Index: trunk/extensions/CodeReview/CodeRevisionCommitter.php |
— | — | @@ -17,6 +17,11 @@ |
18 | 18 | function execute() { |
19 | 19 | global $wgRequest, $wgOut, $wgUser; |
20 | 20 | |
| 21 | + if( !$wgUser->matchEditToken( $wgRequest->getVal('wpEditToken') ) ) { |
| 22 | + $wgOut->addHTML( wfMsg('sessionfailure') ); |
| 23 | + return; |
| 24 | + } |
| 25 | + |
21 | 26 | $redirTarget = null; |
22 | 27 | $dbw = wfGetDB( DB_MASTER ); |
23 | 28 | |