]> git.sesse.net Git - itkacl/blobdiff - itkacl-web-1.0/web/delete.pl
projects / itkacl / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Protect the web interface against CSRF, and the CSRF token against BREACH.
[itkacl] / itkacl-web-1.0 / web / delete.pl
diff --git a/itkacl-web-1.0/web/delete.pl b/itkacl-web-1.0/web/delete.pl
index 9165b0e51e987073d9051a9ccdf3a2c613b1192a..f1d1d9509b82183cf9b81130c529ae906c9f41ac 100755 (executable)
--- a/itkacl-web-1.0/web/delete.pl
+++ b/itkacl-web-1.0/web/delete.pl
@@ -7,6 +7,7 @@ use lib '../include';
 use itkaclcommon;
 
 itkaclcommon::init();
+itkaclcommon::check_csrf_token();
 
 my $entry = $itkaclcommon::cgi->param('entry');
 my $entity = $itkaclcommon::cgi->param('entity');
A simple but generic authorization system with bindings to many languages and systems.