From 9f20c8011a80d74edb740081cd96388bb6a967e6 Mon Sep 17 00:00:00 2001
From: Andrey Andreev <narf@devilix.net>
Date: Wed, 14 Dec 2016 18:41:52 +0200
Subject: Move csrf_verify() call out of CI_Input

---
 system/core/Input.php | 20 +-------------------
 1 file changed, 1 insertion(+), 19 deletions(-)

(limited to 'system/core/Input.php')

diff --git a/system/core/Input.php b/system/core/Input.php
index d881e253d..ab60e45c3 100644
--- a/system/core/Input.php
+++ b/system/core/Input.php
@@ -57,16 +57,6 @@ class CI_Input {
 	 */
 	protected $ip_address = FALSE;
 
-	/**
-	 * Enable CSRF flag
-	 *
-	 * Enables a CSRF cookie token to be set.
-	 * Set automatically based on config setting.
-	 *
-	 * @var	bool
-	 */
-	protected $_enable_csrf = FALSE;
-
 	/**
 	 * List of all HTTP request headers
 	 *
@@ -115,15 +105,7 @@ class CI_Input {
 	 */
 	public function __construct(CI_Security &$security)
 	{
-		$this->_enable_csrf = (config_item('csrf_protection') === TRUE);
-		$this->security     = $security;
-
-		// CSRF Protection check
-		if ($this->_enable_csrf === TRUE && ! is_cli())
-		{
-			$this->security->csrf_verify();
-		}
-
+		$this->security = $security;
 		log_message('info', 'Input Class Initialized');
 	}
 
-- 
cgit v1.2.3-24-g4f1b