summaryrefslogtreecommitdiffstats
path: root/template
diff options
context:
space:
mode:
authorMax Kanat-Alexander <mkanat@bugzilla.org>2010-10-23 01:56:55 +0200
committerMax Kanat-Alexander <mkanat@bugzilla.org>2010-10-23 01:56:55 +0200
commit3857fbed90c25c74b7fd095c469dcdb4d98c0cb9 (patch)
tree5de9e49898578a48f0d5edef230109422774ca0e /template
parent4b2ebcb3563b85180485c94eaf9a0ed9d8110f6f (diff)
downloadbugzilla-3857fbed90c25c74b7fd095c469dcdb4d98c0cb9.tar.gz
bugzilla-3857fbed90c25c74b7fd095c469dcdb4d98c0cb9.tar.xz
Bug 593138: When confirming a CSRF violation (the confirm-action page),
include an HTML comment describing the exact violation that occurred, so that screen-scrapers can know what violation they hit. r=mkanat, a=mkanat
Diffstat (limited to 'template')
-rw-r--r--template/en/default/global/confirm-action.html.tmpl1
1 files changed, 1 insertions, 0 deletions
diff --git a/template/en/default/global/confirm-action.html.tmpl b/template/en/default/global/confirm-action.html.tmpl
index e57a83c28..9f9be31db 100644
--- a/template/en/default/global/confirm-action.html.tmpl
+++ b/template/en/default/global/confirm-action.html.tmpl
@@ -27,6 +27,7 @@
style_urls = ['skins/standard/global.css'] %]
<div class="throw_error">
+<!--reason=[%reason FILTER html %]-->
[% IF reason == "expired_token" %]
Your changes have been rejected because you exceeded the time limit
of [% constants.MAX_TOKEN_AGE FILTER html %] days before submitting your