iv-org-mirror/invidious
1
0
Fork 0
mirror of https://gitea.invidious.io/iv-org/invidious.git synced 2024-08-15 00:53:41 +00:00
Code Issues Projects Releases Packages Wiki Activity

Strip invalid characters from referer URLs

Browse source
This commit is contained in:
Omar Roth 2020-03-15 17:37:51 -04:00
parent 70cbe91776
commit 4011a113cc
No known key found for this signature in database
GPG key ID: B8254FB7EC3D37F2
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/invidious/helpers/utils.cr
View file

@ -316,7 +316,7 @@ def get_referer(env, fallback = "/", unroll = true)
end
referer = referer.full_path
referer = "/" + referer.lstrip("/\\")
referer = "/" + referer.gsub(/[^\/?@&%=\-_.0-9a-zA-Z]/, "").lstrip("/\\")
if referer == env.request.path
referer = fallback