Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

#199780 by Pancho and chx: fix problem in access rules check introduced in #174025

6.x
Gábor Hojtsy 2007-12-20 08:20:58 +00:00
parent 310765bccb
commit 090b90227b
1 changed files with 4 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
includes/bootstrap.inc
View File

@ -824,13 +824,10 @@ function drupal_is_denied($type, $mask) {
// Because this function is called for every page request, both cached // Because this function is called for every page request, both cached
// and non-cached pages, we tried to optimize it as much as possible. // and non-cached pages, we tried to optimize it as much as possible.
// We deny access if the only matching records in the {access} table have // We deny access if the only matching records in the {access} table have
// status 0. If any have status 1, or if there are no matching records, // status 0 (deny). If any have status 1 (allow), or if there are no
// we allow access. // matching records, we allow access.
// We only select for records with status 0. If we have some of $sql = "SELECT 1 FROM {access} WHERE type = '%s' AND LOWER('%s') LIKE LOWER(mask) AND status = %d";
// these, we return 1 (denied). If no matching records or only ones return db_result(db_query_range($sql, $type, $mask, 0, 0, 1)) && !db_result(db_query_range($sql, $type, $mask, 1, 0, 1));
// with status = 1, we get no return from db_result, so we return
// (bool)NULL = 0 (allowed).
return (bool) db_result(db_query_range("SELECT 1 FROM {access} WHERE type = '%s' AND LOWER('%s') LIKE LOWER(mask) AND status = 0", $type, $mask, 0, 1));
} }
/** /**