aboutsummaryrefslogtreecommitdiffstats
path: root/include/api_auth.php
diff options
context:
space:
mode:
authorMario Vavti <mario@mariovavti.com>2017-09-02 23:52:31 +0200
committerMario Vavti <mario@mariovavti.com>2017-09-02 23:52:31 +0200
commit1a0cf2666a757314edfb5f6f1ea40c5e1e8750ea (patch)
tree1b08dc710e25d16fdea0b451c29529e7ba489345 /include/api_auth.php
parente935473c5c05a40194c110fbb024825a30ca5a4b (diff)
parent7bff60edacd68ef3dccf6f956e9c57092919950a (diff)
downloadvolse-hubzilla-1a0cf2666a757314edfb5f6f1ea40c5e1e8750ea.tar.gz
volse-hubzilla-1a0cf2666a757314edfb5f6f1ea40c5e1e8750ea.tar.bz2
volse-hubzilla-1a0cf2666a757314edfb5f6f1ea40c5e1e8750ea.zip
Merge remote-tracking branch 'mike/master' into dev
Diffstat (limited to 'include/api_auth.php')
-rw-r--r--include/api_auth.php3
1 files changed, 2 insertions, 1 deletions
diff --git a/include/api_auth.php b/include/api_auth.php
index 0818fa54b..0acd4ac68 100644
--- a/include/api_auth.php
+++ b/include/api_auth.php
@@ -85,7 +85,8 @@ function api_login(&$a){
else {
continue;
}
-
+// requires security review
+$record = null;
if($record) {
$verified = \Zotlabs\Web\HTTPSig::verify('',$record['channel']['channel_pubkey']);
if(! ($verified && $verified['header_signed'] && $verified['header_valid'])) {