Normalize use of form security tokens in Admin modules
# Conflicts: # src/Module/Admin/Logs/Settings.php
This commit is contained in:
parent
2ce15cae1a
commit
9bc2c5a52e
12 changed files with 43 additions and 39 deletions
|
|
@ -36,6 +36,8 @@ class Users extends BaseAdmin
|
|||
{
|
||||
parent::post($parameters);
|
||||
|
||||
self::checkFormSecurityTokenRedirectOnError('/admin/users', 'admin_users');
|
||||
|
||||
$pending = $_POST['pending'] ?? [];
|
||||
$users = $_POST['user'] ?? [];
|
||||
$nu_name = $_POST['new_user_name'] ?? '';
|
||||
|
|
@ -43,8 +45,6 @@ class Users extends BaseAdmin
|
|||
$nu_email = $_POST['new_user_email'] ?? '';
|
||||
$nu_language = DI::config()->get('system', 'language');
|
||||
|
||||
parent::checkFormSecurityTokenRedirectOnError('/admin/users', 'admin_users');
|
||||
|
||||
if ($nu_name !== '' && $nu_email !== '' && $nu_nickname !== '') {
|
||||
try {
|
||||
User::createMinimal($nu_name, $nu_email, $nu_nickname, $nu_language);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue