FIX: Allow Safe Redirections in Topic Embedding

This commit is contained in:
Robin Ward 2016-09-15 13:56:59 -04:00
parent 596fcfeb58
commit cd571b26ba
1 changed files with 1 additions and 1 deletions

View File

@ -81,7 +81,7 @@ class TopicEmbed < ActiveRecord::Base
embed_classname_whitelist = SiteSetting.embed_classname_whitelist if SiteSetting.embed_classname_whitelist.present?
response = FetchResponse.new
html = open(url).read
html = open(url, allow_redirections: :safe).read
raw_doc = Nokogiri::HTML(html)
auth_element = raw_doc.at('meta[@name="author"]')