Build page checks https

Thanks to @tpeland #18

build.php

@@ -67,7 +67,9 @@
 	// URLs for a preview or a generated feed link
 
 	// trap for missing src param for the feed, use a dummy one so it gets displayed.
-	if (!$src or strpos($src, 'http://') !==0) die('Feed URL missing, incomplete, or not valid. Must start with http:// and be a valid URL');
+	if (!$src or
+	    (strpos($src, 'http://') !==0 and strpos($src, 'https://') !==0))
+		die('Feed URL missing, incomplete, or not valid. Must start with http:// or https:// and be a valid URL');
 
 
 	// test for malicious use of script tages

feed2js.php

@@ -143,7 +143,11 @@
 
 // check if site has a setting to restrict to a url
 if (isset($restrict_url)) {
-	$src_host = substr($src, 7);
+	if (strpos($src, 'https://') == 0) {
+		$src_host = substr($src, 8);
+	} else {
+		$src_host = substr($src, 7);
+	}
 	$src_pos = strpos($src_host,"/");
 	if ($src_pos) {
 		$src_host = substr($src_host,0, $src_pos);
@@ -153,8 +157,9 @@
 	$str.= "document.write('<div class=\"rss-box" . $rss_box_id .
 		"\"><p class=\"rss-item\"><em>Error:</em> on feed <strong>" .
 		$src . "</strong>. " .
-		"Feeds are allowed only from URLs from the site http://*" .
-		$restrict_url . "</p></div>');\n";
+		"Feeds are allowed only from URLs from the sites http://*" .
+		$restrict_url . " and https://*" . $restrict_url .
+		"</p></div>');\n";
 
 } else {
 

preview.php

@@ -27,8 +27,8 @@
 }
 
 // trap for missing src param for the feed, use a dummy one so it gets displayed.
-if (!$src or strpos($src, 'http://') !==0) die('Feed URL missing, incomplete, or not valid. Must start with http:// and be a valid URL');
-
+if (!$src or (strpos($src, 'http://') !==0 and strpos($src, 'https://') !==0))
+	die('Feed URL missing, incomplete, or not valid. Must start with http:// or https:// and be a valid URL');
 
 // update to full descriptions for html turned on	
 if ($html=='a') $desc = 0;