Elgg  Version master
UpgradeGatekeeper.php
Go to the documentation of this file.
1 <?php
2 
3 namespace Elgg\Router\Middleware;
4 
5 use Elgg\Http\ResponseBuilder;
6 use Elgg\Exceptions\Http\Gatekeeper\UpgradeGatekeeperException;
7 
11 class UpgradeGatekeeper {
12 
21  public function __invoke(\Elgg\Request $request) {
22 
23  if (elgg_is_admin_logged_in()) {
24  return null;
25  }
26 
27  if (!_elgg_services()->config->security_protect_upgrade) {
28  return null;
29  }
30 
31  $url = $request->getURL();
32  if (!_elgg_services()->urlSigner->isValid($url)) {
33  throw new UpgradeGatekeeperException();
34  }
35  }
36 }
Elgg\Router\Middleware\UpgradeGatekeeper
Protect upgrade.php from unauthorized execution.
Definition: UpgradeGatekeeper.php:11
elgg_is_admin_logged_in
elgg_is_admin_logged_in()
Returns whether or not the viewer is currently logged in and an admin user.
Definition: sessions.php:52
$request
$request
Definition: livesearch.php:12
Elgg\Router\Middleware\UpgradeGatekeeper\__invoke
__invoke(\Elgg\Request $request)
Protect upgrade.php from unauthorized execution.
Definition: UpgradeGatekeeper.php:21
Elgg\Exceptions\Http\Gatekeeper\UpgradeGatekeeperException
Thrown when the request to upgrade.php isn&#39;t valid.
Definition: UpgradeGatekeeperException.php:12
Elgg\Request
Request container.
Definition: Request.php:12
$url
foreach($plugin_guids as $guid) if(empty($deactivated_plugins)) $url
Definition: deactivate.php:39
_elgg_services
_elgg_services()
Get the global service provider.
Definition: elgglib.php:353
Generated on Mon Aug 4 2025 00:01:56 for Elgg by   doxygen 1.8.11