diff options
| author | brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2010-01-21 01:30:09 +0000 |
|---|---|---|
| committer | brettp <brettp@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2010-01-21 01:30:09 +0000 |
| commit | 0c5b4c242b0805c55ca3b1a887eb222844a66400 (patch) | |
| tree | f3455e9dcac50226d33ab3048a691f90ee82d5c5 /views/default/page_elements/spotlight.php | |
| parent | 3d9fb93c8c91e45b88dfeb816960049e0cb33231 (diff) | |
| download | elgg-0c5b4c242b0805c55ca3b1a887eb222844a66400.tar.gz elgg-0c5b4c242b0805c55ca3b1a887eb222844a66400.tar.bz2 | |
Fixes #750: All actions require __elgg_ts and __elgg_token.
git-svn-id: http://code.elgg.org/elgg/trunk@3821 36083f99-b078-4883-b0ff-0f9b5a30f544
Diffstat (limited to 'views/default/page_elements/spotlight.php')
| -rw-r--r-- | views/default/page_elements/spotlight.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/views/default/page_elements/spotlight.php b/views/default/page_elements/spotlight.php index 670e0e4c5..1c32f9b1d 100644 --- a/views/default/page_elements/spotlight.php +++ b/views/default/page_elements/spotlight.php @@ -28,11 +28,11 @@ } if ($closed) { ?> - <a href="javascript:void(0);" class="toggle_box_contents" onClick="$.post('<?php echo $vars['url']; ?>action/user/spotlight?closed=false')">+</a> + <a href="javascript:void(0);" class="toggle_box_contents" onClick="$.post('<?php echo elgg_validate_action_url("{$vars['url']}action/user/spotlight?closed=false"); ?>')">+</a> <?php } else { ?> - <a href="javascript:void(0);" class="toggle_box_contents" onClick="$.post('<?php echo $vars['url']; ?>action/user/spotlight?closed=true')">-</a> + <a href="javascript:void(0);" class="toggle_box_contents" onClick="$.post('<?php echo elgg_validate_action_url("{$vars['url']}action/user/spotlight?closed=true"); ?>')">-</a> <?php } @@ -54,4 +54,4 @@ </div><!-- /.collapsable_box --> </div><!-- /#wrapper_spotlight --> -</div><!-- /#layout_spotlight -->
\ No newline at end of file +</div><!-- /#layout_spotlight --> |