Catch HTTPExceptions in App::runFrontend()

[friendica.git] / mod / poke.php

diff --git a/mod/poke.php b/mod/poke.php
index e8c43213a799c536e2b92b7243739f2783d00c1a..fb1fae85d6727db111a98371171417d8b85bbebf 100644 (file)
--- a/mod/poke.php
+++ b/mod/poke.php
@@ -22,10 +22,9 @@ use Friendica\Core\System;
 use Friendica\Core\Worker;
 use Friendica\Database\DBA;
 use Friendica\Model\Item;
+use Friendica\Util\Strings;
 use Friendica\Util\XML;
 
-require_once 'include/items.php';
-
 function poke_init(App $a)
 {
        if (!local_user()) {
@@ -38,7 +37,7 @@ function poke_init(App $a)
                return;
        }
 
-       $verb = notags(trim($_GET['verb']));
+       $verb = Strings::escapeTags(trim($_GET['verb']));
 
        $verbs = L10n::getPokeVerbs();
 
@@ -53,7 +52,7 @@ function poke_init(App $a)
                return;
        }
 
-       $parent = (x($_GET,'parent') ? intval($_GET['parent']) : 0);
+       $parent = (!empty($_GET['parent']) ? intval($_GET['parent']) : 0);
 
 
        Logger::log('poke: verb ' . $verb . ' contact ' . $contact_id, Logger::DEBUG);
@@ -85,7 +84,7 @@ function poke_init(App $a)
                        $deny_gid   = $item['deny_gid'];
                }
        } else {
-               $private = (x($_GET,'private') ? intval($_GET['private']) : 0);
+               $private = (!empty($_GET['private']) ? intval($_GET['private']) : 0);
 
                $allow_cid     = ($private ? '<' . $target['id']. '>' : $a->user['allow_cid']);
                $allow_gid     = ($private ? '' : $a->user['allow_gid']);
@@ -168,7 +167,7 @@ function poke_content(App $a)
        ]);
 
 
-       $parent = (x($_GET,'parent') ? intval($_GET['parent']) : '0');
+       $parent = (!empty($_GET['parent']) ? intval($_GET['parent']) : '0');
 
 
        $verbs = L10n::getPokeVerbs();