Prevent users sending private messages to themselves

Fixes #27.

Prevent users sending private messages to themselves
Fixes #27.
d13ddf71 · Scott · 36eacf90 · d13ddf71
Commit d13ddf71 authored Apr 23, 2014 by Scott
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 1 deletions

qa-page-message.php qa-include/qa-page-message.php +7 -1

No files found.
--- a/qa-include/qa-page-message.php
+++ b/qa-include/qa-page-message.php
@@ -36,6 +36,7 @@

 	$handle = qa_request_part(1);
 	$loginuserid = qa_get_logged_in_userid();
+	$fromhandle = qa_get_logged_in_handle();

 	$qa_content = qa_content_prepare();

@@ -53,6 +54,12 @@
 		return $qa_content;
 	}

+	if ($handle === $fromhandle) {
+		// prevent users sending messages to themselves
+		$qa_content['error'] = qa_lang_html('users/no_permission');
+		return $qa_content;
+	}
+

 //	Find the user profile and their recent private messages

@@ -114,7 +121,6 @@
 				else
 					$messageid = null;

-				$fromhandle = qa_get_logged_in_handle();
 				$canreply = !(qa_get_logged_in_flags() & QA_USER_FLAGS_NO_MESSAGES);

 				$more = strtr(qa_lang($canreply ? 'emails/private_message_reply' : 'emails/private_message_info'), array(