8 isset(
$user) or require
$_SERVER[
'DOCUMENT_ROOT'] .
'/page/404.php';
10 header(
"Content-type: application/json");
12 array_walk_recursive(
$_POST,
function (&$item) {
13 $item = trim(htmlspecialchars($item, ENT_QUOTES));
16 if (!($row = Wrong\Models\Users::find(
$_POST[
'id']))) {
17 exit(json_encode([
'error' =>
'Ошибка']));
20 if ($row->id ==
$user->id) {
21 exit(json_encode([
'error' =>
'Нельзя зайти из под самого себя']));
24 if (!
$user->access()->write($row)) {
25 exit(json_encode([
'error' =>
'Недостаточно прав!']));
29 setcookie(
'FROM_UID',
$uid, [
30 'expires' =>
time() + 31536000,
33 'secure' => Wrong\Start\Env::$e->
IS_SECURE,
35 'samesite' => Wrong\Start\Env::$e->
IS_SECURE ?
'None' :
'Lax'
38 $user = new Wrong\Auth\User($row->
id);
39 if (
$user->access()->page('/system')) {
45 exit(json_encode([
'result' =>
'ok']));
static add($code, $timeout=0, $key='')
setcookie('FROM_UID', $uid, [ 'expires'=> time()+31536000, 'path'=> '/', 'domain'=> $_SERVER['HTTP_HOST'], 'secure'=> Wrong\Start\Env::$e->IS_SECURE, 'httponly'=> false, 'samesite'=> Wrong\Start\Env::$e->IS_SECURE ? 'None' :'Lax']) or setcookie('FROM_UID' time()+31536000
setcookie('FROM_UID', $uid, [ 'expires'=> time()+31536000, 'path'=> '/', 'domain'=> $_SERVER['HTTP_HOST'], 'secure'=> Wrong\Start\Env::$e->IS_SECURE, 'httponly'=> false, 'samesite'=> Wrong\Start\Env::$e->IS_SECURE ? 'None' :'Lax']) or setcookie('FROM_UID' Wrong Start Env::$e IS_SECURE
if(!($row=Wrong\Models\Users::find($_POST['id']))) if($row->id==$user->id) if(! $user->access() ->write($row)) $uid
setcookie('FROM_UID', $uid, [ 'expires'=> time()+31536000, 'path'=> '/', 'domain'=> $_SERVER['HTTP_HOST'], 'secure'=> Wrong\Start\Env::$e->IS_SECURE, 'httponly'=> false, 'samesite'=> Wrong\Start\Env::$e->IS_SECURE ? 'None' :'Lax']) or setcookie('FROM_UID' $_SERVER['HTTP_HOST']
if(($dbh=Connect::getInstance(true) ->dbh) && $dbh->query("SHOW TABLES") ->fetchAll() && $dbh->query("SELECT COUNT(*) FROM `users`") ->fetchColumn()) if(!empty($_POST)) exit
if(preg_match('#//#', $request)) if($request !='/' &&preg_match('#/$#', $request)) if(preg_match('#index\.(php|html)$#', $request)) if(Wrong\Start\Env::$e->SYSTEM_CLOSED && $user->main_group_id !=1) if(preg_match('#^/api/(modal|action|select)/[a-z0-9\-]+#', $request, $matches)) if(isset($_GET['FROM_UID'])) if($request=='/' &&Wrong\Start\Env::$e->RETURN_TO_REQUEST && $user->id && $request !=$user->request && $user->request &&!isset($_GET['main'])) if(preg_match('#^/remind/([0-9]+)/([a-z0-9]+)#i', $request, $matches) &&Wrong\Auth\User::is_remind($matches[1], $matches[2])) if(preg_match('#^/email-confirm/([0-9]+)/([a-z0-9]+)#i', $request, $matches) &&Wrong\Auth\User::is_confirm($matches[1], $matches[2]) &&! $user->email_confirmed) if(Wrong\Start\Env::$e->EMAIL_CONFIRMATION && $user->id &&! $user->email_confirmed) if( $arr=Wrong\Models\Pages::all( $request, 'request'))