From 29a48de5e29841f46791d42d6e329898688914fe Mon Sep 17 00:00:00 2001 From: Friendika Date: Tue, 19 Apr 2011 16:31:39 -0700 Subject: follow requests most adhere to site allow policy --- mod/follow.php | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'mod') diff --git a/mod/follow.php b/mod/follow.php index 23fad81a8..a1412e6c4 100644 --- a/mod/follow.php +++ b/mod/follow.php @@ -12,6 +12,13 @@ function follow_post(&$a) { $url = $orig_url = notags(trim($_POST['url'])); + if(! allowed_url($url)) { + notice( t('Disallowed profile URL.') . EOL); + goaway($_SESSION['return_url']); + // NOTREACHED + } + + $ret = probe_url($url); -- cgit v1.2.3