Skip to content
This repository
Browse code

Removing _Token from request data.

It is not used outside the component and could possibly affect Model::save().
Fixes #2256

Signed-off-by: mark_story <mark@mark-story.com>
  • Loading branch information...
commit 2bb4ed01be3e5cd71e1cf142710ef748eca436c5 1 parent 6e4493c
ceeram authored November 16, 2011 markstory committed November 15, 2011
3  lib/Cake/Controller/Component/SecurityComponent.php
@@ -208,6 +208,9 @@ public function startup($controller) {
208 208
 			}
209 209
 		}
210 210
 		$this->_generateToken($controller);
  211
+		if ($isPost) {
  212
+			unset($controller->request->data['_Token']);
  213
+		}
211 214
 	}
212 215
 
213 216
 /**

0 notes on commit 2bb4ed0

Please sign in to comment.
Something went wrong with that request. Please try again.