summaryrefslogtreecommitdiff
path: root/lib
diff options
context:
space:
mode:
Diffstat (limited to 'lib')
-rw-r--r--lib/plugins/acl/admin.php6
-rw-r--r--lib/plugins/config/admin.php2
2 files changed, 4 insertions, 4 deletions
diff --git a/lib/plugins/acl/admin.php b/lib/plugins/acl/admin.php
index dd50bfb39..190ead761 100644
--- a/lib/plugins/acl/admin.php
+++ b/lib/plugins/acl/admin.php
@@ -79,12 +79,12 @@ class admin_plugin_acl extends DokuWiki_Admin_Plugin {
$perm = (int) $perm;
if($perm > AUTH_DELETE) $perm = AUTH_DELETE;
- // check token
- if(!checkSecurityToken()) return;
-
//nothing to do?
if(empty($cmd) || empty($scope) || empty($user)) return;
+ // check token
+ if(!checkSecurityToken()) return;
+
if($cmd == 'save'){
$this->admin_acl_del($scope, $user);
diff --git a/lib/plugins/config/admin.php b/lib/plugins/config/admin.php
index f251eac7d..90b249202 100644
--- a/lib/plugins/config/admin.php
+++ b/lib/plugins/config/admin.php
@@ -58,8 +58,8 @@ class admin_plugin_config extends DokuWiki_Admin_Plugin {
global $ID;
if (!$this->_restore_session()) return $this->_close_session();
- if (!checkSecurityToken()) return $this->_close_session();
if (!isset($_REQUEST['save']) || ($_REQUEST['save'] != 1)) return $this->_close_session();
+ if (!checkSecurityToken()) return $this->_close_session();
if (is_null($this->_config)) { $this->_config = new configuration($this->_file); }
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-10 16:21:19 +0000