From 15a4369dda9eae4de8e38d7ad4e7b3687b2912b6 Mon Sep 17 00:00:00 2001
From: Bruno Minervino <brunominervino1993@gmail.com>
Date: Thu, 22 Dec 2016 08:34:37 -0200
Subject: [PATCH] Fix #258 (#259)

---
 login.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/login.php b/login.php
index 7f11232..37ce564 100644
--- a/login.php
+++ b/login.php
@@ -107,7 +107,7 @@ if (empty($_POST) === false) {
 		$errors[] = 'Failed to authorize your account, are the details correct, have you <a href=\'register.php\'>register</a>ed?';
 	} /*else if (user_activated($username) === false) {
 		$errors[] = 'You havent activated your account! Please check your email. <br>Note it may appear in your junk/spam box.';
-	} */else if (!Token::isValid($_POST['token'])) {
+	} */else if ($config['use_token'] && !Token::isValid($_POST['token'])) {
 		Token::debug($_POST['token']);
 		$errors[] = 'Token is invalid.';
 	} else {