Mirrors/gitea
0
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2026-05-14 00:01:05 +02:00
Code Issues Activity

Remove CSRF tokens

Browse Source
This commit is contained in:
Eric Lesiuta 2026-05-08 00:34:07 -04:00
parent 03495840d0
commit c288e32ee0
No known key found for this signature in database
2 changed files with 0 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
templates/admin/user/sessions.tmpl
View File

@ -6,7 +6,6 @@
<div class="ui right">
{{if gt .ActiveCount 0}}
<form class="tw-inline" action="{{AppSubUrl}}/-/admin/users/{{.User.ID}}/sessions/revoke_all" method="post">
{{.CsrfTokenHtml}}
<button class="ui red tiny button">{{ctx.Locale.Tr "admin.settings.sessions.revoke_all"}}</button>
</form>
{{end}}
@ -48,7 +47,6 @@
{{if not .LogoutUnix}}
<div class="flex-item-trailing">
<form action="{{AppSubUrl}}/-/admin/users/{{$.User.ID}}/sessions/revoke" method="post">
{{$.CsrfTokenHtml}}
<input type="hidden" name="session_id" value="{{.ID}}">
<button class="ui red tiny button">{{ctx.Locale.Tr "settings.sessions.revoke"}}</button>
</form>

2
templates/user/settings/security/sessions.tmpl
View File

@ -6,7 +6,6 @@
{{if gt .OtherActiveCount 0}}
<div class="ui right">
<form class="tw-inline" action="{{AppSubUrl}}/user/settings/security/sessions/revoke_all" method="post">
{{.CsrfTokenHtml}}
<button class="ui red tiny button">{{ctx.Locale.Tr "settings.sessions.revoke_all"}}</button>
</form>
</div>
@ -49,7 +48,6 @@
{{if and (not .LogoutUnix) (ne .ID $.CurrentSessionID)}}
<div class="flex-item-trailing">
<form action="{{AppSubUrl}}/user/settings/security/sessions/revoke" method="post">
{{$.CsrfTokenHtml}}
<input type="hidden" name="session_id" value="{{.ID}}">
<button class="ui red tiny button">{{ctx.Locale.Tr "settings.sessions.revoke"}}</button>
</form>