smarty/libs/plugins/core.is_secure.php

<?php
/**
 * Smarty plugin
 * @package Smarty
 * @subpackage plugins
 */

/**
 * determines if a resource is secure or not.
 *
 * @param string $resource_type
 * @param string $resource_name
 * @return boolean
 */
 
//  $resource_type, $resource_name
 
function smarty_core_is_secure($params, &$this)
{
    if (!$this->security || $this->security_settings['INCLUDE_ANY']) {
        return true;
    }

    $_smarty_secure = false;
    if ($params['resource_type'] == 'file') {
        if (!empty($this->secure_dir)) {
            foreach ((array)$this->secure_dir as $curr_dir) {
                if ( !empty($curr_dir) && is_readable ($curr_dir)) {
                    if (substr(realpath($params['resource_name']),0, strlen(realpath($curr_dir))) == realpath($curr_dir)) {
                        $_smarty_secure = true;
                        break;
                    }
                }
            }
        }
    } else {
        // resource is not on local file system
        $_smarty_secure = call_user_func_array(
            $this->_plugins['resource'][$params['resource_type']][0][2],
            array($params['resource_name'], &$_smarty_secure, &$this));
    }

    return $_smarty_secure;
}

/* vim: set expandtab: */

?>
abstract more private functions to plugin directory 2003-05-08 20:21:16 +00:00			`<?php`
			`/**`
			`* Smarty plugin`
			`* @package Smarty`
			`* @subpackage plugins`
			`*/`

			`/**`
			`* determines if a resource is secure or not.`
			`*`
			`* @param string $resource_type`
			`* @param string $resource_name`
			`* @return boolean`
			`*/`

			`// $resource_type, $resource_name`

			`function smarty_core_is_secure($params, &$this)`
			`{`
			`if (!$this->security \|\| $this->security_settings['INCLUDE_ANY']) {`
			`return true;`
			`}`

			`$_smarty_secure = false;`
			`if ($params['resource_type'] == 'file') {`
			`if (!empty($this->secure_dir)) {`
			`foreach ((array)$this->secure_dir as $curr_dir) {`
			`if ( !empty($curr_dir) && is_readable ($curr_dir)) {`
			`if (substr(realpath($params['resource_name']),0, strlen(realpath($curr_dir))) == realpath($curr_dir)) {`
			`$_smarty_secure = true;`
			`break;`
			`}`
			`}`
			`}`
			`}`
			`} else {`
			`// resource is not on local file system`
			`$_smarty_secure = call_user_func_array(`
			`$this->_plugins['resource'][$params['resource_type']][0][2],`
			`array($params['resource_name'], &$_smarty_secure, &$this));`
			`}`

			`return $_smarty_secure;`
			`}`

			`/* vim: set expandtab: */`

			`?>`