diff options
| author | Frederic Guillot <fred@kanboard.net> | 2015-10-25 15:05:19 -0400 |
|---|---|---|
| committer | Frederic Guillot <fred@kanboard.net> | 2015-10-25 15:05:19 -0400 |
| commit | 6756ef2301a5f624941b947ec9effd34b467de9a (patch) | |
| tree | c93fe266cdef7ceef2234bf1cde61b5c4b738084 /app/Core/Request.php | |
| parent | 06e9486c59831cdd1630647ea7474a39879a37da (diff) | |
Move token generation to Security namespace
Diffstat (limited to 'app/Core/Request.php')
| -rw-r--r-- | app/Core/Request.php | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/app/Core/Request.php b/app/Core/Request.php index 5eda2d02..0398760e 100644 --- a/app/Core/Request.php +++ b/app/Core/Request.php @@ -8,7 +8,7 @@ namespace Kanboard\Core; * @package core * @author Frederic Guillot */ -class Request +class Request extends Base { /** * Get URL string parameter @@ -57,7 +57,8 @@ class Request */ public function getValues() { - if (! empty($_POST) && Security::validateCSRFFormToken($_POST)) { + if (! empty($_POST) && ! empty($_POST['csrf_token']) && $this->token->validateCSRFToken($_POST['csrf_token'])) { + unset($_POST['csrf_token']); return $_POST; } |