From 5681f47424f7c4b17acb56656135efff420fa09a Mon Sep 17 00:00:00 2001
From: marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>
Date: Thu, 19 Jun 2008 19:45:45 +0000
Subject: Re-enabled database gatekeepers, please report problems. Refs #3, #45

git-svn-id: https://code.elgg.org/elgg/trunk@1010 36083f99-b078-4883-b0ff-0f9b5a30f544
---
 engine/lib/database.php | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

(limited to 'engine/lib')

diff --git a/engine/lib/database.php b/engine/lib/database.php
index b06de96e7..d3113e202 100644
--- a/engine/lib/database.php
+++ b/engine/lib/database.php
@@ -129,8 +129,8 @@
             
             global $CONFIG, $dbcalls;
             
-            //if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
-            //	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data()'));
+            if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
+            	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data()'));
             
             $dblink = get_db_link('read');
             
@@ -174,8 +174,8 @@
             
             global $CONFIG, $dbcalls;
             
-           // if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
-           // 	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data_row()'));
+            if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
+            	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'get_data_row()'));
             
             $dblink = get_db_link('read');
             
@@ -213,8 +213,8 @@
             
             global $CONFIG, $dbcalls;
             
-            //if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
-            //	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'insert_data()'));
+            if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
+            	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'insert_data()'));
             
             $dblink = get_db_link('write');
             
@@ -245,8 +245,8 @@
             
             global $dbcalls, $CONFIG;
             
-            //if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
-            //	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'update_data()'));
+            if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
+            	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'update_data()'));
             
             $dblink = get_db_link('write');
             
@@ -278,8 +278,8 @@
             
             global $dbcalls, $CONFIG;
             
-            //if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
-            //	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'delete_data()'));
+            if (!callpath_gatekeeper($CONFIG->path . "engine/", true, true))
+            	throw new SecurityException(sprintf(elgg_echo('SecurityException:FunctionDenied'), 'delete_data()'));
             
             $dblink = get_db_link('write');
             
-- 
cgit v1.2.3