mirror of
https://github.com/MarijnDoeve/TijdVoorDeTest.git
synced 2026-07-06 07:30:17 +02:00
Add CSRF token validation across backoffice forms
- Added CSRF validations to candidate correction, penalty, answer saving, and elimination forms. - Updated corresponding Twig templates to include CSRF token inputs. - Adjusted column count in `tab_result` template to maintain layout consistency.
This commit is contained in:
@@ -40,6 +40,10 @@ final class PrepareEliminationController extends AbstractController
|
||||
public function viewElimination(Elimination $elimination, Request $request): Response
|
||||
{
|
||||
if ('POST' === $request->getMethod()) {
|
||||
if (!$this->isCsrfTokenValid('prepare_elimination', $request->request->get('_token'))) {
|
||||
throw $this->createAccessDeniedException();
|
||||
}
|
||||
|
||||
$elimination->updateFromInputBag($request->request);
|
||||
$this->em->flush();
|
||||
|
||||
|
||||
Reference in New Issue
Block a user