From 6f5997be23ad29fb37c34cc05e521fc967952d38 Mon Sep 17 00:00:00 2001 From: marcus Date: Fri, 20 Jun 2008 12:07:03 +0000 Subject: Removed database gatekeepers to avoid chicken and egg problems with privileged codeblock execution, and because it is too problematic. git-svn-id: https://code.elgg.org/elgg/trunk@1019 36083f99-b078-4883-b0ff-0f9b5a30f544 --- engine/lib/database.php | 25 +++++-------------------- 1 file changed, 5 insertions(+), 20 deletions(-) (limited to 'engine/lib/database.php') diff --git a/engine/lib/database.php b/engine/lib/database.php index d81dc8185..74d6d2d77 100644 --- a/engine/lib/database.php +++ b/engine/lib/database.php @@ -127,10 +127,7 @@ function get_data($query, $callback = "") { - global $CONFIG, $dbcalls; - - if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true)) - throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data()')); + global $CONFIG, $dbcalls; $dblink = get_db_link('read'); @@ -172,10 +169,7 @@ function get_data_row($query) { - global $CONFIG, $dbcalls; - - if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true)) - throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data_row()')); + global $CONFIG, $dbcalls; $dblink = get_db_link('read'); @@ -211,10 +205,7 @@ function insert_data($query) { - global $CONFIG, $dbcalls; - - if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true)) - throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'insert_data()')); + global $CONFIG, $dbcalls; $dblink = get_db_link('write'); @@ -243,10 +234,7 @@ function update_data($query) { - global $dbcalls, $CONFIG; - - if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true)) - throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'update_data()')); + global $dbcalls, $CONFIG; $dblink = get_db_link('write'); @@ -276,10 +264,7 @@ function delete_data($query) { - global $dbcalls, $CONFIG; - - if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true)) - throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'delete_data()')); + global $dbcalls, $CONFIG; $dblink = get_db_link('write'); -- cgit v1.2.3