fergalmoran/chrometophone
1
0
Fork 0
mirror of https://github.com/fergalmoran/chrometophone.git synced 2025-12-30 13:39:57 +00:00
Code Issues 265 Packages Projects Releases Wiki Activity

Turn on XSRF for Firefox

Browse Source
This commit is contained in:
burke.davey
2010-06-17 22:44:43 +00:00
parent 9d7e78abea
commit 11e794d477
1 changed files with 2 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
appengine/src/com/google/android/chrometophone/server/SendServlet.java
View File

@@ -52,12 +52,9 @@ public class SendServlet extends HttpServlet {
resp.setContentType("text/plain"); resp.setContentType("text/plain");
// Basic XSRF protection // Basic XSRF protection
if (req.getHeader("X-Extension") == null && if (req.getHeader("X-Extension") == null) {
req.getHeader("User-Agent").indexOf("Firefox") == -1) { // TODO: Remove exception for Firefox
resp.setStatus(400); resp.setStatus(400);
resp.getWriter().println(ERROR_STATUS + " You are using an old version of the extension that is no " + resp.getWriter().println(ERROR_STATUS + " - Please upgrade your extension");
"longer supported. Please install v0.2 or later of the extension " +
"from http://code.google.com/p/chrometophone.");
log.warning("Missing X-Extension header"); log.warning("Missing X-Extension header");
resp.setStatus(400); resp.setStatus(400);
return; return;