19 Oct
2006
19 Oct
'06
7:47 p.m.
Heine Deelstra wrote:
The 4.6.10 and 4.7.4 releases saw the addition of a new default form field to protect against cross site request forgeries.
2. 4.7 modules and themes that rely on a defined set of form fields to be present To me, this just means any form 'myform' that has defined a theme_myform() function which DOESN'T have a form_render($form); at the end of it will need to be updated. IIRC there are probably not too many modules which do that. Am I correct there? So I think the small breakage is outweighed by the improved security.
Rob Roy Barreca Founder and COO Electronic Insight Corporation http://www.electronicinsight.com rob@electronicinsight.com