Skip to content

Prepend `protect_from_forgery` in the sessionscontroller

Bob Van Landuyt :neckbeard: requested to merge bvl-fix-login-issue-with-ldap-enabled into master

Make sure protect_from_forgery is done before authentication. Otherwise it might cause the authentication to fail when the token is reset during auth.

Closes #35447 (closed)

Edited by Bob Van Landuyt :neckbeard:

Merge request reports