diff options
author | Thomas Willingham <beardyunixer@beardyunixer.com> | 2014-09-15 03:59:04 +0100 |
---|---|---|
committer | Thomas Willingham <beardyunixer@beardyunixer.com> | 2014-09-15 03:59:04 +0100 |
commit | e3b967f475e8933567ba7d80dacb6d496224fe55 (patch) | |
tree | 79b067037038362a5660fa8d1b4b8ed11d04eda4 /include/security.php | |
parent | b6612693b6a9a88c23112e604eee6e91c2778a58 (diff) | |
download | volse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.tar.gz volse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.tar.bz2 volse-hubzilla-e3b967f475e8933567ba7d80dacb6d496224fe55.zip |
Very, very cautiously let a developer switch to the sys chan if
they're also an administrator.
Diffstat (limited to 'include/security.php')
-rw-r--r-- | include/security.php | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/include/security.php b/include/security.php index 0f2edc708..e83cc7061 100644 --- a/include/security.php +++ b/include/security.php @@ -82,6 +82,19 @@ function change_channel($change_channel) { intval(PAGE_REMOVED) ); + // It's not there. Is this an administrator, and is this the sys channel? + if (is_developer()) { + if (! $r) { + if (is_site_admin()) { + $r = q("select channel.*, xchan.* from channel left join xchan on channel.channel_hash = xchan.xchan_hash where channel_id = %d and ( channel_pageflags & %d) and not (channel_pageflags & %d ) limit 1", + intval($change_channel), + intval(PAGE_SYSTEM), + intval(PAGE_REMOVED) + ); + } + } + } + if($r) { $hash = $r[0]['channel_hash']; $_SESSION['uid'] = intval($r[0]['channel_id']); |