From e2ac053d2b9e9267ba0d5632b695d1136274d73f Mon Sep 17 00:00:00 2001 From: fr33domlover Date: Tue, 1 Sep 2020 14:11:47 +0000 Subject: [PATCH] No CSRF token check for Dvara routes, they do it for themselves when needed --- src/Vervis/Foundation.hs | 1 + 1 file changed, 1 insertion(+) diff --git a/src/Vervis/Foundation.hs b/src/Vervis/Foundation.hs index c155ea3..1f83df4 100644 --- a/src/Vervis/Foundation.hs +++ b/src/Vervis/Foundation.hs @@ -210,6 +210,7 @@ instance Yesod App where Just (ProjectInboxR _ _) -> return False Just (RepoInboxR _ _) -> return False Just (GitUploadRequestR _ _) -> return False + Just (DvaraR _) -> return False Just r -> isWriteRequest r ) defaultCsrfHeaderName