Changeset View
Changeset View
Standalone View
Standalone View
src/applications/settings/panel/PhabricatorSettingsPanelSSHKeys.php
Show All 32 Lines | public function processRequest(AphrontRequest $request) { | ||||
} | } | ||||
$edit = $request->getStr('edit'); | $edit = $request->getStr('edit'); | ||||
$delete = $request->getStr('delete'); | $delete = $request->getStr('delete'); | ||||
if (!$edit && !$delete) { | if (!$edit && !$delete) { | ||||
return $this->renderKeyListView($request); | return $this->renderKeyListView($request); | ||||
} | } | ||||
/* | |||||
NOTE: Uncomment this to test hisec. | |||||
TOOD: Implement this fully once hisec does something useful. | |||||
$token = id(new PhabricatorAuthSessionEngine())->requireHighSecuritySession( | |||||
$viewer, | |||||
$request, | |||||
'/settings/panel/ssh/'); | |||||
*/ | |||||
$id = nonempty($edit, $delete); | $id = nonempty($edit, $delete); | ||||
if ($id && is_numeric($id)) { | if ($id && is_numeric($id)) { | ||||
// NOTE: This prevents editing/deleting of keys not owned by the user. | // NOTE: This prevents editing/deleting of keys not owned by the user. | ||||
$key = id(new PhabricatorUserSSHKey())->loadOneWhere( | $key = id(new PhabricatorUserSSHKey())->loadOneWhere( | ||||
'userPHID = %s AND id = %d', | 'userPHID = %s AND id = %d', | ||||
$user->getPHID(), | $user->getPHID(), | ||||
(int)$id); | (int)$id); | ||||
▲ Show 20 Lines • Show All 365 Lines • Show Last 20 Lines |