Fossil

Check-in [b9fa7e28]
Login

Check-in [b9fa7e28]

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:Fix a db_unprotect() call in the Admin pages.
Downloads: Tarball | ZIP archive | SQL archive
Timelines: family | ancestors | descendants | both | trunk
Files: files | file ages | folders
SHA3-256: b9fa7e28712c59816654c622e7634c1be20a0bccea2e3f10c4b2140c0258961a
User & Date: drh 2020-08-30 20:29:56
References
2020-09-07
14:08
The additional db_unprotect() work of check-in [b9fa7e28712c5981] was incomplete. Here is an attempt to finish the job. ... (check-in: 50f61b7a user: drh tags: trunk)
Context
2020-09-02
10:55
When rendering fossil-wiki forum posts, add a wrapper DIV around them so that the CSS which expects that for markdown and plain-text posts still applies. This fixes the sideways layout of fossil-wiki posts like that seen in forumpost/3d709776b8. Note that a simpler fix would be to add the wrapper element to wiki_render_by_mimetype(), but that might have undesired side effects in/via the many other uses of that function. ... (check-in: 7caaa287 user: stephan tags: trunk)
2020-08-30
20:29
Fix a db_unprotect() call in the Admin pages. ... (check-in: b9fa7e28 user: drh tags: trunk)
19:48
Make the wikiedit/fileedit edit-stash select element grow less agressively. ... (check-in: a645302b user: stephan tags: trunk)
Changes
Unified Diff Ignore Whitespace Patch
Changes to src/security_audit.c.
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
    return;
  }
  if( P("cancel") ){
    /* User pressed the cancel button.  Go back */
    cgi_redirect("secaudit0");
  }
  if( P("apply") ){
    db_unprotect(PROTECT_USER);
    db_multi_exec(
      "UPDATE user SET cap=''"
      " WHERE login IN ('nobody','anonymous');"
      "DELETE FROM config WHERE name='public-pages';"
    );
    db_protect_pop();
    db_set("self-register","0",0);







|







602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
    return;
  }
  if( P("cancel") ){
    /* User pressed the cancel button.  Go back */
    cgi_redirect("secaudit0");
  }
  if( P("apply") ){
    db_unprotect(PROTECT_USER|PROTECT_CONFIG);
    db_multi_exec(
      "UPDATE user SET cap=''"
      " WHERE login IN ('nobody','anonymous');"
      "DELETE FROM config WHERE name='public-pages';"
    );
    db_protect_pop();
    db_set("self-register","0",0);