move xsrf test

2013-08-05 22:50:00 +02:00
parent d28a7ca30f
commit 6fb3a2a185
2 changed files with 10 additions and 10 deletions
--- a/index.php
+++ b/index.php
@ -10,14 +10,6 @@

 include dirname(__FILE__).'/inc/poche/config.inc.php';

-#XSRF protection with token
-// if (!empty($_POST)) {
-//     if (!Session::isToken($_POST['token'])) {
-//         die(_('Wrong token'));
-//     }
-//     unset($_SESSION['tokens']);
-// }
-
 $referer = empty($_SERVER['HTTP_REFERER']) ? '' : $_SERVER['HTTP_REFERER'];
 $view = Tools::checkVar('view', 'home');
 $action = Tools::checkVar('action');