cyberes
/
ProtectedContactPage
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

* Make $wgUser->editToken() work for either logged-in or logged-out users. 

* Fix escaping of edit tokens, removed FIXME note.
* Added + to EDIT_TOKEN_SUFFIX on report of broken proxy from mutante
* Two random minor changes
This commit is contained in:
Tim Starling 2007-06-23 10:15:10 +00:00
parent 7ec04c41b7
commit 4750b687d1
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
SpecialContact.php
View File

@ -144,6 +144,7 @@ class EmailContactForm {
$titleObj = SpecialPage::getTitleFor( "Contact" );
$action = $titleObj->escapeLocalURL( "action=submit" );
$token = $wgUser->isAnon() ? EDIT_TOKEN_SUFFIX : $wgUser->editToken(); //this kind of sucks, really...
$token = htmlspecialchars( $token );
$wgOut->addHTML( "
<form id=\"emailuser\" method=\"post\" action=\"{$action}\">