public/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/git/tt-rss.git synced 2025-12-31 00:41:27 +00:00
Code Issues Releases Wiki Activity

experimental CSRF protection

Browse Source
This commit is contained in:
Andrew Dolgov
2011-12-26 12:02:52 +04:00
parent 036cd3a410
commit 8484ce2258
14 changed files with 106 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
classes/rpc.php
View File

@@ -1,6 +1,12 @@
<?php
class RPC extends Protected_Handler {
function csrf_ignore($method) {
$csrf_ignored = array("sanitycheck", "buttonplugin");
return array_search($method, $csrf_ignored) !== false;
}
function setprofile() {
$id = db_escape_string($_REQUEST["id"]);