From 9b493483b7ca31c8012cb6c20a882169b16e5fe8 Mon Sep 17 00:00:00 2001
From: Kyle Drake <kyle@kyledrake.net>
Date: Fri, 16 Dec 2016 01:54:07 -0600
Subject: [PATCH] prevent www. in domain names

---
 app/settings.rb | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/app/settings.rb b/app/settings.rb
index 494e4653..a5f37c40 100644
--- a/app/settings.rb
+++ b/app/settings.rb
@@ -115,6 +115,12 @@ post '/settings/:username/custom_domain' do
   original_domain = @site.domain
   @site.domain = params[:domain]
 
+  if params[:domain] =~ /^www\..+$/i
+    flash[:error] = 'Cannot begin with www - please only enter the domain name.'
+    redirect "/settings/#{@site.username}/#custom_domain"
+
+  end
+
   begin
     Socket.gethostbyname @site.values[:domain]
   rescue SocketError => e