mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-07-30 15:34:08 +02:00
38 lines
792 B
Markdown
38 lines
792 B
Markdown
# 3.1.19
|
|
|
|
## Upgrading
|
|
|
|
`LoginForm` no longer disables CSRF protection. This may cause regressions on sites that statically publish pages with
|
|
login forms or other changes. To re-enable this, you'll need to use the `Injector` to create a custom login form.
|
|
|
|
Define a login form:
|
|
|
|
```php
|
|
class CustomLoginForm extends MemberLoginForm {
|
|
|
|
public function __construct($controller, $name, $fields = null, $actions = null, $checkCurrentUser = true)
|
|
{
|
|
parent::__construct($controller, $name, $fields, $actions, $checkCurrentUser);
|
|
|
|
$this->disableSecurityToken();
|
|
}
|
|
|
|
}
|
|
```
|
|
|
|
Add this to mysite/_config/config.yml
|
|
|
|
```yaml
|
|
Injector:
|
|
MemberLoginForm:
|
|
class: CustomLoginForm
|
|
```
|
|
|
|
<!--- Changes below this line will be automatically regenerated -->
|
|
|
|
## Change Log
|
|
|
|
### Security
|
|
|
|
### Bugfixes
|