$parent_permissions=permissions::checkPerms($parent_id);
- if (!$parent_permissions['w']) {
+ if ((!$parent_permissions['w']) && ($params['flag']!='registration' )) {
$error=$error_messages['WRITE_PERMISSION_ERROR'];
logger::log('add','error','WRITE_PERMISSION_ERROR');
return false;
// Security checks
$login = db_escape_string($login);
- if (!is_numeric($login_id)) { return false; }
+ if (!is_numeric($login_id)) {
+ $error="Not numeric id is not numeric. Here, take this stone.";
+ return $error;
+ }
if ($login == '') {
$error="Please enter name or id";
- return false;
+ return $error;
}
- if ($login_id = 0) {
+ if ($login_id == 0) {
$set=$db->query("select * from users where login='$login'");
} else {
- $set=$db->query("select * from users where user_id='$login'");
+ $set=$db->query("select * from users where user_id='$login_id'");
}
$set->next();
if ($hash != $vercode) {
$error="Bad verification code!";
- return false;
+ return $error;
}
$password = sha1($password);
$q="update users set password='$password',hash='' where user_id='$user_id'";
$db->query($q);
+
+ $error="OK, password was RE-set";
+ return $error;
+}
- return 0;
+// levenshteinLog
+
+// Log user action for later analysis
+// Secure.
+
+public static function levenshteinLog($userid,$nodeid) {
+ global $db;
+
+ $q="insert delayed into levenshtein set user_id='".$userid."',node_id='".$node_id."'";
+ $db->update($q);
+
}
+
}
?>