aboutsummaryrefslogtreecommitdiffstats
path: root/mod
diff options
context:
space:
mode:
authorTobias Hößl <tobias@hoessl.eu>2012-04-18 07:36:48 +0000
committerTobias Hößl <tobias@hoessl.eu>2012-04-18 07:36:48 +0000
commitb885fedee17c575207f45eba251c7acd549bca9f (patch)
tree6a2d5063a3fa289d64e2edfe21714188fc0473cb /mod
parentd7e750ad74c8a43d54e9ca95631fa754831bf581 (diff)
downloadvolse-hubzilla-b885fedee17c575207f45eba251c7acd549bca9f.tar.gz
volse-hubzilla-b885fedee17c575207f45eba251c7acd549bca9f.tar.bz2
volse-hubzilla-b885fedee17c575207f45eba251c7acd549bca9f.zip
XSRF protection and PHPdoc for mod/admin.php
Diffstat (limited to 'mod')
-rw-r--r--mod/admin.php17
1 files changed, 13 insertions, 4 deletions
diff --git a/mod/admin.php b/mod/admin.php
index 8cee6ed5b..cdc45c8e3 100644
--- a/mod/admin.php
+++ b/mod/admin.php
@@ -616,6 +616,8 @@ function admin_page_plugins(&$a){
}
if (x($_GET,"a") && $_GET['a']=="t"){
+ check_form_security_token_redirectOnErr('/admin/plugins', 'admin_themes', 't');
+
// Toggle plugin status
$idx = array_search($plugin, $a->plugins);
if ($idx !== false){
@@ -673,7 +675,9 @@ function admin_page_plugins(&$a){
'$admin_form' => $admin_form,
'$function' => 'plugins',
'$screenshot' => '',
- '$readme' => $readme
+ '$readme' => $readme,
+
+ '$form_security_token' => get_form_security_token("admin_themes"),
));
}
@@ -702,7 +706,8 @@ function admin_page_plugins(&$a){
'$submit' => t('Submit'),
'$baseurl' => $a->get_baseurl(true),
'$function' => 'plugins',
- '$plugins' => $plugins
+ '$plugins' => $plugins,
+ '$form_security_token' => get_form_security_token("admin_themes"),
));
}
@@ -810,6 +815,7 @@ function admin_page_themes(&$a){
}
if (x($_GET,"a") && $_GET['a']=="t"){
+ check_form_security_token_redirectOnErr('/admin/themes', 'admin_themes', 't');
// Toggle theme status
@@ -873,7 +879,9 @@ function admin_page_themes(&$a){
'$str_author' => t('Author: '),
'$str_maintainer' => t('Maintainer: '),
'$screenshot' => $screenshot,
- '$readme' => $readme
+ '$readme' => $readme,
+
+ '$form_security_token' => get_form_security_token("admin_themes"),
));
}
@@ -899,7 +907,8 @@ function admin_page_themes(&$a){
'$function' => 'themes',
'$plugins' => $xthemes,
'$experimental' => t('[Experimental]'),
- '$unsupported' => t('[Unsupported]')
+ '$unsupported' => t('[Unsupported]'),
+ '$form_security_token' => get_form_security_token("admin_themes"),
));
}