[pve-devel] applied: [PATCH manager] fix #3389: Skip CSRF token check also for API tokens on file upload

Thomas Lamprecht t.lamprecht at proxmox.com
Thu Apr 22 10:03:07 CEST 2021


On 21.04.21 13:59, Lorenz Stechauner wrote:
> On file upload, the check for CSRF tokens was already skipped
> when performing user authentication.This now happens for API
> tokens also.
> 
> Signed-off-by: Lorenz Stechauner <l.stechauner at proxmox.com>
> ---
>  PVE/HTTPServer.pm | 34 +++++++++++++++++-----------------
>  1 file changed, 17 insertions(+), 17 deletions(-)
> 
>

applied, thanks! `git show -w` really helped reviewing that one ;-)




More information about the pve-devel mailing list