From b161295d0b53a5ae194e236b0a7c662e9ac2ff9a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nicolas=20L=C5=93uillet?= Date: Mon, 5 Aug 2013 12:53:56 +0200 Subject: remove xsrf check --- index.php | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) (limited to 'index.php') diff --git a/index.php b/index.php index 654403c8..19774bb6 100644 --- a/index.php +++ b/index.php @@ -11,12 +11,12 @@ include dirname(__FILE__).'/inc/poche/config.inc.php'; #XSRF protection with token -if (!empty($_POST)) { - if (!Session::isToken($_POST['token'])) { - die(_('Wrong token')); - } - unset($_SESSION['tokens']); -} +// if (!empty($_POST)) { +// if (!Session::isToken($_POST['token'])) { +// die(_('Wrong token')); +// } +// unset($_SESSION['tokens']); +// } $referer = empty($_SERVER['HTTP_REFERER']) ? '' : $_SERVER['HTTP_REFERER']; $view = Tools::checkVar('view', 'home'); -- cgit v1.2.3