- Patch #352054 by catch: convert calls to db_placeholders() in static queries.

author: Dries Buytaert <dries@buytaert.net> 2008-12-29 16:03:57 +0000
committer: Dries Buytaert <dries@buytaert.net> 2008-12-29 16:03:57 +0000
commit: a04728577f34b98936c53799ccf1f2aaf7f3ff03 (patch)
tree: d401a2a0971bcbd5404473983b95923bf38e046d /modules/user/user.module
parent: 5bbad8a4dc42ed751fc8f394cd2829718329c2be (diff)
download: brdo-a04728577f34b98936c53799ccf1f2aaf7f3ff03.tar.gz
brdo-a04728577f34b98936c53799ccf1f2aaf7f3ff03.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/user/user.module b/modules/user/user.module
index f97811cc1..6282d35c5 100644
--- a/modules/user/user.module
+++ b/modules/user/user.module
@@ -489,7 +489,7 @@ function user_role_permissions($roles = array(), $reset = FALSE) {
     if ($fetch) {
       // Get from the database permissions that were not in the static variable.
       // Only role IDs with at least one permission assigned will return rows.
-      $result = db_query("SELECT r.rid, p.permission FROM {role} r INNER JOIN {role_permission} p ON p.rid = r.rid WHERE r.rid IN (" . db_placeholders($fetch) . ")", $fetch);
+      $result = db_query("SELECT r.rid, p.permission FROM {role} r INNER JOIN {role_permission} p ON p.rid = r.rid WHERE r.rid IN (:fetch)", array(':fetch' => $fetch));
 
       while ($row = db_fetch_array($result)) {
         $stored_permissions[$row['rid']][$row['permission']] = TRUE;
author	Dries Buytaert <dries@buytaert.net>	2008-12-29 16:03:57 +0000
committer	Dries Buytaert <dries@buytaert.net>	2008-12-29 16:03:57 +0000
commit	a04728577f34b98936c53799ccf1f2aaf7f3ff03 (patch)
tree	d401a2a0971bcbd5404473983b95923bf38e046d /modules/user/user.module
parent	5bbad8a4dc42ed751fc8f394cd2829718329c2be (diff)
download	brdo-a04728577f34b98936c53799ccf1f2aaf7f3ff03.tar.gz brdo-a04728577f34b98936c53799ccf1f2aaf7f3ff03.tar.bz2