git.koha-community.org Git - koha.git/commit

author	David Cook <dcook@prosentient.com.au>
	Tue, 1 Aug 2023 06:56:23 +0000 (06:56 +0000)
committer	Danyon Sewell <danyonsewell@catalyst.net.nz>
	Fri, 29 Sep 2023 00:21:11 +0000 (13:21 +1300)
commit	1b59140ccac5668e9619f834974eeaefb00ad624
tree	f2c7b8780d309c9582c3a177877bba3d415b22ab	tree \| snapshot
parent	dbe14261eca2251bb6db4d1723b9481940ec931c	commit \| diff

Bug 34369: Require CSRF token for updating system preferences

This patch adds the requirements that updating a system preference
requires a CSRF token. (Also, adding and deleting local system preferences.)

0. Apply patch
1. koha-plack --reload kohadev
2. Add local system preference
3. Update local system preference
4. Delete local system preference
5. Update normal system preference
6. Note no errors

Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>

admin/preferences.pl		diff \| blob \| history
admin/systempreferences.pl		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/en/modules/admin/preferences.tt		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/en/modules/admin/systempreferences.tt		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/js/pages/preferences.js		diff \| blob \| history
svc/config/systempreferences		diff \| blob \| history