Backport of pull request #155

author Lukas Reschke <lukas@statuscode.ch>

Wed, 31 Oct 2012 12:00:07 +0000 (13:00 +0100)

committer Lukas Reschke <lukas@statuscode.ch>

Wed, 31 Oct 2012 12:00:13 +0000 (13:00 +0100)
author Lukas Reschke <lukas@statuscode.ch>
Wed, 31 Oct 2012 12:00:07 +0000 (13:00 +0100)
committer Lukas Reschke <lukas@statuscode.ch>
Wed, 31 Oct 2012 12:00:13 +0000 (13:00 +0100)
diff --git a/apps/files/templates/index.php b/apps/files/templates/index.php

index d49f2f4d5d3565cc0d327617acf3de30a7f58e0b..f614f02b6c20ec3559155f792c13e8cc66b1251d 100644 (file)
--- a/apps/files/templates/index.php
+++ b/apps/files/templates/index.php
@@ -14,6 +14,8 @@
                         <div class="file_upload_wrapper svg">
                                 <form data-upload-id='1' id="data-upload-form" class="file_upload_form" action="<?php echo OCP\Util::linkTo('files', 'ajax/upload.php'); ?>" method="post" enctype="multipart/form-data" target="file_upload_target_1">
                                         <input type="hidden" name="MAX_FILE_SIZE" value="<?php echo $_['uploadMaxFilesize'] ?>" id="max_upload">
+                                       <!-- Send the requesttoken, this is needed for older IE versions because they don't send the CSRF token via HTTP header in this case -->
+                                       <input type="hidden" name="requesttoken" value="<?php echo $_['requesttoken'] ?>" id="requesttoken">
                                         <input type="hidden" class="max_human_file_size" value="(max <?php echo $_['uploadMaxHumanFilesize']; ?>)">
                                         <input type="hidden" name="dir" value="<?php echo $_['dir'] ?>" id="dir">
                                         <input class="file_upload_start" type="file" name='files[]'/>
author	Lukas Reschke <lukas@statuscode.ch>
	Wed, 31 Oct 2012 12:00:07 +0000 (13:00 +0100)
committer	Lukas Reschke <lukas@statuscode.ch>
	Wed, 31 Oct 2012 12:00:13 +0000 (13:00 +0100)