Merge branch 'FreshRSS/dev' into PostgreSQL

author: Alexandre Alapetite <alexandre@alapetite.fr> 2016-08-13 21:14:36 +0200
committer: Alexandre Alapetite <alexandre@alapetite.fr> 2016-08-13 21:14:36 +0200
commit: 967dff535defd2c95bf1be9b48e0b18e3fe6025d (patch)
tree: 8d06dbedc7635e96ba722b9cadfa2ee5fb7cda69 /lib/lib_rss.php
parent: bee833bf524e58ea9cf5309fb89f6f8b30005720 (diff)
parent: cda414ff0f142d180c616eca1e08204e7c9c6ef9 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/lib_rss.php b/lib/lib_rss.php
index 8196f7847..b5ba78889 100644
--- a/lib/lib_rss.php
+++ b/lib/lib_rss.php
@@ -391,7 +391,7 @@ function cryptAvailable() {
 
 function is_referer_from_same_domain() {
 	if (empty($_SERVER['HTTP_REFERER'])) {
-		return false;
+		return true;	//Accept empty referer while waiting for good support of meta referrer same-origin policy in browsers
 	}
 	$host = parse_url(((isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') ? 'https://' : 'http://') .
 		(empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] : $_SERVER['HTTP_HOST']));
author	Alexandre Alapetite <alexandre@alapetite.fr>	2016-08-13 21:14:36 +0200
committer	Alexandre Alapetite <alexandre@alapetite.fr>	2016-08-13 21:14:36 +0200
commit	967dff535defd2c95bf1be9b48e0b18e3fe6025d (patch)
tree	8d06dbedc7635e96ba722b9cadfa2ee5fb7cda69 /lib/lib_rss.php
parent	bee833bf524e58ea9cf5309fb89f6f8b30005720 (diff)
parent	cda414ff0f142d180c616eca1e08204e7c9c6ef9 (diff)