Dotclear


Ignore:
Timestamp:
11/11/17 16:23:50 (8 years ago)
Author:
franck <carnet.franck.paul@…>
Branch:
2.12
Message:

Add  http:// protocol before media.dotaddict.org for csp_admin_img, fixes #2257

File:
1 edited

Legend:

Unmodified
Added
Removed

  • inc/dbschema/upgrade.php

    r3528 r3599  
    697697          } 
    698698 
     699          if (version_compare($version,'2.12.2','<')) 
     700          { 
     701               // SQlite Clearbricks driver does not allow using single quote at beginning or end of a field value 
     702               // so we have to use neutral values (localhost and 127.0.0.1) for some CSP directives 
     703               $csp_prefix = $core->con->driver() == 'sqlite' ? 'localhost ' : '';   // Hack for SQlite Clearbricks driver 
     704 
     705               # Update CSP img-src default directive 
     706               $strReq = 'UPDATE '.$core->prefix.'setting '. 
     707                         " SET setting_value = '".$csp_prefix."''self'' data: http://media.dotaddict.org blob:' ". 
     708                         " WHERE setting_id = 'csp_admin_img' ". 
     709                         " AND setting_ns = 'system' ". 
     710                         " AND setting_value = '".$csp_prefix."''self'' data: media.dotaddict.org blob:' "; 
     711               $core->con->execute($strReq); 
     712          } 
     713 
    699714          $core->setVersion('core',DC_VERSION); 
    700715          $core->blogDefaults(); 
Note: See TracChangeset for help on using the changeset viewer.

Sites map