mirror_php/moodle
1
0
Fork 0
mirror of https://github.com/moodle/moodle.git synced 2025-01-19 06:18:28 +01:00
Code Issues Projects Releases Wiki Activity

Even more automation: now blocks_execute_url_action() checks if the user

Browse Source 
has sufficient rights to execute the action automatically. It's therefore
safe to call without ANY checks being done first.
This commit is contained in:
defacer 2005-02-01 06:55:02 +00:00
parent 0144a0a701
commit 3edc57e189
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/blocklib.php
View File

@ -482,7 +482,7 @@ function blocks_execute_action($page, &$pageblocks, $blockaction, $instanceorid)
function blocks_execute_url_action(&$PAGE, &$pageblocks) {
$blockaction = optional_param('blockaction');
if (empty($blockaction) || !confirm_sesskey()) {
if (empty($blockaction) || !$PAGE->user_allowed_editing() || !confirm_sesskey()) {
return;
}