Put a filter in wp_safe_redirect() so people can whitelist other domains. see #4606

git-svn-id: http://svn.automattic.com/wordpress/trunk@6136 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 04:14:53 +00:00 · 2007-09-19 04:14:53 +00:00 · f25f33c4ba
parent 192cb2dda5
commit f25f33c4ba
1 changed files with 3 additions and 1 deletions
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@ -427,7 +427,9 @@ function wp_safe_redirect($location, $status = 302) {
 	$lp  = parse_url($location);
 	$wpp = parse_url(get_option('home'));

-	if ( isset($lp['host']) && $lp['host'] != $wpp['host'] )
+	$allowed_hosts = (array) apply_filters('allowed_redirect_hosts', array($wpp['host']));
+
+	if ( isset($lp['host']) && !in_array($lp['host'], $allowed_hosts) )
 		$location = get_option('siteurl') . '/wp-admin/';

 	wp_redirect($location, $status);