- Patch #69202 by AjK, dopry, chx et al: don't allow anonymous users to send

themselves a copy. Prevents spam.

- Patch #69202 by AjK, dopry, chx et al: don't allow anonymous users to send
8f535993 · Dries Buytaert · 14e925e3 · 8f535993
Commit 8f535993 authored 18 years ago by Dries Buytaert
--- a/modules/contact/contact.module
+++ b/modules/contact/contact.module
@@ -40,7 +40,7 @@ function contact_help($section) {
 * Implementation of hook_perm
 */
 function contact_perm() {
-  return array('access site-wide contact form', 'access personal contact forms');
+  return array('access site-wide contact form');
 }
 /**
 * Implementation of hook_menu().
@@ -106,7 +106,7 @@ function contact_menu($may_cache) {
          'title' => t('contact'),
          'callback' => 'contact_user_page',
          'type' => MENU_LOCAL_TASK,
-          'access' => ($user->uid && user_access('access personal contact forms')),
+          'access' => $user->uid,
          'weight' => 2,
        );
      }
@@ -475,9 +475,13 @@ function contact_mail_page() {
      '#title' => t('Message'),
      '#required' => TRUE,
    );
-    $form['copy'] = array('#type' => 'checkbox',
+    // We do not allow anonymous users to send themselves a copy
-      '#title' => t('Send yourself a copy.'),
+    // because it can be abused to spam people.
-    );
+    if ($user->uid) {
+      $form['copy'] = array('#type' => 'checkbox',
+        '#title' => t('Send yourself a copy.'),
+      );
+    }
    $form['submit'] = array('#type' => 'submit',
      '#value' => t('Send e-mail'),
    );