spip / SPIP

config/ecran_securite.php

Spacing +26 added lines, -26 removed lines

@@ -15,10 +15,10 @@ 
  * Test utilisateur
  */
 if (isset($_GET['test_ecran_securite'])) {
-	$ecran_securite_raison = 'test ' . _ECRAN_SECURITE;
+	$ecran_securite_raison = 'test '._ECRAN_SECURITE;
 }
 
-if (file_exists($f = __DIR__ . DIRECTORY_SEPARATOR  . 'ecran_securite_options.php')) {
+if (file_exists($f = __DIR__.DIRECTORY_SEPARATOR.'ecran_securite_options.php')) {
 	include ($f);
 }
 
@@ -226,8 +226,8 @@ 
 						'yats',
 						'yeti',
 						'zeerch'
-					)) . ',i',
-				(string)$_SERVER['HTTP_USER_AGENT']
+					)).',i',
+				(string) $_SERVER['HTTP_USER_AGENT']
 			)
 	);
 }
@@ -236,13 +236,13 @@ 
 		'_IS_BOT_FRIEND',
 		isset($_SERVER['HTTP_USER_AGENT'])
 			and preg_match(
-				',' . implode('|', array(
+				','.implode('|', array(
 					'facebookexternalhit',
 					'twitterbot',
 					'flipboardproxy',
 					'wordpress'
-				)) . ',i',
-				(string)$_SERVER['HTTP_USER_AGENT']
+				)).',i',
+				(string) $_SERVER['HTTP_USER_AGENT']
 			)
 	);
 }
@@ -291,10 +291,10 @@ 
  */
 foreach (array('lang', 'var_recherche', 'aide', 'var_lang_r', 'lang_r', 'var_ajax_ancre', 'nom_fichier') as $var) {
 	if (isset($_GET[$var])) {
-		$_REQUEST[$var] = $GLOBALS[$var] = $_GET[$var] = preg_replace(',[^\w\,/#&;-]+,', ' ', (string)$_GET[$var]);
+		$_REQUEST[$var] = $GLOBALS[$var] = $_GET[$var] = preg_replace(',[^\w\,/#&;-]+,', ' ', (string) $_GET[$var]);
 	}
 	if (isset($_POST[$var])) {
-		$_REQUEST[$var] = $GLOBALS[$var] = $_POST[$var] = preg_replace(',[^\w\,/#&;-]+,', ' ', (string)$_POST[$var]);
+		$_REQUEST[$var] = $GLOBALS[$var] = $_POST[$var] = preg_replace(',[^\w\,/#&;-]+,', ' ', (string) $_POST[$var]);
 	}
 }
 
@@ -302,8 +302,8 @@ 
  * Filtre l'accès à spip_acces_doc (injection SQL en 1.8.2x)
  */
 if (isset($_SERVER['REQUEST_URI'])) {
-	if (preg_match(',^(.*/)?spip_acces_doc\.,', (string)$_SERVER['REQUEST_URI'])) {
-		$file = addslashes((string)$_GET['file']);
+	if (preg_match(',^(.*/)?spip_acces_doc\.,', (string) $_SERVER['REQUEST_URI'])) {
+		$file = addslashes((string) $_GET['file']);
 	}
 }
 
