From a06902335bb839e4909fb5d57d870a314f53c018 Mon Sep 17 00:00:00 2001
From: Aaron van Geffen <aaron@aaronweb.net>
Date: Sat, 11 Mar 2023 19:34:52 +0100
Subject: [PATCH] Manage{Tags,Users}: add call to resetSessionToken

---
 controllers/ManageTags.php  | 2 ++
 controllers/ManageUsers.php | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/controllers/ManageTags.php b/controllers/ManageTags.php
index ff49780..26f2b49 100644
--- a/controllers/ManageTags.php
+++ b/controllers/ManageTags.php
@@ -14,6 +14,8 @@ class ManageTags extends HTMLController
 		if (!Registry::get('user')->isAdmin())
 			throw new NotAllowedException();
 
+		Session::resetSessionToken();
+
 		$options = [
 			'form' => [
 				'action' => BASEURL . '/edittag/',
diff --git a/controllers/ManageUsers.php b/controllers/ManageUsers.php
index cf53e24..1be66a5 100644
--- a/controllers/ManageUsers.php
+++ b/controllers/ManageUsers.php
@@ -14,6 +14,8 @@ class ManageUsers extends HTMLController
 		if (!Registry::get('user')->isAdmin())
 			throw new NotAllowedException();
 
+		Session::resetSessionToken();
+
 		$options = [
 			'form' => [
 				'action' => BASEURL . '/edituser/',