added a content-type check to the image proxy

author: pepperpepperpepper <pepper@scannerjammer.com> 2015-11-23 15:57:15 -0800
committer: pepperpepperpepper <pepper@scannerjammer.com> 2015-11-23 15:57:15 -0800
commit: 09af7dc7708d12cb65423542bd56260c73bb9072 (patch)
tree: 5cbbeaa28755f91f58097b19f3295c30cfc2d696
parent: 9daba204637fa525ab698877671c3853c29fc129 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/photoblaster/server.py b/photoblaster/server.py
index 9082d05..c23db04 100644
--- a/photoblaster/server.py
+++ b/photoblaster/server.py
@@ -88,7 +88,11 @@ class Server(object):
             url = request.args.get("url")
             req = urllib2.Request(url=url)
             req = urllib2.urlopen(req)
-            return req.read()
+            header = req.headers.getheader('content-type')
+            if re.match(r'image', header, re.IGNORECASE):
+                return req.read()
+            else:
+                raise InvalidUsage('Improper Usage', status_code=410)
 
         @self.app.route('/im/data', methods=['GET'])
         def get_data():
author	pepperpepperpepper <pepper@scannerjammer.com>	2015-11-23 15:57:15 -0800
committer	pepperpepperpepper <pepper@scannerjammer.com>	2015-11-23 15:57:15 -0800
commit	09af7dc7708d12cb65423542bd56260c73bb9072 (patch)
tree	5cbbeaa28755f91f58097b19f3295c30cfc2d696
parent	9daba204637fa525ab698877671c3853c29fc129 (diff)