fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-21 19:32:15 +09:00
Code Issues Projects Releases Packages Wiki Activity
rhymix/common
History
Kijin Sung b3fb993f73 Insert CSRF token in all AJAX requests via exec_xml(), exec_json(), exec_html() 
일단 공식적으로 지원하는 AJAX 함수 3종에 CSRF 토큰을 삽입해 본다.
추후 체크 방식을 변경하거나 보안을 더욱 강화할 경우 X-CSRF-Token 헤더와 비교할 수도 있다.
일반 폼 제출이나 임의의 AJAX 요청에도 CSRF 토큰을 삽입하는 것은 다음 커밋에...
2017-03-06 11:51:38 +09:00
..
css Fix line wrapping 2016-05-05 11:24:14 +09:00
defaults Set session.use_keys to false by default 2017-02-15 11:30:49 +09:00
framework Add Session::getGenericToken() for general-purpose token handling 2017-03-06 11:24:09 +09:00
img Close Connection when there is no connection value. 2013-09-25 15:29:32 +00:00
js Insert CSRF token in all AJAX requests via exec_xml(), exec_json(), exec_html() 2017-03-06 11:51:38 +09:00
lang Fix #741 do not allow empty HTML content in document and comment 2017-03-06 10:50:06 +09:00
libraries Implement new Password class and related unit tests 2016-03-13 22:08:56 +09:00
manual Clean up description page codes... We need translators.. 2017-03-01 20:05:59 +09:00
scripts Break early if there are no more garbage files to clean 2017-01-27 15:16:46 +09:00
tpl Insert CSRF token using meta tag in common_layout.html 2017-03-06 11:46:37 +09:00
autoload.php Update admin module to use new Cache system 2016-04-17 15:01:42 +09:00
constants.php Version 1.8.32 2017-02-27 16:30:08 +09:00
functions.php Fix #741 do not allow empty HTML content in document and comment 2017-03-06 10:50:06 +09:00
legacy.php Enable ztime() function to process Unix timestamps 2017-02-22 20:20:55 +09:00