mirror of
https://github.com/alextselegidis/easyappointments.git
synced 2024-12-22 14:42:23 +03:00
CSRF protection for appointment book
This commit is contained in:
parent
101097886b
commit
f223ffa343
2 changed files with 2 additions and 1 deletions
|
@ -374,6 +374,7 @@
|
|||
: $this->lang->line('update');
|
||||
?>
|
||||
</button>
|
||||
<input type="hidden" name="csrfToken" />
|
||||
<input type="hidden" name="post_data" />
|
||||
</form>
|
||||
</div>
|
||||
|
|
|
@ -481,7 +481,7 @@ var FrontendBook = {
|
|||
postData['appointment']['id'] = GlobalVariables.appointmentData['id'];
|
||||
postData['customer']['id'] = GlobalVariables.customerData['id'];
|
||||
}
|
||||
|
||||
$('input[name="csrfToken"]').val(GlobalVariables.csrfToken);
|
||||
$('input[name="post_data"]').val(JSON.stringify(postData));
|
||||
},
|
||||
|
||||
|
|
Loading…
Reference in a new issue