diff options
| author | wxiaoguang <wxiaoguang@gmail.com> | 2022-04-08 13:21:05 +0800 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-04-08 13:21:05 +0800 |
| commit | 84ceaa98bd731431c7d3a7f65e59e7ad076a540f (patch) | |
| tree | fc2743a69cde4e46c3a55796e2ab1541269b6c65 /modules/context/auth.go | |
| parent | 3c3d49899f0f7206e190bdeecdc4da248cc7e686 (diff) | |
| download | gitea-84ceaa98bd731431c7d3a7f65e59e7ad076a540f.tar.gz gitea-84ceaa98bd731431c7d3a7f65e59e7ad076a540f.zip | |
Refactor CSRF protection modules, make sure CSRF tokens can be up-to-date. (#19337)
Do a refactoring to the CSRF related code, remove most unnecessary functions.
Parse the generated token's issue time, regenerate the token every a few minutes.
Diffstat (limited to 'modules/context/auth.go')
| -rw-r--r-- | modules/context/auth.go | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/context/auth.go b/modules/context/auth.go index 1a46ab586a..09c2295455 100644 --- a/modules/context/auth.go +++ b/modules/context/auth.go @@ -63,7 +63,7 @@ func Toggle(options *ToggleOptions) func(ctx *Context) { } if !options.SignOutRequired && !options.DisableCSRF && ctx.Req.Method == "POST" { - Validate(ctx, ctx.csrf) + ctx.csrf.Validate(ctx) if ctx.Written() { return } |