diff options
| author | Bharat Mediratta <bharat@menalto.com> | 2009-03-27 03:43:21 +0000 |
|---|---|---|
| committer | Bharat Mediratta <bharat@menalto.com> | 2009-03-27 03:43:21 +0000 |
| commit | 921f3a2eeeca9be23cb006a31b6d6f71e186374a (patch) | |
| tree | f9626ae5191418410714b662799649de5a1ea37c /themes | |
| parent | d7719a7e72de2ddc46c9173b0871f53e32ef40fc (diff) | |
Put csrf token into Admin_View and Theme_View by default, then use it
directly wherever possible instead of access::csrf_token().
Diffstat (limited to 'themes')
| -rw-r--r-- | themes/admin_default/views/block.html.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/themes/admin_default/views/block.html.php b/themes/admin_default/views/block.html.php index 332e440b..21512d02 100644 --- a/themes/admin_default/views/block.html.php +++ b/themes/admin_default/views/block.html.php @@ -2,7 +2,7 @@ <div block_id="<?= $id ?>" id="<?= $css_id ?>" class="gBlock ui-widget"> <div class="ui-dialog-titlebar ui-widget-header ui-helper-clearfix ui-icon-right"> <? if ($css_id != "gBlockAdder"): ?> - <a href="<?= url::site("admin/dashboard/remove_block/$id?csrf=" . access::csrf_token()) ?>" + <a href="<?= url::site("admin/dashboard/remove_block/$id?csrf=$csrf") ?>" class="ui-dialog-titlebar-close ui-corner-all"> <span class="ui-icon ui-icon-closethick">remove</span> </a> |