Mascali/raspisms
1
0
Fork 0
mirror of https://github.com/RaspbianFrance/raspisms.git synced 2025-04-20 16:37:48 +02:00
Code Issues Projects Releases Wiki Activity

Force http/https for webhook and add error_log in index

Browse source
This commit is contained in:
osaajani 2020-06-14 22:17:04 +02:00
parent 54a8029b69
commit 903a8d3770
3 changed files with 14 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

12
controllers/internals/Webhook.php
View file

@ -27,6 +27,12 @@ class Webhook extends StandardController
*/
public function create(int $id_user, string $url, string $type)
{
//Must ensure http(s) protocole for protection against ssrf
if (!mb_ereg_match('^http(s?)://', $url))
{
return false;
}
$webhook = [
'id_user' => $id_user,
'url' => $url,
@ -54,6 +60,12 @@ class Webhook extends StandardController
*/
public function update_for_user(int $id_user, int $id, string $url, string $type)
{
//Must ensure http(s) protocole for protection against ssrf
if (!mb_ereg_match('^http(s?)://', $url))
{
return false;
}
$datas = [
'url' => $url,
'type' => $type,