projects / project / luci.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 48f58d9) | patch
luci-base: fix CSRF prevention for arcombine targets
authorJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:55:44 +0000 (09:55 +0200)
committerJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:57:51 +0000 (09:57 +0200)
commitee38da958abeceb31fbd1f3b8e42afe5897dde7f
tree6cbdd0360ce44b6f0f40215eeab2352830e03a1ftree | snapshot
parent48f58d9e35b136087ccb71b0e18419953066fbe8commit | diff
luci-base: fix CSRF prevention for arcombine targets

The dispatcher failed to propagate the child target post security
requirements to the arcombine() dispatch target so far - fix this
by recursively testing the post security requirements.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(cherry picked from commit f8c6eb67cd9da09ee20248fec6ab742069635e47)
modules/luci-base/luasrc/dispatcher.lua diff | blob | history
Lua Configuration Interface (mirror)