summaryrefslogtreecommitdiffstats
path: root/apps/calendar/ajax
diff options
context:
space:
mode:
authorGeorg Ehrke <dev@georgswebsite.de>2012-02-02 12:18:29 +0100
committerGeorg Ehrke <dev@georgswebsite.de>2012-02-02 12:18:29 +0100
commitf870f9efcf36a3c7e839b8c37195d94bfa92d6fe (patch)
tree783435f931e8f5cc532c871dccdd58528b8bf131 /apps/calendar/ajax
parent9e5172f75cd85e106cc8faa80d52ff849bfc312e (diff)
downloadnextcloud-server-f870f9efcf36a3c7e839b8c37195d94bfa92d6fe.tar.gz
nextcloud-server-f870f9efcf36a3c7e839b8c37195d94bfa92d6fe.zip
validate parameters in changeview.php
Diffstat (limited to 'apps/calendar/ajax')
-rw-r--r--apps/calendar/ajax/changeview.php19
1 files changed, 14 insertions, 5 deletions
diff --git a/apps/calendar/ajax/changeview.php b/apps/calendar/ajax/changeview.php
index ef05c7cd496..df3e2827b7e 100644
--- a/apps/calendar/ajax/changeview.php
+++ b/apps/calendar/ajax/changeview.php
@@ -1,15 +1,24 @@
<?php
/**
- * Copyright (c) 2011 Georg Ehrke <ownclouddev at georgswebsite dot de>
+ * Copyright (c) 2012 Georg Ehrke <ownclouddev at georgswebsite dot de>
* This file is licensed under the Affero General Public License version 3 or
* later.
* See the COPYING-README file.
*/
-require_once ("../../../lib/base.php");
+require_once ('../../../lib/base.php');
OC_JSON::checkLoggedIn();
OC_JSON::checkAppEnabled('calendar');
-$currentview = $_GET["v"];
-OC_Preferences::setValue(OC_USER::getUser(), "calendar", "currentview", $currentview);
+$currentview = $_GET['v'];
+switch($currentview){
+ case 'agendaWeek':
+ case 'month';
+ case 'list':
+ break;
+ default:
+ OC_JSON::error();
+ exit;
+}
+OC_Preferences::setValue(OC_USER::getUser(), 'calendar', 'currentview', $currentview);
OC_JSON::success();
-?>
+?> \ No newline at end of file
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-15 15:41:21 +0000