From 20207a8deea27991c823555228b92120a0eca728 Mon Sep 17 00:00:00 2001 From: Sean Harvey Date: Mon, 28 Apr 2008 03:10:13 +0000 Subject: [PATCH] Disable default form security token - our sessions are identified by URL, so this won't work! (Although we could possibly find a better way than simply disabling this in the future) --- code/MultiForm.php | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/code/MultiForm.php b/code/MultiForm.php index 7e6c529..03ea739 100644 --- a/code/MultiForm.php +++ b/code/MultiForm.php @@ -83,6 +83,10 @@ abstract class MultiForm extends Form { * takes the fields, actions and validation (if any) for the step, setting up the form. */ public function init() { + // Disable security token. We tie a form to a session by URL. + // @TODO Is there a better way than simply disabling this? + $this->disableSecurityToken(); + // Set up the session $this->setSession();