mirror of
https://github.com/slawkens/myaac.git
synced 2025-06-10 06:44:29 +02:00
Add missing csrf() into account manage actions
This commit is contained in:
parent
0812fe025d
commit
10cd71a663
@ -11,13 +11,14 @@
|
|||||||
<td width="100%"></td>
|
<td width="100%"></td>
|
||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0" >
|
<table border="0" cellspacing="0" cellpadding="0" >
|
||||||
<form action="{{ getLink('account/logout') }}" method="post" >
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0px;">
|
<form action="{{ getLink('account/logout') }}" method="post" >
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.logout.html.twig') }}
|
{{ include('buttons.logout.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</td>
|
</td>
|
||||||
</tr>
|
</tr>
|
||||||
@ -59,13 +60,14 @@
|
|||||||
</table>
|
</table>
|
||||||
<div style="text-align:center">
|
<div style="text-align:center">
|
||||||
<table border="0" cellspacing="0" cellpadding="0" style="margin-left: auto; margin-right: auto;">
|
<table border="0" cellspacing="0" cellpadding="0" style="margin-left: auto; margin-right: auto;">
|
||||||
<form action="{{ getLink('account/register') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0;">
|
<form action="{{ getLink('account/register') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.register_account.html.twig') }}
|
{{ include('buttons.register_account.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
@ -94,13 +96,14 @@
|
|||||||
</table>
|
</table>
|
||||||
<div style="text-align:center">
|
<div style="text-align:center">
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<form action="{{ getLink('account/change-email') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0px;">
|
<form action="{{ getLink('account/change-email') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.edit.html.twig') }}
|
{{ include('buttons.edit.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
@ -177,26 +180,29 @@
|
|||||||
<tr>
|
<tr>
|
||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<form action="{{ getLink('account/change-password') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;" >
|
||||||
<td style="border:0px;" >
|
<form action="{{ getLink('account/change-password') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.change_password.html.twig') }}
|
{{ include('buttons.change_password.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</td>
|
</td>
|
||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<form action="{{ getLink('account/change-email') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0px;">
|
<form action="{{ getLink('account/change-email') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
|
|
||||||
<input type="hidden" name="newemail" value=""/>
|
<input type="hidden" name="newemail" value=""/>
|
||||||
<input type="hidden" name="newemaildate" value="0">
|
<input type="hidden" name="newemaildate" value="0">
|
||||||
{{ include('buttons.change_email.html.twig') }}
|
{{ include('buttons.change_email.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</td>
|
</td>
|
||||||
<td width="100%"></td>
|
<td width="100%"></td>
|
||||||
@ -204,13 +210,14 @@
|
|||||||
{% if recovery_key is empty %}
|
{% if recovery_key is empty %}
|
||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<form action="{{ getLink('account/register') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0px;">
|
<form action="{{ getLink('account/register') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.register_account.html.twig') }}
|
{{ include('buttons.register_account.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</td>
|
</td>
|
||||||
{% endif %}
|
{% endif %}
|
||||||
@ -258,13 +265,14 @@
|
|||||||
</td>
|
</td>
|
||||||
<td align=right>
|
<td align=right>
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<form action="{{ getLink('account/change-info') }}" method="post">
|
<tr>
|
||||||
<tr>
|
<td style="border:0;">
|
||||||
<td style="border:0px;">
|
<form action="{{ getLink('account/change-info') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.edit.html.twig') }}
|
{{ include('buttons.edit.html.twig') }}
|
||||||
</td>
|
</form>
|
||||||
</tr>
|
</td>
|
||||||
</form>
|
</tr>
|
||||||
</table>
|
</table>
|
||||||
</td>
|
</td>
|
||||||
</tr>
|
</tr>
|
||||||
@ -398,8 +406,9 @@
|
|||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0" >
|
<table border="0" cellspacing="0" cellpadding="0" >
|
||||||
<tr>
|
<tr>
|
||||||
<td style="border:0px;">
|
<td style="border:0;">
|
||||||
<form action="{{ getLink('account/characters/create') }}" method="post" >
|
<form action="{{ getLink('account/characters/create') }}" method="post" >
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.create_character.html.twig') }}
|
{{ include('buttons.create_character.html.twig') }}
|
||||||
</form>
|
</form>
|
||||||
</td>
|
</td>
|
||||||
@ -410,8 +419,9 @@
|
|||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0" >
|
<table border="0" cellspacing="0" cellpadding="0" >
|
||||||
<tr>
|
<tr>
|
||||||
<td style="border:0px;">
|
<td style="border:0;">
|
||||||
<form action="{{ getLink('account/characters/change-name') }}" method="post" >
|
<form action="{{ getLink('account/characters/change-name') }}" method="post" >
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.change_name.html.twig') }}
|
{{ include('buttons.change_name.html.twig') }}
|
||||||
</form>
|
</form>
|
||||||
</td>
|
</td>
|
||||||
@ -423,8 +433,9 @@
|
|||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0" >
|
<table border="0" cellspacing="0" cellpadding="0" >
|
||||||
<tr>
|
<tr>
|
||||||
<td style="border:0px;">
|
<td style="border:0;">
|
||||||
<form action="{{ getLink('account/characters/change-sex') }}" method="post">
|
<form action="{{ getLink('account/characters/change-sex') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.change_sex.html.twig') }}
|
{{ include('buttons.change_sex.html.twig') }}
|
||||||
</form>
|
</form>
|
||||||
</td>
|
</td>
|
||||||
@ -436,8 +447,9 @@
|
|||||||
<td>
|
<td>
|
||||||
<table border="0" cellspacing="0" cellpadding="0">
|
<table border="0" cellspacing="0" cellpadding="0">
|
||||||
<tr>
|
<tr>
|
||||||
<td style="border: 0px;">
|
<td style="border: 0;">
|
||||||
<form action="{{ getLink('account/characters/delete') }}" method="post">
|
<form action="{{ getLink('account/characters/delete') }}" method="post">
|
||||||
|
{{ csrf() }}
|
||||||
{{ include('buttons.delete_character.html.twig') }}
|
{{ include('buttons.delete_character.html.twig') }}
|
||||||
</form>
|
</form>
|
||||||
</td>
|
</td>
|
||||||
|
Loading…
x
Reference in New Issue
Block a user