fix: restrict remote pinning service endpoint URIs to HTTP/HTTPS

ipfs · Jan 27, 2021 · 52c1034 · 52c1034
1 parent 29004b2
commit 52c1034
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/core/commands/pin/remotepin.go b/core/commands/pin/remotepin.go
@@ -675,7 +675,7 @@ func getRemotePinServiceInfo(env cmds.Environment, name string) (endpoint, key s
 
 func normalizeEndpoint(endpoint string) (string, error) {
 	uri, err := neturl.ParseRequestURI(endpoint)
-	if err != nil || !strings.HasPrefix(uri.Scheme, "http") {
+	if err != nil || !(uri.Scheme == "http" || uri.Scheme == "https") {
 		return "", fmt.Errorf("service endpoint must be a valid HTTP URL")
 	}