Remove csrfToken from secured fields.

It is validated separately and causes validation errors right now.
cakephp · Mar 11, 2014 · 360fe38 · 360fe38
1 parent 4a3cbb1
commit 360fe38
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/Controller/Component/SecurityComponent.php b/src/Controller/Component/SecurityComponent.php
@@ -305,7 +305,7 @@ protected function _validatePost(Controller $controller) {
 		if (strpos($token, ':')) {
 			list($token, $locked) = explode(':', $token, 2);
 		}
-		unset($check['_Token']);
+		unset($check['_Token'], $check['_csrfToken']);
 
 		$locked = explode('|', $locked);
 		$unlocked = explode('|', $unlocked);