From 0ddf59aeb4ff1caf7d578336f1493aec09f385a6 Mon Sep 17 00:00:00 2001
From: thomascube <thomas@roundcube.net>
Date: Fri, 07 Aug 2009 11:37:15 -0400
Subject: [PATCH] Fix spell check (#1486036)

---
 index.php |    4 +++-
 1 files changed, 3 insertions(+), 1 deletions(-)

diff --git a/index.php b/index.php
index e6fd10a..8e2cafe 100644
--- a/index.php
+++ b/index.php
@@ -142,6 +142,8 @@
   }
 }
 
+// don't check for valid request tokens in these actions
+$request_check_whitelist = array('login'=>1, 'spell'=>1);
 
 // check client X-header to verify request origin
 if ($OUTPUT->ajax_call) {
@@ -151,7 +153,7 @@
   }
 }
 // check request token in POST form submissions
-else if (!empty($_POST) && $RCMAIL->action != 'login' && !$RCMAIL->check_request()) {
+else if (!empty($_POST) && !$request_check_whitelist[$RCMAIL->action] && !$RCMAIL->check_request()) {
   $OUTPUT->show_message('invalidrequest', 'error');
   $OUTPUT->send($RCMAIL->task);
 }

--
Gitblit v1.9.1