CSRF prevention for admin plugins

This patch adds a session based token to all form in the default action plugins.
The validity of the token is checked before any administrative function is
executed

CSRF prevention for admin plugins

This patch adds a session based token to all form in the default action plugins.
The validity of the token is checked before any administrative function is
executed aiming to protect DokuWiki's admin functions from Cross-site request
forgery (CSRF) attacks.

Another patch will follow to add the same functionality on other, less critical
functions.

More details on CSRF attacks can be found at
http://en.wikipedia.org/wiki/Cross-site_request_forgery

darcs-hash:20070829201538-7ad00-d0770224a3351fd8e38968e3a9d8e73520482445.gz

show more ...

french update

darcs-hash:20070821173805-7ad00-49900167ab4babede6acebb595faf005b28ce18e.gz

esperanto update

darcs-hash:20070818222029-7ad00-490d6e1e53a9753c4951ee8a9a9882d3cbdcfdb0.gz

finish language update

darcs-hash:20070816182508-7ad00-a6107d7ae873a1473444c8fcfc02cf59172b0d8b.gz

greek language update

darcs-hash:20070813220053-7ad00-db53d44215d74c091c10e0423b8152dec302127a.gz

dutch language update

darcs-hash:20070808214818-7ad00-48bb7ceff4e2144512bb7ad217700c63c9d4bb94.gz

Portuguese language update

darcs-hash:20070808180825-7ad00-63a8a7c23769cd92cccde54c3df267e94214eaae.gz

german language update

darcs-hash:20070807221400-7ad00-c67b347e0528709a4eae84f3740c34d12f9e1bba.gz

Galician translation

darcs-hash:20070730164939-7ad00-43323188e904f45153062bb2e5c3550a1ea4ce4d.gz

fixed unclean language files FS#1186

darcs-hash:20070715090528-7ad00-ffebbfcd0e4b12e839a958932afd1db2c4fb8765.gz

Norwegian language update

darcs-hash:20070702195324-7ad00-ae4099158ec50f7345355738b2d80905ca63a543.gz

Slovak language updates

darcs-hash:20070630110132-7ad00-d2e4eca72ca53ff3aa5808ae6328d798a9e8b039.gz

More Portuguese language updates

darcs-hash:20070629212340-7ad00-ca30ab5a542bab7e1bf3b7650e3533cf57190170.gz

Portuguese language updates

darcs-hash:20070629192938-7ad00-226f2f2375e3f4d5522d1b515a6f3c6910652449.gz

Czech language updates

darcs-hash:20070629134741-7ad00-0ff9213ccdc79cc288af35a4dd98c1f7f90a5137.gz

japanese language update

darcs-hash:20070628191802-7ad00-00dd404a1b70e314c76d07080a6085e731ffd238.gz

Spanish language updates

darcs-hash:20070626162556-7ad00-2ffaf48c4cd559fc225bc90cb28b2fda2d892576.gz

Bulgarian language updates

darcs-hash:20070626162303-7ad00-a9268edd24f0da9c887ea3c66e0f0b10713aa907.gz

German language updates

darcs-hash:20070625182759-7ad00-4fc5881872024baba058f8938cefc5fad40a682d.gz

Esperanto language updates

darcs-hash:20070624174148-7ad00-e091a6bf887838fd6237a6cfa8d34aba74682801.gz

Galician translation updates

darcs-hash:20070624174021-7ad00-5343b0d790bfd868469f59bdb569ffc9c056431e.gz

Polish language update

darcs-hash:20070624105948-7ad00-9b0c7bb2b718cc45302756b3e8b04cf2472d92bd.gz

greek language updates

darcs-hash:20070622215242-7ad00-c0512378d892226c79e0eae52bdf989e1aa0c5d7.gz

Misc string fixes and fr update

darcs-hash:20070619173914-19e2d-7cbef873f967f11ebc0090a1467a0b97d10ec395.gz

make sure all needed data is given when creating users from backend FS#1096

darcs-hash:20070513101600-7ad00-2e225a1d06706cc7591f16eb8eb17095e04ea6dc.gz