From 86eb923f296ff911e3f516e9052b3edc55a02c8a Mon Sep 17 00:00:00 2001
From: redmatrix <git@macgirvin.com>
Date: Sun, 31 Jul 2016 18:08:41 -0700
Subject: make guest access tokens work with PERMS_NETWORK, PERMS_SITE,
 PERMS_PENDING, and PERMS_CONTACTS; or everything but PERMS_SPECIFIC.
 PERMS_SITE could be contentious, but we're currently denying them as they are
 a guest and don't actually have a channel on this site. We can't easily make
 PERMS_SPECIFIC work without providing an abook entry for the guest since we
 would need to set specific permissions for the guest login, but unfortunately
 this could be the most desirable setting to use in many cases. There is also
 an update of hmessages.po in this commit.

---
 include/security.php | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

(limited to 'include/security.php')

diff --git a/include/security.php b/include/security.php
index c67a1b400..7d2a49bdf 100644
--- a/include/security.php
+++ b/include/security.php
@@ -119,6 +119,34 @@ function atoken_xchan($atoken) {
 	return null;
 }
 
+function atoken_abook($uid,$xchan_hash) {
+
+	if(substr($xchan_hash,16,1) != '.')
+		return false;
+
+	$r = q("select channel_hash from channel where channel_id = %d limit 1",
+		intval($uid)
+	);
+
+	if(! $r)
+		return false;
+
+	$x = q("select * from atoken where atoken_uid = %d and atoken_name = '%s'",
+		intval($uid),
+		dbesc(substr($xchan_hash,17))
+	);
+
+	if($x) {
+		$xchan = atoken_xchan($x[0]);
+		$xchan['abook_blocked'] = 0;
+		$xchan['abook_ignored'] = 0;
+		$xchan['abook_pending'] = 0;
+		return $xchan;
+	}
+
+	return false;
+
+}
 
 
 /**
-- 
cgit v1.2.3