]> git.agnieray.net Git - galette.git/commit
Projects / galette.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: afd3c59) | patch
Add CSRF Middleware
authorJohan Cwiklinski <johan@x-tnd.be>
Mon, 8 Nov 2021 22:36:58 +0000 (23:36 +0100)
committerJohan Cwiklinski <trasher@x-tnd.be>
Tue, 9 Nov 2021 21:54:50 +0000 (22:54 +0100)
commita5602bca2566f1be370631c3ab2d40feedd4b3ad
tree22b5b09faa4e838e1644b4db5f9077f92396834atree | snapshot
parentafd3c595614798032f092b3404dda56a0f8fe2edcommit | diff
Add CSRF Middleware

Add csrf inputs on all forms
Use an exception rather than default blank page
Add CSRF check on ajax post requests
Make CSRF token persistent to ease with ajax calls
49 files changed:
galette/composer.json diff | blob | history
galette/composer.lock diff | blob | history
galette/includes/dependencies.php diff | blob | history
galette/includes/main.inc.php diff | blob | history
galette/lib/Galette/Middleware/SmartyCsrf.php [new file with mode: 0644] blob
galette/templates/default/admintools.tpl diff | blob | history
galette/templates/default/advanced_search.tpl diff | blob | history
galette/templates/default/ajouter_contribution.tpl diff | blob | history
galette/templates/default/ajouter_transaction.tpl diff | blob | history
galette/templates/default/attendance_sheet_details.tpl diff | blob | history
galette/templates/default/change_passwd.tpl diff | blob | history
galette/templates/default/common_scripts.tpl diff | blob | history
galette/templates/default/config_fields.tpl diff | blob | history
galette/templates/default/config_lists.tpl diff | blob | history
galette/templates/default/confirm_removal.tpl diff | blob | history
galette/templates/default/directlink.tpl diff | blob | history
galette/templates/default/edit_paymenttype.tpl diff | blob | history
galette/templates/default/edit_title.tpl diff | blob | history
galette/templates/default/editer_champ.tpl diff | blob | history
galette/templates/default/editer_intitule.tpl diff | blob | history
galette/templates/default/export.tpl diff | blob | history
galette/templates/default/forms_types/csrf.tpl [new file with mode: 0644] blob
galette/templates/default/gestion_adherents.tpl diff | blob | history
galette/templates/default/gestion_contributions.tpl diff | blob | history
galette/templates/default/gestion_intitules.tpl diff | blob | history
galette/templates/default/gestion_mailings.tpl diff | blob | history
galette/templates/default/gestion_paymentstypes.tpl diff | blob | history
galette/templates/default/gestion_pdf_content.tpl diff | blob | history
galette/templates/default/gestion_textes.tpl diff | blob | history
galette/templates/default/gestion_titres.tpl diff | blob | history
galette/templates/default/gestion_transactions.tpl diff | blob | history
galette/templates/default/group.tpl diff | blob | history
galette/templates/default/history.tpl diff | blob | history
galette/templates/default/import.tpl diff | blob | history
galette/templates/default/import_model.tpl diff | blob | history
galette/templates/default/index.tpl diff | blob | history
galette/templates/default/liste_membres.tpl diff | blob | history
galette/templates/default/lostpasswd.tpl diff | blob | history
galette/templates/default/mailing_adherents.tpl diff | blob | history
galette/templates/default/mass_add_contribution.tpl diff | blob | history
galette/templates/default/mass_change_members.tpl diff | blob | history
galette/templates/default/mass_choose_type.tpl diff | blob | history
galette/templates/default/member.tpl diff | blob | history
galette/templates/default/plugin_initdb.tpl diff | blob | history
galette/templates/default/preferences.tpl diff | blob | history
galette/templates/default/reminder.tpl diff | blob | history
galette/templates/default/saved_searches.tpl diff | blob | history
galette/templates/default/traduire_libelles.tpl diff | blob | history
galette/templates/default/trombinoscope.tpl diff | blob | history
Galette membership management web application towards non profit (personal repository) | https://galette.eu