Use CSRF on all other location.

Signed-off-by: crynobone <crynobone@gmail.com>

src/Foundation/Routing/AccountController.php

@@ -28,6 +28,7 @@ public function __construct(AccountProcessor $processor)
     protected function setupFilters()
     {
         $this->beforeFilter('orchestra.auth');
+        $this->beforeFilter('orchestra.csrf', array('on' => 'post'));
     }
 
     /**

src/Foundation/Routing/ExtensionsController.php

@@ -30,6 +30,7 @@ protected function setupFilters()
     {
         $this->beforeFilter('orchestra.auth');
         $this->beforeFilter('orchestra.manage');
+        $this->beforeFilter('orchestra.csrf', array('on' => 'post'));
     }
 
     /**

src/Foundation/Routing/PublisherController.php

@@ -27,6 +27,7 @@ public function __construct(PublisherProcessor $processor)
     protected function setupFilters()
     {
         $this->beforeFilter('orchestra.auth');
+        $this->beforeFilter('orchestra.csrf', array('on' => 'post'));
     }
 
     /**

src/Foundation/Routing/ResourcesController.php

@@ -42,8 +42,7 @@ public function index()
     /**
      * Add a drop-in resource anywhere on Orchestra
      *
-     * @param  string $request
-     * @param  array  $arguments
+     * @param  string  $request
      * @return Response
      */
     public function call($request)

src/Foundation/Routing/SettingsController.php

@@ -28,6 +28,7 @@ protected function setupFilters()
     {
         $this->beforeFilter('orchestra.auth');
         $this->beforeFilter('orchestra.manage');
+        $this->beforeFilter('orchestra.csrf', array('on' => 'post'));
     }
 
     /**

src/Foundation/Routing/UsersController.php

@@ -28,6 +28,7 @@ protected function setupFilters()
     {
         $this->beforeFilter('orchestra.auth');
         $this->beforeFilter('orchestra.manage:users');
+        $this->beforeFilter('orchestra.csrf', array('on' => 'post'));
     }
 
     /**