diff options
| author | Zot <mike@macgirvin.com> | 2020-05-06 11:00:29 +0200 |
|---|---|---|
| committer | Mario <mario@mariovavti.com> | 2020-05-06 11:00:29 +0200 |
| commit | 2cb0cade7b41e1251fb90e857f690ec155a10c9e (patch) | |
| tree | 053bbcc9c213bd2e1da2b4a1c464be771929b2c3 /Zotlabs/Storage/File.php | |
| parent | 06d1cf83d2b1acfef5529fe388d2502bea381881 (diff) | |
| download | volse-hubzilla-2cb0cade7b41e1251fb90e857f690ec155a10c9e.tar.gz volse-hubzilla-2cb0cade7b41e1251fb90e857f690ec155a10c9e.tar.bz2 volse-hubzilla-2cb0cade7b41e1251fb90e857f690ec155a10c9e.zip | |
Revert "issue generating photo thumbnails when uploaded via davfs"
This reverts commit 7a0d9a449492ff3b5ef97b997310ed26ec1f53e4.
Diffstat (limited to 'Zotlabs/Storage/File.php')
| -rw-r--r-- | Zotlabs/Storage/File.php | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/Zotlabs/Storage/File.php b/Zotlabs/Storage/File.php index 68edde166..ee96363c4 100644 --- a/Zotlabs/Storage/File.php +++ b/Zotlabs/Storage/File.php @@ -121,6 +121,11 @@ class File extends DAV\Node implements DAV\IFile { logger('put file: ' . basename($this->name), LOGGER_DEBUG); $size = 0; + if ((! $this->auth->owner_id) || (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'write_storage'))) { + logger('permission denied for put operation'); + throw new DAV\Exception\Forbidden('Permission denied.'); + } + // @todo only 3 values are needed $c = q("SELECT * FROM channel WHERE channel_id = %d AND channel_removed = 0 LIMIT 1", intval($this->auth->owner_id) |