- Timestamp:
- 11/15/08 12:49:08 (8 weeks ago)
- Location:
- trunk
- Files:
-
- 6 modified
-
lib/class/access.class.php (modified) (1 diff)
-
lib/class/xmldata.class.php (modified) (2 diffs)
-
login.php (modified) (1 diff)
-
play/index.php (modified) (3 diffs)
-
server/xml.server.php (modified) (1 diff)
-
server/xmlrpc.server.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/lib/class/access.class.php
r1765 r1766 166 166 * the IP is passed as a dotted quad 167 167 */ 168 public static function check_network($type,$ ip='',$user,$level,$key='') {168 public static function check_network($type,$user,$level,$ip='',$key='') { 169 169 170 170 if (!Config::get('access_control')) { -
trunk/lib/class/xmldata.class.php
r1530 r1766 275 275 $song->format(); 276 276 277 $rating = new Rating($song_id,'song'); 278 277 279 $art_url = Config::get('web_path') . '/image.php?id=' . $song->album . '&auth=' . scrub_out($_REQUEST['auth']); 278 280 … … 287 289 "\t<size>$song->size</size>\n" . 288 290 "\t<art><![CDATA[" . $art_url . "]]></art>\n" . 291 "\t<preciserating>" . $rating->preciserating . "</preciserating>\n" . 292 "\t<rating>" . $rating->rating . "</rating>\n" . 289 293 "</song>\n"; 290 294 -
trunk/login.php
r1748 r1766 35 35 */ 36 36 if (Config::get('access_control')) { 37 if (!Access::check_network('interface', $_SERVER['REMOTE_ADDR'],'','5')) {37 if (!Access::check_network('interface','','5')) { 38 38 debug_event('access_denied','Access Denied:' . $_SERVER['REMOTE_ADDR'] . ' is not in the Interface Access list','3'); 39 39 access_denied(); -
trunk/play/index.php
r1765 r1766 73 73 // If require session is set then we need to make sure we're legit 74 74 if (Config::get('require_session')) { 75 if (!Config::get('require_localnet_session') AND Access::check_network('network',$ _SERVER['REMOTE_ADDR'],$GLOBALS['user']->id,'5')) {75 if (!Config::get('require_localnet_session') AND Access::check_network('network',$GLOBALS['user']->id,'5')) { 76 76 // Localnet defined IP and require localnot session has been turned off we let this one through 77 77 debug_event('LocalNet','Streaming Access Granted to Localnet defined IP ' . $_SERVER['REMOTE_ADDR'],'5'); … … 103 103 */ 104 104 if (Config::get('access_control')) { 105 if (!Access::check_network('stream',$ _SERVER['REMOTE_ADDR'],$GLOBALS['user']->id,'25') AND106 !Access::check_network('network',$ _SERVER['REMOTE_ADDR'],$GLOBALS['user']->id,'25')) {105 if (!Access::check_network('stream',$GLOBALS['user']->id,'25') AND 106 !Access::check_network('network',$GLOBALS['user']->id,'25')) { 107 107 debug_event('access_denied', "Streaming Access Denied: " . $_SERVER['REMOTE_ADDR'] . " does not have stream level access",'3'); 108 108 access_denied(); … … 287 287 // If we've got downsample remote enabled 288 288 if (Config::get('downsample_remote')) { 289 if (!Access::check_network('network',$ _SERVER['REMOTE_ADDR'],$GLOBALS['user']->id,'0')) {289 if (!Access::check_network('network',$GLOBALS['user']->id,'0')) { 290 290 debug_event('downsample','Network Downsample ' . $_SERVER['REMOTE_ADDR'] . ' is not in Local definition','5'); 291 291 $not_local = true; -
trunk/server/xml.server.php
r1750 r1766 62 62 63 63 64 if (!Access::check_network('init-api',$ _SERVER['REMOTE_ADDR'],$username,'5')) {64 if (!Access::check_network('init-api',$username,'5')) { 65 65 debug_event('Access Denied','Unathorized access attempt to API [' . $_SERVER['REMOTE_ADDR'] . ']', '3'); 66 66 ob_end_clean(); -
trunk/server/xmlrpc.server.php
r1358 r1766 2 2 /* 3 3 4 Copyright 2001 - 2007Ampache.org4 Copyright Ampache.org 5 5 All Rights Reserved 6 6 … … 37 37 38 38 // ** check that the remote server has access to this catalog 39 if (Access::check_network('init-rpc', $_SERVER['REMOTE_ADDR'],'','5','')) {39 if (Access::check_network('init-rpc','','5')) { 40 40 41 41 // Define an array of classes we need to pull from for the
