Permalink
Browse files

If tokens aren't present at all, refuse.

  • Loading branch information...
1 parent 5b1e8b5 commit eaceaf57ca9270f328d69a59172bffc9dfcb111d @cmeiklejohn cmeiklejohn committed Jul 12, 2012
Showing with 2 additions and 0 deletions.
  1. +2 −0 src/riak_control_security.erl
@@ -146,6 +146,8 @@ validate_csrf_token(RD, Ctx) ->
BodyToken = proplists:get_value("csrf_token", Body),
CookieToken = get_csrf_token(RD, Ctx),
case BodyToken of
+ undefined ->
+ false;
CookieToken ->
true;
_ ->

0 comments on commit eaceaf5

Please sign in to comment.