arman/science-ation
1
1
Fork 0
forked from science-ation/science-ation
Code Pull Requests Activity

Authenticate and check for superuser on all /super pages

Browse Source
This commit is contained in:
james 2010-07-15 19:52:44 +00:00
parent ce9bb827ef
commit 5207e193fc
10 changed files with 22 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
super/backuprestore.php
View File

@ -23,7 +23,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'super');
superuser_required();
//make sure backup/restore folder exists, and htaccess it to deny access
if(!file_exists("../data/backuprestore"))

2
super/conferences.php
View File

@ -24,7 +24,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'super');
superuser_required();
send_header("Conferences Setup",
array('Committee Main' => 'committee_main.php',

2
super/index.php
View File

@ -24,7 +24,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'super');
superuser_required();
send_header("Science In A Box Super Configuration",
array('Committee Main' => 'committee_main.php')

2
super/languagepacks.php
View File

@ -24,7 +24,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'super');
superuser_required();
send_header("Language Packs",
array('Committee Main' => 'committee_main.php',
'System Setup' => 'super/index.php')

2
super/roletasks.php
View File

@ -22,6 +22,8 @@
?>
<?
require("../common.inc.php");
require("../user.inc.php");
superuser_required();
$level=0;

2
super/rollover.php
View File

@ -25,7 +25,7 @@
require("../common.inc.php");
require_once("../user.inc.php");
require_once("../config_editor.inc.php");
user_auth_required('committee', 'super');
superuser_required();
send_header("Year Rollover",
array('Committee Main' => 'committee_main.php',
'System Setup' => 'super/index.php')

2
super/superconfig.php
View File

@ -24,7 +24,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'config');
superuser_required();
send_header("SFIAB/SOIAB Super Configuration",
array('Committee Main' => 'committee_main.php')

2
super/systemvariables.php
View File

@ -25,7 +25,7 @@
require("../common.inc.php");
require_once("../user.inc.php");
require_once("../config_editor.inc.php");
user_auth_required('committee', 'super');
superuser_required();
//get the category, and if nothing is chosen, default to Global
if($_GET['category']) $category=$_GET['category'];

2
super/versionchecker.php
View File

@ -24,7 +24,7 @@
<?
require("../common.inc.php");
require_once("../user.inc.php");
user_auth_required('committee', 'super');
superuser_required();
send_header("Version Checker",
array('Committee Main' => 'committee_main.php',
'System Setup' => 'super/index.php')

12
user.inc.php
View File

@ -658,4 +658,16 @@ function user_fair_login($u)
$_SESSION['fairs_id'] = $u['fairs_id'];// == 'yes') ? true : false;
}
function superuser_required() {
//first, they have to be logged in
user_auth_required();
//next, they need superuser
if($_SESSION['superuser']!="yes") {
send_header("Superuser access required");
send_footer();
exit;
}
}
?>