Permalink
Browse files

admin/module.php is now using sesskey.

  • Loading branch information...
1 parent e857057 commit 215241b0f092c1b0a8523aed85484f1dbe2439d5 stronk7 committed Oct 3, 2004
View
@@ -13,6 +13,9 @@
error("Site isn't defined!");
}
+ if (!confirm_sesskey()) {
+ error(get_string('confirmsesskeybad', 'error'));
+ }
/// If data submitted, then process and store.
View
@@ -165,7 +165,7 @@
$delete = "<a href=\"modules.php?delete=$module->name\">$strdelete</a>";
if (file_exists("$CFG->dirroot/mod/$module->name/config.html")) {
- $settings = "<a href=\"module.php?module=$module->name\">$strsettings</a>";
+ $settings = "<a href=\"module.php?module=$module->name&sesskey=$USER->sesskey\">$strsettings</a>";
} else {
$settings = "";
}
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>
View
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
View
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>
View
@@ -3,6 +3,7 @@
$no = get_string("no");
?>
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>
View
@@ -32,7 +32,7 @@
}
update_record("glossary_formats",$displayformat);
}
- redirect("../../admin/module.php?module=glossary#formats");
+ redirect("../../admin/module.php?sesskey=$USER->sesskey&module=glossary#formats");
die;
} elseif ( $mode == 'edit' and $form) {
@@ -44,7 +44,7 @@
$displayformat->sortorder = $form->sortorder;
update_record("glossary_formats",$displayformat);
- redirect("../../admin/module.php?module=glossary#formats");
+ redirect("../../admin/module.php?sesskey=$USER->sesskey&module=glossary#formats");
die;
}
@@ -57,7 +57,7 @@
print_header("$strmodulename: $strconfiguration", $site->fullname,
"<a href=\"../../admin/index.php\">$stradmin</a> -> ".
"<a href=\"../../admin/configure.php\">$strconfiguration</a> -> ".
- "<a href=\"../../admin/modules.php\">$strmanagemodules</a> -> <a href=\"../../admin/module.php?module=glossary\">$strmodulename</a> -> $strdisplayformats");
+ "<a href=\"../../admin/modules.php\">$strmanagemodules</a> -> <a href=\"../../admin/module.php?module=glossary&sesskey=$USER->sesskey\">$strmodulename</a> -> $strdisplayformats");
print_heading($strmodulename . ': ' . get_string("displayformats","glossary"));
View
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>
View
@@ -1,4 +1,5 @@
<form method="post" action="module.php" name="form">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
<table cellpadding=9 cellspacing=0 >
<tr valign=top>

0 comments on commit 215241b

Please sign in to comment.