From: Alan Knowles <alan@roojs.com>
Date: Thu, 16 Aug 2018 00:42:20 +0000 (+0800)
Subject: Asset.php
X-Git-Url: http://git.roojs.org/?p=Pman.Core;a=commitdiff_plain;h=c0f7a39502614600799930b603b9cdcbb5c77cdb

Asset.php
---

diff --git a/Asset.php b/Asset.php
index 503a94e7..b65dca0c 100644
--- a/Asset.php
+++ b/Asset.php
@@ -36,10 +36,7 @@ class Pman_Core_Asset extends Pman {
     
     function get($s='', $opts = Array())
     {
-        if(!empty($_REQUEST['_clear_cache'])) {
-            $this->clearCompiledFilesCache();
-        }
-        
+
         
         $this->sessionState(0);
         
@@ -121,6 +118,10 @@ class Pman_Core_Asset extends Pman {
     }
     
     function post($s='') {
+        if(!empty($_REQUEST['_clear_cache'])) {
+            $this->clearCompiledFilesCache();
+        }
+        
         die('invalid');
     }
      
@@ -166,6 +167,12 @@ class Pman_Core_Asset extends Pman {
     
     function clearCompiledFilesCache()
     {
+        $au = $this->getAuthUser();
+        if (!$au && !in_array($_SERVER['REMOTE_ADDR'] , array('127.0.0.1','::1')) {
+            $this->jerr("Cache can only be cleared by authenticated users");
+        }
+        
+        
         require_once 'System.php';
         $mods = $this->modulesList();