/usr/share/horde/mnemo/notepads/delete.php is in php-horde-mnemo 4.2.12-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 | <?php
/**
* Copyright 2001-2016 Horde LLC (http://www.horde.org/)
*
* See the enclosed file LICENSE for license information (ASL). If you
* did not receive this file, see http://www.horde.org/licenses/apache.
*
* @package @Mnemo
*/
@define('MNEMO_BASE', dirname(__DIR__));
require_once MNEMO_BASE . '/lib/Application.php';
Horde_Registry::appInit('mnemo');
// Exit if this isn't an authenticated user.
if (!$GLOBALS['registry']->getAuth()) {
Horde::url('', true)->redirect();
}
$vars = Horde_Variables::getDefaultVariables();
$notepad_id = $vars->get('n');
try {
$notepad = $mnemo_shares->getShare($notepad_id);
} catch (Horde_Share_Exception $e) {
$notification->push($e);
Horde::url('', true)->redirect();
}
if ($notepad->get('owner') != $GLOBALS['registry']->getAuth() &&
(!is_null($notepad->get('owner')) || !$GLOBALS['registry']->isAdmin())) {
$notification->push(_("You are not allowed to delete this notepad."), 'horde.error');
Horde::url('', true)->redirect();
}
$form = new Mnemo_Form_DeleteNotepad($vars, $notepad);
// Execute if the form is valid (must pass with POST variables only).
if ($form->validate(new Horde_Variables($_POST))) {
try {
$form->execute();
$notification->push(sprintf(_("The notepad \"%s\" has been deleted."), $notepad->get('name')), 'horde.success');
} catch (Exception $e) {
$notification->push($e);
}
Horde::url('', true)->redirect();
}
$page_output->header(array(
'title' => $form->getTitle()
));
$notification->notify();
echo $form->renderActive($form->getRenderer(), $vars, Horde::url('notepads/delete.php'), 'post');
$page_output->footer();
|