[BUGFIX] Make ExtDirect route public 43/43843/3
authorHelmut Hummel <helmut.hummel@typo3.org>
Tue, 6 Oct 2015 10:06:22 +0000 (12:06 +0200)
committerAndreas Fernandez <typo3@scripting-base.de>
Tue, 6 Oct 2015 10:14:08 +0000 (12:14 +0200)
commitda314b2f3b8b6fbe1af72bc618a923ca63afa4da
tree632f04d5a7c47f24ca4ba3b65fc0d506e29d882d
parentc0ec5d69549ba96bd444e2eecc4f3b2a45ddcb3b
[BUGFIX] Make ExtDirect route public

The ExtDirect routes currently have a unique session CSRF token, which
makes caching of these routes impossible.

Since these routes are protected by an individual CSRF token (TYPO3.ExtDirectToken),
We can simply define this route as public to avoid caching issues.

Resolves: #70424
Related: #69916
Releases: master
Change-Id: I0ad018cc80913ea40fc00b88322ee59e24c17799
Reviewed-on: http://review.typo3.org/43843
Reviewed-by: Helmut Hummel <helmut.hummel@typo3.org>
Tested-by: Helmut Hummel <helmut.hummel@typo3.org>
Reviewed-by: Andreas Fernandez <typo3@scripting-base.de>
Tested-by: Andreas Fernandez <typo3@scripting-base.de>
typo3/sysext/backend/Configuration/Backend/AjaxRoutes.php