Prevents ?do=addlink from generating a 404 if the user is not logged in

author Florian Eula <eula.florian@gmail.com>

Fri, 21 Nov 2014 17:31:31 +0000 (18:31 +0100)

committer Florian Eula <eula.florian@gmail.com>

Fri, 21 Nov 2014 17:31:49 +0000 (18:31 +0100)
author Florian Eula <eula.florian@gmail.com>
Fri, 21 Nov 2014 17:31:31 +0000 (18:31 +0100)
committer Florian Eula <eula.florian@gmail.com>
Fri, 21 Nov 2014 17:31:49 +0000 (18:31 +0100)
diff --git a/index.php b/index.php

index f2410f71de69ba566b418e2e66d88565a1cc8030..35e83eb54498613497c9f926939e38dc2eab6edd 100644 (file)
--- a/index.php
+++ b/index.php
@@ -1349,6 +1349,14 @@ function renderPage()
              header('Location: ?do=login&post='.urlencode($_GET['post']).(!empty($_GET['title'])?'&title='.urlencode($_GET['title']):'').(!empty($_GET['description'])?'&description='.urlencode($_GET['description']):'').(!empty($_GET['source'])?'&source='.urlencode($_GET['source']):'')); // Redirect to login page, then back to post link.
              exit;
          }
+
+               // Same case as above except that user tried to access ?do=addlink without being logged in
+               // Note: passing empty parameters makes Shaarli generate default URLs and descriptions.
+               if (isset($_GET['do']) && $_GET['do'] === 'addlink') {
+                       header('Location: ?do=login&post=');
+                       exit;
+               }
+
          $PAGE = new pageBuilder;
          buildLinkList($PAGE,$LINKSDB); // Compute list of links to display
          $PAGE->renderPage('linklist');
author	Florian Eula <eula.florian@gmail.com>
	Fri, 21 Nov 2014 17:31:31 +0000 (18:31 +0100)
committer	Florian Eula <eula.florian@gmail.com>
	Fri, 21 Nov 2014 17:31:49 +0000 (18:31 +0100)