/**
* Delete paste or ask for deletion
*/
-$secureAtLevel = '1';
+$reqWritePermissions = true;
require_once 'www-header.php';
$repo = new Repository();
/**
* Display paste contents
*/
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
$repo = new Repository();
* Display DOAP of the paste.
* Contains a machine-readable project description with Git URL.
*/
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
$repo = new Repository();
/**
* Edit paste contents
*/
-$secureAtLevel = '1';
+$reqWritePermissions = true;
require_once 'www-header.php';
+
$repo = new Repository();
$repo->loadFromRequest();
* Fork a repository
*/
namespace phorkie;
-$secureAtLevel = '1';
+$reqWritePermissions = true;
require_once 'www-header.php';
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
* Jump to the index as per the configuration
*/
namespace phorkie;
-$secureAtLevel = false;
+$reqWritePermissions = false;
require_once 'www-header.php';
header(
* List a repository
*/
namespace phorkie;
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
$rs = new Repositories();
*
* Creates and redirects to display page
*/
-$secureAtLevel = '1';
+$reqWritePermissions = true;
require_once 'www-header.php';
$repopo = new Repository_Post();
/**
* Displays a file
*/
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
$repo = new Repository();
/**
* Display historic paste contents
*/
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
$repo = new Repository();
/**
* Search for a search term
*/
-$secureAtLevel = '0';
+$reqWritePermissions = false;
require_once 'www-header.php';
if (!isset($_GET['q']) || $_GET['q'] == '') {
* Edit user information
*/
namespace phorkie;
-$secureAtLevel = '1';
+$reqWritePermissions = true;
require_once 'www-header.php';
if (isset($_POST['name'])) {
$logged_in = true;
}
-if ($secureAtLevel >= $GLOBALS['phorkie']['auth']['securityLevel']) {
- if ($logged_in) {
- return;
- }
-} else {
+if ($logged_in) {
+ //you may do everything if you're logged in
return;
}
-// p / G / log_in = disp
-// 0 / 1 / true = return
-// 0 / 1 / false = block
-// 0 / 2 / true = return
-// 0 / 2 / false = return
-// 1 / 1 / true = return
-// 1 / 1 / false = block
-// 1 / 2 / true = return
-// 1 / 2 / false = block
+if (!isset($reqWritePermissions)) {
+ $reqWritePermissions = true;
+}
+if ($GLOBALS['phorkie']['auth']['securityLevel'] == 1
+ && !$reqWritePermissions
+) {
+ return;
+}
$_SESSION['REQUEST_URI'] = $_SERVER['REQUEST_URI'];
require 'forbidden.php';