Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CSRF Protection #2

Closed
billythekid opened this issue Mar 19, 2015 · 1 comment
Closed

CSRF Protection #2

billythekid opened this issue Mar 19, 2015 · 1 comment

Comments

@billythekid
Copy link

If a site has CSRF Protection enabled the form submissions always fail validation. Adding...
{{ getCsrfInput() }}
within the form tags in the form template files (_edit and _map in my testing - but any other forms I've not come across yet will need this too) is the fix.

eg. (in _edit.html - line 20 on)

{% block content %}
    <form method="post" accept-charset="UTF-8" data-saveshortcut="1">
        <input type="hidden" name="action" value="">
        {{ getCsrfInput() }}

        {% if feed.id %}<input type="hidden" name="feedId" value="{{ feed.id }}">{% endif %}
...
@engram-design
Copy link
Contributor

Thanks for reporting this - fixed in the latest commit.

@subratom subratom mentioned this issue Jun 3, 2016
Closed
@oadslug oadslug mentioned this issue Sep 8, 2016
Closed
@jmcgaha jmcgaha mentioned this issue May 23, 2018
Closed
elivz pushed a commit to elivz/feed-me that referenced this issue Dec 8, 2018
@smcyr
Merge pull request craftcms#2 from smcyr/craft-3
62c5e27 
Craft 3
@BridgingUnit BridgingUnit mentioned this issue Mar 23, 2019
Closed
@jamesmacwhite jamesmacwhite mentioned this issue Mar 28, 2019
Closed
@matthisamoto matthisamoto mentioned this issue Sep 24, 2019
Closed
@cookie10codes cookie10codes mentioned this issue Oct 13, 2020
Closed
@snyk-bot snyk-bot mentioned this issue Dec 1, 2021
Closed
@floatingbits floatingbits mentioned this issue Dec 7, 2021
Closed
@WHITE-developer WHITE-developer mentioned this issue May 2, 2022
Closed
@timohinze timohinze mentioned this issue Jun 1, 2022
Closed
@siffring siffring mentioned this issue Oct 19, 2022
Closed
@luke-nehemedia luke-nehemedia mentioned this issue Feb 6, 2023
Closed
@lucasdaniels lucasdaniels mentioned this issue Jul 8, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@billythekid @engram-design