diff options
author | Andrew Dolgov <[email protected]> | 2020-09-15 16:59:11 +0300 |
---|---|---|
committer | Andrew Dolgov <[email protected]> | 2020-09-15 16:59:11 +0300 |
commit | 154417d80b9f1ffb9d5d9fcbe2e6ab1dd15159bd (patch) | |
tree | 184c060c78dadf9fc50b6512a74ec31789d67162 /backend.php | |
parent | cbcb10a272ef8c46360da301e1bbbd4979d6f106 (diff) |
public/logout: require valid CSRF token
Diffstat (limited to 'backend.php')
-rw-r--r-- | backend.php | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/backend.php b/backend.php index 1bbeec2bd..8cdeafdb7 100644 --- a/backend.php +++ b/backend.php @@ -12,8 +12,7 @@ /* Public calls compatibility shim */ - $public_calls = array("globalUpdateFeeds", "rss", "getUnread", "getProfiles", "share", - "fbexport", "logout", "pubsub"); + $public_calls = array("globalUpdateFeeds", "rss", "getUnread", "getProfiles", "share"); if (array_search($op, $public_calls) !== false) { header("Location: public.php?" . $_SERVER['QUERY_STRING']); |