]> git.koha-community.org Git - koha.git/commit
projects / koha.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f13989) | patch
Bug 18124: Change the calls to generate and check CSRF tokens
authorJonathan Druart <jonathan.druart@bugs.koha-community.org>
Wed, 15 Feb 2017 16:14:13 +0000 (17:14 +0100)
committerMason James <mtj@kohaaloha.com>
Sun, 23 Apr 2017 23:00:08 +0000 (11:00 +1200)
commit39b1653348fd450ded9406a35b567042bf36d886
tree1e2886bcf27d5b587b18b761f52d8cacc7293b9atree | snapshot
parent3f139899743ac3214e49d83c099120af28f414dacommit | diff
Bug 18124: Change the calls to generate and check CSRF tokens

The parameter change in Koha::Token should be applied to the calling
scripts.

Test plan:
Confirm that the different forms of the scripts modified by this patch
still work correctly.

Test the problematic behavior:
Open 2 tabs with in same user's session, go on the edit patron page
(memberentry.pl).
Log out and log in from the other tab.
Submit the form
=> Wrong CSRF token should be raised

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Julian Maurice <julian.maurice@biblibre.com>
members/member-password.pl diff | blob | history
Main Koha release repository