1.1 --- a/imipweb/profile.py Sat Apr 23 00:41:58 2016 +0200
1.2 +++ b/imipweb/profile.py Fri May 06 23:06:35 2016 +0200
1.3 @@ -58,6 +58,11 @@
1.4 if not action:
1.5 return ["action"]
1.6
1.7 + # Check the validation token.
1.8 +
1.9 + if not self.check_validation_token():
1.10 + return ["token"]
1.11 +
1.12 if save:
1.13 errors = self.update_preferences()
1.14 if errors:
1.15 @@ -199,6 +204,7 @@
1.16
1.17 self.new_page(title=_("Profile"))
1.18 page.form(method="POST")
1.19 + self.validator()
1.20 self.show_preferences(errors)
1.21 self.show_controls()
1.22 page.form.close()