@@ -323,13 +323,13 @@ 
  */
 if (
 	isset($_REQUEST['partie_cal'])
-	and $_REQUEST['partie_cal'] !== htmlentities((string)$_REQUEST['partie_cal'])
+	and $_REQUEST['partie_cal'] !== htmlentities((string) $_REQUEST['partie_cal'])
 ) {
 	$ecran_securite_raison = "partie_cal";
 }
 if (
 	isset($_REQUEST['echelle'])
-	and $_REQUEST['echelle'] !== htmlentities((string)$_REQUEST['echelle'])
+	and $_REQUEST['echelle'] !== htmlentities((string) $_REQUEST['echelle'])
 ) {
 	$ecran_securite_raison = "echelle";
 }
@@ -339,13 +339,13 @@ 
  */
 if (
 	isset($_REQUEST['exec'])
-	and !preg_match(',^[\w-]+$,', (string)$_REQUEST['exec'])
+	and !preg_match(',^[\w-]+$,', (string) $_REQUEST['exec'])
 ) {
 	$ecran_securite_raison = "exec";
 }
 if (
 	isset($_REQUEST['cherche_auteur'])
-	and preg_match(',[<],', (string)$_REQUEST['cherche_auteur'])
+	and preg_match(',[<],', (string) $_REQUEST['cherche_auteur'])
 ) {
 	$ecran_securite_raison = "cherche_auteur";
 }
@@ -353,7 +353,7 @@ 
 	isset($_REQUEST['exec'])
 	and $_REQUEST['exec'] == 'auteurs'
 	and isset($_REQUEST['recherche'])
-	and preg_match(',[<],', (string)$_REQUEST['recherche'])
+	and preg_match(',[<],', (string) $_REQUEST['recherche'])
 ) {
 	$ecran_securite_raison = "recherche";
 }
@@ -361,7 +361,7 @@ 
 	isset($_REQUEST['exec'])
 	and $_REQUEST['exec'] == 'info_plugin'
 	and isset($_REQUEST['plugin'])
-	and preg_match(',[<],', (string)$_REQUEST['plugin'])
+	and preg_match(',[<],', (string) $_REQUEST['plugin'])
 ) {
 	$ecran_securite_raison = "plugin";
 }
@@ -388,7 +388,7 @@ 
 				echo minipres(_T('info_acces_interdit'));
 				exit;
 			}
-			require _DIR_RESTREINT . 'action/configurer.php';
+			require _DIR_RESTREINT.'action/configurer.php';
 			action_configurer_dist();
 		}
 	}
@@ -440,9 +440,9 @@ 
 if (_IS_BOT) {
 	if (
 		(isset($_REQUEST['echelle']) and isset($_REQUEST['partie_cal']) and isset($_REQUEST['type']))
-		or (strpos((string)$_SERVER['REQUEST_URI'], 'debut_') and preg_match(',[?&]debut_.*&debut_,', (string)$_SERVER['REQUEST_URI']))
-		or (isset($_REQUEST['calendrier_annee']) and strpos((string)$_SERVER['REQUEST_URI'], 'debut_'))
-		or (isset($_REQUEST['calendrier_annee']) and preg_match(',[?&]calendrier_annee=.*&calendrier_annee=,', (string)$_SERVER['REQUEST_URI']))
+		or (strpos((string) $_SERVER['REQUEST_URI'], 'debut_') and preg_match(',[?&]debut_.*&debut_,', (string) $_SERVER['REQUEST_URI']))
+		or (isset($_REQUEST['calendrier_annee']) and strpos((string) $_SERVER['REQUEST_URI'], 'debut_'))
+		or (isset($_REQUEST['calendrier_annee']) and preg_match(',[?&]calendrier_annee=.*&calendrier_annee=,', (string) $_SERVER['REQUEST_URI']))
 	) {
 		$ecran_securite_raison = "robot agenda/double pagination";
 	}
@@ -456,7 +456,7 @@ 
 	if ($_REQUEST['page'] == 'test_cfg') {
 		$ecran_securite_raison = "test_cfg";
 	}
-	if ($_REQUEST['page'] !== htmlspecialchars((string)$_REQUEST['page'])) {
+	if ($_REQUEST['page'] !== htmlspecialchars((string) $_REQUEST['page'])) {
 		$ecran_securite_raison = "xsspage";
 	}
 	if (
@@ -472,7 +472,7 @@ 
  */
 foreach (array('var_login') as $var) {
 	if (isset($_REQUEST[$var]) and is_array($_REQUEST[$var])) {
-		$ecran_securite_raison = "xss " . $var;
+		$ecran_securite_raison = "xss ".$var;
 	}
 }
 
@@ -520,13 +520,13 @@ 
  */
 if (
 	isset($_REQUEST['nom_sauvegarde'])
-	and strstr((string)$_REQUEST['nom_sauvegarde'], '/')
+	and strstr((string) $_REQUEST['nom_sauvegarde'], '/')
 ) {
 	$ecran_securite_raison = 'nom_sauvegarde manipulee';
 }
 if (
 	isset($_REQUEST['znom_sauvegarde'])
-	and strstr((string)$_REQUEST['znom_sauvegarde'], '/')
+	and strstr((string) $_REQUEST['znom_sauvegarde'], '/')
 ) {
 	$ecran_securite_raison = 'znom_sauvegarde manipulee';
 }
@@ -655,7 +655,7 @@ 
 	foreach ($_REQUEST as $k => $v) {
 		if (is_string($v)
 		  and strpos($v, ':') !== false
-		  and strpos($v, '"') !==false
+		  and strpos($v, '"') !== false
 		  and preg_match(',[bidsaO]:,', $v)
 		  and @unserialize($v)) {
 			$_REQUEST[$k] = htmlentities($v);