mirror of
https://github.com/alextselegidis/easyappointments.git
synced 2024-11-14 12:02:56 +03:00
CSRF protection for appointment book
This commit is contained in:
parent
101097886b
commit
f223ffa343
2 changed files with 2 additions and 1 deletions
|
@ -374,6 +374,7 @@
|
||||||
: $this->lang->line('update');
|
: $this->lang->line('update');
|
||||||
?>
|
?>
|
||||||
</button>
|
</button>
|
||||||
|
<input type="hidden" name="csrfToken" />
|
||||||
<input type="hidden" name="post_data" />
|
<input type="hidden" name="post_data" />
|
||||||
</form>
|
</form>
|
||||||
</div>
|
</div>
|
||||||
|
|
|
@ -481,7 +481,7 @@ var FrontendBook = {
|
||||||
postData['appointment']['id'] = GlobalVariables.appointmentData['id'];
|
postData['appointment']['id'] = GlobalVariables.appointmentData['id'];
|
||||||
postData['customer']['id'] = GlobalVariables.customerData['id'];
|
postData['customer']['id'] = GlobalVariables.customerData['id'];
|
||||||
}
|
}
|
||||||
|
$('input[name="csrfToken"]').val(GlobalVariables.csrfToken);
|
||||||
$('input[name="post_data"]').val(JSON.stringify(postData));
|
$('input[name="post_data"]').val(JSON.stringify(postData));
|
||||||
},
|
},
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue