From a06902335bb839e4909fb5d57d870a314f53c018 Mon Sep 17 00:00:00 2001 From: Aaron van Geffen Date: Sat, 11 Mar 2023 19:34:52 +0100 Subject: [PATCH] Manage{Tags,Users}: add call to resetSessionToken --- controllers/ManageTags.php | 2 ++ controllers/ManageUsers.php | 2 ++ 2 files changed, 4 insertions(+) diff --git a/controllers/ManageTags.php b/controllers/ManageTags.php index ff497801..26f2b490 100644 --- a/controllers/ManageTags.php +++ b/controllers/ManageTags.php @@ -14,6 +14,8 @@ class ManageTags extends HTMLController if (!Registry::get('user')->isAdmin()) throw new NotAllowedException(); + Session::resetSessionToken(); + $options = [ 'form' => [ 'action' => BASEURL . '/edittag/', diff --git a/controllers/ManageUsers.php b/controllers/ManageUsers.php index cf53e240..1be66a55 100644 --- a/controllers/ManageUsers.php +++ b/controllers/ManageUsers.php @@ -14,6 +14,8 @@ class ManageUsers extends HTMLController if (!Registry::get('user')->isAdmin()) throw new NotAllowedException(); + Session::resetSessionToken(); + $options = [ 'form' => [ 'action' => BASEURL . '/edituser/',