Added CSRF protection to settings

2020-08-31 18:34:09 +01:00 · 2020-08-31 18:34:09 +01:00 · 42de40e320
parent faa3a65e2b
commit 42de40e320
1 changed files with 1 additions and 0 deletions
--- a/resources/views/dashboard/administration/settings.blade.php
+++ b/resources/views/dashboard/administration/settings.blade.php
@ -43,6 +43,7 @@

                <div class="card-body">
                    <form name="settings" id="settings" method="post" action="{{route('saveSettings')}}">
+                        @csrf
                        @foreach($options as $option)
                            <div class="form-group form-check">
                                <!-- Unchecked checkbox hack: This only works for serverside languages that process the last duplicate element, since the browser sends both the hidden and checkbox values. -->