mirror/php-adminer
1
0
Fork 0
mirror of https://github.com/vrana/adminer.git synced 2025-08-16 11:34:10 +02:00
Code Issues Releases Wiki Activity

Add support for "where" field privilege

Browse Source 
In Elasticsearch, only indexed fields are searchable.
This commit is contained in:
Peter Knut
2021-04-05 00:08:42 +02:00
committed by Jakub Vrana
parent 862e5b4aa4
commit 87d87248c1
13 changed files with 18 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
adminer/include/adminer.inc.php
View File

@@ -571,7 +571,8 @@ class Adminer {
$cols = array();
foreach ($fields as $name => $field) {
if (
(preg_match('~^[-\d.' . (preg_match('~IN$~', $val["op"]) ? ',' : '') . ']+$~', $val["val"]) || !preg_match('~' . number_type() . '|bit~', $field["type"]))
isset($field["privileges"]["where"])
&& (preg_match('~^[-\d.' . (preg_match('~IN$~', $val["op"]) ? ',' : '') . ']+$~', $val["val"]) || !preg_match('~' . number_type() . '|bit~', $field["type"]))
&& (!preg_match("~[\x80-\xFF]~", $val["val"]) || preg_match('~char|text|enum|set~', $field["type"]))
&& (!preg_match('~date|timestamp~', $field["type"]) || preg_match('~^\d+-\d+-\d+~', $val["val"]))
) {

2
adminer/include/functions.inc.php
View File

@@ -1069,7 +1069,7 @@ function fields_from_edit() {
$name = bracket_escape($key, 1); // 1 - back
$return[$name] = array(
"field" => $name,
"privileges" => array("insert" => 1, "update" => 1),
"privileges" => array("insert" => 1, "update" => 1, "where" => 1),
"null" => 1,
"auto_increment" => ($key == $driver->primary),
);