s4
changeset 782:e9e86a1fc1f3
[TEST] Post integrity check introduced
author | HIROSE Yuuji <yuuji@gentei.org> |
---|---|
date | Fri, 12 Jun 2020 19:01:48 +0900 |
parents | 2c5a8c5dd1ee |
children | 5adf7e5a5fcc d368b937956e |
files | s4-blog.sh |
diffstat | 1 files changed, 12 insertions(+), 0 deletions(-) [+] |
line diff
1.1 --- a/s4-blog.sh Thu Jun 11 10:35:19 2020 +0900 1.2 +++ b/s4-blog.sh Fri Jun 12 19:01:48 2020 +0900 1.3 @@ -1292,6 +1292,18 @@ 1.4 text=`getpar text` 1.5 if [ -n "$text" ]; then 1.6 if $iswritable; then 1.7 + ## BEGIN: 2020-06-11 - Post Integrity Check. Disable if it slows down.. 1.8 + blogid=`getpar blogid | tr -c -d 'a-z0-9'` 1.9 + brid=`query "SELECT rowid FROM blog WHERE id='$blogid';"` 1.10 + if [ x"$rowid" != x"$brid" ]; then 1.11 + _id=`getpar id | tr -c -d 'a-z0-9'` 1.12 + _aid=`query "SELECT rowid FROM article WHERE id='$_id';"` 1.13 + if [ -z "$_aid" ]; then 1.14 + echo "掲示板から書き込んで下さい。" | html p 1.15 + return 1.16 + fi 1.17 + fi 1.18 + ## END: 1.19 par2table $formdir/article.def 1.20 st=$? 1.21 case $st in