Don't do csrf for view_video

This commit is contained in:
Isaac Connor 2017-06-26 11:48:26 -04:00
parent 52f1e2d235
commit d97d156efb
1 changed files with 1 additions and 1 deletions

View File

@ -177,7 +177,7 @@ isset($view) || $view = NULL;
isset($request) || $request = NULL;
isset($action) || $action = NULL;
if ( ZM_ENABLE_CSRF_MAGIC && $action != 'login' ) {
if ( ZM_ENABLE_CSRF_MAGIC && $action != 'login' && $action != 'view_video' ) {
Logger::Debug("Calling csrf_check with the following values: \$request = \"$request\", \$view = \"$view\", \$action = \"$action\"");
csrf_check();
}