* Fetch a single item row
*
* @param mixed $stmt statement object
- * @return array current row
+ * @return array|false current row or false
+ * @throws \Exception
*/
public static function fetch($stmt)
{
$row = DBA::fetch($stmt);
- if (is_bool($row)) {
+ if (!is_array($row)) {
return $row;
}
return false;
}
+ if (!empty($item['uid'])) {
+ $owner = User::getOwnerDataById($item['uid'], false);
+ if (!$owner) {
+ Logger::notice('Missing item user owner data', ['uid' => $item['uid']]);
+ return false;
+ }
+
+ if ($owner['account_expired'] || $owner['account_removed']) {
+ Logger::notice('Item user has been deleted/expired/removed', ['uid' => $item['uid'], 'deleted' => $owner['deleted'], 'account_expired' => $owner['account_expired'], 'account_removed' => $owner['account_removed']]);
+ return false;
+ }
+ }
+
if (!empty($item['author-id']) && Contact::isBlocked($item['author-id'])) {
Logger::notice('Author is blocked node-wide', ['author-link' => $item['author-link'], 'item-uri' => $item['uri']]);
return false;
$datarray['api_source'] = true;
// We have to tell the hooks who we are - this really should be improved
- $_SESSION["authenticated"] = true;
- $_SESSION["uid"] = $contact['uid'];
+ $_SESSION['authenticated'] = true;
+ $_SESSION['uid'] = $contact['uid'];
return (bool)$result;
}
projects / friendica.git / blobdiff