diff options
| author | Nicolas LÅ“uillet <nicolas.loeuillet@gmail.com> | 2013-09-18 09:25:28 +0200 |
|---|---|---|
| committer | Nicolas LÅ“uillet <nicolas.loeuillet@gmail.com> | 2013-09-18 09:25:28 +0200 |
| commit | 0d64be15de12cd949fc9b9d2b8352a1815da965a (patch) | |
| tree | b8b3c16ea25720b21ce8257e18999024b13022e1 | |
| parent | f6597c7cb90e9bfa96f01f5f78f98cd72696da55 (diff) | |
| download | wallabag-0d64be15de12cd949fc9b9d2b8352a1815da965a.tar.gz wallabag-0d64be15de12cd949fc9b9d2b8352a1815da965a.tar.zst wallabag-0d64be15de12cd949fc9b9d2b8352a1815da965a.zip | |
remove csrf check
| -rwxr-xr-x | inc/poche/config.inc.php | 10 |
1 files changed, 1 insertions, 9 deletions
diff --git a/inc/poche/config.inc.php b/inc/poche/config.inc.php index 9247c292..aaa26af8 100755 --- a/inc/poche/config.inc.php +++ b/inc/poche/config.inc.php | |||
| @@ -48,12 +48,4 @@ if (!ini_get('date.timezone') || !@date_default_timezone_set(ini_get('date.timez | |||
| 48 | date_default_timezone_set('UTC'); | 48 | date_default_timezone_set('UTC'); |
| 49 | } | 49 | } |
| 50 | 50 | ||
| 51 | $poche = new Poche(); | 51 | $poche = new Poche(); \ No newline at end of file |
| 52 | |||
| 53 | #XSRF protection with token | ||
| 54 | if (!empty($_POST)) { | ||
| 55 | if (!Session::isToken($_POST['token'])) { | ||
| 56 | die(_('Wrong token')); | ||
| 57 | } | ||
| 58 | unset($_SESSION['tokens']); | ||
| 59 | } \ No newline at end of file | ||