function file_upload_security_set_message in File Upload Security 7.3
Same name and namespace in other branches
- 7 file_upload_security.module \file_upload_security_set_message()
Helper to set a message about protecting the file structure.
Parameters
string $bundle: The content type being protected.
string $type: The message to set: protect or warn.
2 calls to file_upload_security_set_message()
- file_upload_security_amend_widget_settings in ./
file_upload_security.module - Helper to carry out the file_upload_security action based on settings.
- file_upload_security_webform_component_presave in ./
file_upload_security.module - Implements hook_webform_component_presave().
File
- ./
file_upload_security.module, line 194 - Helper module to advise and resolve security issues in file uploads.
Code
function file_upload_security_set_message($bundle, $type = 'protect') {
$psa_link = l(t('the Drupal Security Team public service announcement'), FILE_UPLOAD_SECURITY_PSA);
if ($type == 'protect') {
$message = t('The site administrator has restricted file uploads to prevent anonymous users uploading malicious files to public areas. See !url for further details.', array(
'@bundle' => $bundle,
'!url' => $psa_link,
));
}
else {
$message = t('The @bundle content type can be created by anonymous users. Allowing those users to upload files into the public file storage can be a security risk. See !url for further details.', array(
'@bundle' => $bundle,
'!url' => $psa_link,
));
}
drupal_set_message($message, 'warning');
}