oqapi/webgui
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Allow users to unsubscribe via email address, without logging in. Fixes bug #11559.

Browse source
This commit is contained in:
Colin Kuskie 2010-05-18 15:58:24 -07:00
parent 22a6ce339e
commit f1ea8105d4
8 changed files with 221 additions and 27 deletions
Download patch file Download diff file Expand all files Collapse all files

5
lib/WebGUI/Session/Form.pm
View file

@ -186,9 +186,10 @@ the one in this user's current session.
sub validToken {
my ($self) = @_;
my $session = $self->session;
$session->log->debug('HTTP method: '. $session->request->method);
$session->log->debug('CSRF token: '. $session->scratch->get('webguiCsrfToken'));
$session->log->warn('HTTP method: '. $session->request->method);
$session->log->warn('CSRF token: '. $session->scratch->get('webguiCsrfToken'));
return 0 unless $session->request->method eq 'POST';
$session->log->warn('Web token: '. $self->param('webguiCsrfToken'));
return 0 unless $self->param('webguiCsrfToken') eq $session->scratch->get('webguiCsrfToken');
return 1;
}