aboutsummaryrefslogtreecommitdiffstats
path: root/include/security.php
diff options
context:
space:
mode:
authorThomas Willingham <beardyunixer@beardyunixer.com>2014-09-15 03:59:04 +0100
committerThomas Willingham <beardyunixer@beardyunixer.com>2014-09-15 03:59:04 +0100
commite3b967f475e8933567ba7d80dacb6d496224fe55 (patch)
tree79b067037038362a5660fa8d1b4b8ed11d04eda4 /include/security.php
parentb6612693b6a9a88c23112e604eee6e91c2778a58 (diff)
downloadvolse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.tar.gz
volse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.tar.bz2
volse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.zip
Very, very cautiously let a developer switch to the sys chan if
they're also an administrator.
Diffstat (limited to 'include/security.php')
-rw-r--r--include/security.php13
1 files changed, 13 insertions, 0 deletions
diff --git a/include/security.php b/include/security.php
index 0f2edc708..e83cc7061 100644
--- a/include/security.php
+++ b/include/security.php
@@ -82,6 +82,19 @@ function change_channel($change_channel) {
intval(PAGE_REMOVED)
);
+ // It's not there. Is this an administrator, and is this the sys channel?
+ if (is_developer()) {
+ if (! $r) {
+ if (is_site_admin()) {
+ $r = q("select channel.*, xchan.* from channel left join xchan on channel.channel_hash = xchan.xchan_hash where channel_id = %d and ( channel_pageflags & %d) and not (channel_pageflags & %d ) limit 1",
+ intval($change_channel),
+ intval(PAGE_SYSTEM),
+ intval(PAGE_REMOVED)
+ );
+ }
+ }
+ }
+
if($r) {
$hash = $r[0]['channel_hash'];
$_SESSION['uid'] = intval($r[0]['channel_id']);