Parent5446 has uploaded a new change for review. Change subject: Allow edit tokens for anonymous users. ......................................................................
Allow edit tokens for anonymous users. Removed if statement in User::getEditToken so that anonymous users can still have edit tokens. Maybe I'm missing something, but there doesn't seem to be any reason for anonymous users to not be protected from CSRF attacks. Change-Id: I5f34789d81411f1a476c75baa441b4afdf5949fc --- M includes/User.php 1 file changed, 9 insertions(+), 12 deletions(-) git pull ssh://gerrit.wikimedia.org:29418/mediawiki/core refs/changes/61/21761/1 -- To view, visit https://gerrit.wikimedia.org/r/21761 To unsubscribe, visit https://gerrit.wikimedia.org/r/settings Gerrit-MessageType: newchange Gerrit-Change-Id: I5f34789d81411f1a476c75baa441b4afdf5949fc Gerrit-PatchSet: 1 Gerrit-Project: mediawiki/core Gerrit-Branch: master Gerrit-Owner: Parent5446 <[email protected]> _______________________________________________ MediaWiki-commits mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
