]> git.proxmox.com Git - pve-manager.git/commit
projects / pve-manager.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8aac63a) | patch
fix #3389: Skip CSRF token check also for API tokens on file upload
authorLorenz Stechauner <l.stechauner@proxmox.com>
Wed, 21 Apr 2021 11:59:43 +0000 (13:59 +0200)
committerThomas Lamprecht <t.lamprecht@proxmox.com>
Thu, 22 Apr 2021 07:01:11 +0000 (09:01 +0200)
commitd9fc56efab5fc6afb3c593d5c0055766e5146d2c
tree1faf112e177c6a7d2efc670eedf2679a07c0cce6tree
parent8aac63a5db614e1730d4cce6e57adef15ffecebdcommit | diff
fix #3389: Skip CSRF token check also for API tokens on file upload

On file upload, the check for CSRF tokens was already skipped when
performing user authentication. This now happens for API tokens also.

Signed-off-by: Lorenz Stechauner <l.stechauner@proxmox.com>
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
PVE/HTTPServer.pm diff | blob | blame | history
The Proxmox VE Management API and Web UI