summaryrefslogtreecommitdiff
path: root/resources/views/modules/interactive-tree
diff options
context:
space:
mode:
authorGreg Roach <greg@subaqua.co.uk>2022-05-19 18:55:20 +0100
committerGreg Roach <greg@subaqua.co.uk>2022-05-19 18:55:20 +0100
commit81443e3cbe4eef5ccdcf8dae716a7e35f7417b60 (patch)
treea45ee07eabbd757aea2940b93c229f637733a2b7 /resources/views/modules/interactive-tree
parent3a82224cf6be678ecfe17531decfc315d7163893 (diff)
downloadwebtrees-81443e3cbe4eef5ccdcf8dae716a7e35f7417b60.tar.gz
webtrees-81443e3cbe4eef5ccdcf8dae716a7e35f7417b60.tar.bz2
webtrees-81443e3cbe4eef5ccdcf8dae716a7e35f7417b60.zip
Fix: #4389 - move the CSRF token to the end of all forms, so we can detect truncated input variables
Diffstat (limited to 'resources/views/modules/interactive-tree')
-rw-r--r--resources/views/modules/interactive-tree/page.phtml4
1 files changed, 2 insertions, 2 deletions
diff --git a/resources/views/modules/interactive-tree/page.phtml b/resources/views/modules/interactive-tree/page.phtml
index 0e6f085c06..90ffd18ad0 100644
--- a/resources/views/modules/interactive-tree/page.phtml
+++ b/resources/views/modules/interactive-tree/page.phtml
@@ -18,8 +18,6 @@ use Fisharebest\Webtrees\View;
</h2>
<form method="post" class="wt-page-options wt-page-options-compact-chart d-print-none">
- <?= csrf_field() ?>
-
<div class="row">
<label class="col-sm-3 col-form-label wt-page-options-label" for="xref">
<?= I18N::translate('Individual') ?>
@@ -36,6 +34,8 @@ use Fisharebest\Webtrees\View;
I18N::translate('view') ?>">
</div>
</div>
+
+ <?= csrf_field() ?>
</form>
<div class="wt-page-content wt-chart wt-chart-interactive">