frodovdr/raspap-webgui
1
0
Fork 0
mirror of https://github.com/billz/raspap-webgui.git synced 2023-10-10 13:37:24 +02:00
Code Issues Releases Wiki Activity

Fix php notices w/ proper var checks

Browse Source
This commit is contained in:
billz 2023-09-06 09:54:20 +02:00
parent 55c0a49911
commit c64bdb42c8
1 changed files with 20 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
includes/functions.php
View File

@ -318,18 +318,17 @@ function CSRFMetaTag()
*/ */
function CSRFValidate() function CSRFValidate()
{ {
if(isset($_POST['csrf_token'])) {
$post_token = $_POST['csrf_token']; $post_token = $_POST['csrf_token'];
$header_token = $_SERVER['HTTP_X_CSRF_TOKEN']; $header_token = $_SERVER['HTTP_X_CSRF_TOKEN'];
if (empty($post_token) && empty($header_token)) { if (empty($post_token) && empty($header_token)) {
return false; return false;
} }
$request_token = $post_token; $request_token = $post_token;
if (empty($post_token)) { if (empty($post_token)) {
$request_token = $header_token; $request_token = $header_token;
} }
if (hash_equals($_SESSION['csrf_token'], $request_token)) { if (hash_equals($_SESSION['csrf_token'], $request_token)) {
return true; return true;
} else { } else {
@ -337,6 +336,7 @@ function CSRFValidate()
return false; return false;
} }
} }
}
/** /**
* Should the request be CSRF-validated? * Should the request be CSRF-validated?
@ -685,10 +685,12 @@ function getColorOpt()
} }
function getSidebarState() function getSidebarState()
{ {
if(isset($_COOKIE['sidebarToggled'])) {
if ($_COOKIE['sidebarToggled'] == 'true' ) { if ($_COOKIE['sidebarToggled'] == 'true' ) {
return "toggled"; return "toggled";
} }
} }
}
// Returns bridged AP mode status // Returns bridged AP mode status
function getBridgedState() function getBridgedState()