mirror of
https://github.com/alextselegidis/easyappointments.git
synced 2024-11-29 03:12:39 +03:00
CSRF protection for cancel appointment use case
This commit is contained in:
parent
36d73a24c0
commit
daf4865c29
1 changed files with 1 additions and 0 deletions
|
@ -137,6 +137,7 @@
|
|||
<form id="cancel-appointment-form" method="post"
|
||||
action="' . $this->config->item('base_url')
|
||||
. '/index.php/appointments/cancel/' . $appointment_data['hash'] . '">
|
||||
<input type="hidden" name="csrfToken" value="' . $this->security->get_csrf_hash() . '" />
|
||||
<textarea name="cancel_reason" style="display:none"></textarea>
|
||||
<button id="cancel-appointment" class="btn btn-inverse">' .
|
||||
$this->lang->line('cancel') . '</button>
|
||||
|
|
Loading…
Reference in a new issue