Add CSRF input to Account Delete form.
This commit is contained in:
Sahat Yalkabov
@ -56,7 +56,7 @@ block content
|
|||||||
.col-sm-4
|
.col-sm-4
|
||||||
input.form-control(type='password', name='confirmPassword', id='confirmPassword')
|
input.form-control(type='password', name='confirmPassword', id='confirmPassword')
|
||||||
.form-group
|
.form-group
|
||||||
input.form-control(type='hidden', name='_csrf', value=token)
|
input.form-control(type='hidden', name='_csrf', value=token)
|
||||||
.form-group
|
.form-group
|
||||||
.col-sm-offset-3.col-sm-4
|
.col-sm-offset-3.col-sm-4
|
||||||
button.btn.btn.btn-primary(type='submit')
|
button.btn.btn.btn-primary(type='submit')
|
||||||
@ -68,6 +68,7 @@ block content
|
|||||||
|
|
||||||
p You can delete your account, but keep in mind this action is irreversible.
|
p You can delete your account, but keep in mind this action is irreversible.
|
||||||
form(action='/account/delete', method='POST')
|
form(action='/account/delete', method='POST')
|
||||||
|
input(type='hidden', name='_csrf', value=token)
|
||||||
button.btn.btn-danger(type='submit')
|
button.btn.btn-danger(type='submit')
|
||||||
i.fa.fa-trash-o
|
i.fa.fa-trash-o
|
||||||
| Delete my account
|
| Delete my account
|
||||||
|
|||||||
Reference in New Issue
Block a user