Merge pull request #328 from MyIgel/master

Changed $_GET, $_POST and $_REQUEST to use the Request object
author: msquare <msquare@notrademark.de> 2017-07-20 18:34:19 +0200
committer: GitHub <noreply@github.com> 2017-07-20 18:34:19 +0200
commit: 37d4edcd9ace5021b6eb02761a9c3865c5607f33 (patch)
tree: 16c0da4cd2d9c6c10f5d5e02c1b02bd0986636c2 /includes/pages/user_messages.php
parent: 9b3f6f557a127fef16be267c26f8239dc1c22126 (diff)
parent: b7ebb05b8e71b391b6b029fceb5a2d00ff27004c (diff)
1 files changed, 9 insertions, 7 deletions
diff --git a/includes/pages/user_messages.php b/includes/pages/user_messages.php
index dd22cd66..a811970d 100644
--- a/includes/pages/user_messages.php
+++ b/includes/pages/user_messages.php
@@ -35,8 +35,9 @@ function user_unread_messages()
 function user_messages()
 {
     global $user;
+    $request = request();
 
-    if (!isset($_REQUEST['action'])) {
+    if (!$request->has('action')) {
         $users = DB::select(
             'SELECT `UID`, `Nick` FROM `User` WHERE NOT `UID`=? ORDER BY `Nick`',
             [$user['UID']]
@@ -121,10 +122,10 @@ function user_messages()
             ], page_link_to('user_messages') . '&action=send')
         ]);
     } else {
-        switch ($_REQUEST['action']) {
+        switch ($request->input('action')) {
             case 'read':
-                if (isset($_REQUEST['id']) && preg_match('/^\d{1,11}$/', $_REQUEST['id'])) {
-                    $message_id = $_REQUEST['id'];
+                if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {
+                    $message_id = $request->input('id');
                 } else {
                     return error(_('Incomplete call, missing Message ID.'), true);
                 }
@@ -145,8 +146,8 @@ function user_messages()
                 break;
 
             case 'delete':
-                if (isset($_REQUEST['id']) && preg_match('/^\d{1,11}$/', $_REQUEST['id'])) {
-                    $message_id = $_REQUEST['id'];
+                if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {
+                    $message_id = $request->input('id');
                 } else {
                     return error(_('Incomplete call, missing Message ID.'), true);
                 }
@@ -164,7 +165,8 @@ function user_messages()
                 break;
 
             case 'send':
-                if (Message_send($_REQUEST['to'], $_REQUEST['text'])) {
+                // @TODO: Validation?
+                if (Message_send($request->input('to'), $request->input('text'))) {
                     redirect(page_link_to('user_messages'));
                 } else {
                     return error(_('Transmitting was terminated with an Error.'), true);
author	msquare <msquare@notrademark.de>	2017-07-20 18:34:19 +0200
committer	GitHub <noreply@github.com>	2017-07-20 18:34:19 +0200
commit	37d4edcd9ace5021b6eb02761a9c3865c5607f33 (patch)
tree	16c0da4cd2d9c6c10f5d5e02c1b02bd0986636c2 /includes/pages/user_messages.php
parent	9b3f6f557a127fef16be267c26f8239dc1c22126 (diff)
parent	b7ebb05b8e71b391b6b029fceb5a2d00ff27004c (diff)