From 826ceecab857d72d7cf8b2a347537f4f9b4bdd15 Mon Sep 17 00:00:00 2001 From: thomascube <thomas@roundcube.net> Date: Fri, 24 Jul 2009 05:00:12 -0400 Subject: [PATCH] Don't check request token on login --- index.php | 4 ++-- 1 files changed, 2 insertions(+), 2 deletions(-) diff --git a/index.php b/index.php index a6a7d7d..3bb1227 100644 --- a/index.php +++ b/index.php @@ -2,7 +2,7 @@ /* +-------------------------------------------------------------------------+ | RoundCube Webmail IMAP Client | - | Version 0.3-20090721 | + | Version 0.3-20090724 | | | | Copyright (C) 2005-2009, RoundCube Dev. - Switzerland | | | @@ -149,7 +149,7 @@ } } // check request token in POST form submissions -else if (!empty($_POST) && !$RCMAIL->check_request()) { +else if (!empty($_POST) && $RCMAIL->action != 'login' && !$RCMAIL->check_request()) { $OUTPUT->show_message('invalidrequest', 'error'); $OUTPUT->send($RCMAIL->task); } -- Gitblit v1.9.1