aboutsummaryrefslogtreecommitdiffstats
path: root/include
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2014-03-21 01:14:51 -0700
committerfriendica <info@friendica.com>2014-03-21 01:14:51 -0700
commitcaa284e786d22d8c1d985fe9c86128ab7e195769 (patch)
tree5bc8e8e2253d0fb64850ecdccc1b639c28ee1095 /include
parent78f003e4a5e5c8ba80132cdb10af5f247f13090d (diff)
downloadvolse-hubzilla-caa284e786d22d8c1d985fe9c86128ab7e195769.tar.gz
volse-hubzilla-caa284e786d22d8c1d985fe9c86128ab7e195769.tar.bz2
volse-hubzilla-caa284e786d22d8c1d985fe9c86128ab7e195769.zip
we don't allow forgeries to be received - save some bandwidth by not allowing them to be sent. We do have to figure out how some secondary delivery chains are ending up with posts belonging to the original owner instead of the chain owner, but that's for another day.
Diffstat (limited to 'include')
-rw-r--r--include/notifier.php5
1 files changed, 5 insertions, 0 deletions
diff --git a/include/notifier.php b/include/notifier.php
index 81f971107..a4a9051c3 100644
--- a/include/notifier.php
+++ b/include/notifier.php
@@ -288,6 +288,11 @@ function notifier_run($argv, $argc){
if($s)
$channel = $s[0];
+ if($channel['channel_hash'] !== $target_item['author_xchan'] && $channel['channel_hash'] !== $target_item['owner_xchan']) {
+ logger("notifier: Sending channel {$channel['channel_hash']} is not owner {$target_item['owner_xchan']} or author {$target_item['author_xchan']}");
+ return;
+ }
+
if($target_item['id'] == $target_item['parent']) {
$parent_item = $target_item;