X-Git-Url: http://git.cyclocoop.org/?a=blobdiff_plain;f=www%2Fecrire%2Fpublic%2Faiguiller.php;fp=www%2Fecrire%2Fpublic%2Faiguiller.php;h=d34c6867304e7332d6ac8f3c08b42a69843995e3;hb=0ba825df2a03dc7a895ddf43aecb2f47bcd9da4d;hp=8b3bc506973706248ee9372e4f285c12e6d36585;hpb=d12b2ea32d59ddbb25349a7d78a666abef0be8b0;p=lhc%2Fweb%2Fwww.git

diff --git a/www/ecrire/public/aiguiller.php b/www/ecrire/public/aiguiller.php
index 8b3bc506..d34c6867 100644
--- a/www/ecrire/public/aiguiller.php
+++ b/www/ecrire/public/aiguiller.php
@@ -12,8 +12,9 @@
 
 if (!defined('_ECRIRE_INC_VERSION')) return;
 
-function securiser_redirect_action($redirect){
-	if (tester_url_absolue($redirect) AND !defined('_AUTORISER_ACTION_ABS_REDIRECT')){
+function securiser_redirect_action($redirect) {
+	if ((tester_url_absolue($redirect) or preg_match(',^\w+:,',trim($redirect)))
+		and !defined('_AUTORISER_ACTION_ABS_REDIRECT')) {
 		// si l'url est une url du site, on la laisse passer sans rien faire
 		// c'est encore le plus simple
 		$base = $GLOBALS['meta']['adresse_site']."/";