Changeset 10035 for extensions/ContactForm/classes/cf_plugin.class.php

Timestamp:

04/04/11 14:51:28 (2 years ago)

Author:

plg

Message:

compatibility with Piwigo 2.2 (remove "adviser", get_comment_post_key()
replaced by get_ephemeral_key(), known_script replaced by combine_script
and use of combine_css)

textarea is no more "resizable" (useless and break CSS rules)

Files:

• extensions/ContactForm/classes/cf_plugin.class.php (modified) (3 diffs)

extensions/ContactForm/classes/cf_plugin.class.php

@@ -187 +187 @@
         'cf_messages' => realpath(cf_get_template('cf_messages.tpl')),
       ));
-    $template->block_html_head( '',
-              '<link rel="stylesheet" type="text/css" '.
-              'href="' . CF_INCLUDE . 'contactform.css' . '">',
-              $smarty, $repeat);
-    $template->block_html_head( '',
-              '<script type="text/javascript" '.
-              'src="' . CF_INCLUDE . 'contactform.js' . '">'.
-              '</script>',
-              $smarty, $repeat);
+    
     $cf = array(
         'TITLE'     => 'contact_form_title',
@@ -207 +199 @@
         'SUBJECT'   => $infos['cf_subject'],
         'MESSAGE'   => $infos['cf_message'],
-        'KEY'       => get_comment_post_key($infos['cf_id']),
+        'KEY'       => get_ephemeral_key(2, $infos['cf_id']),
       );
     if (!empty($infos['errors'])) {
@@ -463 +455 @@
       $id = trim( stripslashes($_POST['cf_id']));
     }
-    
-    $key = explode( ':', $key );
-    if ( count($key)!=2
-          or $key[0]>time()-2 // page must have been retrieved more than 2 sec ago
-          or $key[0]<time()-3600 // 60 minutes expiration
-          or hash_hmac(
-                'md5', $key[0].':'.$id, $conf['secret_key']
-              ) != $key[1]
-        )
-    {
+
+    if (!verify_ephemeral_key($key, $id)) {
       return false;
     }