From 26417f6dd4da2fd774fc7517a4379bcd17f06dae Mon Sep 17 00:00:00 2001
From: Bharat Mediratta <bharat@menalto.com>
Date: Mon, 29 Dec 2008 21:27:46 +0000
Subject: Replace __CSRF__ token with a real csrf.  This allows links in site
 status messages to persiste across sessions.

---
 core/helpers/site_status.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'core/helpers')

diff --git a/core/helpers/site_status.php b/core/helpers/site_status.php
index ccddd3fb..e35a2a8a 100644
--- a/core/helpers/site_status.php
+++ b/core/helpers/site_status.php
@@ -98,7 +98,8 @@ class site_status_Core {
     $buf = array();
 
     foreach (ORM::factory("message")->find_all() as $msg) {
-      $buf[] = "<li class=\"" . self::severity_class($msg->severity) . "\">$msg->value</li>";
+      $value = str_replace('__CSRF__', access::csrf_token(), $msg->value);
+      $buf[] = "<li class=\"" . self::severity_class($msg->severity) . "\">$value</li>";
     }
 
     if ($buf) {
-- 
cgit v1.2.3