Item2551: The strikeone action parameter name clashes with manage script

Priority: Normal
Current State: Closed
Released In: 1.0.9
Target Release: patch
Applies To: Engine
Component:
Reported By: KennethLavrsen
Waiting For: Main.KennethLavrsen
Last Change By: PaulHarvey
When the strikeone CSRF protection was implemented a variable called 'action' was used which would have the value 'validate' when you save.

But this prevents good use of the same feature for other scripts than save because they have their own action. For example manage uses action for several tasks.

I will rename the CSRF action to 'validate' still with the value 'validate'. This way the two feature can live hand in hand and we can protect even more actions with the brilliant strikeone protection.

-- KennethLavrsen - 02 Jan 2010

I can close this one as this is not relevant for trunk.

-- KennethLavrsen - 02 Jan 2010

ItemTemplate edit

Summary The strikeone action parameter name clashes with manage script
ReportedBy KennethLavrsen
Codebase
SVN Range
AppliesTo Engine
Component
Priority Normal
CurrentState Closed
WaitingFor KennethLavrsen
Checkins distro:fa57ee946aa4
TargetRelease patch
ReleasedIn 1.0.9
Topic revision: r4 - 17 Jan 2010, PaulHarvey
 
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. see CopyrightStatement. Creative Commons License