diff options
| author | friendica <info@friendica.com> | 2012-03-18 17:54:12 -0700 |
|---|---|---|
| committer | friendica <info@friendica.com> | 2012-03-18 17:54:12 -0700 |
| commit | c286681158a5c766d740f66cc70d1ef95c34b92a (patch) | |
| tree | dc385ee21f8f0f55fe79984b68422d3f7a0007b4 /include | |
| parent | 6aab641bfdbe958d8d292908fa8d84de13490d06 (diff) | |
| parent | 453b5b46a370e3f01f2c948ac3eddf0bcd82c741 (diff) | |
| download | volse-hubzilla-c286681158a5c766d740f66cc70d1ef95c34b92a.tar.gz volse-hubzilla-c286681158a5c766d740f66cc70d1ef95c34b92a.tar.bz2 volse-hubzilla-c286681158a5c766d740f66cc70d1ef95c34b92a.zip | |
Merge pull request #147 from CatoTH/master
CSRF-Protection in the group-related form
Diffstat (limited to 'include')
| -rwxr-xr-x | include/security.php | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/include/security.php b/include/security.php index 6ea515bff..45473445a 100755 --- a/include/security.php +++ b/include/security.php @@ -334,3 +334,9 @@ function check_form_security_token_redirectOnErr($err_redirect, $typename = "", goaway($a->get_baseurl() . $err_redirect ); } } +function check_form_security_token_ForbiddenOnErr($typename = "", $formname = 'form_security_token') { + if (!check_form_security_token($typename, $formname)) { + header('HTTP/1.1 403 Forbidden'); + killme(); + } +}
\ No newline at end of file |