search

tastyigniter / TastyIgniter

:fire: Powerful, yet easy to use, open-source online ordering, table reservation and management system for restaurants
https://tastyigniter.com
MIT License
2.98k stars 966 forks source link

Resolve temporarily open_basedir issue #1061

Closed Concreta09 closed 8 months ago

Concreta09 commented 8 months ago

Resolve open_basedir issue adding dot for relativize filename path

sampoyigi commented 8 months ago

Can you add some description of what issue this is solving?

Concreta09 commented 8 months ago

Can you add some description of what issue this is solving?

When hosting has open_basedir configured and the file is checked by File::isFile() method if the file name start with a slash it's result out of the authorized paths, with relative path all works fine.

example

Schermata del 2023-12-09 16-39-26

See

https://discord.com/channels/486734519798333440/534045257730359309/1092545452957765723

Set open_basedir as "none" is a bad idea (and some shared hosting don't allow it) for security reason

https://discord.com/channels/486734519798333440/534045257730359309/1061302551418515506

sampoyigi commented 8 months ago

Thank you!