diff options
| author | Roeland Jago Douma <roeland@famdouma.nl> | 2020-05-11 21:18:38 +0200 |
|---|---|---|
| committer | Roeland Jago Douma <roeland@famdouma.nl> | 2020-05-11 21:18:38 +0200 |
| commit | 1d35a1474bab97b5510e274841c4abf2a881cfc5 (patch) | |
| tree | 3780b828911584ae4442063dff7088347ace975b /core/templates | |
| parent | 68b21020623a23ec6cbda4800758ea7a607ea5c2 (diff) | |
| download | nextcloud-server-1d35a1474bab97b5510e274841c4abf2a881cfc5.tar.gz nextcloud-server-1d35a1474bab97b5510e274841c4abf2a881cfc5.zip | |
Move the password confirmation form template to post
I know we use JS for this. But it triggers some false positives on
testing.
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
Diffstat (limited to 'core/templates')
| -rw-r--r-- | core/templates/layout.user.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/templates/layout.user.php b/core/templates/layout.user.php index 318b1d5f34b..1bb385ef936 100644 --- a/core/templates/layout.user.php +++ b/core/templates/layout.user.php @@ -156,7 +156,7 @@ </header> <div id="sudo-login-background" class="hidden"></div> - <form id="sudo-login-form" class="hidden"> + <form id="sudo-login-form" class="hidden" method="POST"> <label> <?php p($l->t('This action requires you to confirm your password')); ?><br/> <input type="password" class="question" autocomplete="new-password" name="question" value=" <?php /* Hack against browsers ignoring autocomplete="off" */ ?>" |