<?php
/**
- * @copyright Copyright (C) 2020, Friendica
+ * @copyright Copyright (C) 2010-2021, the Friendica project
*
* @license GNU AGPL version 3 or any later version
*
use Friendica\Core\Protocol;
use Friendica\DI;
use Friendica\Protocol\Activity;
-use Friendica\Util\Security;
+use Friendica\Security\Security;
/**
* A list of threads
$this->writable = true;
break;
case 'profile':
- $this->profile_owner = $a->profile['uid'];
- $this->writable = Security::canWriteToUserWall($this->profile_owner);
+ $this->profile_owner = $a->getProfileOwner();
+ $this->writable = Security::canWriteToUserWall($this->profile_owner) || $writable;
break;
case 'display':
- $this->profile_owner = $a->profile['uid'];
+ $this->profile_owner = $a->getProfileOwner();
$this->writable = Security::canWriteToUserWall($this->profile_owner) || $writable;
break;
case 'community':
* We should find a way to avoid using those arguments (at least most of them)
*
* @param array $conv_responses data
+ * @param string $formSecurityToken A security Token to avoid CSF attacks
*
* @return mixed The data requested on success
* false on failure
* @throws \Exception
*/
- public function getTemplateData($conv_responses)
+ public function getTemplateData($conv_responses, string $formSecurityToken)
{
$result = [];
continue;
}
- $item_data = $item->getTemplateData($conv_responses);
+ $item_data = $item->getTemplateData($conv_responses, $formSecurityToken);
if (!$item_data) {
Logger::log('[ERROR] Conversation::getTemplateData : Failed to get item template data ('. $item->getId() .').', Logger::DEBUG);
projects / friendica.git / blobdiff