prevent users from registering with name that is not a valid wikifile
avoids XSS attacks and is generally a good limitationmaster
parent
2f241a35ce
commit
bfa96ad282
|
@ -118,6 +118,7 @@ sub cgi_signin ($$) { #{{{
|
||||||
validate => sub {
|
validate => sub {
|
||||||
my $name=shift;
|
my $name=shift;
|
||||||
length $name &&
|
length $name &&
|
||||||
|
$name=~/$wiki_file_regexp/ &&
|
||||||
! userinfo_get($name, "regdate");
|
! userinfo_get($name, "regdate");
|
||||||
},
|
},
|
||||||
);
|
);
|
||||||
|
|
Loading…
Reference in New Issue