Added CRSF security token checks in ACL plugin

author: Andreas Gohr <andi@splitbrain.org> 2010-01-17 10:52:59 +0100
committer: Andreas Gohr <andi@splitbrain.org> 2010-01-17 11:29:22 +0100
commit: 2be6d35ccf42826f177db7751502bfe59dfbbb5c (patch)
tree: 9c189c162a283496683b60eebc53ad7b1020b2df /lib/plugins/acl/script.js
parent: 98842ebb32df0ff78abeafe20b0b162b01730404 (diff)
download: rpg-2be6d35ccf42826f177db7751502bfe59dfbbb5c.tar.gz
rpg-2be6d35ccf42826f177db7751502bfe59dfbbb5c.tar.bz2
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/plugins/acl/script.js b/lib/plugins/acl/script.js
index 7ab83db58..449a3c16a 100644
--- a/lib/plugins/acl/script.js
+++ b/lib/plugins/acl/script.js
@@ -48,7 +48,8 @@ acl = {
         data[1] = ajax.encVar('id',frm.elements['id'].value);
         data[2] = ajax.encVar('acl_t',frm.elements['acl_t'].value);
         data[3] = ajax.encVar('acl_w',frm.elements['acl_w'].value);
-        data[4] = ajax.encVar('ajax','info');
+        data[4] = ajax.encVar('sectok',frm.elements['sectok'].value);
+        data[5] = ajax.encVar('ajax','info');
 
         ajax.elementObj = $('acl__info');
author	Andreas Gohr <andi@splitbrain.org>	2010-01-17 10:52:59 +0100
committer	Andreas Gohr <andi@splitbrain.org>	2010-01-17 11:29:22 +0100
commit	2be6d35ccf42826f177db7751502bfe59dfbbb5c (patch)
tree	9c189c162a283496683b60eebc53ad7b1020b2df /lib/plugins/acl/script.js
parent	98842ebb32df0ff78abeafe20b0b162b01730404 (diff)
download	rpg-2be6d35ccf42826f177db7751502bfe59dfbbb5c.tar.gz rpg-2be6d35ccf42826f177db7751502bfe59dfbbb5c.tar.bz2