vb.org Archive - Permission problem

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vB3 Programming Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=15)

- - Permission problem (https://vborg.vbsupport.ru/showthread.php?t=156265)

subnet_rx

08-26-2007 03:20 AM

Permission problem

I have read several articles, did some trial and error, and basically figured out many of my questions. At this point in my script, I have a question about usergroup_permissions. I got this code out of Psionic's tutorial, but it doesn't seem to work for me. Everyone is getting to the form. Here it is:

Code:

if ($_REQUEST['do']=='create_event' AND (!is_member_of($vbulletin->userinfo, 6) OR !is_member_of($vbulletin->userinfo, 76)))

{

        eval('$usernamecode = "' . fetch_template('newpost_usernamecode') . '";');

        if (!$_REQUEST['outcomes'])

        {

                eval('$picksbody = "' . fetch_template('picks_outcomes') . '";');

        }

        else

        {

                $o = $_REQUEST['outcomes'];

                for($i=0; $i<=$o; $i++)

                {

                        $outcomes .= "<p><label>Outcome ".$i.":<input name=\"outcome[".$i."]\" type=\"text\" id=\"outcome".$i."\" size=\"64\" maxlength=\"127\" /></label></p>";

                }

                eval('$picksbody = "' . fetch_template('picks_new_event') . '";');

        }

}

Users in group 6 (me) and users not in either group still get the code executed in the function.

Kirk Y

08-26-2007 05:15 AM

Who exactly do you want to have access?

And this:

Code:

(!is_member_of($vbulletin->userinfo, 6) OR !is_member_of($vbulletin->userinfo, 76))

Should be:

Code:

(!is_member_of($vbulletin->userinfo, 6,76))

subnet_rx

08-27-2007 01:20 PM

Quote:

Originally Posted by Kirk Y (Post 1325845)

Who exactly do you want to have access?

And this:

Code:

(!is_member_of($vbulletin->userinfo, 6) OR !is_member_of($vbulletin->userinfo, 76))

Should be:

Code:

(!is_member_of($vbulletin->userinfo, 6,76))

I want members of the groups 6 and 76 to have access. No one else.

Paul M

08-27-2007 02:49 PM

In which case remove the ! at the start of Kirks suggestion - atm that is saying anyone who is not a member of groups 6 or 76 (you can also remove the brackets around it).

subnet_rx

08-27-2007 02:52 PM

Well, I knew that's what it should mean, but in Psionic's tutorial, he has this:

Certain Usergroups Only (In this example, 6 and 7)

PHP Code:
if (!is_member_of($vbulletin->userinfo, 6) AND !is_member_of($vbulletin->userinfo, 7))
{
print_no_permission();
}

Kirk Y

08-27-2007 09:42 PM

Yes, that's allowing members of Usergroup 6 and 7 only; all other get a permission error. When dealing with the is_member_of function, the second argument can contain multiple usergroup ids, so you don't need to use two separate conditions..

All times are GMT. The time now is 10:54 AM.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01090 seconds Memory Usage 1,725KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (5)bbcode_code_printable (1)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)post_thanks_navbar_search (1)printthread (6)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: