Skip to content
Projects
Groups
Snippets
Help
Sign in / Register
Toggle navigation
Minds Backend - Engine
Project overview
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Locked Files
Issues
286
Merge Requests
38
CI / CD
Security & Compliance
Packages
Wiki
Snippets
Members
Collapse sidebar
Close sidebar
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Minds
Minds Backend - Engine
Commits
68e4f5a4
Commit
68e4f5a4
authored
6 hours ago
by
Mark Harding
1
Browse files
Options
Download
(fix): do not trigger a 401 upstream due to XSRF if on mobile
parent
f3c64fa5
master
No related merge requests found
Pipeline
#98151520
passed with stages
in 12 minutes and 12 seconds
Changes
1
Pipelines
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
4 additions
and
0 deletions
+4
-0
Core/Security/XSRF.php
View file @
68e4f5a4
...
...
@@ -17,6 +17,10 @@ class XSRF
public
static
function
validateRequest
()
{
if
(
isset
(
$_SERVER
[
'HTTP_APP_VERSION'
]))
{
return
true
;
// This is mobile
}
if
(
!
isset
(
$_SERVER
[
'HTTP_X_XSRF_TOKEN'
]))
{
return
false
;
}
...
...
This diff is collapsed.
Mark Harding
@markeharding
mentioned in issue
minds#962 (closed)
·
6 hours ago
mentioned in issue
minds#962 (closed)
mentioned in issue minds#962
Toggle commit list
Please
register
or
sign in
to comment
