[TYPO3-core] RFC: #17300: CSRF token invalid error when using the clickmenu in record list to delete a record.
Helmut Hummel
helmut.hummel at typo3.org
Tue Jan 25 19:36:34 CET 2011
Hi,
This is an SVN patch request.
Type: bugfix
Bugtracker references:
http://bugs.typo3.org/view.php?id=17300
Branches:
Trunk
Problem
Trying to delete an entry with the click menu in the reocrd list gives a
CSRf token error.
This happens because by removing unnecessry persist() calls were
removed, but actually this one is needed, because endPage() is not
called during the Ajax request.
Solution:
Add the persist() call.
Kind regards,
Helmut
--
Helmut Hummel
TYPO3 Security Team Leader
TYPO3 .... inspiring people to share!
Get involved: typo3.org
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: 17300.diff
URL: <http://lists.typo3.org/pipermail/typo3-team-core/attachments/20110125/fea2947c/attachment.txt>
More information about the TYPO3-team-core
mailing list