makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-28 14:18:52 +00:00
Code Issues Projects Releases Packages Wiki Activity

[ticket/13052] Use request class instead of $_POST and request_var()

Browse source 
PHPBB3-13052
This commit is contained in:
Joas Schilling 2014-09-09 19:49:17 +02:00
parent ad8d53af27
commit ef61deb132
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
phpBB/includes/functions.php
View file

@ -2584,15 +2584,15 @@ function add_form_key($form_name)
*/
function check_form_key($form_name)
{
global $config, $user;
global $config, $request, $user;
// we enforce a minimum value of half a minute here.
$timespan = ($config['form_token_lifetime'] == -1) ? -1 : max(30, $config['form_token_lifetime']);
if (isset($_POST['creation_time']) && isset($_POST['form_token']))
if ($request->is_set_post('creation_time') && $request->is_set_post('form_token'))
{
$creation_time = abs(request_var('creation_time', 0));
$token = request_var('form_token', '');
$creation_time = abs($request->variable('creation_time', 0));
$token = $request->variable('form_token', '');
$diff = time() - $creation_time;