[Koha-bugs] [Bug 36195] CSRF - testing reports
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Mar 12 16:35:03 CET 2024
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=36195
Katrin Fischer <katrin.fischer at bsz-bw.de> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #163050|0 |1
is obsolete| |
--- Comment #8 from Katrin Fischer <katrin.fischer at bsz-bw.de> ---
Comment on attachment 163050
--> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=163050
Bug 36195: Replace POST in itemsearch.tt with GET
>From 28f445587ee8e7f70852367f2c9e37ae2c4ebcea Mon Sep 17 00:00:00 2001
>From: Brendan Lawlor <blawlor at clamsnet.org>
>Date: Mon, 11 Mar 2024 17:32:08 +0000
>Subject: [PATCH] Bug 36195: Replace POST in itemsearch.tt with GET
>
>We retrieve a list of records for DT, it does not need to be a POST
>request.
>
>Test plan:
>
>1. Try an item search
>2. The page loads but pops an alert that says "403: Forbidden" and table stays empty
>3. Apply patch
>4. Try an item search again and the table loads results
>---
> koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/itemsearch.tt | 1 -
> 1 file changed, 1 deletion(-)
>
>diff --git a/koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/itemsearch.tt b/koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/itemsearch.tt
>index b3a89e508c..db703115b3 100644
>--- a/koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/itemsearch.tt
>+++ b/koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/itemsearch.tt
>@@ -478,7 +478,6 @@
> "processing": true,
> "ajax": {
> url: '/cgi-bin/koha/catalogue/itemsearch.pl',
>- type: 'POST',
> data: function ( d ) {
> for (i in params) {
> d[params[i].name] = params[i].value;
>--
>2.30.2
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list