From: hylom <hylom@users.osdn.me>
Date: Mon, 10 Jun 2019 04:59:15 +0000 (+0000)
Subject: temporary disable CSRF token check for votes
X-Git-Url: http://git.osdn.net/view?a=commitdiff_plain;h=d3d9b25a6cac7552b82e8dfb35010e78faf0a45c;p=newslash%2Fnewslash.git

temporary disable CSRF token check for votes
---

diff --git a/src/newslash_web/lib/Newslash/Plugin/NewslashHelpers.pm b/src/newslash_web/lib/Newslash/Plugin/NewslashHelpers.pm
index 632b11e8..4d210731 100644
--- a/src/newslash_web/lib/Newslash/Plugin/NewslashHelpers.pm
+++ b/src/newslash_web/lib/Newslash/Plugin/NewslashHelpers.pm
@@ -463,7 +463,7 @@ sub _get_sidebar_item {
 
 	# register helpers
 	$vars->{helpers} = {};
-	my $helpers = $c->helpers;
+	my $helpers = $c->app->helper;
 	for my $helper (keys %$helpers) {
 	    my $f = $helpers->{$helper};
 	    if (ref($f) eq 'CODE') {
diff --git a/src/newslash_web/lib/Newslash/Web.pm b/src/newslash_web/lib/Newslash/Web.pm
index 45c93e08..01c6db5a 100644
--- a/src/newslash_web/lib/Newslash/Web.pm
+++ b/src/newslash_web/lib/Newslash/Web.pm
@@ -285,7 +285,8 @@ sub startup {
     # polls page
     $r->get('/poll/:qid')->to('poll#single');
     $r->get('/vote/:qid')->to('poll#vote');
-    $r->post('/vote/:qid')->to('poll#vote_post', csrf_check_id => 'vote');
+    #$r->post('/vote/:qid')->to('poll#vote_post', csrf_check_id => 'vote');
+    $r->post('/vote/:qid')->to('poll#vote_post');
 
     # archive page
     $r->get('/story/:year/:month/:day/')->to('archive#story');