From cdccdd63b5d967db8e1c925f19ac8a331cd44207 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Samuli=20Sillanp=C3=A4=C3=A4?=
 <samuli.sillanpaa@helsinki.fi>
Date: Thu, 9 Aug 2018 11:00:15 +0300
Subject: [PATCH] Fix bug in using CSRF when deleting an account.

---
 module/VuFind/src/VuFind/Controller/MyResearchController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/module/VuFind/src/VuFind/Controller/MyResearchController.php b/module/VuFind/src/VuFind/Controller/MyResearchController.php
index e0b7978b551..8b0b80e89c4 100644
--- a/module/VuFind/src/VuFind/Controller/MyResearchController.php
+++ b/module/VuFind/src/VuFind/Controller/MyResearchController.php
@@ -1743,7 +1743,7 @@ class MyResearchController extends AbstractBase
                 );
             } else {
                 // After successful token verification, clear list to shrink session:
-                $this->csrf->trimTokenList(0);
+                $csrf->trimTokenList(0);
             }
             $user->delete(
                 $config->Authentication->delete_comments_with_user ?? true
-- 
GitLab