diff options
Diffstat (limited to 'app/Core/Request.php')
| -rw-r--r-- | app/Core/Request.php | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/app/Core/Request.php b/app/Core/Request.php index 5eda2d02..0398760e 100644 --- a/app/Core/Request.php +++ b/app/Core/Request.php @@ -8,7 +8,7 @@ namespace Kanboard\Core; * @package core * @author Frederic Guillot */ -class Request +class Request extends Base { /** * Get URL string parameter @@ -57,7 +57,8 @@ class Request */ public function getValues() { - if (! empty($_POST) && Security::validateCSRFFormToken($_POST)) { + if (! empty($_POST) && ! empty($_POST['csrf_token']) && $this->token->validateCSRFToken($_POST['csrf_token'])) { + unset($_POST['csrf_token']); return $_POST; } |