Making WordPress.org


Ignore:
Timestamp:
06/03/2016 08:28:07 AM (8 years ago)
Author:
ocean90
Message:

WordPress.org SSO: Don't override the $redirect_to variable when encoding spaces.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • sites/trunk/common/includes/wporg-sso/class-wporg-sso.php

    r3146 r3296  
    101101            if ( ! empty( $_REQUEST['redirect_to'] ) ) {
    102102                // User is requesting a further redirect afterward, let's make sure it's a legit target.
    103                 $redirect_to = str_replace( ' ', '%20', $_REQUEST['redirect_to'] ); // Encode spaces.
    104                 $redirect_to_requested = function_exists( 'wp_sanitize_redirect' ) ? wp_sanitize_redirect( $redirect_to ) : $redirect_to;
     103                $redirect_to_requested = str_replace( ' ', '%20', $_REQUEST['redirect_to'] ); // Encode spaces.
     104                $redirect_to_requested = function_exists( 'wp_sanitize_redirect' ) ? wp_sanitize_redirect( $redirect_to_requested ) : $redirect_to_requested;
    105105                if ( $this->_is_valid_targeted_domain( $redirect_to_requested ) ) {
    106106                    $redirect_to = $redirect_to_requested;
Note: See TracChangeset for help on using the changeset viewer.