if (!defined('LACONICA')) { exit(1); }
class SubscribeAction extends Action {
-
+
function handle($args) {
parent::handle($args);
# CSRF protection
$token = $this->trimmed('token');
-
+
if (!$token || $token != common_session_token()) {
$this->client_error(_('There was a problem with your session token. Try again, please.'));
return;
}
- $other_nickname = $this->arg('subscribeto');
+ $other_id = $this->arg('subscribeto');
+
+ $other = User::staticGet('id', $other_id);
+
+ if (!$other) {
+ $this->client_error(_('Not a local user.'));
+ return;
+ }
+
+ $result = subs_subscribe_to($user, $other);
- $result=subs_subscribe_user($user, $other_nickname);
-
if($result != true) {
common_user_error($result);
return;
}
function common_subscribe_form($profile) {
- common_element_start('form', array('id' => 'subscribe-' . $profile->nickname,
+ common_element_start('form', array('id' => 'subscribe-' . $profile->id,
'method' => 'post',
'class' => 'subscribe',
'action' => common_local_url('subscribe')));
common_hidden('token', common_session_token());
- common_element('input', array('id' => 'subscribeto-' . $profile->nickname,
+ common_element('input', array('id' => 'subscribeto-' . $profile->id,
'name' => 'subscribeto',
'type' => 'hidden',
- 'value' => $profile->nickname));
+ 'value' => $profile->id));
common_element('input', array('type' => 'submit',
'class' => 'submit',
'value' => _('Subscribe')));