]> git.wh0rd.org - tt-rss.git/blobdiff - classes/pref_feeds.php
git.wh0rd.org / tt-rss.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
experimental CSRF protection
[tt-rss.git] / classes / pref_feeds.php
diff --git a/classes/pref_feeds.php b/classes/pref_feeds.php
index 5df5eb939ebc0933ccc8f787d6421ffb86b59727..b83abd789ac15679fdb67bddf501d393e38630a0 100644 (file)
--- a/classes/pref_feeds.php
+++ b/classes/pref_feeds.php
@@ -1,5 +1,12 @@
 <?php
 class Pref_Feeds extends Protected_Handler {
+
+       function csrf_ignore($method) {
+               $csrf_ignored = array("index", "getfeedtree", "add", "editcats", "editfeed");
+
+               return array_search($method, $csrf_ignored) !== false;
+       }
+
        function batch_edit_cbox($elem, $label = false) {
                print "<input type=\"checkbox\" title=\"".__("Check to enable field")."\"
                        onchange=\"dijit.byId('feedEditDlg').toggleField(this, '$elem', '$label')\">";
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/