From fd7d497cd1ba8846770425fc4dcb07c7cf5bbb85 Mon Sep 17 00:00:00 2001
From: Mario <mario@mariovavti.com>
Date: Fri, 15 Nov 2019 09:55:44 +0000
Subject: make inline pdf a security option, move thumbnail security to
 security options from admin/site

(cherry picked from commit de9a7f0fa909792656d26d369f2ff21c57fc1e4d)
---
 include/oembed.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'include/oembed.php')

diff --git a/include/oembed.php b/include/oembed.php
index ee9e57c3f..eeae7a174 100755
--- a/include/oembed.php
+++ b/include/oembed.php
@@ -146,7 +146,7 @@ function oembed_fetch_url($embedurl){
 		$txt = Cache::get('[' . App::$videowidth . '] ' . $furl);
 	}
 
-	if(strpos(strtolower($embedurl),'.pdf') !== false) {
+	if(strpos(strtolower($embedurl),'.pdf') !== false && get_config('system','inline_pdf')) {
 		$action = 'allow';
 		$j = [
 			'html' => '<object data="' . $embedurl . '" type="application/pdf" style="width: 100%; height: 300px;"></object>',
-- 
cgit v1.2.3