From 2362d438d0443ad8c61ff4929f5b2e231a07d3a3 Mon Sep 17 00:00:00 2001 From: Jan Derriks Date: Mon, 8 Jun 2009 15:27:27 +0200 Subject: [PATCH] [svn r21288] FS#4303 - ldap add user needs Security::remove_XSS which needs Htmlpurify. Must be included before the local.inc.php is included --- main/inc/global.inc.php | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/main/inc/global.inc.php b/main/inc/global.inc.php index b600d40f54..37b77ebda5 100644 --- a/main/inc/global.inc.php +++ b/main/inc/global.inc.php @@ -322,6 +322,10 @@ foreach($result as $row) $_plugins[$key][]=$row['selected_value']; } +//load array Kses for Htmlpurifier +require_once $includePath."/lib/formvalidator/Rule/allowed_tags.inc.php"; +//load htmpurifier +require_once $includePath."/lib/htmlpurifier/library/HTMLPurifier.auto.php"; // include the local (contextual) parameters of this course or section require($includePath."/local.inc.php"); @@ -334,10 +338,7 @@ if (!$x=strpos($_SERVER['PHP_SELF'],'whoisonline.php')) { LoginCheck(isset($_user['user_id']) ? $_user['user_id'] : '',$_configuration['statistics_database']); } -//load array Kses for Htmlpurifier -require_once $includePath."/lib/formvalidator/Rule/allowed_tags.inc.php"; -//load htmpurifier -require_once $includePath."/lib/htmlpurifier/library/HTMLPurifier.auto.php"; + // ===== end "who is logged in?" module section ===== if(get_setting('server_type') == 'test')