GNUsocial
/
gnu-social
4
0
Fork 1
Code Issues Releases Wiki Activity

Only allow RSSCloud subs to canonical RSS2 profile feeds

This commit is contained in:
Zach Copley 2010-03-08 22:53:43 +00:00
parent 927a368d0e
commit 49722f6550
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
plugins/RSSCloud/RSSCloudRequestNotify.php
View File

@ -270,13 +270,14 @@ class RSSCloudRequestNotifyAction extends Action
function userFromFeed($feed)
{
// We only do profile feeds
// We only do canonical RSS2 profile feeds (specified by ID), e.g.:
// http://www.example.com/api/statuses/user_timeline/2.rss
$path = common_path('api/statuses/user_timeline/');
$valid = '%^' . $path . '(?<nickname>.*)\.rss$%';
$valid = '%^' . $path . '(?<id>.*)\.rss$%';
if (preg_match($valid, $feed, $matches)) {
$user = User::staticGet('nickname', $matches['nickname']);
$user = User::staticGet('id', $matches['id']);
if (!empty($user)) {
return $user;
}