refactor(actions): centralize POST/CSRF guard flow
This commit is contained in:
@@ -18,8 +18,11 @@ if (!$decision->isAllowed()) {
|
||||
Guard::deny();
|
||||
}
|
||||
|
||||
if ((requestInput()->method()) !== 'POST') {
|
||||
Router::redirect('admin/settings');
|
||||
if (!actionRequirePost('admin/settings')) {
|
||||
return;
|
||||
}
|
||||
|
||||
if (!actionRequireCsrf('admin/settings', 'admin/settings', 'logo_upload')) {
|
||||
return;
|
||||
}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user