]> git.koha-community.org Git - koha.git/commit
Bug 28786: (QA follow-up) Check the returned CSRF token
authorMarcel de Rooy <m.de.rooy@rijksmuseum.nl>
Tue, 18 Jan 2022 12:45:17 +0000 (12:45 +0000)
committerFridolin Somers <fridolin.somers@biblibre.com>
Thu, 21 Apr 2022 06:43:15 +0000 (20:43 -1000)
commit75e11d85d0c8f39d920af5610a86e7c8f243a3a5
treeaa08dfcf8ff4807cade1a24619cdf0ce5d31ab23
parent9ea5a8268dd53c3439ed5ad520916d436ad7ed2c
Bug 28786: (QA follow-up) Check the returned CSRF token

We're doing this in the registering stage and at disabling.

Test plan:
Ënable two-factor auth but logout/login on another tab. You should
get the Wrong CSRF token when submitting.
Do similar thing while disabling.
Verify that you can register / disable when in the same session.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Fridolin Somers <fridolin.somers@biblibre.com>
members/two_factor_auth.pl