From a469efb1f1a727255731b8fe8e1d0354e245695f Mon Sep 17 00:00:00 2001
From: Robin Appelman <icewind@owncloud.com>
Date: Mon, 16 Jun 2014 12:42:28 +0200
Subject: [PATCH] Add some safety checks

---
 apps/files_sharing/ajax/external.php   | 1 +
 apps/files_sharing/ajax/shareinfo.php  | 4 +---
 apps/files_sharing/ajax/testremote.php | 6 +++++-
 3 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/apps/files_sharing/ajax/external.php b/apps/files_sharing/ajax/external.php
index da73310c8d..52c84b7bab 100644
--- a/apps/files_sharing/ajax/external.php
+++ b/apps/files_sharing/ajax/external.php
@@ -8,6 +8,7 @@
 
 OCP\JSON::callCheck();
 OCP\JSON::checkLoggedIn();
+OCP\JSON::checkAppEnabled('files_sharing');
 
 $l = OC_L10N::get('files_sharing');
 
diff --git a/apps/files_sharing/ajax/shareinfo.php b/apps/files_sharing/ajax/shareinfo.php
index be26c35797..e87b0779e8 100644
--- a/apps/files_sharing/ajax/shareinfo.php
+++ b/apps/files_sharing/ajax/shareinfo.php
@@ -6,9 +6,7 @@
  * See the COPYING-README file.
  */
 
-if (!\OC_App::isEnabled('files_sharing')) {
-	exit;
-}
+OCP\JSON::checkAppEnabled('files_sharing');
 
 if (!isset($_GET['t'])) {
 	\OC_Response::setStatus(400); //400 Bad Request
diff --git a/apps/files_sharing/ajax/testremote.php b/apps/files_sharing/ajax/testremote.php
index 10ea3075ed..5a07300883 100644
--- a/apps/files_sharing/ajax/testremote.php
+++ b/apps/files_sharing/ajax/testremote.php
@@ -6,12 +6,16 @@
  * See the COPYING-README file.
  */
 
+OCP\JSON::checkAppEnabled('files_sharing');
+OCP\JSON::checkLoggedIn();
+OCP\JSON::callCheck();
+
 $remote = $_GET['remote'];
 
 if (file_get_contents('https://' . $remote . '/status.php')) {
 	echo 'https';
 } elseif (file_get_contents('http://' . $remote . '/status.php')) {
 	echo 'http';
-}else{
+} else {
 	echo 'false';
 }
-- 
GitLab