friendica
/
friendica
mirror of https://github.com/friendica/friendica
6
0
Fork 1
Code Issues Packages Projects Releases 1 Wiki Activity

api_get_user() should not return false right away if the number in the URL is not a valid user

This commit is contained in:
Pierre Rudloff 2018-04-10 10:46:10 +02:00
parent 799bd75fb2
commit f3d98b2864
1 changed files with 6 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
include/api.php
View File

@ -577,14 +577,12 @@ function api_get_user(App $a, $contact_id = null)
if (is_numeric($user)) { if (is_numeric($user)) {
$user = dbesc(api_unique_id_to_nurl(intval($user))); $user = dbesc(api_unique_id_to_nurl(intval($user)));
if ($user == "") { if ($user != "") {
return false; $url = $user;
} $extra_query = "AND `contact`.`nurl` = '%s' ";
if (api_user() !== false) {
$url = $user; $extra_query .= "AND `contact`.`uid`=" . intval(api_user());
$extra_query = "AND `contact`.`nurl` = '%s' "; }
if (api_user() !== false) {
$extra_query .= "AND `contact`.`uid`=" . intval(api_user());
} }
} else { } else {
$user = dbesc($user); $user = dbesc($user);