cuongpv/faveo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

bug-fix-patch

Browse Source 
Rating csrf tofen issue fix
This commit is contained in:
Manish Verma
2017-05-03 18:37:17 +05:30
parent 9555771893
commit aae59a77dc
2 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/Http/Controllers/Agent/helpdesk/TicketController.php
View File

@@ -2068,6 +2068,9 @@ class TicketController extends Controller
public function rating($id, Request $request, \App\Model\helpdesk\Ratings\RatingRef $rating_ref) public function rating($id, Request $request, \App\Model\helpdesk\Ratings\RatingRef $rating_ref)
{ {
foreach ($request->all() as $key => $value) { foreach ($request->all() as $key => $value) {
if ($key == "_token") {
continue;
}
if (strpos($key, '_') !== false) { if (strpos($key, '_') !== false) {
$ratName = str_replace('_', ' ', $key); $ratName = str_replace('_', ' ', $key);
} else { } else {
@@ -2103,6 +2106,9 @@ class TicketController extends Controller
public function ratingReply($id, Request $request, \App\Model\helpdesk\Ratings\RatingRef $rating_ref) public function ratingReply($id, Request $request, \App\Model\helpdesk\Ratings\RatingRef $rating_ref)
{ {
foreach ($request->all() as $key => $value) { foreach ($request->all() as $key => $value) {
if ($key == "_token") {
continue;
}
$key1 = explode(',', $key); $key1 = explode(',', $key);
if (strpos($key1[0], '_') !== false) { if (strpos($key1[0], '_') !== false) {
$ratName = str_replace('_', ' ', $key1[0]); $ratName = str_replace('_', ' ', $key1[0]);

2
resources/views/themes/default1/client/helpdesk/ckeckticket.blade.php
View File

@@ -42,6 +42,7 @@ $thread = App\Model\helpdesk\Ticket\Ticket_Thread::where('ticket_id', '=', \Cryp
<table><tbody> <table><tbody>
<?php $ratings = App\Model\helpdesk\Ratings\Rating::orderby('display_order')->get(); ?> <?php $ratings = App\Model\helpdesk\Ratings\Rating::orderby('display_order')->get(); ?>
<form id="foo"> <form id="foo">
{!! csrf_field() !!}
@foreach($ratings as $rating) @foreach($ratings as $rating)
@if($rating->rating_area == 'Helpdesk Area') @if($rating->rating_area == 'Helpdesk Area')
@@ -196,6 +197,7 @@ foreach ($conversations as $conversation) {
} }
?> ?>
<form class="foo2"> <form class="foo2">
{{ csrf_field() }}
<tr> <tr>
<th><div class="ticketratingtitle">{!! $rating->name !!} &nbsp;</div></th>&nbsp <th><div class="ticketratingtitle">{!! $rating->name !!} &nbsp;</div></th>&nbsp