You are here

Home » API reference » Acquia Connector 6.2 » security_review.inc

function acquia_spi_security_review_untrusteds_permissions in Acquia Connector 6.2

Helper function collects the permissions untrusted roles have.

2 calls to acquia_spi_security_review_untrusteds_permissions()
acquia_spi_security_review_check_admin_permissions in acquia_spi/security_review.inc
Look for admin permissions granted to untrusted roles.
acquia_spi_security_review_check_filefield_extensions in acquia_spi/security_review.inc
A Security Review check for allowed extensions on Filefield fields.

File

acquia_spi/security_review.inc, line 955
Stand-alone security checks and review system.

Code

function acquia_spi_security_review_untrusteds_permissions() {
  static $permissions;
  if (empty($permissions)) {
    $permissions = array();

    // Collect list of untrusted roles' permissions.
    $untrusted_roles = acquia_spi_security_review_untrusted_roles();
    foreach ($untrusted_roles as $rid) {
      $perms = array();
      $results = db_fetch_array(db_query('SELECT r.rid, p.perm FROM {role} r LEFT JOIN {permission} p ON r.rid = p.rid WHERE r.rid = %d', $rid));
      if ($results !== FALSE) {
        $perms = explode(',', str_replace(', ', ',', $results['perm']));
        $permissions[$rid] = $perms;
      }
    }
  }
  return $permissions;
}