Don't try to validate the form unless it's a POST request.

author: Bharat Mediratta <bharat@menalto.com> 2008-12-19 03:05:11 +0000
committer: Bharat Mediratta <bharat@menalto.com> 2008-12-19 03:05:11 +0000
commit: 5d2b1ae05697e0326bd7076b4906d59ad98e9ba6 (patch)
tree: 661841ff520a731f89cda3044a2cba248d623080
parent: 0cf07fbeec6a7fb34742c9198329a4180a935165 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/user/controllers/login.php b/modules/user/controllers/login.php
index 4226ef9c..3c1d6542 100644
--- a/modules/user/controllers/login.php
+++ b/modules/user/controllers/login.php
@@ -25,7 +25,7 @@ class Login_Controller extends Controller {
     $group->password("password")->label(_("Password"))->id("gPassword")->class(null);
     $group->inputs["name"]->error_messages("invalid_login", _("Invalid name or password"));
 
-    if ($form->validate()) {
+    if (request::method() == "post" && $form->validate()) {
       $user = ORM::factory("user")->where("name", $group->inputs["name"]->value)->find();
       if ($user->loaded &&
           user::is_correct_password($user, $group->password->value)) {
author	Bharat Mediratta <bharat@menalto.com>	2008-12-19 03:05:11 +0000
committer	Bharat Mediratta <bharat@menalto.com>	2008-12-19 03:05:11 +0000
commit	5d2b1ae05697e0326bd7076b4906d59ad98e9ba6 (patch)
tree	661841ff520a731f89cda3044a2cba248d623080
parent	0cf07fbeec6a7fb34742c9198329a4180a935165 (diff)