa'])) ? ((!empty($_REQUEST['coppa'])) ? 1 : 0) : false;
|
||||
$agreed = (!empty($_POST['agreed'])) ? 1 : 0;
|
||||
$submit = (isset($_POST['submit'])) ? true : false;
|
||||
$coppa = $request->is_set('coppa') ? (int) $request->variable('coppa', false) : false;
|
||||
$agreed = (int) $request->variable('agreed', false);
|
||||
$submit = $request->is_set_post('submit');
|
||||
$change_lang = request_var('change_lang', '');
|
||||
$user_lang = request_var('lang', $user->lang_name);
|
||||
|
||||
|
|
@ -63,7 +64,7 @@ class ucp_register
|
|||
$submit = false;
|
||||
|
||||
// Setting back agreed to let the user view the agreement in his/her language
|
||||
$agreed = (empty($_GET['change_lang'])) ? 0 : $agreed;
|
||||
$agreed = ($request->variable('change_lang', false)) ? 0 : $agreed;
|
||||
}
|
||||
|
||||
$user->lang_name = $user_lang = $use_lang;
|
||||
|
|
@ -502,4 +503,4 @@ class ucp_register
|
|||
}
|
||||
}
|
||||
|
||||
?>
|
||||
?>
|
||||
|
|
|
|||
|
|
@ -586,6 +586,7 @@ class install_convert extends module
|
|||
{
|
||||
global $template, $user, $phpbb_root_path, $phpEx, $db, $lang, $config, $cache;
|
||||
global $convert, $convert_row, $message_parser, $skip_rows, $language;
|
||||
global $request;
|
||||
|
||||
require($phpbb_root_path . 'config.' . $phpEx);
|
||||
require($phpbb_root_path . 'includes/constants.' . $phpEx);
|
||||
|
|
@ -812,7 +813,7 @@ class install_convert extends module
|
|||
|
||||
if (!$current_table && !$skip_rows)
|
||||
{
|
||||
if (empty($_REQUEST['confirm']))
|
||||
if (!$request->variable('confirm', false))
|
||||
{
|
||||
// If avatars / ranks / smilies folders are specified make sure they are writable
|
||||
$bad_folders = array();
|
||||
|
|
@ -973,7 +974,7 @@ class install_convert extends module
|
|||
));
|
||||
|
||||
return;
|
||||
} // if (empty($_REQUEST['confirm']))
|
||||
} // if (!$request->variable('confirm', false)))
|
||||
|
||||
$template->assign_block_vars('checks', array(
|
||||
'S_LEGEND' => true,
|
||||
|
|
|
|||
|
|
@ -73,6 +73,7 @@ class install_update extends module
|
|||
function main($mode, $sub)
|
||||
{
|
||||
global $template, $phpEx, $phpbb_root_path, $user, $db, $config, $cache, $auth, $language;
|
||||
global $request;
|
||||
|
||||
$this->tpl_name = 'install_update';
|
||||
$this->page_title = 'UPDATE_INSTALLATION';
|
||||
|
|
@ -251,7 +252,7 @@ class install_update extends module
|
|||
$this->include_file('includes/diff/renderer.' . $phpEx);
|
||||
|
||||
// Make sure we stay at the file check if checking the files again
|
||||
if (!empty($_POST['check_again']))
|
||||
if ($request->variable('check_again', false, false, phpbb_request_interface::POST))
|
||||
{
|
||||
$sub = $this->p_master->sub = 'file_check';
|
||||
}
|
||||
|
|
@ -358,7 +359,7 @@ class install_update extends module
|
|||
$action = request_var('action', '');
|
||||
|
||||
// We are directly within an update. To make sure our update list is correct we check its status.
|
||||
$update_list = (!empty($_POST['check_again'])) ? false : $cache->get('_update_list');
|
||||
$update_list = ($request->variable('check_again', false, false, phpbb_request_interface::POST)) ? false : $cache->get('_update_list');
|
||||
$modified = ($update_list !== false) ? @filemtime($cache->cache_dir . 'data_update_list.' . $phpEx) : 0;
|
||||
|
||||
// Make sure the list is up-to-date
|
||||
|
|
@ -714,7 +715,7 @@ class install_update extends module
|
|||
{
|
||||
$cache->put('_diff_files', $file_list);
|
||||
|
||||
if (!empty($_REQUEST['download']))
|
||||
if ($request->variable('download', false))
|
||||
{
|
||||
$params[] = 'download=1';
|
||||
}
|
||||
|
|
@ -829,7 +830,7 @@ class install_update extends module
|
|||
$file_list['status'] = -1;
|
||||
$cache->put('_diff_files', $file_list);
|
||||
|
||||
if (!empty($_REQUEST['download']))
|
||||
if ($request->variable('download', false))
|
||||
{
|
||||
$this->include_file('includes/functions_compress.' . $phpEx);
|
||||
|
||||
|
|
@ -963,7 +964,7 @@ class install_update extends module
|
|||
'DATA' => $data,
|
||||
'NAME' => $user->lang[strtoupper($method . '_' . $data)],
|
||||
'EXPLAIN' => $user->lang[strtoupper($method . '_' . $data) . '_EXPLAIN'],
|
||||
'DEFAULT' => (!empty($_REQUEST[$data])) ? request_var($data, '') : $default
|
||||
'DEFAULT' => $request->variable($data, (string) $default),
|
||||
));
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -31,15 +31,8 @@ $template->assign_var('S_IN_MCP', true);
|
|||
// Basic parameter data
|
||||
$id = request_var('i', '');
|
||||
|
||||
if (isset($_REQUEST['mode']) && is_array($_REQUEST['mode']))
|
||||
{
|
||||
$mode = request_var('mode', array(''));
|
||||
list($mode, ) = each($mode);
|
||||
}
|
||||
else
|
||||
{
|
||||
$mode = request_var('mode', '');
|
||||
}
|
||||
$mode = request_var('mode', array(''));
|
||||
$mode = sizeof($mode) ? array_shift($mode) : '';
|
||||
|
||||
// Only Moderators can go beyond this point
|
||||
if (!$user->data['is_registered'])
|
||||
|
|
@ -57,7 +50,7 @@ $action = request_var('action', '');
|
|||
$action_ary = request_var('action', array('' => 0));
|
||||
|
||||
$forum_action = request_var('forum_action', '');
|
||||
if ($forum_action !== '' && !empty($_POST['sort']))
|
||||
if ($forum_action !== '' && $request->variable('sort', false, false, phpbb_request_interface::POST))
|
||||
{
|
||||
$action = $forum_action;
|
||||
}
|
||||
|
|
@ -174,7 +167,7 @@ if ($quickmod)
|
|||
// Reset start parameter if we jumped from the quickmod dropdown
|
||||
if (request_var('start', 0))
|
||||
{
|
||||
$_REQUEST['start'] = 0;
|
||||
$request->overwrite('start', 0);
|
||||
}
|
||||
|
||||
$module->set_active('logs', 'topic_logs');
|
||||
|
|
|
|||
|
|
@ -1015,7 +1015,7 @@ switch ($mode)
|
|||
// We validate form and field here, only id/class allowed
|
||||
$form = (!preg_match('/^[a-z0-9_-]+$/i', $form)) ? '' : $form;
|
||||
$field = (!preg_match('/^[a-z0-9_-]+$/i', $field)) ? '' : $field;
|
||||
if (($mode == 'searchuser' || sizeof(array_intersect(array_keys($_GET), $search_params)) > 0) && ($config['load_search'] || $auth->acl_get('a_')))
|
||||
if (($mode == 'searchuser' || sizeof(array_intersect($request->variable_names(phpbb_request_interface::GET), $search_params)) > 0) && ($config['load_search'] || $auth->acl_get('a_')))
|
||||
{
|
||||
$username = request_var('username', '', true);
|
||||
$email = strtolower(request_var('email', ''));
|
||||
|
|
|
|||
|
|
@ -663,7 +663,7 @@ if ($submit || $preview || $refresh)
|
|||
$message_parser->message = utf8_normalize_nfc(request_var('message', '', true));
|
||||
|
||||
$post_data['username'] = utf8_normalize_nfc(request_var('username', $post_data['username'], true));
|
||||
$post_data['post_edit_reason'] = (!empty($_POST['edit_reason']) && $mode == 'edit' && $auth->acl_get('m_edit', $forum_id)) ? utf8_normalize_nfc(request_var('edit_reason', '', true)) : '';
|
||||
$post_data['post_edit_reason'] = ($request->variable('edit_reason', false, false, phpbb_request_interface::POST) && $mode == 'edit' && $auth->acl_get('m_edit', $forum_id)) ? utf8_normalize_nfc(request_var('edit_reason', '', true)) : '';
|
||||
|
||||
$post_data['orig_topic_type'] = $post_data['topic_type'];
|
||||
$post_data['topic_type'] = request_var('topic_type', (($mode != 'post') ? (int) $post_data['topic_type'] : POST_NORMAL));
|
||||
|
|
|
|||
|
|
@ -82,7 +82,7 @@ switch ($mode)
|
|||
break;
|
||||
|
||||
case 'logout':
|
||||
if ($user->data['user_id'] != ANONYMOUS && isset($_GET['sid']) && !is_array($_GET['sid']) && $_GET['sid'] === $user->session_id)
|
||||
if ($user->data['user_id'] != ANONYMOUS && $request->is_set('sid') && $request->variable('sid', '') === $user->session_id)
|
||||
{
|
||||
$user->session_kill();
|
||||
$user->session_begin();
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue