From 1143ac4320616c4d512b31b5d18e3eb7708bd8fd Mon Sep 17 00:00:00 2001
From: Sahat Yalkabov <sakhat@gmail.com>
Date: Fri, 7 Feb 2014 23:41:15 -0500
Subject: [PATCH] Add CSRF input to Account Delete form.

---
 views/account/profile.jade | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/views/account/profile.jade b/views/account/profile.jade
index b00cd9dcf9..7c292916be 100644
--- a/views/account/profile.jade
+++ b/views/account/profile.jade
@@ -56,7 +56,7 @@ block content
       .col-sm-4
         input.form-control(type='password', name='confirmPassword', id='confirmPassword')
     .form-group
-        input.form-control(type='hidden', name='_csrf', value=token) 
+        input.form-control(type='hidden', name='_csrf', value=token)
     .form-group
       .col-sm-offset-3.col-sm-4
         button.btn.btn.btn-primary(type='submit')
@@ -68,6 +68,7 @@ block content
 
   p You can delete your account, but keep in mind this action is irreversible.
   form(action='/account/delete', method='POST')
+    input(type='hidden', name='_csrf', value=token)
     button.btn.btn-danger(type='submit')
       i.fa.fa-trash-o
       | Delete my account