From b161295d0b53a5ae194e236b0a7c662e9ac2ff9a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nicolas=20L=C5=93uillet?= <nicolas.loeuillet@gmail.com>
Date: Mon, 5 Aug 2013 12:53:56 +0200
Subject: remove xsrf check

---
 index.php | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

(limited to 'index.php')

diff --git a/index.php b/index.php
index 654403c8..19774bb6 100644
--- a/index.php
+++ b/index.php
@@ -11,12 +11,12 @@
 include dirname(__FILE__).'/inc/poche/config.inc.php';
 
 #XSRF protection with token
-if (!empty($_POST)) {
-    if (!Session::isToken($_POST['token'])) {
-        die(_('Wrong token'));
-    }
-    unset($_SESSION['tokens']);
-}
+// if (!empty($_POST)) {
+//     if (!Session::isToken($_POST['token'])) {
+//         die(_('Wrong token'));
+//     }
+//     unset($_SESSION['tokens']);
+// }
 
 $referer = empty($_SERVER['HTTP_REFERER']) ? '' : $_SERVER['HTTP_REFERER'];
 $view = Tools::checkVar('view', 'home');
-- 
cgit v1.2.3