composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-03-05 17:14:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

Security: protected bulk modify against HTTP/Post piracy

Browse Source 
SVN:trunk[1476]
This commit is contained in:
Romain Quetiez
2011-08-19 15:26:05 +00:00
parent 22bdc02b1b
commit cc7844ea10
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
pages/UI.php
View File

@@ -979,6 +979,10 @@ EOF
case 'preview_or_modify_all': // Preview or apply bulk modify
$sFilter = utils::ReadParam('filter', '', false, 'raw_data');
// TO DO: limit the search filter by the user context
$oFilter = DBObjectSearch::unserialize($sFilter); // TO DO : check that the filter is valid
$oChecker = new ActionChecker($oFilter, UR_ACTION_BULK_MODIFY);
$sClass = utils::ReadParam('class', '', false, 'class');
$bPreview = utils::ReadParam('preview_mode', '');
$sSelectedObj = utils::ReadParam('selectObj', '');