aboutsummaryrefslogtreecommitdiffstats
path: root/include
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2012-03-22 01:46:52 -0700
committerfriendica <info@friendica.com>2012-03-22 01:46:52 -0700
commitebdf0ee99e517c6718099fda2f1b2288c42e66da (patch)
tree274a80868cf7a150ca701bbfc7ddb98152e2e42d /include
parent576eb6cc389d54c29b29b97d3c6d160e61bbf6ca (diff)
downloadvolse-hubzilla-ebdf0ee99e517c6718099fda2f1b2288c42e66da.tar.gz
volse-hubzilla-ebdf0ee99e517c6718099fda2f1b2288c42e66da.tar.bz2
volse-hubzilla-ebdf0ee99e517c6718099fda2f1b2288c42e66da.zip
prevent re-registrations using a deleted username - not an issue with Friendica but could create a serious privacy issue with federated platforms
Diffstat (limited to 'include')
-rwxr-xr-xinclude/Contact.php6
1 files changed, 6 insertions, 0 deletions
diff --git a/include/Contact.php b/include/Contact.php
index baccea305..d9949b1ef 100755
--- a/include/Contact.php
+++ b/include/Contact.php
@@ -15,6 +15,12 @@ function user_remove($uid) {
call_hooks('remove_user',$r[0]);
+ // save username (actually the nickname as it is guaranteed
+ // unique), so it cannot be re-registered in the future.
+
+ q("insert into userd ( username ) values ( '%s' )",
+ $r[0]['nickname']
+ );
q("DELETE FROM `contact` WHERE `uid` = %d", intval($uid));
q("DELETE FROM `group` WHERE `uid` = %d", intval($uid));