From 2187322caee25756d28983f069e291612023c6dc Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <noreply@fakecake.org>
Date: Fri, 10 Feb 2017 22:02:30 +0300
Subject: [PATCH] af_zz_imgproxy: redirect to caller url unless called in user
 context

---
 plugins/af_zz_imgproxy/init.php | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/plugins/af_zz_imgproxy/init.php b/plugins/af_zz_imgproxy/init.php
index 5d9a96ac..6d7954c3 100644
--- a/plugins/af_zz_imgproxy/init.php
+++ b/plugins/af_zz_imgproxy/init.php
@@ -35,6 +35,12 @@ class Af_Zz_ImgProxy extends Plugin {
 		$url = rewrite_relative_url(SELF_URL_PATH, $_REQUEST["url"]);
 		$kind = (int) $_REQUEST["kind"]; // 1 = video
 
+		// called without user context, let's just redirect to original URL
+		if (!$_SESSION["uid"]) {
+			header("Location: $url");
+			return;
+		}
+
 		$extension = $kind == 1 ? '.mp4' : '.png';
 		$local_filename = CACHE_DIR . "/images/" . sha1($url) . $extension;
 
-- 
2.39.5