<?php
+
/**
* Administrator plugin - Authentication routines
*
* This function tell other modules what users have access
* to the plugin.
*
- * @version $Id$
* @author Philippe Mingo
- * @copyright (c) 1999-2004 The SquirrelMail Project Team
+ * @copyright © 1999-2005 The SquirrelMail Project Team
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
+ * @version $Id$
* @package plugins
* @subpackage administrator
*/
* Check if user has access to administrative functions
*
* @return boolean
- * @access private
*/
function adm_check_user() {
- global $PHP_SELF;
+ global $PHP_SELF, $plugins;
require_once(SM_PATH . 'functions/global.php');
+ /* fail if the plugin is not enabled */
+ if ( !in_array('administrator', $plugins) ) {
+ return FALSE;
+ }
+
if ( !sqgetGlobalVar('username',$username,SQ_SESSION) ) {
$username = '';
}
$auth = FALSE;
} else if (file_exists(SM_PATH . 'plugins/administrator/admins')) {
$auths = file(SM_PATH . 'plugins/administrator/admins');
- $auth = in_array("$username\n", $auths);
+ array_walk($auths, 'adm_array_trim');
+ $auth = in_array($username, $auths);
} else if (file_exists(SM_PATH . 'config/admins')) {
$auths = file(SM_PATH . 'config/admins');
- $auth = in_array("$username\n", $auths);
- } else if ($adm_id = fileowner(SM_PATH . 'config/config.php') &&
+ array_walk($auths, 'adm_array_trim');
+ $auth = in_array($username, $auths);
+ } else if (($adm_id = fileowner(SM_PATH . 'config/config.php')) &&
function_exists('posix_getpwuid')) {
$adm = posix_getpwuid( $adm_id );
$auth = ($username == $adm['name']);
return ($auth);
}
+/**
+ * Removes whitespace from array values
+ * @param string $value array value that has to be trimmed
+ * @param string $key array key
+ * @since 1.5.1 and 1.4.5
+ * @access private
+ */
+function adm_array_trim(&$value,$key) {
+ $value=trim($value);
+}
?>
\ No newline at end of file
projects / squirrelmail.git / blobdiff