From: Nicolas Lœuillet <nicolas.loeuillet@gmail.com>
Date: Mon, 5 Aug 2013 10:53:56 +0000 (+0200)
Subject: remove xsrf check
X-Git-Tag: 1.0-beta1~3^2~17
X-Git-Url: https://git.immae.eu/?a=commitdiff_plain;h=b161295d0b53a5ae194e236b0a7c662e9ac2ff9a;p=github%2Fwallabag%2Fwallabag.git

remove xsrf check
---

diff --git a/index.php b/index.php
index 654403c8..19774bb6 100644
--- a/index.php
+++ b/index.php
@@ -11,12 +11,12 @@
 include dirname(__FILE__).'/inc/poche/config.inc.php';
 
 #XSRF protection with token
-if (!empty($_POST)) {
-    if (!Session::isToken($_POST['token'])) {
-        die(_('Wrong token'));
-    }
-    unset($_SESSION['tokens']);
-}
+// if (!empty($_POST)) {
+//     if (!Session::isToken($_POST['token'])) {
+//         die(_('Wrong token'));
+//     }
+//     unset($_SESSION['tokens']);
+// }
 
 $referer = empty($_SERVER['HTTP_REFERER']) ? '' : $_SERVER['HTTP_REFERER'];
 $view = Tools::checkVar('view', 'home');