From da484a48e3cfb44a29cc36a4714c489153168f24 Mon Sep 17 00:00:00 2001 From: Michael Date: Sun, 4 Jul 2021 10:55:32 +0000 Subject: [PATCH] Proxy: Avoid access for not logged in users --- src/Module/Proxy.php | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/src/Module/Proxy.php b/src/Module/Proxy.php index f929d4f736..57ff592564 100644 --- a/src/Module/Proxy.php +++ b/src/Module/Proxy.php @@ -45,8 +45,12 @@ class Proxy extends BaseModule * Sets application instance and checks if /proxy/ path is writable. * */ - public static function init(array $parameters = []) + public static function rawContent(array $parameters = []) { + if (!local_user()) { + throw new \Friendica\Network\HTTPException\ForbiddenException(DI::l10n()->t('Access denied.')); + } + // Set application instance here $a = DI::app();