X-Git-Url: https://vcs.fsf.org/?a=blobdiff_plain;f=functions%2Fglobal.php;h=2462ac6d202bd41ef84787165b9541dfbef0edcf;hb=2c86c02c16613d2e95d735e15b2b26d17c563453;hp=a048f3dbda0c8eab6911f90a0f64170531fe83a7;hpb=b455793d64b04ed76805c862363b4c71d2792d5e;p=squirrelmail.git diff --git a/functions/global.php b/functions/global.php index a048f3db..2462ac6d 100644 --- a/functions/global.php +++ b/functions/global.php @@ -38,7 +38,7 @@ ini_set('magic_quotes_runtime','0'); if ( !check_php_version(4,1) ) { global $_COOKIE, $_ENV, $_FILES, $_GET, $_POST, $_SERVER, $_SESSION; global $HTTP_COOKIE_VARS, $HTTP_ENV_VARS, $HTTP_POST_FILES, $HTTP_GET_VARS, - $HTTP_POST_VARS, $HTTP_SERVER_VARS, $HTTP_SESSION_VARS; + $HTTP_POST_VARS, $HTTP_SERVER_VARS, $HTTP_SESSION_VARS, $PHP_SELF; $_COOKIE =& $HTTP_COOKIE_VARS; $_ENV =& $HTTP_ENV_VARS; $_FILES =& $HTTP_POST_FILES; @@ -46,6 +46,9 @@ if ( !check_php_version(4,1) ) { $_POST =& $HTTP_POST_VARS; $_SERVER =& $HTTP_SERVER_VARS; $_SESSION =& $HTTP_SESSION_VARS; + if (!isset($PHP_SELF) || empty($PHP_SELF)) { + $PHP_SELF = $HTTP_SERVER_VARS['PHP_SELF']; + } } /* if running with magic_quotes_gpc then strip the slashes @@ -168,10 +171,19 @@ define('SQ_SERVER',5); /** * Search for the var $name in $_SESSION, $_POST, $_GET, * $_COOKIE, or $_SERVER and set it in provided var. + * * If $search is not provided, or == SQ_INORDER, it will search * $_SESSION, then $_POST, then $_GET. Otherwise, * use one of the defined constants to look for * a var in one place specifically. + * + * Note: $search is an int value equal to one of the + * constants defined above. + * + * example: + * sqgetGlobalVar('username',$username,SQ_SESSION); + * -- no quotes around last param! + * * Returns FALSE if variable is not found. * Returns TRUE if it is. */ @@ -179,46 +191,50 @@ function sqgetGlobalVar($name, &$value, $search = SQ_INORDER) { if ( !check_php_version(4,1) ) { global $_SESSION, $_GET, $_POST, $_COOKIE, $_SERVER; } - + + /* NOTE: DO NOT enclose the constants in the switch + statement with quotes. They are constant values, + enclosing them in quotes will cause them to evaluate + as strings. */ switch ($search) { /* we want the default case to be first here, so that if a valid value isn't specified, all three arrays will be searched. */ - default: - case 'SQ_INORDER': - case 'SQ_SESSION': - if( isset($_SESSION[$name]) ) { + default: + case SQ_INORDER: + case SQ_SESSION: + if( isset($_SESSION[$name]) ) { $value = $_SESSION[$name]; - return TRUE; - } elseif ( $search == SQ_SESSION ) { - break; - } - case 'SQ_POST': - if( isset($_POST[$name]) ) { + return TRUE; + } elseif ( $search == SQ_SESSION ) { + break; + } + case SQ_POST: + if( isset($_POST[$name]) ) { $value = $_POST[$name]; - return TRUE; - } elseif ( $search == SQ_POST ) { - break; - } - case 'SQ_GET': - if ( isset($_GET[$name]) ) { - $value = $_GET[$name]; - return TRUE; - } - /* NO IF HERE. FOR SQ_INORDER CASE, EXIT after GET */ - break; - case 'SQ_COOKIE': - if ( isset($_COOKIE[$name]) ) { - $value = $_COOKIE[$name]; - return TRUE; - } - break; - case 'SQ_SERVER': - if ( isset($_SERVER[$name]) ) { - $value = $_SERVER[$name]; - return TRUE; - } + return TRUE; + } elseif ( $search == SQ_POST ) { break; + } + case SQ_GET: + if ( isset($_GET[$name]) ) { + $value = $_GET[$name]; + return TRUE; + } + /* NO IF HERE. FOR SQ_INORDER CASE, EXIT after GET */ + break; + case SQ_COOKIE: + if ( isset($_COOKIE[$name]) ) { + $value = $_COOKIE[$name]; + return TRUE; + } + break; + case SQ_SERVER: + if ( isset($_SERVER[$name]) ) { + $value = $_SERVER[$name]; + return TRUE; + } + break; } return FALSE; } @@ -250,7 +266,7 @@ function sqsession_destroy() { } else { $_SESSION = array(); } - @session_destroy; + @session_destroy(); } }