Changeset 1126 for trunk/bp-friends/bp-friends-notifications.php

Timestamp:

02/13/2009 10:20:15 PM (17 years ago)

Author:

apeatling

Message:

Added missing nonce values to email link actions.

File:

• trunk/bp-friends/bp-friends-notifications.php (modified) (1 diff)

trunk/bp-friends/bp-friends-notifications.php

@@ -11 +11 @@
     $ud = get_userdata( $friend_id );
     
-    $all_requests_link = site_url() . '/' . MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/';
-    $approve_request_link = site_url() . '/' . MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/accept/' . $friendship_id;
-    $reject_request_link = site_url() . '/' . MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/reject/' . $friendship_id;
-    $settings_link = site_url() . '/' . MEMBERS_SLUG . '/' . $ud->user_login . '/settings/notifications';
-        
+    $all_requests_link = site_url( MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/' );
+    $approve_request_link = wp_nonce_url( site_url( MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/accept/' . $friendship_id, 'friends_accept_friendship' ) );
+    $reject_request_link = wp_nonce_url( site_url( MEMBERS_SLUG . '/' . $ud->user_login . '/friends/requests/reject/' . $friendship_id, 'friends_reject_friendship' ) );
+    $settings_link = site_url( MEMBERS_SLUG . '/' . $ud->user_login . '/settings/notifications' );
+
     // Set up and send the message
     $to = $ud->user_email;