Mercurial > hg > fapweb

diff msitegen.inc.php @ 357:7e906c827e68

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Make default of request items to allow POST only, GET enabled on case by case basis.
author Matti Hamalainen <ccr@tnsp.org>
date Tue, 03 Dec 2013 10:31:25 +0200
parents 61c4dda0ec03
children f7a806d5060f
line wrap: on
line diff
--- a/msitegen.inc.php	Tue Dec 03 08:55:50 2013 +0200
+++ b/msitegen.inc.php	Tue Dec 03 10:31:25 2013 +0200
@@ -319,10 +319,10 @@
 
 function stChkRequestItem($name, &$sdata)
 {
-  if (!isset($_REQUEST[$name]))
+  if (!isset($_POST[$name]))
     return stErrorStrF("Required data item '".$name."' not set.", $name);
 
-  $data = trim($_REQUEST[$name]);
+  $data = trim($_POST[$name]);
   $slen = strlen($data);
 
   if ($sdata !== FALSE)
@@ -389,9 +389,12 @@
 }
 
 
-function stGetRequestItem($name, $default = "")
+function stGetRequestItem($name, $default = "", $allowGet = FALSE)
 {
-  return isset($_REQUEST[$name]) ? trim($_REQUEST[$name]) : $default;
+  if ($allowGet)
+    return isset($_REQUEST[$name]) ? trim($_REQUEST[$name]) : $default;
+  else
+    return isset($_POST[$name]) ? trim($_POST[$name]) : $default;
 }