mirror/webgui
1
0
Fork 0
mirror of https://github.com/unraid/webgui.git synced 2026-03-09 04:21:27 -05:00
Code Issues Packages Projects Releases Wiki Activity

Don't send csrf token with crossdomain requests

Browse Source
This commit is contained in:
Eric Schultz
2017-12-06 21:28:18 -06:00
parent 4745a49e01
commit b7f42f574a
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
plugins/dynamix/include/DefaultPageLayout.php
View File

@@ -277,8 +277,9 @@ var device=navigator.platform.toLowerCase();
for (var i=0,mobile; mobile=mobiles[i]; i++) {
if (device.indexOf(mobile)>=0) {$('#footer').css('position','static'); break;}
}
$(document).ajaxSend(function(elm, xhr, s){
if (s.type == "POST") {
$.ajaxPrefilter(function(s, orig, xhr){
if (s.type == "post" && !s.crossDomain) {
s.data = s.data || "";
s.data += s.data?"&":"";
s.data += "csrf_token=<?=$var['csrf_token']?>";
}