search

imgbi / img.bi

img.bi main website
GNU General Public License v3.0
187 stars 27 forks source link

One-time-links can be accessed multiple times #26

Closed PotcFdk closed 10 years ago

PotcFdk commented 10 years ago

After uploading an image, these example links are generated: Link to view image https://img.bi/#/G5Jw9pb!ydTeFu6LMwMovBdEyfl6ebBqUC9U8RGOXJT9oyWN Remove image after first view https://img.bi/#autorm/G5Jw9pb!ydTeFu6LMwMovBdEyfl6ebBqUC9U8RGOXJT9oyWN!JJR9gtAi4Bn5egqAXF5ZFXp58DJ

As you can see, the second link contains the first one. This leads to the following problem:
Suppose I upload an image and want to use the "remove image after first view" functionality. Anyone can take the link, remove "autorm" and the additional, unnecessary part (in this case !JJR9gtAi4Bn5egqAXF5ZFXp58DJ) to transform the link into a normal non-autodeleting link.

Would it be possible to create multiple keys that cannot be converted to each other, in order to make sure one-time links cannot be accessed multiple times?

komachi commented 10 years ago

It was already discussed in #22 and probably won't be fixed.