projects / project / luci.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6d70b30) | patch
luci-base: fix CSRF prevention for arcombine targets
authorJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:55:44 +0000 (09:55 +0200)
committerJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:55:44 +0000 (09:55 +0200)
commitf8c6eb67cd9da09ee20248fec6ab742069635e47
treefad932d2aed191055e601959f47a2418c7a18ef6tree | snapshot
parent6d70b303ede58fb08598ffaa829a3ec80a3f34bdcommit | diff
luci-base: fix CSRF prevention for arcombine targets

The dispatcher failed to propagate the child target post security
requirements to the arcombine() dispatch target so far - fix this
by recursively testing the post security requirements.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
modules/luci-base/luasrc/dispatcher.lua diff | blob | history
Lua Configuration Interface (mirror)