From: Mischa POSLAWSKY <perl@shiar.org>
Date: Thu, 14 Sep 2017 15:45:48 +0000 (+0200)
Subject: edit: allow any non-hidden filename
X-Git-Tag: v2.1
X-Git-Url: http://git.shiar.net/minimedit.git/commitdiff_plain/refs/tags/v2.1

edit: allow any non-hidden filename
---

diff --git a/edit.php b/edit.php
index f0d001e..3b280ee 100644
--- a/edit.php
+++ b/edit.php
@@ -16,7 +16,7 @@ if (!isset($_SERVER['PATH_INFO']) or strlen($_SERVER['PATH_INFO']) <= 1)
 	abort('409 input error', "geen bestand aangeleverd");
 
 $filename = ltrim($Args, '/').'.html';
-if (!preg_match('{^(?:[/a-z0-9-])+\.html$}', $filename))
+if (preg_match('{^\.}', $filename))
 	abort('403 input error', "ongeldige bestandsnaam: $filename");
 if (file_exists($filename) and !is_writable($filename))
 	abort('403 input error', "onwijzigbaar bestand: $filename");