Use check_file_field in pwg_images_addSimple.

author: Elrond <elrond+mediagoblin.org@samba-tng.org> 2013-03-22 16:07:07 +0100
committer: Elrond <elrond+mediagoblin.org@samba-tng.org> 2013-04-18 16:14:16 +0200
commit: f6f557696d1b9b5587513c517d1846f0b91e46cf (patch)
tree: 4a9008824b2ea39ef65998ca2c59e185b73e7482 /mediagoblin/plugins/piwigo
parent: bc92ff9d3cc1e4b4aadbd7728f52f2829178e699 (diff)
download: mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.tar.lz
mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.tar.xz
mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/mediagoblin/plugins/piwigo/views.py b/mediagoblin/plugins/piwigo/views.py
index 3dee09cd..26e5019a 100644
--- a/mediagoblin/plugins/piwigo/views.py
+++ b/mediagoblin/plugins/piwigo/views.py
@@ -23,6 +23,7 @@ from werkzeug.wrappers import BaseResponse
 from mediagoblin import mg_globals
 from mediagoblin.meddleware.csrf import csrf_exempt
 from mediagoblin.tools.response import render_404
+from mediagoblin.submit.lib import check_file_field
 from .tools import CmdTable, PwgNamedArray, response_xml
 from .forms import AddSimpleForm
 
@@ -92,6 +93,9 @@ def pwg_images_addSimple(request):
         dump.append("%s=%r" % (f.name, f.data))
     _log.info("addimple: %r %s %r", request.form, " ".join(dump), request.files)
 
+    if not check_file_field(request, 'image'):
+        raise BadRequest()
+
     return {'image_id': 123456, 'url': ''}
author	Elrond <elrond+mediagoblin.org@samba-tng.org>	2013-03-22 16:07:07 +0100
committer	Elrond <elrond+mediagoblin.org@samba-tng.org>	2013-04-18 16:14:16 +0200
commit	f6f557696d1b9b5587513c517d1846f0b91e46cf (patch)
tree	4a9008824b2ea39ef65998ca2c59e185b73e7482 /mediagoblin/plugins/piwigo
parent	bc92ff9d3cc1e4b4aadbd7728f52f2829178e699 (diff)
download	mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.tar.lz mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.tar.xz mediagoblin-f6f557696d1b9b5587513c517d1846f0b91e46cf.zip