From 82f6b5feb8f698b94cab52bcadefa6130d7f47f7 Mon Sep 17 00:00:00 2001
From: Florian Pritz <bluewind@xinu.at>
Date: Thu, 10 May 2012 14:42:40 +0200
Subject: Prevent browsers from deleting files

CLI clients are expected to only request deletion when the users wants
it.

Signed-off-by: Florian Pritz <bluewind@xinu.at>
---
 application/controllers/file.php | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'application/controllers/file.php')

diff --git a/application/controllers/file.php b/application/controllers/file.php
index 2a56df96c..0848d7470 100644
--- a/application/controllers/file.php
+++ b/application/controllers/file.php
@@ -224,6 +224,11 @@ class File extends CI_Controller {
 	{
 		$this->muser->require_access();
 
+		if (!$this->var->cli_client) {
+			echo "Not a listed cli client, please use the history to delete uploads.\n";
+			return;
+		}
+
 		$id = $this->uri->segment(3);
 		$this->data["id"] = $id;
 
-- 
cgit v1.2.3-24-g4f1b