Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
- "http://www.w3.org/TR/html4/loose.dtd">
- <html lang="en">
- <head>
- <title>Suspicious Action</title>
- <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
- <link rel="Top" href="http://bugs.koha-community.org/bugzilla3/">
- <link rel="Saved Searches" title="My Bugs"
- href=" buglist.cgi?list_id=19923&query_format=advanced&bug_status=NEW&bug_status=REOPENED&bug_status=ASSIGNED&bug_status=In Discussion&bug_status=Needs Signoff&bug_status=Signed Off&bug_status=Passed QA&bug_status=Pushed for QA&bug_status=Patch doesn't apply&bug_status=Failed QA&emailassigned_to1=1&emailreporter1=1&emailtype1=exact&email1=kyle%40bywatersolutions.com">
- <link rel="Saved Search"
- title="FIXME NOW (chris@bigballofwax.co.nz)"
- href="buglist.cgi?cmdtype=dorem&remaction=run&namedcmd=FIXME%20NOW&sharer_id=1">
- <link href="skins/standard/global.css"
- rel="alternate stylesheet"
- title="Classic"><link href="skins/standard/global.css" rel="stylesheet"
- type="text/css" ><link href="skins/standard/global.css" rel="stylesheet"
- type="text/css" ><!--[if lte IE 7]>
- <link href="skins/standard/IE-fixes.css" rel="stylesheet"
- type="text/css" >
- <![endif]-->
- <link href="skins/contrib/Dusk/global.css" rel="stylesheet"
- type="text/css" title="Dusk"><link href="skins/contrib/Dusk/global.css" rel="stylesheet"
- type="text/css" title="Dusk">
- <script type="text/javascript" src="js/yui/yahoo-dom-event/yahoo-dom-event.js"></script><script type="text/javascript" src="js/yui/cookie/cookie-min.js"></script><script type="text/javascript" src="js/global.js"></script>
- <script type="text/javascript">
- <!--
- YAHOO.namespace('bugzilla');
- YAHOO.util.Event.addListener = function (el, sType, fn, obj, overrideContext) {
- if ( ("onpagehide" in window || YAHOO.env.ua.gecko) && sType === "unload") { sType = "pagehide"; };
- var capture = ((sType == "focusin" || sType == "focusout") && !YAHOO.env.ua.ie) ? true : false;
- return this._addListener(el, this._getType(sType), fn, obj, overrideContext, capture);
- };
- if ( "onpagehide" in window || YAHOO.env.ua.gecko) {
- YAHOO.util.Event._simpleRemove(window, "unload",
- YAHOO.util.Event._unload);
- }
- function unhide_language_selector() {
- YAHOO.util.Dom.removeClass(
- 'lang_links_container', 'bz_default_hidden'
- );
- }
- YAHOO.util.Event.onDOMReady(unhide_language_selector);
- var BUGZILLA = {
- param: {
- cookiepath: '\/',
- maxusermatches: 1000
- },
- constant: {
- COMMENT_COLS: 80
- },
- string: {
- attach_desc_required:
- 'You must enter a Description for this attachment.',
- component_required:
- 'You must select a Component for this bug.',
- description_required:
- 'You must enter a Description for this bug.',
- short_desc_required:
- 'You must enter a Summary for this bug.',
- version_required:
- 'You must select a Version for this bug.'
- }
- };
- // -->
- </script>
- <link rel="search" type="application/opensearchdescription+xml"
- title="Bugzilla" href="./search_plugin.cgi">
- <link rel="shortcut icon" href="images/favicon.ico" ><meta name="robots" content="noarchive">
- </head>
- <body onload=""
- class="bugs-koha-community-org-bugzilla3 yui-skin-sam">
- <div id="header">
- <div id="banner">
- </div>
- <table border="0" cellspacing="0" cellpadding="0" id="titles">
- <tr>
- <td id="title">
- <p>Bugzilla – Suspicious Action</p>
- </td>
- </tr>
- </table>
- <table id="lang_links_container" cellpadding="0" cellspacing="0"
- class="bz_default_hidden"><tr><td>
- </td></tr></table>
- <ul class="links">
- <li><a href="./">Home</a></li>
- <li><span class="separator">| </span><a href="enter_bug.cgi">New</a></li>
- <li><span class="separator">| </span><a href="describecomponents.cgi">Browse</a></li>
- <li><span class="separator">| </span><a href="query.cgi">Search</a></li>
- <li class="form">
- <span class="separator">| </span>
- <form action="buglist.cgi" method="get"
- onsubmit="if (this.quicksearch.value == '')
- { alert('Please enter one or more search terms first.');
- return false; } return true;">
- <input type="hidden" id="no_redirect_top" name="no_redirect" value="0">
- <script type="text/javascript">
- if (history && history.replaceState) {
- var no_redirect = document.getElementById("no_redirect_top");
- no_redirect.value = 1;
- }
- </script>
- <input class="txt" type="text" id="quicksearch_top" name="quicksearch"
- title="Quick Search" value="">
- <input class="btn" type="submit" value="Search"
- id="find_top"></form>
- <a href="page.cgi?id=quicksearch.html" title="Quicksearch Help">[?]</a></li>
- <li><span class="separator">| </span><a href="report.cgi">Reports</a></li>
- <li></li>
- <li><span class="separator">| </span><a href="userprefs.cgi">Preferences</a></li>
- <li>
- <span class="separator">| </span>
- <a href="index.cgi?logout=1">Log out</a>
- kyle@bywatersolutions.com</li>
- </ul>
- </div>
- <div id="bugzilla-body">
- <div class="throw_error">
- It looks like you didn't come from the right page (you have no valid token for
- the <em>create_attachment</em> action while processing the
- 'attachment.cgi' script). The reason could be one of:<br>
- <ul>
- <li>You clicked the "Back" button of your web browser after having successfully
- submitted changes, which is generally not a good idea (but harmless).</li>
- <li>You entered the URL in the address bar of your web browser directly,
- which should be safe.</li>
- <li>You clicked on a URL which redirected you here <b>without your consent</b>,
- in which case this action is much more critical.</li>
- </ul>
- Are you sure you want to commit these changes anyway? This may result in
- unexpected and undesired results.
