raspap-webgui/includes/csrf.php

<?php

include_once('functions.php');
include_once('session.php');

if (csrfValidateRequest() && !CSRFValidate()) {
  handleInvalidCSRFToken();
}
send CSRF token in a response header, update the page's CSRF tokens with the new token from the response header, verify csrf token in ajax endpoints, initialize a session for every endpoint 2019-08-06 21:34:58 +02:00			`<?php`

fix require paths 2019-08-07 23:21:14 +02:00			`include_once('functions.php');`
			`include_once('session.php');`
send CSRF token in a response header, update the page's CSRF tokens with the new token from the response header, verify csrf token in ajax endpoints, initialize a session for every endpoint 2019-08-06 21:34:58 +02:00
			`if (csrfValidateRequest() && !CSRFValidate()) {`
			`handleInvalidCSRFToken();`
			`}`