From ca01e25772730cab0117bca0e514140e6c5f67d1 Mon Sep 17 00:00:00 2001
From: Aleksander Machniak <alec@alec.pl>
Date: Sat, 5 Jul 2014 12:33:03 +0200
Subject: Fix security issue in delete-response action - allow only ajax
 request. Unify code for identities and responses deletion.

---
 program/steps/settings/func.inc | 1 +
 1 file changed, 1 insertion(+)

(limited to 'program/steps/settings/func.inc')

diff --git a/program/steps/settings/func.inc b/program/steps/settings/func.inc
index 40b70b119..8a96ada6b 100644
--- a/program/steps/settings/func.inc
+++ b/program/steps/settings/func.inc
@@ -44,6 +44,7 @@ $RCMAIL->register_action_map(array(
     'add-response'  => 'edit_response.inc',
     'save-response' => 'edit_response.inc',
     'delete-response' => 'responses.inc',
+    'delete-identity' => 'identities.inc',
     'upload-display'  => 'upload.inc',
 ));
 
-- 
cgit v1.2.3