kashire/lainchan
4
0
Fork 0
Code Issues 3 Pull Requests Releases Wiki Activity

Block banned clients from accessing the moderation panel

Browse Source
This commit is contained in:
Savetheinternet 2011-01-02 02:05:30 +11:00
parent a22df7b039
commit ed69333580
1 changed files with 9 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
mod.php
View File

@ -8,6 +8,12 @@
require 'inc/template.php'; require 'inc/template.php';
require 'inc/database.php'; require 'inc/database.php';
require 'inc/user.php'; require 'inc/user.php';
sql_open();
// Check if banned
checkBan();
require 'inc/mod.php'; require 'inc/mod.php';
// Fix some encoding issues // Fix some encoding issues
@ -23,8 +29,6 @@
empty($_POST['password']) empty($_POST['password'])
) loginForm(ERROR_INVALID, $_POST['username']); ) loginForm(ERROR_INVALID, $_POST['username']);
// Open connection
sql_open();
if(!login($_POST['username'], $_POST['password'])) if(!login($_POST['username'], $_POST['password']))
loginForm(ERROR_INVALID, $_POST['username']); loginForm(ERROR_INVALID, $_POST['username']);
@ -315,7 +319,7 @@
if(empty($_POST['ip'])) if(empty($_POST['ip']))
error(sprintf(ERROR_REQUIRED, 'IP address')); error(sprintf(ERROR_REQUIRED, 'IP address'));
$query = prepare("INSERT INTO `bans` VALUES (:ip, :mod, :expires, :reason)"); $query = prepare("INSERT INTO `bans` VALUES (:ip, :mod, :set, :expires, :reason)");
// 1yr2hrs30mins // 1yr2hrs30mins
// 1y2h30m // 1y2h30m
@ -353,6 +357,8 @@
$query->bindValue(':ip', $_POST['ip'], PDO::PARAM_STR); $query->bindValue(':ip', $_POST['ip'], PDO::PARAM_STR);
$query->bindValue(':mod', $mod['id'], PDO::PARAM_INT); $query->bindValue(':mod', $mod['id'], PDO::PARAM_INT);
$query->bindValue(':set', time(), PDO::PARAM_INT);
if(isset($_POST['reason'])) { if(isset($_POST['reason'])) {
$query->bindValue(':reason', $_POST['reason'], PDO::PARAM_STR); $query->bindValue(':reason', $_POST['reason'], PDO::PARAM_STR);
} else { } else {