X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Ftagger.php;h=d55e34f78bd1d2dfa1f68ade73b5d6c939d07e00;hb=6b03ee29229e1c56e1ba71fb3ff062fa4f1ce51a;hp=2e5116df8dcd445f6e03461ad0ed369dee5d4aa3;hpb=054c301ef0345c4ff9f35cfd08717757eab17b9d;p=friendica.git diff --git a/mod/tagger.php b/mod/tagger.php index 2e5116df8d..d55e34f78b 100644 --- a/mod/tagger.php +++ b/mod/tagger.php @@ -27,11 +27,11 @@ use Friendica\Core\System; use Friendica\Core\Worker; use Friendica\Database\DBA; use Friendica\DI; +use Friendica\Model\Contact; use Friendica\Model\Item; use Friendica\Model\Post; use Friendica\Model\Tag; use Friendica\Protocol\Activity; -use Friendica\Util\Strings; use Friendica\Util\XML; use Friendica\Worker\Delivery; @@ -41,47 +41,35 @@ function tagger_content(App $a) { return; } - $term = Strings::escapeTags(trim($_GET['term'])); + $term = trim($_GET['term'] ?? ''); // no commas allowed - $term = str_replace([',',' '],['','_'],$term); + $term = str_replace([',',' ', '<', '>'],['','_', '', ''], $term); if (!$term) { return; } - $item_id = (($a->argc > 1) ? Strings::escapeTags(trim($a->argv[1])) : 0); + $item_id = ((DI::args()->getArgc() > 1) ? trim(DI::args()->getArgv()[1]) : 0); - Logger::log('tagger: tag ' . $term . ' item ' . $item_id); + Logger::notice('tagger: tag ' . $term . ' item ' . $item_id); $item = Post::selectFirst([], ['id' => $item_id]); if (!$item_id || !DBA::isResult($item)) { - Logger::log('tagger: no item ' . $item_id); + Logger::notice('tagger: no item ' . $item_id); return; } $owner_uid = $item['uid']; - $blocktags = 0; - - $r = q("select `blocktags` from user where uid = %d limit 1", - intval($owner_uid) - ); - if (DBA::isResult($r)) { - $blocktags = $r[0]['blocktags']; - } if (local_user() != $owner_uid) { return; } - $r = q("select * from contact where self = 1 and uid = %d limit 1", - intval(local_user()) - ); - if (DBA::isResult($r)) { - $contact = $r[0]; - } else { - Logger::log('tagger: no contact_id'); + $contact = Contact::selectFirst([], ['self' => true, 'uid' => local_user()]); + if (!DBA::isResult($contact)) { + Logger::notice('tagger: no contact_id'); return; }