From 8143c39240c5773cc2dfb30b4a8b19f59e4a8d1d Mon Sep 17 00:00:00 2001
From: vogelor <vogelor@ispconfig3>
Date: Mon, 17 May 2010 12:51:20 -0400
Subject: [PATCH] Fixed a bug: if the domain-module is used and there are NO domains in the list, then the user was able to free edit the domain-name. This bug is fixed now and a empty list is generated, so the user can enter only a empty name!

---
 server/plugins-available/mysql_clientdb_plugin.inc.php |   10 ++++++++++
 1 files changed, 10 insertions(+), 0 deletions(-)

diff --git a/server/plugins-available/mysql_clientdb_plugin.inc.php b/server/plugins-available/mysql_clientdb_plugin.inc.php
index a1bb4fa..fdececf 100644
--- a/server/plugins-available/mysql_clientdb_plugin.inc.php
+++ b/server/plugins-available/mysql_clientdb_plugin.inc.php
@@ -123,6 +123,11 @@
 				$app->log('Unable to open'.ISPC_LIB_PATH.'/mysql_clientdb.conf',LOGLEVEL_ERROR);
 				return;
 			}
+			
+			if($data["new"]["database_user"] == 'root') {
+				$app->log('User root not allowed for Client databases',LOGLEVEL_WARNING);
+				return;
+			}
 		
 			//* Connect to the database
 			$link = mysql_connect($clientdb_host, $clientdb_user, $clientdb_password);
@@ -172,6 +177,11 @@
 				return;
 			}
 			
+			if($data["new"]["database_user"] == 'root') {
+				$app->log('User root not allowed for Client databases',LOGLEVEL_WARNING);
+				return;
+			}
+			
 			//* Connect to the database
 			$link = mysql_connect($clientdb_host, $clientdb_user, $clientdb_password);
 			if (!$link) {

--
Gitblit v1.9.1