diff options
| author | thomascube <thomas@roundcube.net> | 2009-07-21 16:02:33 +0000 |
|---|---|---|
| committer | thomascube <thomas@roundcube.net> | 2009-07-21 16:02:33 +0000 |
| commit | 5499336feff22f682448dd99cc00a9b36701fcd1 (patch) | |
| tree | 84c0fcf73be4f5c51f58c9656aaaefecd3530d9d /program/js/app.js | |
| parent | 61e96cd1f9b32345fd15ae826674f38f0495baa3 (diff) | |
Use global request tokens and automatically protect all POST requests
Diffstat (limited to 'program/js/app.js')
| -rw-r--r-- | program/js/app.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/program/js/app.js b/program/js/app.js index 332ee877c..4ce354665 100644 --- a/program/js/app.js +++ b/program/js/app.js @@ -55,7 +55,7 @@ function rcube_webmail() // set jQuery ajax options jQuery.ajaxSetup({ cache:false, error:function(request, status, err){ ref.http_error(request, status, err); }, - beforeSend:function(xmlhttp){ xmlhttp.setRequestHeader('X-RoundCube-Referer', bw.get_cookie('roundcube_sessid')); } + beforeSend:function(xmlhttp){ xmlhttp.setRequestHeader('X-RoundCube-Request', ref.env.request_token); } }); // set environment variable(s) |