mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-10-22 14:05:37 +02:00
38e154af0a
BUG Fix missing and undocumented response from Security::permissionFailure()
51 lines
1.6 KiB
PHP
51 lines
1.6 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Initialises the versioned stage when a request is made.
|
|
*
|
|
* @package framework
|
|
* @subpackage control
|
|
*/
|
|
class VersionedRequestFilter implements RequestFilter {
|
|
|
|
public function preRequest(SS_HTTPRequest $request, Session $session, DataModel $model) {
|
|
// Bootstrap session so that Session::get() accesses the right instance
|
|
$dummyController = new Controller();
|
|
$dummyController->setSession($session);
|
|
$dummyController->setRequest($request);
|
|
$dummyController->pushCurrent();
|
|
|
|
// Block non-authenticated users from setting the stage mode
|
|
if(!Versioned::can_choose_site_stage($request)) {
|
|
$permissionMessage = sprintf(
|
|
_t(
|
|
"ContentController.DRAFT_SITE_ACCESS_RESTRICTION",
|
|
'You must log in with your CMS password in order to view the draft or archived content. '.
|
|
'<a href="%s">Click here to go back to the published site.</a>'
|
|
),
|
|
Controller::join_links(Director::baseURL(), $request->getURL(), "?stage=Live")
|
|
);
|
|
|
|
// Force output since RequestFilter::preRequest doesn't support response overriding
|
|
$response = Security::permissionFailure($dummyController, $permissionMessage);
|
|
$session->inst_save();
|
|
$dummyController->popCurrent();
|
|
// Prevent output in testing
|
|
if(class_exists('SapphireTest', false) && SapphireTest::is_running_test()) {
|
|
return false;
|
|
}
|
|
$response->output();
|
|
die;
|
|
}
|
|
|
|
Versioned::choose_site_stage();
|
|
$dummyController->popCurrent();
|
|
return true;
|
|
}
|
|
|
|
public function postRequest(SS_HTTPRequest $request, SS_HTTPResponse $response, DataModel $model) {
|
|
return true;
|
|
}
|
|
|
|
}
|