Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/intranet-tmpl/prog/en/modules/tools
History
Jonathan Druart b990b953b3 Bug 21993: Display a user-friendly message when the CSRF token is wrong 
Instead of dying!

Test plan:
Assuming you have a patron with borrowernumber=51 and another one that
can be deleted with borrowernumber=42

- authorities-home.pl
 * Delete an authority record
 * hit /cgi-bin/koha/authorities/authorities-home.pl?op=delete

- basket/sendbasket.pl
 * Send a basket to someone
 * hit /cgi-bin/koha/basket/sendbasket.pl?email_add=1

- members/apikeys.pl
  * Generate and delete an API key for a patron
  * hit /cgi-bin/koha/members/apikeys.pl?patron_id=51&op=delete

- members/deletemem.pl
  * Delete a patron
  * hit /cgi-bin/koha/members/deletemem.pl?member=42&op=delete_confirmed

- members/mancredit.pl
  * Add a manual credit
  * hit /cgi-bin/koha/members/mancredit.pl?borrowernumber=51&add=1

- members/maninvoice.pl
  * Add a manual invoice
  * hit /cgi-bin/koha/members/maninvoice.pl?borrowernumber=51&add=1

- members/member-flags.pl
  * Change permissions for a patron
  * hit /cgi-bin/koha/members/member-flags.pl?member=51&newflags=1

- members/member-password.pl
  * Change the password for a patron (from the staff interface)
  * hit /cgi-bin/koha/members/member-password.pl?member=51&newpassword=aA1

- members/memberentry.pl
  * Edit some patron's info
  * hit /cgi-bin/koha/members/memberentry.pl?borrowernumber=51&op=save

- members/paycollect.pl
  * Pay an individual fine
  * hit something like /cgi-bin/koha/members/paycollect.pl?borrowernumber=51&pay_individual=1&accounttype=L&amount=1.00&amountoutstanding=1.00&accountlines_id=157&paid=1
  You may need to edit some values

- tools/import_borrowers.pl
  * Import some patrons
  * hit /cgi-bin/koha/tools/import_borrowers.pl?uploadborrowers=1

- tools/picture-upload.pl
  * Upload an image for a patron
  * You will need to edit the html content
  hit Home › Tools › Upload patron images
  then locate the csrf_token input and modify its value

Note for QA:
- Opac is not done as blocking_errors.inc does not exist for this
interface
- ill/ill-requests.pl
I did not manage to replace this occurrence

Signed-off-by: Owen Leonard <oleonard@myacpl.org>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>

Signed-off-by: Nick Clemens <nick@bywatersolutions.com>
2019-01-25 20:38:32 +00:00
..
access_files.tt Bug 21695: Clean up access files template 2018-12-26 20:47:04 +00:00
automatic_item_modification_by_age.tt Bug 21433: Update two-column templates with Bootstrap grid: Tools part 1 2018-11-08 02:18:46 +00:00
batch_delete_records.tt Bug 21990: Replace dialog .error with .alert 2019-01-02 20:53:27 +00:00
batch_record_modification.tt Bug 21433: Update two-column templates with Bootstrap grid: Tools part 1 2018-11-08 02:18:46 +00:00
batchMod-del.tt Bug 21526: Use the 'url' filter when needed 2018-11-12 16:35:43 -03:00
batchMod-edit.tt Bug 22011: Fixed Typo on batchMod-edit.tt 2019-01-17 02:23:28 +00:00
batchMod.tt Bug 21433: Update two-column templates with Bootstrap grid: Tools part 1 2018-11-08 02:18:46 +00:00
cleanborrowers.tt Bug 21433: Update two-column templates with Bootstrap grid: Tools part 1 2018-11-08 02:18:46 +00:00
csv-profiles.tt Bug 21433: Update two-column templates with Bootstrap grid: Tools part 1 2018-11-08 02:18:46 +00:00
export.tt Bug 21434: Update two-column templates with Bootstrap grid: Tools part 2 2018-10-27 14:20:58 +00:00
holidays.tt Bug 21434: Update two-column templates with Bootstrap grid: Tools part 2 2018-10-27 14:20:58 +00:00
import_borrowers.tt Bug 21993: Display a user-friendly message when the CSRF token is wrong 2019-01-25 20:38:32 +00:00
inventory.tt Bug 21413: (QA follow-up) Rename new option 2018-11-08 13:32:42 +00:00
koha-news.tt Bug 21672: Switch templates to Bootstrap grid: Various 2019-01-25 17:41:37 +00:00
letter.tt Bug 22002: (QA follow-up) Remove some debugging code from template 2019-01-18 20:25:34 +00:00
manage-marc-import.tt Bug 21526: Use the 'url' filter when needed 2018-11-12 16:35:43 -03:00
marc_modification_templates.tt Bug 21861: The MARC modification template actions editor does not always validate user input 2018-11-29 18:32:49 +00:00
modborrowers.tt Bug 21854: Use template plugin to display category description 2018-11-21 11:24:16 +00:00
overduerules.tt Bug 21435: Update two-column templates with Bootstrap grid: Tools part 3 2018-10-27 14:20:59 +00:00
picture-upload.tt Bug 21993: Display a user-friendly message when the CSRF token is wrong 2019-01-25 20:38:32 +00:00
preview_letter.tt Bug 21795: Switch two-column templates to Bootstrap grid: Notices and slips 2018-12-26 20:47:03 +00:00
quotes-upload.tt Bug 21435: Update two-column templates with Bootstrap grid: Tools part 3 2018-10-27 14:20:59 +00:00
quotes.tt Bug 21435: Update two-column templates with Bootstrap grid: Tools part 3 2018-10-27 14:20:59 +00:00
scheduler.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00
showdiffmarc.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00
stage-marc-import.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00
stockrotation.tt Bug 21614: Search bar on Stock rotation page displays both [-] and [+] simultaneously 2018-10-24 12:43:03 +00:00
tools-home.tt Bug 11897: (QA follow-up) Move menu to 'Catalog' 2018-10-09 15:46:08 +00:00
upload-images.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00
upload.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00
viewlog.tt Bug 21436: Update two-column templates with Bootstrap grid: Tools part 4 2019-01-04 03:13:48 +00:00