diff options
author | Ed Tanous <ed@tanous.net> | 2024-05-11 02:37:56 +0300 |
---|---|---|
committer | Ed Tanous <ed@tanous.net> | 2024-05-13 20:51:27 +0300 |
commit | 576db69522b81fd7702c90040e92b24368b1d3a7 (patch) | |
tree | fa136ac1aa9314e5e9d49864986f60fc02f74b9b | |
parent | c71b6c9919fdc147362f155b352b45e2685e8737 (diff) | |
download | bmcweb-576db69522b81fd7702c90040e92b24368b1d3a7.tar.xz |
Last fix for inversion
CSRF option got inverted. Fix it.
Tested: Code compiles.
Change-Id: Ibfc56ef2ce8d065aa7dad836e3d4a5edc5632926
Signed-off-by: Ed Tanous <ed@tanous.net>
-rw-r--r-- | include/authentication.hpp | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/authentication.hpp b/include/authentication.hpp index 5f43f0af2f..0617cf3729 100644 --- a/include/authentication.hpp +++ b/include/authentication.hpp @@ -153,7 +153,7 @@ inline std::shared_ptr<persistent_data::UserSession> } sessionOut->cookieAuth = true; - if constexpr (BMCWEB_INSECURE_DISABLE_CSRF) + if constexpr (!BMCWEB_INSECURE_DISABLE_CSRF) { // RFC7231 defines methods that need csrf protection if (method != boost::beast::http::verb::get) |