- </div>
- <form name="check" id="check" method="post" action="attachment.cgi"><input type="hidden" name="ispatch"
- value="1">
- <div class="box">
- <p>
- We were unable to store the file you uploaded because of incomplete information
- in the form you just submitted. Because we are unable to retain the file between
- form submissions, you must re-attach the file in addition to completing the
- remaining missing information above.
- </p>
- <p>
- Please re-attach the file <b>Bug-10277---Add-C4Context-IsSuperLibrarian.patch</b> in
- the field below:
- </p>
- <p>
- <input type="file" id="data" name="data" size="50">
- </p>
- </div>
- <input type="hidden" name="bugid"
- value="10277">
- <input type="hidden" name="description"
- value="Bug 10277 - Add C4::Context->IsSuperLibrarian()">
- <input type="hidden" name="obsolete"
- value="18518">
- <input type="hidden" name="comment"
- value="The method of checking the logged in user for superlibrarian privileges
is obtuse ( $userenv && $userenv->{flags} % 2 != 1 ) to say the least.
The codebase is littered with these lines, with no explanation given. It
would be much better if we had one subroutine that returned a boolean
value to tell us if the logged in user is a superlibrarian or not.

Test Plan:
1) Apply this patch
2) Verify superlibrarian behavior remains unchanged">
- <input type="hidden" name="action"
- value="insert">
- <input type="hidden" name="attachments.status"
- value="none">
- <input type="hidden" name="token"
- value="ghx959aMus">
- <input type="submit" id="confirm" value="Confirm Changes">
- </form>
- <p>Or throw away these changes and go back to <a href="index.cgi">index.cgi</a>.</p>
- </div>
- <div id="footer">
- <div class="intro"></div>
- <ul id="useful-links">
- <li id="links-actions"><ul class="links">
- <li><a href="./">Home</a></li>
- <li><span class="separator">| </span><a href="enter_bug.cgi">New</a></li>
- <li><span class="separator">| </span><a href="describecomponents.cgi">Browse</a></li>
- <li><span class="separator">| </span><a href="query.cgi">Search</a></li>
- <li class="form">
- <span class="separator">| </span>
- <form action="buglist.cgi" method="get"
- onsubmit="if (this.quicksearch.value == '')
- { alert('Please enter one or more search terms first.');
- return false; } return true;">
- <input type="hidden" id="no_redirect_bottom" name="no_redirect" value="0">
- <script type="text/javascript">
- if (history && history.replaceState) {
- var no_redirect = document.getElementById("no_redirect_bottom");
- no_redirect.value = 1;
- }
- </script>
- <input class="txt" type="text" id="quicksearch_bottom" name="quicksearch"
- title="Quick Search" value="">
- <input class="btn" type="submit" value="Search"
- id="find_bottom"></form>
- <a href="page.cgi?id=quicksearch.html" title="Quicksearch Help">[?]</a></li>
- <li><span class="separator">| </span><a href="report.cgi">Reports</a></li>
- <li></li>
- <li><span class="separator">| </span><a href="userprefs.cgi">Preferences</a></li>
- <li>
- <span class="separator">| </span>
- <a href="index.cgi?logout=1">Log out</a>
- kyle@bywatersolutions.com</li>
- </ul>
- </li>
- <li id="links-saved">
- <ul class="links">
- <li><a href=" buglist.cgi?list_id=19923&query_format=advanced&bug_status=NEW&bug_status=REOPENED&bug_status=ASSIGNED&bug_status=In Discussion&bug_status=Needs Signoff&bug_status=Signed Off&bug_status=Passed QA&bug_status=Pushed for QA&bug_status=Patch doesn't apply&bug_status=Failed QA&emailassigned_to1=1&emailreporter1=1&emailtype1=exact&email1=kyle%40bywatersolutions.com">My Bugs</a></li>
- <br>
- <li>
- <a href="buglist.cgi?cmdtype=dorem&remaction=run&namedcmd=FIXME%20NOW&sharer_id=1"
- class="shared"
- title="Shared by Chris Cormack <chris@bigballofwax.co.nz>"
- >FIXME NOW</a></li>
- </ul>
- </li>
- </ul>
- <div class="outro"></div>
- </div>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
