X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=classes%2Fxnetsession.php;h=0ebc2e669f2a09b241bb06f270b0df63ef99d6e1;hb=b6dcc0b3f53ce1252bcce82b49ffaf591ec59947;hp=79e456a7449d468d50425e63576ca4e9bf6a8f19;hpb=076412639089ff7a5dfd8ae1652faf1683c322e5;p=platal.git diff --git a/classes/xnetsession.php b/classes/xnetsession.php index 79e456a..0ebc2e6 100644 --- a/classes/xnetsession.php +++ b/classes/xnetsession.php @@ -1,6 +1,6 @@ xnet->auth_baseurl) { // prevent connection to be linked to disconnection if (($i = strpos($_SERVER['REQUEST_URI'], 'exit')) !== false) $returl = "http://{$_SERVER['SERVER_NAME']}".substr($_SERVER['REQUEST_URI'], 0, $i); else $returl = "http://{$_SERVER['SERVER_NAME']}{$_SERVER['REQUEST_URI']}"; - $url = "https://www.polytechnique.org/auth-groupex"; + $url = $globals->xnet->auth_baseurl; $url .= "?session=" . session_id(); $url .= "&challenge=" . S::v('challenge'); $url .= "&pass=" . md5(S::v('challenge') . $globals->xnet->secret); @@ -64,6 +64,8 @@ class XnetSession extends XorgSession if ($globals->asso('pub') != 'private') { $perms->addFlag('groupannu'); } + } else if ($globals->asso('pub') == 'public') { + $perms->addFlag('groupannu'); } if ($globals->asso('cat') == 'Promotions') { $perms->addFlag('groupannu'); @@ -76,7 +78,7 @@ class XnetSession extends XorgSession protected function doAuth($level) { if (S::identified()) { // ok, c'est bon, on n'a rien à faire - return User::getSilentWithValues(null, array('user_id' => S::i('uid'))); + return User::getSilentWithValues(null, array('uid' => S::i('uid'))); } if (!Get::has('auth')) { return null; @@ -87,7 +89,7 @@ class XnetSession extends XorgSession } Get::kill('auth'); S::set('auth', AUTH_MDP); - return User::getSilentWithValues(null, array('user_id' => Get::i('uid'))); + return User::getSilentWithValues(null, array('uid' => Get::i('uid'))); } protected function startSessionAs($user, $level) @@ -95,7 +97,7 @@ class XnetSession extends XorgSession if ($level == AUTH_SUID) { S::set('auth', AUTH_MDP); } - $res = XDB::query("SELECT a.uid, a.display_name, a.full_name, + $res = XDB::query("SELECT a.uid, a.hruid, a.display_name, a.full_name, a.sex = 'female' AS femme, a.email_format, a.token, at.perms, a.is_admin @@ -166,7 +168,7 @@ function may_update($force = false, $lose = false) $may_update[$asso_id] = true; } elseif (!isset($may_update[$asso_id]) || $force) { $res = XDB::query("SELECT perms - FROM groupex.membres + FROM group_members WHERE uid={?} AND asso_id={?}", S::v('uid'), $asso_id); $may_update[$asso_id] = ($res->fetchOneCell() == 'admin'); @@ -198,7 +200,7 @@ function is_member($force = false, $lose = false) $is_member[$asso_id] = true; } elseif (!isset($is_member[$asso_id]) || $force) { $res = XDB::query("SELECT COUNT(*) - FROM groupex.membres + FROM group_members WHERE uid={?} AND asso_id={?}", S::v('uid'), $asso_id); $is_member[$asso_id] = ($res->fetchOneCell() == 1);