From e4452f0f314797ed0a36deb1eeafa7a830987519 Mon Sep 17 00:00:00 2001
From: Florian Pritz <bluewind@xinu.at>
Date: Thu, 5 Sep 2013 18:02:00 +0200
Subject: Disable CSRF for cli clients on user/create_apikey

Signed-off-by: Florian Pritz <bluewind@xinu.at>
---
 application/core/MY_Controller.php | 1 +
 1 file changed, 1 insertion(+)

(limited to 'application/core')

diff --git a/application/core/MY_Controller.php b/application/core/MY_Controller.php
index b3a561032..3b928945b 100644
--- a/application/core/MY_Controller.php
+++ b/application/core/MY_Controller.php
@@ -74,6 +74,7 @@ class MY_Controller extends CI_Controller {
 				"file/do_delete",
 				"file/delete",
 				"file/upload_history",
+				"user/create_apikey",
 			),
 		);
 		if (in_array($uri_start, $csrf_whitelisted_handlers["always"])) {
-- 
cgit v1.2.3-24-g4f1b