yolinlin/aowow
1
0
Fork 0
mirror of https://github.com/Sarjuuk/aowow.git synced 2025-11-29 15:58:16 +08:00
Code Issues Packages Projects Releases Wiki Activity

User/Weightscales

Browse Source 
* saving now always updates the name
 * name is now urldecoded
This commit is contained in:
Sarjuuk
2017-02-12 03:56:38 +01:00
parent d0ec950dc1
commit ffddd3c6b8
1 changed files with 10 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
includes/ajaxHandler/account.class.php
View File

@@ -11,7 +11,7 @@ class AjaxAccount extends AjaxHandler
'save' => [FILTER_SANITIZE_NUMBER_INT, null],
'delete' => [FILTER_SANITIZE_NUMBER_INT, null],
'id' => [FILTER_CALLBACK, ['options' => 'AjaxHandler::checkInt']],
'name' => [FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW],
'name' => [FILTER_CALLBACK, ['options' => 'AjaxAccount::checkName']],
'scale' => [FILTER_CALLBACK, ['options' => 'AjaxAccount::checkScale']],
);
protected $_get = array(
@@ -56,6 +56,8 @@ class AjaxAccount extends AjaxHandler
{
if (!DB::Aowow()->selectCell('SELECT 1 FROM ?_account_weightscales WHERE userId = ?d AND id = ?d', User::$id, $id))
return 0;
DB::Aowow()->query('UPDATE ?_account_weightscales SET `name` = ? WHERE id = ?d', $this->_post['name'], $id);
}
else
{
@@ -92,4 +94,11 @@ class AjaxAccount extends AjaxHandler
return null;
}
protected function checkName($val)
{
$var = trim(urldecode($val));
return filter_var($var, FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW);
}
}