aboutsummaryrefslogtreecommitdiffstats
path: root/include/security.php
diff options
context:
space:
mode:
authorHarald Eilertsen <haraldei@anduin.net>2022-03-13 19:37:45 +0100
committerHarald Eilertsen <haraldei@anduin.net>2022-03-13 19:37:45 +0100
commitf4af532c5a8f37f69035616e2ae7908bf5b77a62 (patch)
tree90d2307d2d98972994229f5c2bc46ac56153e461 /include/security.php
parent34ffff3947b8e89a667367277f0fde9c626fd143 (diff)
downloadvolse-hubzilla-f4af532c5a8f37f69035616e2ae7908bf5b77a62.tar.gz
volse-hubzilla-f4af532c5a8f37f69035616e2ae7908bf5b77a62.tar.bz2
volse-hubzilla-f4af532c5a8f37f69035616e2ae7908bf5b77a62.zip
Trim trailing & from query_string.
When trying to fetch an image file from the Cloud module, the default nginx config will add a trailing & if there's no args specified. Example: https://example.com/cloud/username/some_image.png This will be rewritten to: https://example.com/index.php?q=/cloud/username/some_image.png& This in turn will cause the Cloud module to try to redirect back to the original because it does not match the query_string (in which the ampersand has been converted to a question mark). And this will repeat until the browser get's tired of it.
Diffstat (limited to 'include/security.php')
0 files changed, 0 insertions, 0 deletions