Skip to content

Commit

Permalink
If tokens aren't present at all, refuse.
Browse files Browse the repository at this point in the history
  • Loading branch information
@cmeiklejohn
cmeiklejohn committed Jul 12, 2012
1 parent 5b1e8b5 commit eaceaf5
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions src/riak_control_security.erl
View file
Expand Up @@ -146,6 +146,8 @@ validate_csrf_token(RD, Ctx) ->
BodyToken = proplists:get_value("csrf_token", Body),
CookieToken = get_csrf_token(RD, Ctx),
case BodyToken of
undefined ->
false;
CookieToken ->
true;
_ ->
Expand Down

0 comments on commit eaceaf5

Please sign in to comment.