Bug #12397

Needed changes for the CSRF protection

Added by Helmut Hummel over 10 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Category:
Workspaces
Target version:
-
Start date:
2011-01-20
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

Since CSRF protection is implemented into 4.5 now, some things must be taken care of in the clickmenu and the old workspaces module.

I do not know if one or both will be used in 4.5, but for completeness, I would suggest to add these minor changes


Files

17153_workspaces.diff (2.77 KB) 17153_workspaces.diff Helmut Hummel, 2011-01-20 13:11
17153_workspaces_v2.diff (1.02 KB) 17153_workspaces_v2.diff Susanne Moog, 2011-01-20 17:08
#1

Updated by Ernesto Baschny over 10 years ago

Just FYI, the required method (t3lib_TCEforms::getHiddenTokenField) is now committed to typo3_src trunk (see RFC #17153, rev. and thread in v4 list), so if you could test the patch in the workspace module, give it some testing so that we could have it in RC1, it would be cool.

Thanks!

#3

Updated by Susanne Moog over 10 years ago

  • Status changed from New to Resolved
  • Assignee set to Susanne Moog

committed in rev 3901

#4

Updated by Michael Stucki over 7 years ago

  • Category changed from Ready for Core! to Workspaces
#5

Updated by Michael Stucki over 7 years ago

  • Project changed from 624 to TYPO3 Core
  • Category changed from Workspaces to Workspaces
#6

Updated by Benni Mack over 2 years ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF