diff options
author | flop25 <flop25@piwigo.org> | 2011-08-31 15:58:16 +0000 |
---|---|---|
committer | flop25 <flop25@piwigo.org> | 2011-08-31 15:58:16 +0000 |
commit | 026cd5ce8b8da3c4f97cb4f08d4b8d18a2c7e508 (patch) | |
tree | e9cabe6ea9308058260c39a297cab72b4870c6f0 /admin/cat_perm.php | |
parent | ded83a19dac48848d97c3aca3ee8da6fad850358 (diff) |
token added for permissions
git-svn-id: http://piwigo.org/svn/trunk@12020 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
-rw-r--r-- | admin/cat_perm.php | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/admin/cat_perm.php b/admin/cat_perm.php index 0b7b0c51a..c6e26462a 100644 --- a/admin/cat_perm.php +++ b/admin/cat_perm.php @@ -68,7 +68,10 @@ SELECT id // +-----------------------------------------------------------------------+ // | form submission | // +-----------------------------------------------------------------------+ - +if (isset($_POST['deny_groups_submit']) or isset($_POST['grant_groups_submit']) or isset($_POST['deny_users_submit']) or isset($_POST['grant_users_submit']) ) +{ + check_pwg_token(); +} if (isset($_POST['deny_groups_submit']) and isset($_POST['deny_groups']) @@ -287,5 +290,7 @@ $template->assign('user_denied_ids', $user_denied_ids); // +-----------------------------------------------------------------------+ // | sending html code | // +-----------------------------------------------------------------------+ +$template->assign(array('PWG_TOKEN' => get_pwg_token())); + $template->assign_var_from_handle('ADMIN_CONTENT', 'cat_perm'); ?> |