diff options
author | Thomas Tanghus <thomas@tanghus.net> | 2012-07-17 11:57:38 +0200 |
---|---|---|
committer | Thomas Tanghus <thomas@tanghus.net> | 2012-07-17 11:57:38 +0200 |
commit | 748fcabba48fe0f60951be22a531f3bf88fdabff (patch) | |
tree | 7a393e36f6c133e301b0f36c689e3de62f346997 /apps/files_versions | |
parent | 8444fc5787331fb34919991f3cd9f55cf3fb4989 (diff) | |
download | nextcloud-server-748fcabba48fe0f60951be22a531f3bf88fdabff.tar.gz nextcloud-server-748fcabba48fe0f60951be22a531f3bf88fdabff.zip |
Added CSRF checks to files_versions. Expect some error messages - and report them ;)
Diffstat (limited to 'apps/files_versions')
-rw-r--r-- | apps/files_versions/ajax/expireAll.php | 1 | ||||
-rw-r--r-- | apps/files_versions/ajax/rollbackVersion.php | 1 | ||||
-rw-r--r-- | apps/files_versions/ajax/togglesettings.php | 1 |
3 files changed, 3 insertions, 0 deletions
diff --git a/apps/files_versions/ajax/expireAll.php b/apps/files_versions/ajax/expireAll.php index 4f165be0ae9..2a678c7f0a5 100644 --- a/apps/files_versions/ajax/expireAll.php +++ b/apps/files_versions/ajax/expireAll.php @@ -27,6 +27,7 @@ // Check user and app status OCP\JSON::checkLoggedIn(); OCP\App::checkAppEnabled('files_versions'); +OCP\JSON::callCheck(); $versions = new OCA_Versions\Storage(); diff --git a/apps/files_versions/ajax/rollbackVersion.php b/apps/files_versions/ajax/rollbackVersion.php index 8d1092f8b8e..24d71a914a4 100644 --- a/apps/files_versions/ajax/rollbackVersion.php +++ b/apps/files_versions/ajax/rollbackVersion.php @@ -1,6 +1,7 @@ <?php OCP\JSON::checkAppEnabled('files_versions'); +OCP\JSON::callCheck(); $userDirectory = "/".OCP\USER::getUser()."/files"; diff --git a/apps/files_versions/ajax/togglesettings.php b/apps/files_versions/ajax/togglesettings.php index 86f614c5c89..546b37ae1aa 100644 --- a/apps/files_versions/ajax/togglesettings.php +++ b/apps/files_versions/ajax/togglesettings.php @@ -2,6 +2,7 @@ OCP\JSON::checkAppEnabled('files_versions'); OCP\JSON::checkAdminUser(); +OCP\JSON::callCheck(); if (OCP\Config::getSystemValue('versions', 'true')=='true') { OCP\Config::setSystemValue('versions', 'false'); } else { |