luci-base: fix CSRF prevention for arcombine targets
authorJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:55:44 +0000 (09:55 +0200)
committerJo-Philipp Wich <jo@mein.io>
Wed, 9 Oct 2019 07:55:44 +0000 (09:55 +0200)
commitf8c6eb67cd9da09ee20248fec6ab742069635e47
treefad932d2aed191055e601959f47a2418c7a18ef6
parent6d70b303ede58fb08598ffaa829a3ec80a3f34bd
luci-base: fix CSRF prevention for arcombine targets

The dispatcher failed to propagate the child target post security
requirements to the arcombine() dispatch target so far - fix this
by recursively testing the post security requirements.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
modules/luci-base/luasrc/dispatcher.lua