From a017f3a74f8f8b4dfbad8901766be3b449f42a96 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20Tempez?= <frederic.tempez@outlook.com>
Date: Sat, 15 Oct 2022 08:41:12 +0200
Subject: [PATCH] =?UTF-8?q?csrf=20non=20n=C3=A9cessaire?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 core/module/translate/translate.php | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

diff --git a/core/module/translate/translate.php b/core/module/translate/translate.php
index bffaa80a..13a9e1f2 100644
--- a/core/module/translate/translate.php
+++ b/core/module/translate/translate.php
@@ -145,7 +145,7 @@ class translate extends common
 					self::$i18nUI === $key ? helper::translate('Interface') : '',
 					'',
 					template::button('translateContentLanguageEdit' . $key, [
-						'href' => helper::baseUrl() . $this->getUrl(0) . '/locale/' . $key . '/' . $_SESSION['csrf'],
+						'href' => helper::baseUrl() . $this->getUrl(0) . '/locale/' . $key ,
 						'value' => template::ico('pencil'),
 						'help' => 'Éditer'
 					]),
@@ -179,7 +179,7 @@ class translate extends common
 					self::$i18nUI === $selected ? helper::translate('Interface') : '',
 					'',
 					template::button('translateContentLanguageEdit' . $file, [
-						'href' => helper::baseUrl() . $this->getUrl(0) . '/ui/' . $selected . '/' . $_SESSION['csrf'],
+						'href' => helper::baseUrl() . $this->getUrl(0) . '/ui/' . $selected ,
 						'value' => template::ico('pencil'),
 						'help' => 'Éditer',
 						'disabled' => 'fr_FR' === $selected
@@ -272,8 +272,7 @@ class translate extends common
 	{
 		// Jeton incorrect ou URl avec le code langue incorrecte
 		if (
-			$this->getUrl(3) !== $_SESSION['csrf']
-			|| !array_key_exists($this->getUrl(2), self::$languages)
+			 !array_key_exists($this->getUrl(2), self::$languages)
 		) {
 			// Valeurs en sortie
 			$this->addOutput([
@@ -391,8 +390,7 @@ class translate extends common
 	{
 		// Jeton incorrect ou URl avec le code langue incorrecte
 		if (
-			$this->getUrl(3) !== $_SESSION['csrf']
-			|| !array_key_exists($this->getUrl(2), self::$languages)
+				!array_key_exists($this->getUrl(2), self::$languages)
 		) {
 			// Valeurs en sortie
 			$this->addOutput([