add CSRF Token on customer login

2025-08-03 09:45:03 +02:00 · 2024-10-09 17:58:35 +01:00 · 2024-10-09 17:58:35 +01:00 · 3eaa302128
commit 3eaa302128
parent 9bc3ccc02b
4 changed files with 17 additions and 5 deletions
--- a/system/controllers/admin.php
+++ b/system/controllers/admin.php
@ -26,7 +26,7 @@ switch ($do) {
        //csrf token
        $csrf_token = _post('csrf_token');
        if (!Csrf::check($csrf_token)) {
-            _alert(Lang::T('Invalid CSRF Token') . ".", 'danger', "admin");
+            _alert(Lang::T('Invalid or Expired CSRF Token') . ".", 'danger', "admin");
        }
        run_hook('admin_login'); #HOOK
        if ($username != '' and $password != '') {