r102133 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r102132‎ \| r102133 \| r102134 >
Date:	00:29, 6 November 2011
Author:	ashley
Status:	ok
Tags:
Comment:	SocialProfile: as per Markus' in-depth review: wrap $response in an intval() call to make the code demonstratably secure
Modified paths:	/trunk/extensions/SocialProfile/UserRelationship/Relationship_AjaxFunctions.php (modified) (history)

Diff [purge]

Index: trunk/extensions/SocialProfile/UserRelationship/Relationship_AjaxFunctions.php
—	—	@@ -16,7 +16,7 @@
17	17	$rel_type = strtolower( $request[0]['type'] );
18	18
19	19	$response = ( isset( $_POST['response' ] ) ) ? $_POST['response'] : $response;
20		~~- $rel->updateRelationshipRequestStatus( $requestId, $response );~~
	20	+ $rel->updateRelationshipRequestStatus( $requestId, intval( $response ) );
21	21
22	22	$avatar = new wAvatar( $user_id_from, 'l' );
23	23	$avatar_img = $avatar->getAvatarURL();
—	—	@@ -37,5 +37,6 @@
38	38	}
39	39	$rel->deleteRequest( $requestId );
40	40	}
	41	+
41	42	return $out;
42	43	}

09:09, 18 January 2012 Siebrand (talk | contribs) changed the tags for r102133 [removed: socialprofile]
17:41, 16 January 2012 😂 (talk | contribs) changed the status of r102133 [removed: new added: ok]
14:24, 15 January 2012 Jack Phoenix (talk | contribs) changed the status of r102133 [removed: deferred added: new]
16:38, 6 January 2012 Reedy (talk | contribs) changed the status of r102133 [removed: new added: deferred]
06:16, 5 January 2012 RobLa-WMF (talk | contribs) changed the tags for r102133 [added: socialprofile]
10:48, 11 December 2011 Jack Phoenix (talk | contribs) changed the status of r102133 [removed: deferred added: new]
09:33, 8 December 2011 Tim Starling (talk | contribs) changed the status of r102133 [removed: new added: deferred]
19:08, 13 November 2011 Jack Phoenix (talk | contribs) changed the status of r102133 [removed: deferred added: new]
13:53, 13 November 2011 Reedy (talk | contribs) changed the status of r102133 [removed: new added: deferred]