manage_plugin_update.php

   1 <?php
   2 # MantisBT - A PHP based bugtracking system
   3
   4 # MantisBT is free software: you can redistribute it and/or modify
   5 # it under the terms of the GNU General Public License as published by
   6 # the Free Software Foundation, either version 2 of the License, or
   7 # (at your option) any later version.
   8 #
   9 # MantisBT is distributed in the hope that it will be useful,
  10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
  11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12 # GNU General Public License for more details.
  13 #
  14 # You should have received a copy of the GNU General Public License
  15 # along with MantisBT.  If not, see <http://www.gnu.org/licenses/>.
  16
  17 /**
  18  * @package MantisBT
  19  * @copyright Copyright (C) 2002 - 2010  MantisBT Team - mantisbt-dev@lists.sourceforge.net
  20  * @link http://www.mantisbt.org
  21  *
  22  * @uses core.php
  23  * @uses access_api.php
  24  * @uses authentication_api.php
  25  * @uses config_api.php
  26  * @uses database_api.php
  27  * @uses form_api.php
  28  * @uses gpc_api.php
  29  * @uses print_api.php
  30  */
  31
  32 /** @ignore */
  33 define( 'PLUGINS_DISABLED', true );
  34
  35 require_once( 'core.php' );
  36 require_api( 'access_api.php' );
  37 require_api( 'authentication_api.php' );
  38 require_api( 'config_api.php' );
  39 require_api( 'database_api.php' );
  40 require_api( 'form_api.php' );
  41 require_api( 'gpc_api.php' );
  42 require_api( 'print_api.php' );
  43
  44 form_security_validate( 'manage_plugin_update' );
  45
  46 auth_reauthenticate();
  47 access_ensure_global_level( config_get( 'manage_plugin_threshold' ) );
  48
  49 $t_plugin_table = db_get_table( 'plugin' );
  50
  51 $t_query = "SELECT basename FROM $t_plugin_table";
  52 $t_result = db_query_bound( $t_query );
  53
  54 while ( $t_row = db_fetch_array( $t_result ) ) {
  55         $t_basename = $t_row['basename'];
  56
  57         $f_change = gpc_get_bool( 'change_'.$t_basename, 0 );
  58
  59         if ( !$f_change ) { continue; }
  60
  61         $f_priority = gpc_get_int( 'priority_'.$t_basename, 3 );
  62         $f_protected = gpc_get_bool( 'protected_'.$t_basename, 0 );
  63
  64         $t_query = "UPDATE $t_plugin_table SET priority=" . db_param() . ', protected=' . db_param() .
  65                 ' WHERE basename=' . db_param();
  66
  67         db_query_bound( $t_query, array( $f_priority, $f_protected, $t_basename ) );
  68 }
  69
  70 form_security_purge( 'manage_plugin_update' );
  71
  72 print_successful_redirect( 'manage_plugin_page.php' );