Changeset 8483 for extensions/FacebookPlug/Server/include/common.php

Timestamp:

Jan 7, 2011, 12:03:31 AM (13 years ago)

Author:

rub

Message:

Server upload

File:

• extensions/FacebookPlug/Server/include/common.php (modified) (4 diffs)

extensions/FacebookPlug/Server/include/common.php

@@ -21 +21 @@
 defined('FACEBOOKPLUG_ROOT_PATH') or trigger_error('Hacking attempt!', E_USER_ERROR);
 
+@set_magic_quotes_runtime(false); // Disable magic_quotes_runtime
+
+//
+// addslashes to vars if magic_quotes_gpc is off this is a security
+// precaution to prevent someone trying to break out of a SQL statement.
+//
+if( !@get_magic_quotes_gpc() )
+{
+  function sanitize_mysql_kv(&$v, $k)
+  {
+    $v = addslashes($v);
+  }
+  if( is_array( $_GET ) )
+  {
+    array_walk_recursive( $_GET, 'sanitize_mysql_kv' );
+  }
+  if( is_array( $_POST ) )
+  {
+    array_walk_recursive( $_POST, 'sanitize_mysql_kv' );
+  }
+  if( is_array( $_COOKIE ) )
+  {
+    array_walk_recursive( $_COOKIE, 'sanitize_mysql_kv' );
+  }
+}
+if ( !empty($_SERVER["PATH_INFO"]) )
+{
+  $_SERVER["PATH_INFO"] = addslashes($_SERVER["PATH_INFO"]);
+}
+
 require_once(FACEBOOKPLUG_ROOT_PATH . 'include/constants.php');
 require_once(FACEBOOKPLUG_ROOT_PATH . 'include/constants_secret.php');
@@ -32 +62 @@
 include(FACEBOOKPLUG_ROOT_PATH . 'include/config_default.php');
 
+// Log on db
+fbp_db_log();
+
 // Init Facebook
 $facebook = new Facebook(array(
@@ -39 +72 @@
 ));
 
-//~ print_r($_COOKIE);
-
-
-function d($d)
-{
-  echo '<pre>';
-  print_r($d);
-  echo '</pre>';
-}
-
 $session = $facebook->getSession();
+//~ var_dump($session);
 // Session based graph API call.
 if (! $session)
@@ -58 +82 @@
     (
       //ici on demande les permissions email, publication sur le mur, et changement du status
-      'req_perms' => 'email,publish_stream,status_update',
+      //'req_perms' => 'email,publish_stream,status_update',
+      'req_perms' => 'publish_stream',
+      'display' => 'popup',
+      'cancel_url' => 'http://'.$_SERVER['HTTP_HOST'].'/'.FBP_VERSION.'/cancel.php'
     ));
   header( 'Request-URI: '.$url );