|
From: Garvin H. <gar...@us...> - 2004-06-23 11:42:50
|
Update of /cvsroot/php-blog/serendipity In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv10952 Modified Files: NEWS serendipity_functions.inc.php Log Message: fix bug #977695 - multi user editors couldn't re-edit their entries Index: serendipity_functions.inc.php =================================================================== RCS file: /cvsroot/php-blog/serendipity/serendipity_functions.inc.php,v retrieving revision 1.302 retrieving revision 1.303 diff -u -d -r1.302 -r1.303 --- serendipity_functions.inc.php 23 Jun 2004 11:13:09 -0000 1.302 +++ serendipity_functions.inc.php 23 Jun 2004 11:42:41 -0000 1.303 @@ -2339,6 +2339,11 @@ $newEntry = 1; } else { /* we need to update */ + + // Get settings from entry if already in DB, which should not be alterable with POST methods + $_entry = serendipity_fetchEntry('id', $entry['id'], 1, 1); + $entry['authorid'] = $_entry['authorid']; + if (isset($serendipity['GET']['adminModule']) && $serendipity['GET']['adminModule'] == 'entries' && $serendipity['serendipityUserlevel'] < USERLEVEL_CHIEF && $entry['authorid'] != $serendipity['authorid']) { // Only chiefs and admins can change other's entry. Else update fails. return; Index: NEWS =================================================================== RCS file: /cvsroot/php-blog/serendipity/NEWS,v retrieving revision 1.159 retrieving revision 1.160 diff -u -d -r1.159 -r1.160 --- NEWS 23 Jun 2004 11:13:08 -0000 1.159 +++ NEWS 23 Jun 2004 11:42:41 -0000 1.160 @@ -3,6 +3,9 @@ Version 0.7 () ------------------------------------------------------------------------ + * Multi User: Fixed bug #977695 where simple editors couldn't re-edit + their entries (garvinhicking) + * Auto-Trackback from serendipity will now only fetch links smaller than 150kb. Use socket connections instead of URL wrappers for better control. (garvinhicking) |
