we shouldn't be redirecting to the referer'

This commit is contained in:
Savetheinternet 2011-06-19 11:26:26 +10:00
parent 370b829460
commit 6ca99d189d

36
mod.php Normal file → Executable file
View File

@ -1257,10 +1257,7 @@
} }
// Redirect // Redirect
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/reports', true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/reports', true, $config['redirect_http']);
} elseif(preg_match('/^\/board\/(\w+)(\/delete)?$/', $query, $matches)) { } elseif(preg_match('/^\/board\/(\w+)(\/delete)?$/', $query, $matches)) {
if($mod['type'] < $config['mod']['manageboards']) error($config['error']['noaccess']); if($mod['type'] < $config['mod']['manageboards']) error($config['error']['noaccess']);
@ -1700,10 +1697,7 @@
// Redirect // Redirect
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
} elseif(preg_match('/^\/' . $regex['board'] . 'delete\/(\d+)$/', $query, $matches)) { } elseif(preg_match('/^\/' . $regex['board'] . 'delete\/(\d+)$/', $query, $matches)) {
if($mod['type'] < $config['mod']['delete']) error($config['error']['noaccess']); if($mod['type'] < $config['mod']['delete']) error($config['error']['noaccess']);
// Delete post // Delete post
@ -1724,10 +1718,7 @@
buildIndex(); buildIndex();
// Redirect // Redirect
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
} elseif(preg_match('/^\/' . $regex['board'] . '(un)?sticky\/(\d+)$/', $query, $matches)) { } elseif(preg_match('/^\/' . $regex['board'] . '(un)?sticky\/(\d+)$/', $query, $matches)) {
if($mod['type'] < $config['mod']['sticky']) error($config['error']['noaccess']); if($mod['type'] < $config['mod']['sticky']) error($config['error']['noaccess']);
// Add/remove sticky // Add/remove sticky
@ -1758,10 +1749,7 @@
// Redirect // Redirect
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
} elseif(preg_match('/^\/' . $regex['board'] . '(un)?lock\/(\d+)$/', $query, $matches)) { } elseif(preg_match('/^\/' . $regex['board'] . '(un)?lock\/(\d+)$/', $query, $matches)) {
if($mod['type'] < $config['mod']['lock']) error($config['error']['noaccess']); if($mod['type'] < $config['mod']['lock']) error($config['error']['noaccess']);
// Lock/Unlock // Lock/Unlock
@ -1792,10 +1780,7 @@
// Redirect // Redirect
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
} elseif(preg_match('/^\/' . $regex['board'] . 'deletebyip\/(\d+)$/', $query, $matches)) { } elseif(preg_match('/^\/' . $regex['board'] . 'deletebyip\/(\d+)$/', $query, $matches)) {
// Delete all posts by an IP // Delete all posts by an IP
@ -1830,10 +1815,7 @@
buildIndex(); buildIndex();
if(isset($_SERVER['HTTP_REFERER'])) header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
} elseif(preg_match('/^\/ban$/', $query)) { } elseif(preg_match('/^\/ban$/', $query)) {
if($mod['type'] < $config['mod']['ban']) error($config['error']['noaccess']); if($mod['type'] < $config['mod']['ban']) error($config['error']['noaccess']);
// Ban page // Ban page
@ -1952,8 +1934,6 @@
header('Location: ' . $_POST['continue'], true, $config['redirect_http']); header('Location: ' . $_POST['continue'], true, $config['redirect_http']);
elseif(isset($board)) elseif(isset($board))
header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']); header('Location: ?/' . sprintf($config['board_path'], $boardName) . $config['file_index'], true, $config['redirect_http']);
elseif(isset($_SERVER['HTTP_REFERER']))
header('Location: ' . $_SERVER['HTTP_REFERER'], true, $config['redirect_http']);
else else
header('Location: ?/', true, $config['redirect_http']); header('Location: ?/', true, $config['redirect_http']);
} }
@ -1980,7 +1960,7 @@
$post = $query->fetch(); $post = $query->fetch();
$body = form_newBan($post['ip'], null, isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : false, $post['id'], $boardName, !$delete); $body = form_newBan($post['ip'], null, '?/' . sprintf($config['board_path'], $board['uri']) . $config['file_index'], $post['id'], $boardName, !$delete);
echo Element('page.html', Array( echo Element('page.html', Array(
'config'=>$config, 'config'=>$config,
@ -2183,7 +2163,7 @@
} }
if($mod['type'] >= $config['mod']['ip_banform']) if($mod['type'] >= $config['mod']['ip_banform'])
$body .= form_newBan($ip, null, isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : false); $body .= form_newBan($ip, null, '?/IP/' . $ip);
echo Element('page.html', Array( echo Element('page.html', Array(
'config'=>$config, 'config'=>$config,