From 09af7dc7708d12cb65423542bd56260c73bb9072 Mon Sep 17 00:00:00 2001
From: pepperpepperpepper <pepper@scannerjammer.com>
Date: Mon, 23 Nov 2015 15:57:15 -0800
Subject: added a content-type check to the image proxy

---
 photoblaster/server.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/photoblaster/server.py b/photoblaster/server.py
index 9082d05..c23db04 100644
--- a/photoblaster/server.py
+++ b/photoblaster/server.py
@@ -88,7 +88,11 @@ class Server(object):
             url = request.args.get("url")
             req = urllib2.Request(url=url)
             req = urllib2.urlopen(req)
-            return req.read()
+            header = req.headers.getheader('content-type')
+            if re.match(r'image', header, re.IGNORECASE):
+                return req.read()
+            else:
+                raise InvalidUsage('Improper Usage', status_code=410)
 
         @self.app.route('/im/data', methods=['GET'])
         def get_data():
-- 
cgit v1.2.3-70-g09d2