liquid_feedback_frontend
view app/main/member/_action/update_name.lua @ 9:0ee1e0c42d4c
Version beta5
Minor security fix: Added missing security filter for admin section. Reading of member listing including login names was possible for all users. Write access has not been possible though.
Changing of name and login is possible while a history of these changes is written and accessible by all users.
Statistics shown in area list
Trimming of user input also converts multiple whitespaces to single space character.
Minor security fix: Added missing security filter for admin section. Reading of member listing including login names was possible for all users. Write access has not been possible though.
Changing of name and login is possible while a history of these changes is written and accessible by all users.
Statistics shown in area list
Trimming of user input also converts multiple whitespaces to single space character.
| author | bsw |
|---|---|
| date | Mon Jan 04 12:00:00 2010 +0100 (2010-01-04) |
| parents | |
| children | 733f65c0c0a0 |
line source
1 local name = param.get("name")
3 name = util.trim(name)
5 if #name < 3 then
6 slot.put_into(_error, _"This name is too short!")
7 end
10 app.session.member.name = name
12 local db_error = app.session.member:try_save()
14 if db_error then
15 if db_error:is_kind_of("IntegrityConstraintViolation.UniqueViolation") then
16 slot.put_into("error", _"This name is already taken, please choose another one!")
17 return false
18 end
19 db_error:escalate()
20 end
22 slot.put_into("notice", _"Your name has been changed")