mirror of https://gitlab.com/tildes/tildes.git
Browse Source
Using GET for logging out isn't a very good idea, and can result in external sites being able to log users out by including things like <img src="https://tildes.net/logout"> This changes it to require a POST, and uses a form with its submit button re-styled to look like the other text links in the menu.merge-requests/55/head
Deimos
6 years ago
4 changed files with 24 additions and 3 deletions
Loading…
Reference in new issue