Merge pull request #370 from mateusz/csrf_message

MINOR: change the ugly user-facing CSRF message to more friendly
2024-07-04 02:19:32 +02:00 · 2012-04-26 02:19:34 -07:00 · 2012-04-26 02:19:34 -07:00 · 7483970f68
commit 7483970f68
parent 92f3d62d70 b561786825
1 changed files with 1 additions and 1 deletions
--- a/forms/Form.php
+++ b/forms/Form.php
@ -240,7 +240,7 @@ class Form extends RequestHandler {
 		// Protection against CSRF attacks
 		$token = $this->getSecurityToken();
 		if(!$token->checkRequest($request)) {
-			$this->httpError(400, "Security token doesn't match, possible CSRF attack.");
+			$this->httpError(400, "Sorry, your session has timed out.");
 		}
 		
 		// Determine the action button clicked