https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=36351
Jonathan Druart <jonathan.dru...@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #163457|0 |1 is obsolete| | Attachment #163458|0 |1 is obsolete| | Attachment #163459|0 |1 is obsolete| | --- Comment #9 from Jonathan Druart <jonathan.dru...@gmail.com> --- Created attachment 163489 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=163489&action=edit Bug 36351: Add CSRF tokens to advanced cataloguing editor POST requests The editor uses ajax post requests to SVC api. Becuase these apis are XML based requests, they must be handled in the simplest way, by embedding the token as a header To test: 1 - Browse to Cataloguing->Advanced editor 2 - Fill out needed values and save 3 - 403 error 4 - Apply patch 5 - Reload and try agian, success! 6 - Edit and save again, success! Signed-off-by: Nick Clemens <n...@bywatersolutions.com> Signed-off-by: Jonathan Druart <jonathan.dru...@bugs.koha-community.org> -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/