dbxe
/
fusionpbx
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Call Routing: Token integration.

This commit is contained in:
Nate 2019-09-17 22:08:39 -06:00
parent 77e7bcd5f8
commit fcf001aade
1 changed files with 26 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
app/calls/call_edit.php
View File

@ -140,19 +140,27 @@
$dnd_enabled = $_POST["dnd_enabled"]; $dnd_enabled = $_POST["dnd_enabled"];
} }
//check for all required data //validate the token
if (strlen($msg) > 0 && strlen($_POST["persistformvar"]) == 0) { $token = new token;
require_once "resources/header.php"; if (!$token->validate($_SERVER['PHP_SELF'])) {
require_once "resources/persist_form_var.php"; message::add($text['message-invalid_token'],'negative');
echo "<div align='center'>\n"; header('Location: calls.php');
echo "<table><tr><td>\n"; exit;
echo $msg."<br />"; }
echo "</td></tr></table>\n";
persistformvar($_POST); //check for all required data
echo "</div>\n"; if (strlen($msg) > 0 && strlen($_POST["persistformvar"]) == 0) {
require_once "resources/footer.php"; require_once "resources/header.php";
return; require_once "resources/persist_form_var.php";
} echo "<div align='center'>\n";
echo "<table><tr><td>\n";
echo $msg."<br />";
echo "</td></tr></table>\n";
persistformvar($_POST);
echo "</div>\n";
require_once "resources/footer.php";
return;
}
//include the classes //include the classes
include "resources/classes/call_forward.php"; include "resources/classes/call_forward.php";
@ -465,6 +473,10 @@
echo "});\n"; echo "});\n";
echo "</script>\n"; echo "</script>\n";
//create token
$object = new token;
$token = $object->create($_SERVER['PHP_SELF']);
//show the content //show the content
echo "<form method='post' name='frm' action=''>\n"; echo "<form method='post' name='frm' action=''>\n";
@ -755,6 +767,7 @@
if ($action == "update") { if ($action == "update") {
echo " <input type='hidden' name='id' value='".escape($extension_uuid)."'>\n"; echo " <input type='hidden' name='id' value='".escape($extension_uuid)."'>\n";
} }
echo " <input type='hidden' name='".$token['name']."' value='".$token['hash']."'>\n";
echo " <br />"; echo " <br />";
echo " <input type='submit' class='btn' value='".$text['button-save']."'>\n"; echo " <input type='submit' class='btn' value='".$text['button-save']."'>\n";
echo " </td>\n"; echo " </td>\n";