Changeset 3919 for branches/plugin/bbp-includes/bbp-user-functions.php

Timestamp:

05/22/2012 09:58:26 AM (13 years ago)

Author:

johnjamesjacoby

Message:

Redirects:

• Always use wp_safe_redirect() in bbPress.
• Nothing should/will redirect off-site.

File:

• branches/plugin/bbp-includes/bbp-user-functions.php (modified) (8 diffs)

branches/plugin/bbp-includes/bbp-user-functions.php ¶

@@ -433 +433 @@
  * @uses bbp_get_favorites_link() To get the favorites page link
  * @uses bbp_get_topic_permalink() To get the topic permalink
- * @uses wp_redirect() To redirect to the url
+ * @uses wp_safe_redirect() To redirect to the url
  */
 function bbp_favorites_handler() {
@@ -502 +502 @@
             }
 
-            wp_redirect( $redirect );
+            wp_safe_redirect( $redirect );
 
             // For good measure
@@ -750 +750 @@
  * @uses bbp_get_subscription_link() To get the subscription page link
  * @uses bbp_get_topic_permalink() To get the topic permalink
- * @uses wp_redirect() To redirect to the url
+ * @uses wp_safe_redirect() To redirect to the url
  */
 function bbp_subscriptions_handler() {
@@ -818 +818 @@
             }
 
-            wp_redirect( $redirect );
+            wp_safe_redirect( $redirect );
 
             // For good measure
@@ -849 +849 @@
  * @uses delete_option() To delete the displayed user's email id option
  * @uses bbp_get_user_profile_edit_url() To get the edit profile url
- * @uses wp_redirect() To redirect to the url
+ * @uses wp_safe_redirect() To redirect to the url
  * @uses check_admin_referer() To verify the nonce and check the referer
  * @uses current_user_can() To check if the current user can edit the user
@@ -896 +896 @@
             delete_option( $user_id . '_new_email' );
 
-            wp_redirect( add_query_arg( array( 'updated' => 'true' ), bbp_get_user_profile_edit_url( $user_id ) ) );
+            wp_safe_redirect( add_query_arg( array( 'updated' => 'true' ), bbp_get_user_profile_edit_url( $user_id ) ) );
             exit;
         }
@@ -903 +903 @@
 
         delete_option( $user_id . '_new_email' );
-        wp_redirect( add_query_arg( array( 'updated' => 'true' ), bbp_get_user_profile_edit_url( $user_id ) ) );
+        wp_safe_redirect( add_query_arg( array( 'updated' => 'true' ), bbp_get_user_profile_edit_url( $user_id ) ) );
         exit;
 
@@ -962 +962 @@
         $redirect = add_query_arg( array( 'updated' => 'true' ), bbp_get_user_profile_edit_url( $edit_user ) );
 
-        wp_redirect( $redirect );
+        wp_safe_redirect( $redirect );
         exit;
     }