diff options
Diffstat (limited to 'app/controllers/course/basicdata.php')
| -rw-r--r-- | app/controllers/course/basicdata.php | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/app/controllers/course/basicdata.php b/app/controllers/course/basicdata.php index eab5f36..114bcc8 100644 --- a/app/controllers/course/basicdata.php +++ b/app/controllers/course/basicdata.php @@ -612,7 +612,8 @@ class Course_BasicdataController extends AuthenticatedController public function add_member_action($course_id, $status = 'dozent') { - CSRFProtection::verifyUnsafeRequest(); + // We don't need to check the csrf protection at this point since it + // is already checked by the multiperson search endpoint // load MultiPersonSearch object $mp = MultiPersonSearch::load("add_member_{$status}{$course_id}"); |