]> git.proxmox.com Git - pve-manager-legacy.git/commit
projects / pve-manager-legacy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5ce0a4f) | patch
fix #3389: Skip CSRF token check also for API tokens on file upload
authorLorenz Stechauner <l.stechauner@proxmox.com>
Wed, 21 Apr 2021 11:59:43 +0000 (13:59 +0200)
committerThomas Lamprecht <t.lamprecht@proxmox.com>
Thu, 22 Apr 2021 07:01:11 +0000 (09:01 +0200)
commit15d4495eb6ce17ac93dbe8b04e5873484e2c69fc
treea47f24fa3091198ebd3bb5f3bdd0039ea2e6f49dtree
parent5ce0a4f45654969366d928e699bc3d397e362ed7commit | diff
fix #3389: Skip CSRF token check also for API tokens on file upload

On file upload, the check for CSRF tokens was already skipped when
performing user authentication. This now happens for API tokens also.

Signed-off-by: Lorenz Stechauner <l.stechauner@proxmox.com>
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
PVE/HTTPServer.pm diff | blob | blame | history
PVE Management Server