zotlabs
Mario
parent
685d05f98b
commit
67848c03ed
@ -21,7 +21,6 @@ class Magic extends \Zotlabs\Web\Controller {
|
||||
$owa = ((x($_REQUEST,'owa')) ? intval($_REQUEST['owa']) : 0);
|
||||
$delegate = ((x($_REQUEST,'delegate')) ? $_REQUEST['delegate'] : '');
|
||||
|
||||
|
||||
if($bdest)
|
||||
$dest = hex2bin($bdest);
|
||||
|
||||
|
||||
3
boot.php
3
boot.php
@ -874,11 +874,12 @@ class App {
|
||||
}
|
||||
|
||||
if((x($_SERVER,'QUERY_STRING')) && substr($_SERVER['QUERY_STRING'], 0, 2) === "q=") {
|
||||
self::$query_string = escape_tags(substr($_SERVER['QUERY_STRING'], 2));
|
||||
self::$query_string = str_replace(['<','>'],['<','>'],substr($_SERVER['QUERY_STRING'], 2);
|
||||
// removing trailing / - maybe a nginx problem
|
||||
if (substr(self::$query_string, 0, 1) == "/")
|
||||
self::$query_string = substr(self::$query_string, 1);
|
||||
}
|
||||
|
||||
if(x($_GET,'q'))
|
||||
self::$cmd = escape_tags(trim($_GET['q'],'/\\'));
|
||||
|
||||
|
||||
@ -1710,7 +1710,7 @@ function zid_init() {
|
||||
// try to avoid recursion - but send them home to do a proper magic auth
|
||||
$query = App::$query_string;
|
||||
$query = str_replace(array('?zid=','&zid='),array('?rzid=','&rzid='),$query);
|
||||
$dest = '/' . urlencode($query);
|
||||
$dest = '/' . $query;
|
||||
if($r && ($r[0]['hubloc_url'] != z_root()) && (! strstr($dest,'/magic')) && (! strstr($dest,'/rmagic'))) {
|
||||
goaway($r[0]['hubloc_url'] . '/magic' . '?f=&rev=1&owa=1&bdest=' . bin2hex(z_root() . $dest));
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user