https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=42730 Bug ID: 42730 Summary: Migrate place_booking.js $.post to api-client.js Initiative type: --- Sponsorship --- status: Product: Koha Version: Main Hardware: All OS: All Status: NEW Severity: normal Priority: P5 - low Component: REST API Assignee: koha-bugs@lists.koha-community.org Reporter: tomascohen@gmail.com QA Contact: testopia@bugs.koha-community.org CC: tomascohen@gmail.com place_booking.js (line 2357) uses $.post() directly to call the REST API. This should be migrated to use api-client.js which already handles CSRF token injection. This is a prerequisite for enforcing CSRF protection on the REST API (Bug 34451). -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.