Add callCheck to testremote.php

Without CSRF check this file might be tricked into requesting itself which would result in an endless loop and thus potentially ending in a Denial of Service.
author: Lukas Reschke <lukas@owncloud.com> 2015-02-02 19:39:41 +0100
committer: Lukas Reschke <lukas@owncloud.com> 2015-02-02 19:39:41 +0100
commit: 4270188252d8db8f1626231717bcfd5de35d3ef5 (patch)
tree: 1a34d4583cd5584b66169c3fdfcae5402048a754 /apps/files_sharing/ajax
parent: 92bc1b44d5230b6256be8f1f79d364c9bb277944 (diff)
download: nextcloud-server-4270188252d8db8f1626231717bcfd5de35d3ef5.tar.gz
nextcloud-server-4270188252d8db8f1626231717bcfd5de35d3ef5.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/apps/files_sharing/ajax/testremote.php b/apps/files_sharing/ajax/testremote.php
index 08149bf7ecc..14992787012 100644
--- a/apps/files_sharing/ajax/testremote.php
+++ b/apps/files_sharing/ajax/testremote.php
@@ -6,6 +6,7 @@
  * See the COPYING-README file.
  */
 
+OCP\JSON::callCheck();
 OCP\JSON::checkAppEnabled('files_sharing');
 
 $remote = $_GET['remote'];
author	Lukas Reschke <lukas@owncloud.com>	2015-02-02 19:39:41 +0100
committer	Lukas Reschke <lukas@owncloud.com>	2015-02-02 19:39:41 +0100
commit	4270188252d8db8f1626231717bcfd5de35d3ef5 (patch)
tree	1a34d4583cd5584b66169c3fdfcae5402048a754 /apps/files_sharing/ajax
parent	92bc1b44d5230b6256be8f1f79d364c9bb277944 (diff)
download	nextcloud-server-4270188252d8db8f1626231717bcfd5de35d3ef5.tar.gz nextcloud-server-4270188252d8db8f1626231717bcfd5de35d3ef5.zip