diff options
| author | Frederic Guillot <fred@kanboard.net> | 2017-09-23 18:48:45 -0700 |
|---|---|---|
| committer | Frederic Guillot <fred@kanboard.net> | 2017-09-23 18:48:45 -0700 |
| commit | 074f6c104f3e49401ef0065540338fc2d4be79f0 (patch) | |
| tree | 35ee4b74f9f24749a57b6f54b6e5ec64eaffb1da /app/Template/column | |
| parent | 8ecaa60340966ee4fec8ee16612803d229e77eb3 (diff) | |
Avoid people to alter other projects by changing form data
Diffstat (limited to 'app/Template/column')
| -rw-r--r-- | app/Template/column/create.php | 2 | ||||
| -rw-r--r-- | app/Template/column/edit.php | 3 |
2 files changed, 0 insertions, 5 deletions
diff --git a/app/Template/column/create.php b/app/Template/column/create.php index aad9606b..2b0c4641 100644 --- a/app/Template/column/create.php +++ b/app/Template/column/create.php @@ -4,8 +4,6 @@ <form method="post" action="<?= $this->url->href('ColumnController', 'save', array('project_id' => $project['id'])) ?>" autocomplete="off"> <?= $this->form->csrf() ?> - <?= $this->form->hidden('project_id', $values) ?> - <?= $this->form->label(t('Title'), 'title') ?> <?= $this->form->text('title', $values, $errors, array('autofocus', 'required', 'maxlength="50"', 'tabindex="1"')) ?> diff --git a/app/Template/column/edit.php b/app/Template/column/edit.php index e590b5cc..25cf60c9 100644 --- a/app/Template/column/edit.php +++ b/app/Template/column/edit.php @@ -5,9 +5,6 @@ <form method="post" action="<?= $this->url->href('ColumnController', 'update', array('project_id' => $project['id'], 'column_id' => $column['id'])) ?>" autocomplete="off"> <?= $this->form->csrf() ?> - <?= $this->form->hidden('id', $values) ?> - <?= $this->form->hidden('project_id', $values) ?> - <?= $this->form->label(t('Title'), 'title') ?> <?= $this->form->text('title', $values, $errors, array('autofocus', 'required', 'maxlength="50"')) ?> |